This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: VS/bZW0rT1r7crWBg2jY0iO76mTbQ7ma3UepvKU4Dmk= Subject key identifier: 86:D8:B0:25:34:65:90:49:61:AB:E2:B5:F9:37:9F:FD:1E:6E:6E:EB Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 080B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 080B Signing time: Sat 06 Dec 2025 20:01:46 +0000 Manifest this update: Sat 06 Dec 2025 20:01:46 +0000 Manifest next update: Sat 13 Dec 2025 20:01:46 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: pSSTVW108evipJFpaLXNx+XedlMJZYw8yyG4I8bb1VE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2059 (0x80b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Dec 6 20:01:46 2025 GMT Not After : Dec 13 20:01:46 2025 GMT Subject: CN=69348baa-d02f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:20:70:e9:a8:54:be:11:63:be:74:bd:09:a1: bc:63:dc:f3:8c:be:0a:12:49:04:7d:ee:40:8d:fd: 24:c7:e7:9c:c2:9c:e3:1a:53:2f:58:6e:74:1d:e0: ad:a1:45:82:2e:83:b3:2b:58:17:dd:13:c4:63:b6: 59:fb:b5:ab:66:e6:54:8f:27:0b:8d:07:14:d4:a3: ca:9a:04:a3:21:5c:d7:55:f2:97:6d:83:8d:ca:9e: 6a:63:f1:89:b3:9e:c2:a6:89:00:6a:ff:f0:96:57: ef:9a:f4:0b:3a:a3:51:06:ec:f3:9a:38:5e:a4:c3: 67:61:cf:7d:ca:63:7a:c2:40:e6:2f:32:f2:86:72: de:9b:b7:5d:7b:d9:57:fe:68:0b:ed:28:2c:70:d3: 14:68:8f:72:40:0b:0a:e6:fa:05:de:dc:81:0d:4c: 55:06:8b:71:49:b4:78:36:11:a7:cc:06:a1:65:0f: 9f:d1:6e:47:d0:09:4c:74:56:4f:6e:fe:d1:c6:80: 4f:b5:42:f2:f3:6f:f2:b7:2f:ee:93:52:19:6d:90: f9:f2:78:28:25:4f:bf:5b:47:5b:3e:54:db:73:fc: 32:b5:f4:fd:aa:03:4d:5a:7f:9b:b2:b1:13:6c:70: 68:e2:1d:07:be:81:9c:d3:c0:1f:73:be:e4:80:29: ec:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D8:B0:25:34:65:90:49:61:AB:E2:B5:F9:37:9F:FD:1E:6E:6E:EB X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:0b:64:68:e1:9e:65:ad:d9:05:bf:46:ec:27:bd:ed:2d:e4: 19:a1:99:01:42:70:d7:22:bf:2e:14:56:ca:65:68:d7:b8:c0: 2f:29:09:32:06:e2:61:7d:a2:d4:ff:50:aa:c6:8d:81:63:69: df:d2:bb:6c:6c:75:09:94:5d:b4:ba:94:43:8e:59:0e:08:b8: a6:25:d0:41:bf:b3:74:9a:31:cd:88:44:74:bb:6f:f2:24:b3: b4:e9:9c:0a:95:99:2a:0f:15:bf:be:f7:6d:a7:ec:39:80:99: ac:94:a0:cd:34:a3:aa:8e:0a:49:be:60:8b:67:55:63:52:52: 00:28:67:b5:a9:ab:80:64:cb:41:7c:3b:94:0a:22:58:e8:74: ff:3b:03:b4:e4:89:a4:fb:74:33:95:4f:86:d2:b2:bd:74:7b: a1:37:11:6c:2c:b4:30:a1:d1:5e:02:12:2e:12:69:fa:69:0b: fb:8d:ef:2e:a3:6f:64:f3:54:a9:bb:49:08:80:34:2c:7a:dc: c7:0f:76:21:6a:84:7a:5a:ae:90:10:2c:f0:5f:64:e7:31:2e: a8:99:ab:83:5b:b2:e7:26:79:bc:be:46:f1:8e:6c:5a:0f:21: c3:f9:fb:9a:08:e3:10:c9:4c:72:f9:5f:7a:8e:8a:fe:14:61: eb:c9:c2:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUxMjA2MjAwMTQ2WhcNMjUxMjEzMjAwMTQ2WjAYMRYwFAYD VQQDEw02OTM0OGJhYS1kMDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiBw6ahUvhFjvnS9CaG8Y9zzjL4KEkkEfe5Ajf0kx+ecwpzjGlMvWG50HeCt oUWCLoOzK1gX3RPEY7ZZ+7WrZuZUjycLjQcU1KPKmgSjIVzXVfKXbYONyp5qY/GJ s57CpokAav/wllfvmvQLOqNRBuzzmjhepMNnYc99ymN6wkDmLzLyhnLem7dde9lX /mgL7SgscNMUaI9yQAsK5voF3tyBDUxVBotxSbR4NhGnzAahZQ+f0W5H0AlMdFZP bv7RxoBPtULy82/yty/uk1IZbZD58ngoJU+/W0dbPlTbc/wytfT9qgNNWn+bsrET bHBo4h0HvoGc08Afc77kgCnsRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbYsCU0 ZZBJYavitfk3n/0ebm7rMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1C2Ro4Z5lrdkFv0bsJ73tLeQZoZkBQnDXIr8uFFbKZWjXuMAvKQky BuJhfaLU/1Cqxo2BY2nf0rtsbHUJlF20upRDjlkOCLimJdBBv7N0mjHNiER0u2/y JLO06ZwKlZkqDxW/vvdtp+w5gJmslKDNNKOqjgpJvmCLZ1VjUlIAKGe1qauAZMtB fDuUCiJY6HT/OwO05Imk+3QzlU+G0rK9dHuhNxFsLLQwodFeAhIuEmn6aQv7je8u o29k81Spu0kIgDQsetzHD3YhaoR6Wq6QECzwX2TnMS6omauDW7LnJnm8vkbxjmxa DyHD+fuaCOMQyUxy+V96jor+FGHrycJf -----END CERTIFICATE-----Generated at Sun Dec 7 01:51:56 2025 by rpki-client