This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft File: cJdlx9TTMfTDasa-NH-mah8CNJA.mft (raw, json) Hash identifier: kx3SLeaGqoVJ+vrIh0m74pr4DRTrIVe54E80/CgNo9Y= Subject key identifier: F4:6D:61:A5:C7:E0:9F:E7:90:F5:4B:46:7A:0B:1A:3E:EC:36:5F:B0 Authority key identifier: 70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 Certificate issuer: /CN=A91AE85E/serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Certificate serial: 354A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft Manifest number: 3515 Signing time: Thu 04 Dec 2025 14:17:46 +0000 Manifest this update: Thu 04 Dec 2025 14:17:45 +0000 Manifest next update: Thu 11 Dec 2025 14:17:45 +0000 Files and hashes: 1: cJdlx9TTMfTDasa-NH-mah8CNJA.crl (hash: fWDWN9VO48Z8LiNv8cs9Mo/OrfCWKlvYzQ8YX0R0B+4=) 2: 392987D254F611E79DF7E643C4F9AE02.roa (hash: Zj1VjgjescNA34ntuLagaf4Gpvf1qUoGCJyDKrDQ9CM=) 3: 09E2DC32B12B11E59337F35AC4F9AE02.roa (hash: ZsKZ4KjphdPT0jn69q25ishvkQ6ZWEITVVyaEZP50Kk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13642 (0x354a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E, serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Validity Not Before: Dec 4 14:17:45 2025 GMT Not After : Dec 11 14:17:45 2025 GMT Subject: CN=6931980a-b63c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b6:86:4f:20:26:7b:e1:23:b7:e9:26:e4:c1: 2d:84:42:84:e6:f9:32:f5:8d:c3:e5:a6:e7:1f:4f: 94:98:97:b0:f5:d8:1f:f7:1c:1f:7d:47:41:f0:05: 29:88:3f:dd:6b:47:d2:74:14:22:6c:dc:d2:87:d0: 92:96:f5:5a:3c:fd:ef:76:7b:77:92:52:ca:6c:86: 7c:11:7b:f1:1b:c4:19:e1:1b:e7:b2:41:08:e4:b2: da:7b:8a:36:48:92:04:38:f1:82:18:2d:53:a5:9a: 2b:9f:a4:03:fe:f6:c8:d4:28:f6:94:1a:31:6e:f3: 5c:dc:d8:bd:f2:9f:fe:8f:3c:19:a2:fa:ae:14:67: 3a:08:93:2b:44:82:87:ce:9b:82:51:8f:28:58:04: 61:00:0f:fa:f7:fd:99:31:35:9b:28:c5:0c:74:36: 52:cc:04:0c:29:68:ec:ff:6f:bc:33:8d:18:9d:89: 13:a2:c1:66:50:ea:45:a8:f9:bb:26:db:c1:b5:eb: 12:66:46:b2:33:88:a7:5d:99:51:26:a2:d8:64:1f: 31:75:f7:89:7b:b1:5b:02:17:ae:b1:17:93:90:5c: 42:a3:cb:5b:ab:0b:54:d7:1b:7d:b3:3b:17:a4:cf: 98:8c:0c:e8:82:24:b2:d5:f7:cf:88:28:dd:8f:76: d4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:6D:61:A5:C7:E0:9F:E7:90:F5:4B:46:7A:0B:1A:3E:EC:36:5F:B0 X509v3 Authority Key Identifier: keyid:70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:a0:01:58:1e:1d:23:2a:b8:11:a3:3e:8c:d9:33:9a:97:c1: 2f:da:3c:82:3d:e5:f2:3b:6a:32:ce:b2:d6:18:1e:4c:a7:e3: 6a:e4:c7:fa:35:fc:30:c4:cf:cc:c5:53:a9:b8:93:ae:51:08: 9a:96:27:c1:f5:45:c9:ce:4e:34:6e:6a:6a:37:28:cb:7d:2a: 7f:86:82:e2:03:0a:9f:93:fc:65:75:ab:33:52:d0:5c:10:99: d8:5a:47:3d:65:fc:86:b0:f1:28:3f:e0:17:f4:3e:be:0e:41: 7c:f5:13:d1:80:33:61:fe:38:9b:07:76:15:82:c5:bd:66:7e: c4:ed:b2:ea:da:06:ed:a4:b5:f8:f5:a2:76:f9:4b:d4:48:22: 3e:4d:7e:d8:66:01:ab:d6:76:09:cb:5c:ab:69:97:0a:9b:c5: 96:4c:ac:56:79:d2:ca:95:13:80:4a:e2:a4:fd:c6:63:e4:10: fb:30:52:c8:7f:9c:17:32:79:a8:f3:59:fd:8d:44:d4:64:20: 15:9b:38:ef:58:2c:bc:87:18:08:22:90:e0:8c:ab:2c:61:8f: 77:80:09:0f:64:e0:78:71:ca:07:6a:25:6d:76:24:52:2d:6c: c7:a4:99:1a:0d:e3:af:25:c4:5f:c2:52:ea:11:9b:8e:c0:f1: a8:73:20:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDcwOTc2NUM3RDREMzMxRjRDMzZBQzZCRTM0N0ZBNjZB MUYwMjM0OTAwHhcNMjUxMjA0MTQxNzQ1WhcNMjUxMjExMTQxNzQ1WjAYMRYwFAYD VQQDEw02OTMxOTgwYS1iNjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7aGTyAme+Ejt+km5MEthEKE5vky9Y3D5abnH0+UmJew9dgf9xwffUdB8AUp iD/da0fSdBQibNzSh9CSlvVaPP3vdnt3klLKbIZ8EXvxG8QZ4RvnskEI5LLae4o2 SJIEOPGCGC1TpZorn6QD/vbI1Cj2lBoxbvNc3Ni98p/+jzwZovquFGc6CJMrRIKH zpuCUY8oWARhAA/69/2ZMTWbKMUMdDZSzAQMKWjs/2+8M40YnYkTosFmUOpFqPm7 JtvBtesSZkayM4inXZlRJqLYZB8xdfeJe7FbAheusReTkFxCo8tbqwtU1xt9szsX pM+YjAzogiSy1ffPiCjdj3bUQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRtYaXH 4J/nkPVLRnoLGj7sNl+wMB8GA1UdIwQYMBaAFHCXZcfU0zH0w2rGvjR/pmofAjSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8wQkVEMzUyNjFE NkUxMUUyQjA0QTYxQUYwOEIwMkNEMi9jSmRseDlUVE1mVERhc2EtTkgtbWFoOENO SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKZGx4OVRUTWZURGFzYS1OSC1tYWg4Q05KQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTg1RS8wQkVEMzUyNjFENkUxMUUyQjA0QTYxQUYwOEIwMkNEMi9jSmRseDlUVE1m VERhc2EtTkgtbWFoOENOSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApoAFYHh0jKrgRoz6M2TOal8Ev2jyCPeXyO2oyzrLWGB5Mp+Nq5Mf6 NfwwxM/MxVOpuJOuUQialifB9UXJzk40bmpqNyjLfSp/hoLiAwqfk/xldaszUtBc EJnYWkc9ZfyGsPEoP+AX9D6+DkF89RPRgDNh/jibB3YVgsW9Zn7E7bLq2gbtpLX4 9aJ2+UvUSCI+TX7YZgGr1nYJy1yraZcKm8WWTKxWedLKlROASuKk/cZj5BD7MFLI f5wXMnmo81n9jUTUZCAVmzjvWCy8hxgIIpDgjKssYY93gAkPZOB4ccoHaiVtdiRS LWzHpJkaDeOvJcRfwlLqEZuOwPGocyC0 -----END CERTIFICATE-----Generated at Sat Dec 6 13:35:40 2025 by rpki-client