This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft File: I3Q0S3Gynw44NSDK_GyINQw1YWg.mft (raw, json) Hash identifier: mikLFbjq2LYHWH9IE+45y+FJKcwNk2BsLCrZa1D9eOw= Subject key identifier: BA:4A:45:C8:15:6F:6F:75:14:E9:7D:BA:A6:A2:21:AA:42:BE:31:4B Authority key identifier: 23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 Certificate issuer: /CN=A91A58AA/serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft Manifest number: 71 Signing time: Fri 05 Dec 2025 04:46:29 +0000 Manifest this update: Fri 05 Dec 2025 04:46:28 +0000 Manifest next update: Fri 12 Dec 2025 04:46:28 +0000 Files and hashes: 1: I3Q0S3Gynw44NSDK_GyINQw1YWg.crl (hash: J0p6tU9idTlYIBjmAd2LLnReIVjCBMrcbvd1SLGXsss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:46:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Validity Not Before: Dec 5 04:46:28 2025 GMT Not After : Dec 12 04:46:28 2025 GMT Subject: CN=693263a4-6894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:48:87:52:f1:40:e6:fc:d5:b1:d7:b3:62:e6: ed:ef:81:b3:63:17:42:e0:d9:27:b2:a7:69:62:f0: bd:f5:8b:7c:de:43:ad:16:ea:c7:c3:94:40:1a:5c: 0d:09:58:b9:2e:95:f9:55:54:08:74:04:ea:d5:1b: 03:6e:40:d7:81:94:62:2a:e6:18:c5:c7:5f:1a:67: 83:e3:56:1b:70:ae:d0:c0:b6:bc:f9:9d:91:38:c0: 75:6d:49:b8:39:63:11:0e:dc:bd:78:12:25:1e:f8: 6c:06:4a:e0:12:7e:b0:71:f1:c4:55:f9:97:22:2f: ce:90:c2:79:9a:25:70:8f:dd:18:0c:c6:11:60:69: c2:8a:b5:b6:f5:9c:82:73:16:f9:47:cf:b5:7c:8f: 3f:b7:b9:14:20:67:cb:18:40:54:c8:5c:a3:e8:ad: b7:f9:eb:75:96:c0:b8:3d:6b:3a:e1:c5:d6:a7:b5: f4:e5:88:89:2d:48:5a:08:a8:35:66:43:cb:48:ac: 12:c4:01:e9:08:b7:99:0f:cb:2a:4a:48:32:4c:ba: 67:04:3a:dd:31:14:78:dd:ae:9a:22:9f:9c:75:66: f6:2c:33:c1:de:8f:bc:1a:3b:68:fb:93:7e:57:bf: fe:9e:68:af:4b:32:c7:2a:8a:ba:70:f3:9b:ce:42: 30:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4A:45:C8:15:6F:6F:75:14:E9:7D:BA:A6:A2:21:AA:42:BE:31:4B X509v3 Authority Key Identifier: keyid:23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:8d:ff:5c:46:d6:36:43:a0:2b:e5:8e:d2:46:b4:29:93:9f: 9d:74:49:5f:e3:74:1a:35:89:e4:32:c8:a3:22:f7:62:74:7d: 12:50:21:92:ab:af:89:65:5d:3f:03:b4:56:b3:90:11:6a:e8: b8:6a:b1:f2:26:d1:62:fc:95:e9:ac:b6:c8:a4:7c:4f:d0:4f: 9e:59:f7:11:20:dc:84:bf:94:49:50:f2:30:69:2d:aa:a5:52: 9c:0a:0d:11:02:44:23:c5:b4:8f:48:39:b7:80:d5:15:b2:5d: 7d:8e:44:a1:44:bd:97:91:d3:12:63:fc:d5:a2:7a:79:41:e3: 36:67:41:e1:f7:54:20:b7:cd:88:e5:29:3e:ce:ca:35:63:7f: bd:06:f8:e2:19:15:0d:c2:0c:81:6a:45:38:4b:ac:95:c2:bd: 3e:79:c9:13:18:13:9f:f6:08:21:92:8d:46:64:41:9e:7e:a5: 14:b3:b8:c6:e7:fb:7c:91:06:77:b7:b1:d8:a3:d5:bd:0e:c4: cd:c3:0c:e8:4d:98:71:f9:15:dd:cf:f1:67:e4:99:b2:d5:25: cd:90:6b:e1:a6:e4:bd:84:44:2a:e6:dc:4c:c7:4c:f7:95:bf: c8:fa:4a:45:6c:26:8f:13:45:5c:2e:65:ae:86:f3:5b:fd:af: 5f:e7:7b:67 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NThBQTExMC8GA1UEBRMoMjM3NDM0NEI3MUIyOUYwRTM4MzUyMENBRkM2Qzg4MzUw QzM1NjE2ODAeFw0yNTEyMDUwNDQ2MjhaFw0yNTEyMTIwNDQ2MjhaMBgxFjAUBgNV BAMTDTY5MzI2M2E0LTY4OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMSIdS8UDm/NWx17Ni5u3vgbNjF0Lg2Seyp2li8L31i3zeQ60W6sfDlEAaXA0J WLkulflVVAh0BOrVGwNuQNeBlGIq5hjFx18aZ4PjVhtwrtDAtrz5nZE4wHVtSbg5 YxEO3L14EiUe+GwGSuASfrBx8cRV+ZciL86QwnmaJXCP3RgMxhFgacKKtbb1nIJz FvlHz7V8jz+3uRQgZ8sYQFTIXKPorbf563WWwLg9azrhxdantfTliIktSFoIqDVm Q8tIrBLEAekIt5kPyypKSDJMumcEOt0xFHjdrpoin5x1ZvYsM8Hej7waO2j7k35X v/6eaK9LMscqirpw85vOQjBBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUukpFyBVv b3UU6X26pqIhqkK+MUswHwYDVR0jBBgwFoAUI3Q0S3Gynw44NSDK/GyINQw1YWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1OEFBL0NBNTBDOTI2MjQw MjExRjA5NjFCNjQ2REM0RjlBRTAyL0kzUTBTM0d5bnc0NE5TREtfR3lJTlF3MVlX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSTNRMFMzR3ludzQ0TlNES19HeUlOUXcxWVdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 OEFBL0NBNTBDOTI2MjQwMjExRjA5NjFCNjQ2REM0RjlBRTAyL0kzUTBTM0d5bnc0 NE5TREtfR3lJTlF3MVlXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFCN/1xG1jZDoCvljtJGtCmTn510SV/jdBo1ieQyyKMi92J0fRJQIZKr r4llXT8DtFazkBFq6LhqsfIm0WL8lemstsikfE/QT55Z9xEg3IS/lElQ8jBpLaql UpwKDRECRCPFtI9IObeA1RWyXX2ORKFEvZeR0xJj/NWienlB4zZnQeH3VCC3zYjl KT7OyjVjf70G+OIZFQ3CDIFqRThLrJXCvT55yRMYE5/2CCGSjUZkQZ5+pRSzuMbn +3yRBne3sdij1b0OxM3DDOhNmHH5Fd3P8WfkmbLVJc2Qa+Gm5L2ERCrm3EzHTPeV v8j6SkVsJo8TRVwuZa6G81v9r1/ne2c= -----END CERTIFICATE-----Generated at Sat Dec 6 21:01:30 2025 by rpki-client