This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft File: ROq4zxyb1totteNCtBx0fuOkUF8.mft (raw, json) Hash identifier: PtMyxFpIA7kKbZWCOTJAwYA1gjjSXSbCBs0EUJe8fsE= Subject key identifier: 6B:2E:F8:81:1D:3B:38:7C:03:A9:3F:98:A5:87:E4:F6:26:63:BE:4C Authority key identifier: 44:EA:B8:CF:1C:9B:D6:DA:2D:B5:E3:42:B4:1C:74:7E:E3:A4:50:5F Certificate issuer: /CN=A91B00B6/serialNumber=44EAB8CF1C9BD6DA2DB5E342B41C747EE3A4505F Certificate serial: 0A68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft Manifest number: 0A62 Signing time: Thu 04 Dec 2025 18:56:14 +0000 Manifest this update: Thu 04 Dec 2025 18:56:14 +0000 Manifest next update: Thu 11 Dec 2025 18:56:14 +0000 Files and hashes: 1: ROq4zxyb1totteNCtBx0fuOkUF8.crl (hash: x5Rg4vEDGUczv6MbQrTFqgOn5uMOe74u6jOTuUJ1iCM=) 2: 800EC4AE756F11EAAA2E0F6CC4F9AE02.roa (hash: yZGCclZoBxnBhfhgaEtvdMtpamiVGJaHMeM0i3edazA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.crl rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2664 (0xa68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B00B6, serialNumber=44EAB8CF1C9BD6DA2DB5E342B41C747EE3A4505F Validity Not Before: Dec 4 18:56:14 2025 GMT Not After : Dec 11 18:56:14 2025 GMT Subject: CN=6931d94e-e31d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:72:01:70:38:f3:6c:17:e2:a6:cd:06:9d:38: 1c:96:da:2a:b9:63:c3:c3:88:5c:53:d9:d1:c7:8e: e5:e7:56:e5:5b:6a:8b:cf:e4:bb:68:55:d5:c4:2e: d3:43:da:fe:22:71:e5:72:d9:ae:86:b7:de:b7:48: c4:f0:1e:24:77:9a:f1:11:da:22:7a:e7:f4:07:d3: fe:dd:e5:79:c1:d5:c4:8f:4b:d0:0e:92:54:fa:55: 98:4c:86:50:23:b7:34:2c:60:66:c9:a0:4e:35:d4: 71:60:c2:37:ee:95:91:0e:6b:ee:06:7f:78:84:3d: ad:ab:95:a8:ce:43:f5:23:78:28:e3:74:82:a8:26: 28:93:82:28:60:b3:10:bd:30:1d:21:aa:eb:da:6a: 4a:b5:a8:85:e0:ff:62:41:6f:e7:5a:e1:67:1d:c1: 49:a8:61:0a:1c:44:4b:84:e8:f7:e2:d1:25:da:47: 6b:5f:58:31:d3:99:39:44:e4:c5:89:81:a9:6c:0f: dd:dd:a2:16:cf:87:f5:77:76:d4:b8:2a:e1:b9:73: 7a:4c:84:86:94:14:73:de:f3:f6:56:80:c2:7f:25: 08:83:fe:a9:17:11:22:99:1e:11:d7:41:53:ec:c6: 01:d5:10:5a:ab:46:f5:81:ec:53:71:c9:67:95:d1: 97:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2E:F8:81:1D:3B:38:7C:03:A9:3F:98:A5:87:E4:F6:26:63:BE:4C X509v3 Authority Key Identifier: keyid:44:EA:B8:CF:1C:9B:D6:DA:2D:B5:E3:42:B4:1C:74:7E:E3:A4:50:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:24:c6:5a:fa:66:0d:ca:d3:32:4a:f4:f1:df:aa:7d:f0:dc: 45:a9:de:2c:52:93:b4:e2:82:30:9a:e9:51:3f:e9:4d:07:13: c0:93:00:6e:59:bd:e8:dd:84:37:c6:73:c8:82:a3:c5:e8:e7: 23:a0:0e:96:1a:02:ca:5d:f9:c4:f0:fc:9a:78:4d:de:95:fc: a7:1a:5c:91:24:7c:e1:93:33:2f:f4:63:d1:29:6a:ce:73:34: e8:71:3c:b6:f0:92:e2:c7:a3:ba:90:ee:1c:f2:2b:84:d2:f4: 70:b7:54:35:13:82:cf:44:8e:d6:0d:a7:26:9c:78:6e:31:5b: c2:93:6c:b6:7a:fd:ae:4b:05:d8:ac:75:68:28:c7:d2:61:d2: 0e:1e:0c:d2:41:88:39:f8:a3:ef:aa:fb:c9:9c:9f:cf:f3:0d: 59:ad:ae:3a:90:f5:aa:49:43:29:8c:44:6b:57:e2:97:be:ec: d7:53:dd:9c:64:5a:2d:cc:69:1b:4a:85:42:0d:f9:0f:44:e9: 73:8d:40:f8:7b:49:a2:3b:2f:fc:49:5c:28:83:4b:d0:91:ca: 5b:4c:de:d4:b4:be:38:08:28:c8:2f:ed:80:4c:78:ef:7a:68: 90:51:b2:d3:d2:e9:4f:2c:5e:24:84:a7:98:06:1b:ad:ca:cb: 0e:f6:fd:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwQjYxMTAvBgNVBAUTKDQ0RUFCOENGMUM5QkQ2REEyREI1RTM0MkI0MUM3NDdF RTNBNDUwNUYwHhcNMjUxMjA0MTg1NjE0WhcNMjUxMjExMTg1NjE0WjAYMRYwFAYD VQQDEw02OTMxZDk0ZS1lMzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnIBcDjzbBfips0GnTgcltoquWPDw4hcU9nRx47l51blW2qLz+S7aFXVxC7T Q9r+InHlctmuhrfet0jE8B4kd5rxEdoieuf0B9P+3eV5wdXEj0vQDpJU+lWYTIZQ I7c0LGBmyaBONdRxYMI37pWRDmvuBn94hD2tq5WozkP1I3go43SCqCYok4IoYLMQ vTAdIarr2mpKtaiF4P9iQW/nWuFnHcFJqGEKHERLhOj34tEl2kdrX1gx05k5ROTF iYGpbA/d3aIWz4f1d3bUuCrhuXN6TISGlBRz3vP2VoDCfyUIg/6pFxEimR4R10FT 7MYB1RBaq0b1gexTcclnldGXAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGsu+IEd Ozh8A6k/mKWH5PYmY75MMB8GA1UdIwQYMBaAFETquM8cm9baLbXjQrQcdH7jpFBf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDBCNi85RjlBRjdBODc1 NkUxMUVBOTkxNDIzNkJDNEY5QUUwMi9ST3E0enh5YjF0b3R0ZU5DdEJ4MGZ1T2tV RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JPcTR6eHliMXRvdHRlTkN0QngwZnVPa1VGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDBCNi85RjlBRjdBODc1NkUxMUVBOTkxNDIzNkJDNEY5QUUwMi9ST3E0enh5YjF0 b3R0ZU5DdEJ4MGZ1T2tVRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfJMZa+mYNytMySvTx36p98NxFqd4sUpO04oIwmulRP+lNBxPAkwBu Wb3o3YQ3xnPIgqPF6OcjoA6WGgLKXfnE8PyaeE3elfynGlyRJHzhkzMv9GPRKWrO czTocTy28JLix6O6kO4c8iuE0vRwt1Q1E4LPRI7WDacmnHhuMVvCk2y2ev2uSwXY rHVoKMfSYdIOHgzSQYg5+KPvqvvJnJ/P8w1Zra46kPWqSUMpjERrV+KXvuzXU92c ZFotzGkbSoVCDfkPROlzjUD4e0miOy/8SVwog0vQkcpbTN7UtL44CCjIL+2ATHjv emiQUbLT0ulPLF4khKeYBhutyssO9v3I -----END CERTIFICATE-----Generated at Sat Dec 6 17:28:48 2025 by rpki-client