This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft File: d324l0Vw6bbATiZX5tClA3xxiGs.mft (raw, json) Hash identifier: I7wFFjKEnpDfGNgDwahlFzOj/xQW3zCyFA8ppa0U68k= Subject key identifier: B6:75:78:60:5C:E2:58:B0:73:EE:50:2A:A8:49:91:56:46:A5:E3:82 Authority key identifier: 77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B Certificate issuer: /CN=A91AF207/serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft Manifest number: B0 Signing time: Fri 05 Dec 2025 04:05:13 +0000 Manifest this update: Fri 05 Dec 2025 04:05:12 +0000 Manifest next update: Fri 12 Dec 2025 04:05:12 +0000 Files and hashes: 1: d324l0Vw6bbATiZX5tClA3xxiGs.crl (hash: NYX6xdqvuDjaylg9HceHST2NoXZlLPzO9sVGyCQt9JA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF207, serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Validity Not Before: Dec 5 04:05:12 2025 GMT Not After : Dec 12 04:05:12 2025 GMT Subject: CN=693259f9-7da7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a5:45:96:f2:66:52:b0:cf:75:2c:28:18:f7: f9:ee:1a:79:b9:a6:2b:d4:0e:1f:fb:d5:94:a4:9f: 9e:bb:47:13:9f:dd:36:63:b4:dc:ac:ea:29:3c:ca: b3:ee:50:02:3b:04:ea:c1:47:d8:a3:c6:35:2d:fb: cb:8b:bf:62:a3:8c:8a:53:27:9d:c5:6d:4c:91:1e: 1f:6a:75:81:45:d0:f4:2c:09:c1:f1:7d:22:a7:4c: 7a:a3:83:ae:5c:a6:fa:a7:61:49:4c:86:48:98:a5: 0d:85:79:75:ae:8d:f5:91:97:3e:c5:a8:df:7f:25: 43:ae:13:c7:30:54:a3:ce:7c:71:8b:5a:35:61:72: ae:36:3c:b1:04:4b:1d:ed:3a:52:e0:cc:7d:e2:35: 7d:29:07:b4:74:d4:ba:b2:5f:e8:9f:c3:7c:ad:32: 9e:36:33:22:19:5c:6a:c1:60:98:6f:39:2a:1f:c8: 74:11:a3:f2:7f:e2:c7:e6:95:9a:62:5b:0d:3e:3b: 32:9a:7e:12:d2:27:99:93:a0:08:5a:54:fa:69:53: 84:a3:e8:1b:a1:65:ea:eb:4c:ed:e6:a0:09:91:3e: 4e:63:ed:3c:eb:d4:b1:79:26:76:fb:ad:16:b6:26: c6:d7:66:e0:be:b2:0e:85:4c:2b:77:80:53:a9:7d: 11:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:75:78:60:5C:E2:58:B0:73:EE:50:2A:A8:49:91:56:46:A5:E3:82 X509v3 Authority Key Identifier: keyid:77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ba:32:b6:03:33:d6:7e:69:f3:e7:0d:04:01:fe:14:7f:24: 78:a9:06:a2:6b:95:05:d8:ba:75:4d:1a:a7:0e:42:99:1c:8b: 6d:42:0c:b1:91:f3:21:46:61:97:de:bd:68:e8:c4:38:a5:e7: 86:bd:9a:c2:d9:5b:f7:08:0b:6d:29:b0:8d:7e:6c:36:6e:87: 31:11:10:b5:c7:40:9e:fe:24:d5:eb:e5:94:71:cd:f3:52:72: bd:c0:e2:39:3f:1b:c3:07:39:81:6d:42:14:09:41:44:f2:c6: 63:7a:dc:b8:31:5e:2e:9b:3e:3e:93:74:91:3a:67:b7:09:80: 62:ac:9d:05:74:c3:ff:02:14:eb:89:43:d2:9e:aa:b3:40:70: 17:91:45:9e:0d:d1:d1:6e:27:bd:ff:d2:ef:17:c6:5c:b3:fb: 41:b5:f5:e5:dd:71:8e:b6:a9:9c:72:46:3f:17:7b:bc:93:c2: 3a:f4:44:ed:19:f9:fd:88:01:45:63:e6:1c:70:c8:1e:fc:11: f5:b2:ae:ba:33:3c:60:4d:1b:86:0e:31:da:4a:14:d5:8e:68: cc:fa:7b:8a:9c:b4:2e:28:01:04:79:6b:8c:c0:0b:4c:a3:d6: 44:37:ff:9b:9e:e6:7a:05:db:f2:81:09:61:d4:8a:72:ee:d3: 5f:e4:36:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyMDcxMTAvBgNVBAUTKDc3N0RCODk3NDU3MEU5QjZDMDRFMjY1N0U2RDBBNTAz N0M3MTg4NkIwHhcNMjUxMjA1MDQwNTEyWhcNMjUxMjEyMDQwNTEyWjAYMRYwFAYD VQQDEw02OTMyNTlmOS03ZGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaVFlvJmUrDPdSwoGPf57hp5uaYr1A4f+9WUpJ+eu0cTn902Y7TcrOopPMqz 7lACOwTqwUfYo8Y1LfvLi79io4yKUyedxW1MkR4fanWBRdD0LAnB8X0ip0x6o4Ou XKb6p2FJTIZImKUNhXl1ro31kZc+xajffyVDrhPHMFSjznxxi1o1YXKuNjyxBEsd 7TpS4Mx94jV9KQe0dNS6sl/on8N8rTKeNjMiGVxqwWCYbzkqH8h0EaPyf+LH5pWa YlsNPjsymn4S0ieZk6AIWlT6aVOEo+gboWXq60zt5qAJkT5OY+0869SxeSZ2+60W tibG12bgvrIOhUwrd4BTqX0R2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZ1eGBc 4liwc+5QKqhJkVZGpeOCMB8GA1UdIwQYMBaAFHd9uJdFcOm2wE4mV+bQpQN8cYhr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjIwNy9CNDg4NjFDNkMy MjgxMUVGODZFMzQ4NEZDNEY5QUUwMi9kMzI0bDBWdzZiYkFUaVpYNXRDbEEzeHhp R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzMjRsMFZ3NmJiQVRpWlg1dENsQTN4eGlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjIwNy9CNDg4NjFDNkMyMjgxMUVGODZFMzQ4NEZDNEY5QUUwMi9kMzI0bDBWdzZi YkFUaVpYNXRDbEEzeHhpR3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgujK2AzPWfmnz5w0EAf4UfyR4qQaia5UF2Lp1TRqnDkKZHIttQgyx kfMhRmGX3r1o6MQ4peeGvZrC2Vv3CAttKbCNfmw2bocxERC1x0Ce/iTV6+WUcc3z UnK9wOI5PxvDBzmBbUIUCUFE8sZjety4MV4umz4+k3SROme3CYBirJ0FdMP/AhTr iUPSnqqzQHAXkUWeDdHRbie9/9LvF8Zcs/tBtfXl3XGOtqmcckY/F3u8k8I69ETt Gfn9iAFFY+YccMge/BH1sq66MzxgTRuGDjHaShTVjmjM+nuKnLQuKAEEeWuMwAtM o9ZEN/+bnuZ6BdvygQlh1Ipy7tNf5DYQ -----END CERTIFICATE-----Generated at Sat Dec 6 19:37:03 2025 by rpki-client