This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: 2Y5cmaY/yCIsOPWHMK1BiQEnLoOgupHNHrAJMTweSRU= Subject key identifier: F3:68:D7:24:FA:57:D4:82:FF:52:37:DE:2D:53:B3:8C:77:55:E0:63 Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: 96 Signing time: Fri 05 Dec 2025 04:23:11 +0000 Manifest this update: Fri 05 Dec 2025 04:23:11 +0000 Manifest next update: Fri 12 Dec 2025 04:23:11 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: pJMhUzEDKR4kqzqTYO9nd+3TPUQ4fn/9t5PihDd+B9E=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Dec 5 04:23:11 2025 GMT Not After : Dec 12 04:23:11 2025 GMT Subject: CN=69325e2f-30f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bd:86:8f:90:e1:3b:dc:a7:93:dc:b7:13:b2: fa:99:a7:d8:7c:10:4e:1c:16:2e:0c:92:f7:e1:47: d5:41:61:48:fd:16:2d:57:6f:e4:6e:d3:6a:42:60: 3c:2e:e0:6e:49:d9:bf:59:03:15:c7:cc:43:14:53: b0:5c:1a:1d:10:db:23:96:e8:b9:37:40:4d:19:b6: b9:b8:25:e6:e1:2b:a0:91:20:78:8e:3e:ba:51:a2: ec:2b:b6:e6:30:4c:25:ff:d8:76:2a:eb:a6:fb:d2: 27:9c:67:0c:0f:1a:04:73:82:61:a1:ff:d5:a6:be: 27:21:56:16:bd:c5:6d:eb:54:9b:04:9f:2e:49:c4: e1:75:63:e7:a2:06:ae:be:6e:24:a5:f2:0b:3b:d5: b5:57:42:4d:e6:90:1c:9b:de:e0:fa:62:d9:d6:ba: 9c:e9:f4:df:e2:bd:6e:e9:bc:6d:f7:13:40:73:03: af:bf:d6:18:26:0f:3a:1d:fe:8d:38:38:d5:61:e8: f7:a3:e0:6b:ef:e4:f0:5a:1c:3b:f3:f7:13:ab:8c: c8:5b:61:41:4c:7f:db:4b:d9:f6:d7:54:30:d6:fb: 25:79:95:4f:b2:16:58:e5:25:f6:e5:6f:dc:b1:5d: 1f:1e:44:8d:f9:53:21:dc:67:6d:0a:11:e5:3c:fb: 5e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:68:D7:24:FA:57:D4:82:FF:52:37:DE:2D:53:B3:8C:77:55:E0:63 X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:18:09:90:17:b3:12:44:07:d3:9f:bd:0d:7f:51:56:cd:1e: 0d:0a:87:4e:c0:a6:b0:46:15:f7:2c:2a:ce:03:9d:d7:29:a9: 70:31:50:aa:2f:0f:75:21:c0:0e:c8:33:4b:7f:85:25:9c:c0: 6d:86:e6:22:ce:39:c3:e5:75:73:a2:44:1a:76:30:d7:0c:35: c1:5f:b1:64:ea:f3:ba:f5:19:94:0d:92:97:38:dc:3a:c6:44: 25:c1:7b:75:ac:a7:cd:04:17:34:45:e6:55:24:0b:17:c8:11: 3e:6d:eb:25:fd:fe:4d:d5:1d:e2:b9:59:dc:54:64:12:40:d5: 26:92:34:2b:d4:44:de:5e:2b:16:9f:e3:b2:79:0b:b6:b2:7a: 32:e8:4f:df:45:e9:4a:61:57:89:96:10:cd:20:51:f0:e5:a1: c3:48:b2:76:9a:00:c4:97:8a:cc:85:48:dd:c8:0c:fd:ea:ef: c2:ab:01:a3:b7:c4:79:3c:a5:66:51:06:e6:42:88:53:78:80: a9:55:b8:c6:7a:a5:6d:da:d4:cf:8a:64:8a:1f:50:5c:50:ad: 39:cb:03:5a:bb:ae:5f:7b:28:38:3b:2e:ab:6d:58:d2:af:6f: 07:30:99:ae:1f:fe:c2:16:95:21:b7:23:8f:34:3e:10:a9:cd: b9:02:02:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQ0IxMTAvBgNVBAUTKDg5NjY0MjNFRTJBNDE1NjMxRjdBRjMxNEU0RDg4NDAw N0E4NDY4QjYwHhcNMjUxMjA1MDQyMzExWhcNMjUxMjEyMDQyMzExWjAYMRYwFAYD VQQDEw02OTMyNWUyZi0zMGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0L2Gj5DhO9ynk9y3E7L6mafYfBBOHBYuDJL34UfVQWFI/RYtV2/kbtNqQmA8 LuBuSdm/WQMVx8xDFFOwXBodENsjlui5N0BNGba5uCXm4SugkSB4jj66UaLsK7bm MEwl/9h2Kuum+9InnGcMDxoEc4Jhof/Vpr4nIVYWvcVt61SbBJ8uScThdWPnogau vm4kpfILO9W1V0JN5pAcm97g+mLZ1rqc6fTf4r1u6bxt9xNAcwOvv9YYJg86Hf6N ODjVYej3o+Br7+TwWhw78/cTq4zIW2FBTH/bS9n211Qw1vsleZVPshZY5SX25W/c sV0fHkSN+VMh3GdtChHlPPteSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNo1yT6 V9SC/1I33i1Ts4x3VeBjMB8GA1UdIwQYMBaAFIlmQj7ipBVjH3rzFOTYhAB6hGi2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFDQi82NTBFNjAwQUVB NUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZXTWZldk1VNU5pRUFIcUVh TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi82NTBFNjAwQUVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZX TWZldk1VNU5pRUFIcUVhTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJGAmQF7MSRAfTn70Nf1FWzR4NCodOwKawRhX3LCrOA53XKalwMVCq Lw91IcAOyDNLf4UlnMBthuYizjnD5XVzokQadjDXDDXBX7Fk6vO69RmUDZKXONw6 xkQlwXt1rKfNBBc0ReZVJAsXyBE+besl/f5N1R3iuVncVGQSQNUmkjQr1ETeXisW n+OyeQu2snoy6E/fRelKYVeJlhDNIFHw5aHDSLJ2mgDEl4rMhUjdyAz96u/CqwGj t8R5PKVmUQbmQohTeICpVbjGeqVt2tTPimSKH1BcUK05ywNau65feyg4Oy6rbVjS r28HMJmuH/7CFpUhtyOPND4Qqc25AgJe -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:50 2025 by rpki-client