This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft File: md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft (raw, json) Hash identifier: fCn6UEmY+kXRcqcly/lOA+6B16Tn6PDItYCTis0xQ9w= Subject key identifier: F7:26:71:C6:1C:7E:BA:11:B7:5E:C7:4C:8C:4F:A3:84:25:5A:27:B1 Authority key identifier: 99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D Certificate issuer: /CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Certificate serial: 17CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft Manifest number: 1C2F Signing time: Thu 04 Dec 2025 16:14:49 +0000 Manifest this update: Thu 04 Dec 2025 16:14:49 +0000 Manifest next update: Thu 11 Dec 2025 16:14:49 +0000 Files and hashes: 1: md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl (hash: YNL+tWpPoXDangA2u8PAUX6iZlypUIz9qSmdqkO/kuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:14:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6092 (0x17cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B08F7, serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Validity Not Before: Dec 4 16:14:49 2025 GMT Not After : Dec 11 16:14:49 2025 GMT Subject: CN=6931b379-747d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4f:f6:dc:b8:e2:5a:b0:9f:91:18:c2:27:be: 75:c4:80:8f:20:f2:5e:e8:ba:35:82:a1:33:39:5d: 0b:a1:b8:2e:2d:eb:3e:23:9a:59:05:7c:8a:8b:77: 16:8b:d4:d7:17:79:75:98:fa:ba:10:8a:22:34:af: 3b:0a:22:27:8d:fe:80:63:4b:a6:06:1c:fd:ad:d6: eb:d4:f7:13:ff:a3:23:17:38:2d:9f:54:4b:47:1d: 59:27:9c:5b:49:0c:ac:31:20:b9:ce:f2:70:94:50: 98:70:e4:c1:d6:37:77:bd:7b:88:52:f7:81:0e:6f: 2c:c9:54:30:1a:5e:05:d2:25:fc:04:c3:d2:61:8a: 67:cd:1a:f9:54:06:8b:f2:d3:c0:33:f5:28:bb:29: c3:6e:3a:b0:e0:f5:de:6e:4f:b8:73:79:43:96:65: 14:a8:c2:03:e1:a3:8e:78:1b:99:62:02:0c:bb:bf: 1d:c5:b0:87:8e:f3:e6:0d:ab:fd:80:8a:c1:eb:ab: 97:15:74:51:3a:d2:79:f2:5d:eb:68:33:e6:08:08: 34:c7:32:4b:37:95:c1:e0:a9:b8:a5:ef:a3:1a:f3: dd:76:b4:52:21:3b:a5:5f:d4:0b:55:a7:df:a5:1c: 69:a8:ab:a9:ea:97:b4:30:c4:27:ca:1d:34:7b:11: 40:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:26:71:C6:1C:7E:BA:11:B7:5E:C7:4C:8C:4F:A3:84:25:5A:27:B1 X509v3 Authority Key Identifier: keyid:99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:d6:d8:d6:2a:ea:1b:2f:87:33:53:05:c1:29:c0:9b:0e:e2: 6b:eb:1b:5b:a6:d7:ce:30:54:e9:88:7d:96:5b:e9:f8:93:1a: 58:43:a2:e0:a3:d4:5b:02:c8:8a:62:2a:1a:f9:c2:f5:16:c4: d0:7f:67:f1:c3:21:f0:5d:79:52:f8:3d:a4:20:14:5f:19:e0: 70:5e:be:96:ec:39:e5:dc:c3:80:26:ac:c7:0f:68:23:2c:5e: 8e:f6:cf:f6:b0:a1:4d:75:49:f6:2f:f2:82:cf:89:66:3c:85: ae:28:65:0e:36:72:05:de:14:53:96:4a:9f:16:1e:56:2f:a3: ce:ae:63:7e:a4:ee:69:8b:de:27:5a:78:ff:d5:53:48:31:af: cf:b7:ec:36:91:4f:8f:44:19:fc:a6:c3:83:d4:d5:f6:75:33: 61:01:4a:af:56:43:1d:53:78:d8:30:df:0c:13:fd:49:b9:7a: 5e:4a:db:31:e9:b0:e1:9c:ee:63:e4:85:4d:d6:d5:ae:bf:b1: b9:38:e8:d3:df:79:bc:6e:7e:2c:f0:9a:f1:4f:8e:41:2c:33: 6a:76:d4:06:a9:f1:db:43:bf:07:4d:b6:dd:9c:6a:c9:bf:48: 9f:ad:87:f1:b7:1e:12:94:b1:19:9e:14:69:40:57:4d:1e:bd: e2:8c:05:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA4RjcxMTAvBgNVBAUTKDk5REUyQzM3RDFBNjJCQThCOTdCNUExQ0ZEMkNEMjk0 MEIwRDREMEQwHhcNMjUxMjA0MTYxNDQ5WhcNMjUxMjExMTYxNDQ5WjAYMRYwFAYD VQQDEw02OTMxYjM3OS03NDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0/23LjiWrCfkRjCJ751xICPIPJe6Lo1gqEzOV0LobguLes+I5pZBXyKi3cW i9TXF3l1mPq6EIoiNK87CiInjf6AY0umBhz9rdbr1PcT/6MjFzgtn1RLRx1ZJ5xb SQysMSC5zvJwlFCYcOTB1jd3vXuIUveBDm8syVQwGl4F0iX8BMPSYYpnzRr5VAaL 8tPAM/UouynDbjqw4PXebk+4c3lDlmUUqMID4aOOeBuZYgIMu78dxbCHjvPmDav9 gIrB66uXFXRROtJ58l3raDPmCAg0xzJLN5XB4Km4pe+jGvPddrRSITulX9QLVaff pRxpqKup6pe0MMQnyh00exFAKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcmccYc froRt17HTIxPo4QlWiexMB8GA1UdIwQYMBaAFJneLDfRpiuouXtaHP0s0pQLDU0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDhGNy80NzE0MzgwQUQ1 OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2aTVlMW9jX1N6U2xBc05U UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kNHNOOUdtSzZpNWUxb2NfU3pTbEFzTlRRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2 aTVlMW9jX1N6U2xBc05UUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi1tjWKuobL4czUwXBKcCbDuJr6xtbptfOMFTpiH2WW+n4kxpYQ6Lg o9RbAsiKYioa+cL1FsTQf2fxwyHwXXlS+D2kIBRfGeBwXr6W7Dnl3MOAJqzHD2gj LF6O9s/2sKFNdUn2L/KCz4lmPIWuKGUONnIF3hRTlkqfFh5WL6POrmN+pO5pi94n Wnj/1VNIMa/Pt+w2kU+PRBn8psOD1NX2dTNhAUqvVkMdU3jYMN8ME/1JuXpeStsx 6bDhnO5j5IVN1tWuv7G5OOjT33m8bn4s8JrxT45BLDNqdtQGqfHbQ78HTbbdnGrJ v0ifrYfxtx4SlLEZnhRpQFdNHr3ijAXu -----END CERTIFICATE-----Generated at Sat Dec 6 17:28:43 2025 by rpki-client