This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft File: I8MbHNaMzE0c6105mlAbYFD9HUY.mft (raw, json) Hash identifier: AsW5YrlGjm9B1KHcCJrHo9q8ati8U8AoFBMJ310J0CM= Subject key identifier: 2D:2F:63:5C:9B:04:2B:CE:FB:91:5D:2B:BA:FF:7C:2E:73:F9:CC:C7 Authority key identifier: 23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 Certificate issuer: /CN=A91A0FC0/serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Certificate serial: 040F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft Manifest number: 052E Signing time: Thu 04 Dec 2025 22:53:19 +0000 Manifest this update: Thu 04 Dec 2025 22:53:18 +0000 Manifest next update: Thu 11 Dec 2025 22:53:18 +0000 Files and hashes: 1: I8MbHNaMzE0c6105mlAbYFD9HUY.crl (hash: qVG+aYpct9nVm5ZQWw4df9V4xJQblbi8A8WgThE5pfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0FC0, serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Validity Not Before: Dec 4 22:53:18 2025 GMT Not After : Dec 11 22:53:18 2025 GMT Subject: CN=693210df-6c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2a:29:53:ba:10:d7:9e:7b:eb:b4:34:c7:42: ad:5d:aa:9b:1a:45:bb:65:4e:9a:31:a5:04:be:6e: 13:60:93:0c:92:75:04:9d:af:e5:c2:2e:66:03:0a: a5:f7:b5:be:ee:d4:a9:42:d1:b0:f2:f6:a5:0e:bb: 1d:24:1e:e9:3b:b0:53:d3:83:9b:76:24:29:60:33: 16:d5:4a:c4:53:be:01:fe:3a:7f:60:28:84:e8:2d: f5:16:86:f7:af:c2:9c:71:1d:75:8f:46:9b:97:f6: f2:44:e0:22:6a:7f:ca:2a:72:44:83:e5:b9:e8:df: 19:7c:ed:a2:2d:47:9b:8a:99:20:0e:9e:d0:a4:d1: f0:a9:99:16:a8:c1:3d:17:18:00:dc:93:9a:b1:df: af:bf:1a:06:ae:d8:04:7c:ce:65:e0:5c:1c:fb:48: c2:fd:a7:7f:e2:8b:dc:d4:86:68:8e:31:05:3a:a1: d1:e1:6d:01:5e:6d:a2:59:b9:00:f8:38:0f:60:e1: 8a:49:13:f3:f5:e7:b4:71:f7:7b:d4:a0:da:81:87: d0:90:cc:c0:5c:51:05:5c:f8:bf:a0:3f:52:41:30: d3:e9:c2:90:6a:ba:52:dc:54:24:b2:50:21:c9:8e: f8:2e:81:8e:fe:2c:55:36:56:5f:5c:a3:45:e4:b8: cf:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:2F:63:5C:9B:04:2B:CE:FB:91:5D:2B:BA:FF:7C:2E:73:F9:CC:C7 X509v3 Authority Key Identifier: keyid:23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:22:24:ed:ef:ce:78:af:11:52:87:d8:39:c9:73:88:0e:c8: 6e:08:0f:d1:92:3e:8d:64:dd:60:6d:b2:42:fd:1e:6a:ed:c2: 3c:fc:3d:9f:58:6b:c2:90:3f:e9:41:8b:0e:b7:f7:74:f5:b4: 8f:37:b8:07:da:50:6a:f8:be:a4:28:9c:a7:24:b7:55:93:eb: e3:84:7d:4b:d7:ab:f3:4d:fc:bc:ab:35:ff:78:0a:42:83:c3: 15:90:81:c4:df:b7:af:03:c0:cf:dc:c4:f9:66:51:c5:71:66: 02:25:af:9d:62:28:f1:04:88:3d:3d:7f:8f:d9:f5:41:7d:ee: 6c:98:36:13:b9:3d:aa:0b:6f:2a:8d:16:34:03:ed:58:8a:08: 69:10:ab:3a:3a:47:f6:5e:d6:ef:6f:9c:ce:aa:d9:a0:f1:4e: f2:3d:d8:f5:99:66:82:cd:b2:01:b8:15:0e:bd:4f:c9:c4:28: b9:0f:b9:3b:4f:ef:ca:61:f0:13:29:34:07:87:68:32:9a:12: 26:a2:a8:0c:80:8a:9c:c5:87:7d:40:e2:3f:52:29:26:c4:66: 2e:60:26:9c:dd:08:78:a2:94:b8:13:4d:ab:be:50:2f:53:60: 45:63:95:81:d1:a5:52:e7:34:6a:c2:bd:8e:ac:9c:dc:33:dd: 34:4e:9e:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBGQzAxMTAvBgNVBAUTKDIzQzMxQjFDRDY4Q0NDNEQxQ0VCNUQzOTlBNTAxQjYw NTBGRDFENDYwHhcNMjUxMjA0MjI1MzE4WhcNMjUxMjExMjI1MzE4WjAYMRYwFAYD VQQDEw02OTMyMTBkZi02YzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1iopU7oQ155767Q0x0KtXaqbGkW7ZU6aMaUEvm4TYJMMknUEna/lwi5mAwql 97W+7tSpQtGw8valDrsdJB7pO7BT04ObdiQpYDMW1UrEU74B/jp/YCiE6C31Fob3 r8KccR11j0abl/byROAian/KKnJEg+W56N8ZfO2iLUebipkgDp7QpNHwqZkWqME9 FxgA3JOasd+vvxoGrtgEfM5l4Fwc+0jC/ad/4ovc1IZojjEFOqHR4W0BXm2iWbkA +DgPYOGKSRPz9ee0cfd71KDagYfQkMzAXFEFXPi/oD9SQTDT6cKQarpS3FQkslAh yY74LoGO/ixVNlZfXKNF5LjPZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0vY1yb BCvO+5FdK7r/fC5z+czHMB8GA1UdIwQYMBaAFCPDGxzWjMxNHOtdOZpQG2BQ/R1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEZDMC9DREUwOTg3Njk1 NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpFMGM2MTA1bWxBYllGRDlI VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4TWJITmFNekUwYzYxMDVtbEFiWUZEOUhVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEZDMC9DREUwOTg3Njk1NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpF MGM2MTA1bWxBYllGRDlIVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSIiTt7854rxFSh9g5yXOIDshuCA/Rkj6NZN1gbbJC/R5q7cI8/D2f WGvCkD/pQYsOt/d09bSPN7gH2lBq+L6kKJynJLdVk+vjhH1L16vzTfy8qzX/eApC g8MVkIHE37evA8DP3MT5ZlHFcWYCJa+dYijxBIg9PX+P2fVBfe5smDYTuT2qC28q jRY0A+1YighpEKs6Okf2Xtbvb5zOqtmg8U7yPdj1mWaCzbIBuBUOvU/JxCi5D7k7 T+/KYfATKTQHh2gymhImoqgMgIqcxYd9QOI/UikmxGYuYCac3Qh4opS4E02rvlAv U2BFY5WB0aVS5zRqwr2OrJzcM900Tp5Q -----END CERTIFICATE-----Generated at Sat Dec 6 15:37:25 2025 by rpki-client