This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: PVlHkBw/FcQcAhl1gtpIzH60TignZy8+yZ9yKZvMskE= Subject key identifier: 1A:DE:C8:AC:A5:54:EA:04:1E:A2:95:2C:5F:68:E5:07:11:1E:CC:2E Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 0A30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 0A19 Signing time: Thu 04 Dec 2025 19:05:28 +0000 Manifest this update: Thu 04 Dec 2025 19:05:28 +0000 Manifest next update: Thu 11 Dec 2025 19:05:28 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: L+5pnDCBD+2QDwYfNZ+os9WVOzd8CpGXsjWhjfihLK4=) 2: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: WlJN5u1oi9WPrD229vbsWsLGL/hLS+xCYNJ5+hmxu8E=) 3: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: Jhv7IIpmMM0oZ7iAKkds1Qiv2p8w6iMgKtc0KDhD18s=) 4: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: 9Z+s94Y5T1K7IVPTPlx/BgDTI68R9a8i/jpS5x1Nr4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2608 (0xa30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Dec 4 19:05:28 2025 GMT Not After : Dec 11 19:05:28 2025 GMT Subject: CN=6931db78-5b9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a6:dd:cf:d8:d4:ec:02:9b:85:44:cb:1d:66: f6:86:e6:38:eb:b6:14:05:04:6f:ca:06:eb:b8:66: bf:9e:b8:f4:30:88:50:ac:47:92:c6:6b:24:cc:e0: 7d:4d:b0:5a:26:df:c2:09:3d:77:f6:eb:6c:94:0b: 87:73:02:75:61:79:ae:7e:bb:79:74:5b:8e:bb:7a: 8d:cd:88:7e:fb:4f:ef:95:4d:64:c5:5b:f0:60:3f: 9a:3f:0a:94:9b:15:1e:be:50:5a:5e:fe:9a:8b:78: 7e:87:1b:ed:84:46:3f:53:94:ce:cb:3a:6a:c3:3a: 1c:15:56:42:21:f2:0d:28:5e:80:a4:f5:37:d5:21: 6d:31:e3:aa:f2:e0:8c:7f:87:2c:49:d6:39:1b:7b: 32:32:1f:a7:3a:94:ed:6f:56:fe:86:c8:9d:1c:19: b3:47:15:c2:8c:fe:83:12:fa:9d:a3:b4:6a:32:7b: 6c:94:85:d2:14:24:b1:f1:78:ad:d3:ca:da:ad:b2: 31:93:e0:8e:1f:d0:6b:86:a7:23:d7:6e:11:6c:90: 78:06:7b:1b:c3:70:0a:a0:fd:26:e6:d4:8a:32:6b: cd:7d:31:7f:18:4d:b6:dd:ad:d8:63:b1:c8:92:10: b9:68:c4:da:b8:00:a9:3e:9d:36:ca:8a:4b:e4:0a: b9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DE:C8:AC:A5:54:EA:04:1E:A2:95:2C:5F:68:E5:07:11:1E:CC:2E X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:2e:3d:a5:1d:c4:4d:1a:98:c6:00:16:f7:11:46:a1:29:7c: 91:5f:67:fc:52:4d:18:b9:37:14:2a:24:d4:8e:94:fc:e7:4a: 78:88:dc:b8:48:d8:43:5b:a8:9b:4e:71:80:25:bf:9d:4f:5e: 3c:74:5b:d7:6d:ce:df:a3:b3:7b:87:c5:8b:a9:90:ba:93:f3: b2:39:72:24:e0:99:06:47:ae:57:2a:9e:65:87:21:d8:a9:35: ef:01:30:3a:08:aa:c9:fd:2e:4d:20:67:43:e2:66:44:ef:f5: ca:cc:04:76:5e:8f:c2:83:3b:3f:e0:da:5c:b6:46:de:a6:c5: d1:15:0d:25:88:c9:aa:8e:57:b6:52:52:b9:b3:56:4e:fb:3f: 1a:79:8b:18:1e:2a:33:c6:58:33:e8:45:ca:56:7d:b8:4a:d3: 80:ce:1b:52:ca:0d:58:d9:fd:37:8b:eb:0a:c9:77:2c:79:9d: 92:d5:80:a8:c3:8c:ff:6b:1f:b2:58:8b:03:e6:2f:b9:13:f7: 7d:3b:32:f0:d7:03:b4:ef:80:6d:62:ab:13:a5:14:5f:52:ed: ee:77:fc:f7:b8:b2:02:f4:ef:4d:06:75:d5:7e:08:83:c9:97: c2:8a:70:15:9a:6b:b3:89:b2:4f:79:d2:bd:34:f6:8f:34:22: b2:08:03:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUxMjA0MTkwNTI4WhcNMjUxMjExMTkwNTI4WjAYMRYwFAYD VQQDEw02OTMxZGI3OC01YjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA76bdz9jU7AKbhUTLHWb2huY467YUBQRvygbruGa/nrj0MIhQrEeSxmskzOB9 TbBaJt/CCT139utslAuHcwJ1YXmufrt5dFuOu3qNzYh++0/vlU1kxVvwYD+aPwqU mxUevlBaXv6ai3h+hxvthEY/U5TOyzpqwzocFVZCIfINKF6ApPU31SFtMeOq8uCM f4csSdY5G3syMh+nOpTtb1b+hsidHBmzRxXCjP6DEvqdo7RqMntslIXSFCSx8Xit 08rarbIxk+COH9Brhqcj124RbJB4Bnsbw3AKoP0m5tSKMmvNfTF/GE223a3YY7HI khC5aMTauACpPp02yopL5Aq5mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBreyKyl VOoEHqKVLF9o5QcRHswuMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+Lj2lHcRNGpjGABb3EUahKXyRX2f8Uk0YuTcUKiTUjpT850p4iNy4 SNhDW6ibTnGAJb+dT148dFvXbc7fo7N7h8WLqZC6k/OyOXIk4JkGR65XKp5lhyHY qTXvATA6CKrJ/S5NIGdD4mZE7/XKzAR2Xo/Cgzs/4NpctkbepsXRFQ0liMmqjle2 UlK5s1ZO+z8aeYsYHiozxlgz6EXKVn24StOAzhtSyg1Y2f03i+sKyXcseZ2S1YCo w4z/ax+yWIsD5i+5E/d9OzLw1wO074BtYqsTpRRfUu3ud/z3uLIC9O9NBnXVfgiD yZfCinAVmmuzibJPedK9NPaPNCKyCAPY -----END CERTIFICATE-----Generated at Sat Dec 6 17:22:48 2025 by rpki-client