This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft File: IkB3DhUcdBqE3pTijHUgArg5--0.mft (raw, json) Hash identifier: 1hxuYdWvKAki/Pn1OEYVfqxp4/dY5+KUGg9kbsR+p7s= Subject key identifier: D5:67:13:D1:6C:1F:D1:E8:28:19:A4:65:A3:D2:F8:CA:3C:A9:0F:1C Authority key identifier: 22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED Certificate issuer: /CN=A91A665A/serialNumber=2240770E151C741A84DE94E28C752002B839FBED Certificate serial: 07B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft Manifest number: 07A8 Signing time: Sat 06 Dec 2025 20:26:29 +0000 Manifest this update: Sat 06 Dec 2025 20:26:28 +0000 Manifest next update: Sat 13 Dec 2025 20:26:28 +0000 Files and hashes: 1: IkB3DhUcdBqE3pTijHUgArg5--0.crl (hash: uujO3q+1fsTzt2HWh8R6ax1RMD63dHdIS+8MlI3M47E=) 2: 05E355AEA03811EDBC101B49C4F9AE02.roa (hash: CNZBv4FK9ZWvTtzm+cWIR1zfUXJg63OkryMkTZVFNpg=) 3: 8224075A293711EB9DE16C62C4F9AE02.roa (hash: BlNMvykSVEqNeWKjQSI6MISWgcMVQUYKsr+oWp8+db0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1971 (0x7b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A665A, serialNumber=2240770E151C741A84DE94E28C752002B839FBED Validity Not Before: Dec 6 20:26:28 2025 GMT Not After : Dec 13 20:26:28 2025 GMT Subject: CN=69349175-a8aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7e:8d:d1:c9:79:40:d9:c3:83:f4:ba:a4:42: 20:62:88:0f:be:8c:00:e2:6d:36:f0:11:3f:9d:6a: f6:7c:5c:29:dd:1c:84:ac:22:00:e0:a8:7f:1c:c5: f2:f9:5b:31:bb:fd:fd:5d:d7:31:f2:c5:8b:23:2f: 8c:20:ec:76:41:7a:3c:86:d2:bc:77:70:10:69:af: f8:a4:1a:87:1f:4a:1d:b4:a6:d8:1e:3b:1e:8e:68: 16:4e:58:95:b0:fe:b4:39:04:75:2c:e2:11:90:36: 51:d7:55:dc:b1:16:a8:41:10:76:6d:f4:ad:98:7a: 44:33:68:ce:8d:a3:0a:97:96:59:7d:d3:d0:51:5f: 0b:13:08:d1:71:ce:d2:ed:67:f6:f9:77:65:ae:38: c6:7f:07:4a:ed:56:57:40:82:23:80:cc:16:b7:6c: 68:43:17:c5:76:b0:12:6e:e9:a6:8d:91:fe:f1:12: 2f:9b:78:55:c3:5e:75:a3:c7:a6:9b:56:5a:c2:fa: f8:5b:d8:b8:1a:30:1a:79:62:bb:f9:09:a0:e5:7a: e8:aa:3d:84:38:3c:c9:a1:d4:41:88:e1:81:44:f0: 7e:52:5c:6d:ea:a4:df:39:dc:8d:0a:5f:2f:82:44: ae:51:12:25:df:c9:26:80:b2:83:ff:ef:da:ab:18: 6d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:67:13:D1:6C:1F:D1:E8:28:19:A4:65:A3:D2:F8:CA:3C:A9:0F:1C X509v3 Authority Key Identifier: keyid:22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:d1:ea:f7:4b:3f:9b:54:db:dd:d3:78:a7:19:0c:86:be:25: 95:bf:98:6f:c2:1b:59:49:69:39:10:2a:31:cd:2f:f0:b6:66: f1:fe:98:34:9e:46:d9:51:5f:8f:71:0e:a0:5f:77:3b:5b:aa: fd:04:f9:2a:ba:dd:0b:be:81:7f:50:7d:2f:53:67:79:81:72: 63:6c:22:f0:f9:ab:7f:3b:93:5f:29:a7:2e:09:d8:71:78:13: 53:5f:b2:22:45:0a:27:24:b5:41:a5:0b:7f:5e:a4:39:54:fd: 65:85:cd:ab:eb:74:2b:3e:77:1f:d9:19:1c:44:fe:56:e7:21: f4:c4:51:8f:73:7b:9f:cf:3b:de:c6:b8:55:06:51:15:c7:0c: c1:17:d8:38:da:5c:5a:f5:dd:7e:6c:1b:0b:d6:a7:7c:bd:1a: 03:f1:82:5a:f7:22:aa:b9:7c:30:30:3d:71:8b:b0:9f:f7:f9: 9e:66:2c:05:9e:c3:37:14:ed:d8:dc:9f:44:4a:a4:da:c1:59: 18:8f:8b:37:f3:40:a1:94:12:8e:b0:72:86:ba:6a:00:e0:1f: 82:c2:0f:4d:7b:56:53:b5:81:a3:64:87:45:a9:9d:cb:50:55: 01:77:8b:6d:14:0f:41:58:48:97:1c:45:f8:64:4e:92:a9:be: a4:67:f3:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY2NUExMTAvBgNVBAUTKDIyNDA3NzBFMTUxQzc0MUE4NERFOTRFMjhDNzUyMDAy QjgzOUZCRUQwHhcNMjUxMjA2MjAyNjI4WhcNMjUxMjEzMjAyNjI4WjAYMRYwFAYD VQQDEw02OTM0OTE3NS1hOGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA436N0cl5QNnDg/S6pEIgYogPvowA4m028BE/nWr2fFwp3RyErCIA4Kh/HMXy +Vsxu/39Xdcx8sWLIy+MIOx2QXo8htK8d3AQaa/4pBqHH0odtKbYHjsejmgWTliV sP60OQR1LOIRkDZR11XcsRaoQRB2bfStmHpEM2jOjaMKl5ZZfdPQUV8LEwjRcc7S 7Wf2+XdlrjjGfwdK7VZXQIIjgMwWt2xoQxfFdrASbummjZH+8RIvm3hVw151o8em m1Zawvr4W9i4GjAaeWK7+Qmg5Xroqj2EODzJodRBiOGBRPB+Ulxt6qTfOdyNCl8v gkSuURIl38kmgLKD/+/aqxhtnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVnE9Fs H9HoKBmkZaPS+Mo8qQ8cMB8GA1UdIwQYMBaAFCJAdw4VHHQahN6U4ox1IAK4Ofvt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjY1QS9DOEZBRDEzODI5 MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RCcUUzcFRpakhVZ0FyZzUt LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lrQjNEaFVjZEJxRTNwVGlqSFVnQXJnNS0tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjY1QS9DOEZBRDEzODI5MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RC cUUzcFRpakhVZ0FyZzUtLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO0er3Sz+bVNvd03inGQyGviWVv5hvwhtZSWk5ECoxzS/wtmbx/pg0 nkbZUV+PcQ6gX3c7W6r9BPkqut0LvoF/UH0vU2d5gXJjbCLw+at/O5NfKacuCdhx eBNTX7IiRQonJLVBpQt/XqQ5VP1lhc2r63QrPncf2RkcRP5W5yH0xFGPc3ufzzve xrhVBlEVxwzBF9g42lxa9d1+bBsL1qd8vRoD8YJa9yKquXwwMD1xi7Cf9/meZiwF nsM3FO3Y3J9ESqTawVkYj4s380ChlBKOsHKGumoA4B+Cwg9Ne1ZTtYGjZIdFqZ3L UFUBd4ttFA9BWEiXHEX4ZE6Sqb6kZ/MI -----END CERTIFICATE-----Generated at Sun Dec 7 03:09:31 2025 by rpki-client