This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft File: cNpFkZHpBoa9sKxHq9owqcPhdPo.mft (raw, json) Hash identifier: 6s9FnW2qEbhJ5FQOOOP/NqGMrZUNBjYBqQE7uJwTHXA= Subject key identifier: 50:70:FB:4E:B3:60:E4:E8:3B:A7:8F:8F:8A:30:EF:46:75:47:0C:85 Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft Manifest number: 01BE Signing time: Fri 05 Dec 2025 01:23:11 +0000 Manifest this update: Fri 05 Dec 2025 01:23:10 +0000 Manifest next update: Fri 12 Dec 2025 01:23:10 +0000 Files and hashes: 1: cNpFkZHpBoa9sKxHq9owqcPhdPo.crl (hash: Mx38MxDnua7XBNT1M2QTEO3CbJqmCp9ZwtbsfLEcZD8=) 2: 43E9CB90DFF511EF8E4E3982C4F9AE02.roa (hash: d0hrWabvEDExci5t6WU7rsD4gdFR7O4tRXZR37UM1GQ=) 3: 971B23D236EA11EE802E9246C4F9AE02.roa (hash: UyfMMb1+MxfY9sz24UI+SyQxwGOXE8nJHXlCf8yhy2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF145, serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Validity Not Before: Dec 5 01:23:10 2025 GMT Not After : Dec 12 01:23:10 2025 GMT Subject: CN=693233fe-484b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e5:06:96:02:ee:64:aa:a6:31:5e:44:82:f1: 4e:62:83:57:8f:ee:94:68:e1:bb:21:c4:44:99:96: 6a:c7:ec:93:6b:82:33:d4:d0:91:68:a4:f3:5f:7e: f6:8c:d1:d7:6e:c3:82:b2:84:e9:4f:20:93:c5:90: 68:1d:6e:62:c8:c2:f0:3d:b7:c4:e3:a5:8e:36:4d: 5b:65:b0:92:f8:83:4c:97:6e:12:d6:1c:3d:bb:e5: 5a:cd:8e:fb:e0:2f:e7:87:74:4e:1c:88:37:31:7f: 09:86:4b:64:59:a3:0c:ff:1f:da:e4:22:d0:6c:d2: 01:2d:59:af:db:5d:bd:26:7d:47:08:01:4e:29:de: 97:8b:da:a9:8f:eb:be:8d:99:2a:4e:da:69:09:ce: ad:db:11:72:84:13:d5:bd:84:e1:6f:da:e7:09:b2: f3:7b:e3:b3:24:8e:df:26:38:ad:2e:3c:0c:a9:79: ab:3d:00:df:ef:b2:ef:b4:f8:31:55:b5:e3:4d:21: 0c:8e:90:73:45:2f:90:96:94:a7:0c:8d:cd:0e:0a: 2b:d9:3c:44:4d:98:28:66:18:e2:49:cb:fc:ca:9c: db:5f:1f:24:ec:ac:4a:ed:b6:f6:ed:1c:cf:2f:41: eb:d8:0c:f7:90:09:cc:ac:5c:1f:0a:e1:2d:c7:bc: c9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:70:FB:4E:B3:60:E4:E8:3B:A7:8F:8F:8A:30:EF:46:75:47:0C:85 X509v3 Authority Key Identifier: keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:81:a9:14:32:a2:1e:a3:23:22:92:3f:5a:be:90:5a:e8:ab: c7:83:c9:39:27:10:35:2b:35:e6:b8:a2:c7:1a:46:b3:d0:cc: 36:63:2e:44:8c:5d:9c:7e:1d:3d:96:ae:9b:99:f3:d1:ab:ad: 70:f8:a2:07:1f:9c:85:6c:e6:05:cf:06:56:97:04:d9:46:83: 58:a2:0a:56:04:44:b0:31:60:45:b7:c1:e6:8c:fe:5e:c2:50: e0:d4:1f:78:50:0a:14:cb:a9:71:62:d9:cf:36:8e:77:56:50: 93:0e:59:36:ea:fb:bb:fd:a2:cd:59:69:ec:9e:4c:18:63:1e: 94:72:b6:44:45:0b:5c:a0:b8:ac:79:69:08:a8:f4:b1:00:92: 69:56:f3:d3:cd:c1:4d:a4:dd:78:1b:52:75:91:3a:52:d0:bb: 0d:ec:7d:91:96:c9:d0:a7:51:24:b9:a7:4f:86:0a:03:02:17: 79:8a:29:54:db:60:6e:8a:02:af:eb:1d:2c:91:31:22:6e:f3: 52:10:63:72:f5:62:96:31:89:a0:3a:f1:98:81:64:59:25:43: c0:56:32:d3:97:f8:83:98:36:18:be:10:a8:1a:e8:69:d6:12: a6:8e:4f:ba:79:cd:25:8d:c3:14:a1:7d:84:d0:a9:c3:4e:29: 15:5a:07:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxNDUxMTAvBgNVBAUTKDcwREE0NTkxOTFFOTA2ODZCREIwQUM0N0FCREEzMEE5 QzNFMTc0RkEwHhcNMjUxMjA1MDEyMzEwWhcNMjUxMjEyMDEyMzEwWjAYMRYwFAYD VQQDEw02OTMyMzNmZS00ODRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOUGlgLuZKqmMV5EgvFOYoNXj+6UaOG7IcREmZZqx+yTa4Iz1NCRaKTzX372 jNHXbsOCsoTpTyCTxZBoHW5iyMLwPbfE46WONk1bZbCS+INMl24S1hw9u+VazY77 4C/nh3ROHIg3MX8JhktkWaMM/x/a5CLQbNIBLVmv2129Jn1HCAFOKd6Xi9qpj+u+ jZkqTtppCc6t2xFyhBPVvYThb9rnCbLze+OzJI7fJjitLjwMqXmrPQDf77LvtPgx VbXjTSEMjpBzRS+QlpSnDI3NDgor2TxETZgoZhjiScv8ypzbXx8k7KxK7bb27RzP L0Hr2Az3kAnMrFwfCuEtx7zJOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBw+06z YOToO6ePj4ow70Z1RwyFMB8GA1UdIwQYMBaAFHDaRZGR6QaGvbCsR6vaMKnD4XT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE0NS8yNzgwNzNDRTM2 RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJvYTlzS3hIcTlvd3FjUGhk UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOcEZrWkhwQm9hOXNLeEhxOW93cWNQaGRQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE0NS8yNzgwNzNDRTM2RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJv YTlzS3hIcTlvd3FjUGhkUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHgakUMqIeoyMikj9avpBa6KvHg8k5JxA1KzXmuKLHGkaz0Mw2Yy5E jF2cfh09lq6bmfPRq61w+KIHH5yFbOYFzwZWlwTZRoNYogpWBESwMWBFt8HmjP5e wlDg1B94UAoUy6lxYtnPNo53VlCTDlk26vu7/aLNWWnsnkwYYx6UcrZERQtcoLis eWkIqPSxAJJpVvPTzcFNpN14G1J1kTpS0LsN7H2RlsnQp1EkuadPhgoDAhd5iilU 22BuigKv6x0skTEibvNSEGNy9WKWMYmgOvGYgWRZJUPAVjLTl/iDmDYYvhCoGuhp 1hKmjk+6ec0ljcMUoX2E0KnDTikVWgek -----END CERTIFICATE-----Generated at Sat Dec 6 23:02:43 2025 by rpki-client