This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: XoXtibyS5VlMGcn9tPlrnw7A/Fg10s4b8H6XSsvdXfM= Subject key identifier: E7:FA:94:AE:60:13:9F:EC:1D:71:FE:92:46:3A:7F:54:4F:06:4C:3B Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 02D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 02D4 Signing time: Thu 04 Dec 2025 23:44:08 +0000 Manifest this update: Thu 04 Dec 2025 23:44:07 +0000 Manifest next update: Thu 11 Dec 2025 23:44:07 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: 9S3pUKI38nijwdeW000fgxO+FjUcyIvqWZy8vm51fSQ=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: vW2EZP2Cwb4m+zHwX4dxc62MHLuj24Kv3gEJBseD9aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 729 (0x2d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1, serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: Dec 4 23:44:07 2025 GMT Not After : Dec 11 23:44:07 2025 GMT Subject: CN=69321cc8-9366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:be:1c:09:4c:bb:65:7f:a4:c4:4c:d5:cf: c2:e5:6a:3f:65:b6:e7:8d:e6:ca:dd:b7:dc:33:21: c2:34:0e:00:79:52:f4:7c:bc:74:bc:d0:fd:ca:d7: 67:e4:88:89:60:a1:37:56:1a:b3:70:81:61:96:ba: b7:f3:65:c9:f7:79:e9:f6:b3:80:7a:7a:79:e5:4d: e1:86:7a:29:78:d2:39:3d:6a:41:9c:63:ca:e5:3e: 94:da:07:50:67:38:d3:df:b6:bf:59:b0:08:fb:85: 49:4e:78:52:92:86:ff:0e:94:70:f4:48:cd:c2:2a: f4:d3:59:97:0b:67:a4:6d:2c:e0:c5:84:3c:fe:b7: 74:92:92:4c:c8:71:a6:c3:23:55:93:56:4e:05:21: cd:41:be:a0:c2:55:3f:4a:b3:53:22:47:f4:81:35: be:aa:5d:c3:f1:93:b6:59:d7:96:9c:ad:05:e2:ac: 9e:ba:64:9b:d5:7e:e3:0c:3b:f0:f5:81:e2:18:c9: 17:9b:0b:54:87:45:2e:0b:c0:b7:96:33:8a:5d:6a: cc:bf:99:69:bf:70:39:de:2c:89:8f:e8:ce:e9:d5: 2b:f4:b5:c2:3b:e4:8d:8b:11:13:8e:d5:ec:70:18: de:24:82:bb:c3:62:90:e6:cd:0c:14:65:88:6d:02: 9e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FA:94:AE:60:13:9F:EC:1D:71:FE:92:46:3A:7F:54:4F:06:4C:3B X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:03:f1:0e:73:f4:5d:0e:db:57:dc:d2:a3:e1:9d:65:d7:5e: 9e:77:fd:4e:f6:ee:e8:b4:1f:f8:98:84:90:ce:f8:b2:4c:09: e7:49:0c:48:5b:59:84:89:74:ab:2f:af:1d:a1:3b:ac:8f:c5: 9b:9f:8c:c9:3f:e5:18:76:33:84:22:fe:23:51:1e:77:03:ae: 17:34:64:91:d4:b2:2f:2d:96:0e:bc:6c:24:c9:fc:a4:f0:4c: be:96:d7:24:7e:4c:35:be:46:89:1c:f3:73:f6:a8:1c:41:a9: a5:df:a6:83:d3:fd:44:1d:4b:b3:b6:c0:9b:87:b9:f0:58:ad: f2:eb:4d:e3:f6:fe:13:d5:3c:0c:d0:de:be:3f:c2:b5:35:4c: 26:60:18:5b:32:7b:08:53:92:fe:9c:99:6b:71:d5:d4:d6:18: ae:de:bf:cf:ba:ba:6b:ec:63:2a:11:da:b3:1a:22:7c:b2:2f: 8b:cb:2e:3d:8c:c7:32:a5:71:5a:a0:f8:af:f1:b9:59:f7:b1: af:b0:06:4f:25:e9:bd:6a:f2:6a:72:46:58:a8:04:89:49:01: ef:2e:1d:8e:20:18:ea:05:9c:af:2d:6a:ad:3c:c1:f3:dd:ad: fc:93:c5:f9:4a:30:fc:f3:91:2e:ff:cb:47:05:10:7b:b3:08: 46:f9:1b:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjUxMjA0MjM0NDA3WhcNMjUxMjExMjM0NDA3WjAYMRYwFAYD VQQDEw02OTMyMWNjOC05MzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Aa+HAlMu2V/pMRM1c/C5Wo/ZbbnjebK3bfcMyHCNA4AeVL0fLx0vND9ytdn 5IiJYKE3VhqzcIFhlrq382XJ93np9rOAenp55U3hhnopeNI5PWpBnGPK5T6U2gdQ ZzjT37a/WbAI+4VJTnhSkob/DpRw9EjNwir001mXC2ekbSzgxYQ8/rd0kpJMyHGm wyNVk1ZOBSHNQb6gwlU/SrNTIkf0gTW+ql3D8ZO2WdeWnK0F4qyeumSb1X7jDDvw 9YHiGMkXmwtUh0UuC8C3ljOKXWrMv5lpv3A53iyJj+jO6dUr9LXCO+SNixETjtXs cBjeJIK7w2KQ5s0MFGWIbQKe9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOf6lK5g E5/sHXH+kkY6f1RPBkw7MB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMA/EOc/RdDttX3NKj4Z1l116ed/1O9u7otB/4mISQzviyTAnnSQxI W1mEiXSrL68doTusj8Wbn4zJP+UYdjOEIv4jUR53A64XNGSR1LIvLZYOvGwkyfyk 8Ey+ltckfkw1vkaJHPNz9qgcQaml36aD0/1EHUuztsCbh7nwWK3y603j9v4T1TwM 0N6+P8K1NUwmYBhbMnsIU5L+nJlrcdXU1hiu3r/Purpr7GMqEdqzGiJ8si+Lyy49 jMcypXFaoPiv8blZ97GvsAZPJem9avJqckZYqASJSQHvLh2OIBjqBZyvLWqtPMHz 3a38k8X5SjD885Eu/8tHBRB7swhG+RtW -----END CERTIFICATE-----Generated at Sat Dec 6 17:26:38 2025 by rpki-client