This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: H7roXaPCBZufdKMHyFCMkKI5ml2/OV5FzqRFz6jJ7iA= Subject key identifier: 51:AD:F9:36:6F:F0:C3:33:32:DD:42:E7:14:4C:DA:BD:B8:6C:20:70 Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 02D6 Signing time: Sat 06 Dec 2025 23:54:16 +0000 Manifest this update: Sat 06 Dec 2025 23:54:16 +0000 Manifest next update: Sat 13 Dec 2025 23:54:15 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: XYRwiLrd+WYI99PPYYMSoMR5OUK7MSTwxNVg5Nw5qvo=) 2: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: 8I7nPLTDeVoMhzykvcKCBL+451nr6Q9YVLjV2hOP4JE=) 3: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: FBxr1bp/bDFsO8jlJkOCsgnIk2eezT2CPgOBlkwcWnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Dec 6 23:54:16 2025 GMT Not After : Dec 13 23:54:15 2025 GMT Subject: CN=6934c228-d2df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e1:fd:d4:cb:42:f3:ce:b6:63:9b:7e:32:fd: e6:15:36:39:e4:cd:b9:5b:eb:d4:64:df:49:f6:45: d1:41:f6:8d:69:a8:1b:2b:fa:d4:d9:fd:48:8a:3f: 36:47:88:56:12:ac:60:17:ba:03:d6:d4:b2:c2:a3: 48:b7:a1:0d:c1:6d:c1:97:95:99:3a:8e:cd:cf:28: 69:64:38:b9:e8:72:81:85:ab:be:81:ee:0c:96:9f: 49:3a:97:72:51:27:43:71:a4:b5:99:4b:27:be:68: 28:59:3d:1f:d3:a3:36:31:7c:1b:14:8e:82:b4:e8: 32:f4:eb:9d:93:a5:5c:10:a3:f7:18:17:2e:99:f4: 1c:f6:8f:ec:fa:11:6a:65:54:c1:cc:25:8f:22:48: 2a:ad:a6:39:cd:d8:25:b8:e1:71:b8:c8:5a:41:28: de:96:c3:c6:cb:f5:8c:59:e9:eb:21:95:a1:69:32: b9:71:48:cc:9d:c2:79:07:5e:b6:bd:4d:10:23:65: b3:6b:03:12:f0:14:d7:12:c7:61:3c:97:88:79:15: b2:d0:fb:f9:cf:c3:61:da:c1:1f:3b:b7:00:b3:f8: 19:63:e6:ea:8f:1d:13:b9:d3:1c:63:bd:93:0e:fc: bf:5f:6e:20:60:0a:48:eb:01:43:4b:3e:a8:7e:cf: d5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:AD:F9:36:6F:F0:C3:33:32:DD:42:E7:14:4C:DA:BD:B8:6C:20:70 X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:57:de:25:1d:19:6b:a6:7e:fb:7d:9a:57:1a:70:00:31:af: 93:3f:8f:17:a1:d3:64:61:fc:19:95:e0:29:d9:ca:0d:83:e8: 28:28:e5:f0:89:d5:9e:d7:d8:92:a5:5c:35:c1:11:3e:47:68: 16:55:f4:09:78:38:f9:22:d2:11:13:ff:9a:72:21:9f:4c:31: b2:ae:e4:74:22:ee:ed:95:d7:d3:f9:ed:c1:f9:32:e3:e9:cb: df:06:f5:7e:07:73:64:88:8b:36:b4:77:f9:58:27:e7:99:ea: d2:12:43:fc:c4:97:cf:44:0d:5e:4d:bc:e8:77:a4:68:ee:ca: 7c:95:c5:33:3c:9c:54:4e:c6:1e:eb:2a:b1:8e:3b:a2:8a:57: 4c:24:e1:82:a7:4d:13:03:9d:c3:f0:50:fa:e8:1c:aa:44:41: 57:76:44:99:52:69:8b:31:1a:ba:75:74:b1:cb:c7:b3:d7:4c: 3d:bc:a0:cb:6d:59:e4:77:4a:0a:28:d4:3c:32:b4:70:e4:ed: 2a:80:10:2e:6e:d1:2c:d2:63:95:d6:3b:ab:ce:00:b0:56:18: 52:59:8c:aa:32:88:0c:d6:2a:7c:d5:9e:2d:b5:0e:68:fa:82: bd:8e:91:e6:b1:09:87:94:5e:a2:ab:29:9e:57:ba:92:66:ab: 95:16:81:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjUxMjA2MjM1NDE2WhcNMjUxMjEzMjM1NDE1WjAYMRYwFAYD VQQDEw02OTM0YzIyOC1kMmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7eH91MtC8862Y5t+Mv3mFTY55M25W+vUZN9J9kXRQfaNaagbK/rU2f1Iij82 R4hWEqxgF7oD1tSywqNIt6ENwW3Bl5WZOo7NzyhpZDi56HKBhau+ge4Mlp9JOpdy USdDcaS1mUsnvmgoWT0f06M2MXwbFI6CtOgy9Oudk6VcEKP3GBcumfQc9o/s+hFq ZVTBzCWPIkgqraY5zdgluOFxuMhaQSjelsPGy/WMWenrIZWhaTK5cUjMncJ5B162 vU0QI2WzawMS8BTXEsdhPJeIeRWy0Pv5z8Nh2sEfO7cAs/gZY+bqjx0TudMcY72T Dvy/X24gYApI6wFDSz6ofs/VRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGt+TZv 8MMzMt1C5xRM2r24bCBwMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJV94lHRlrpn77fZpXGnAAMa+TP48XodNkYfwZleAp2coNg+goKOXw idWe19iSpVw1wRE+R2gWVfQJeDj5ItIRE/+aciGfTDGyruR0Iu7tldfT+e3B+TLj 6cvfBvV+B3NkiIs2tHf5WCfnmerSEkP8xJfPRA1eTbzod6Ro7sp8lcUzPJxUTsYe 6yqxjjuiildMJOGCp00TA53D8FD66ByqREFXdkSZUmmLMRq6dXSxy8ez10w9vKDL bVnkd0oKKNQ8MrRw5O0qgBAubtEs0mOV1jurzgCwVhhSWYyqMogM1ip81Z4ttQ5o +oK9jpHmsQmHlF6iqymeV7qSZquVFoEq -----END CERTIFICATE-----Generated at Sun Dec 7 05:11:41 2025 by rpki-client