This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: VWMt42+AkxL2wLAhrFy9Iv45+JSXkpzUrrXGaB2/egM= Subject key identifier: 82:52:D8:F5:2B:12:CD:BD:0E:C1:F3:94:18:E9:F1:01:E2:E4:B0:D3 Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: 0103 Signing time: Fri 05 Dec 2025 03:08:19 +0000 Manifest this update: Fri 05 Dec 2025 03:08:19 +0000 Manifest next update: Fri 12 Dec 2025 03:08:19 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: kLpPJLEg8nvJmlS5XtlGth1zQuz6n5f/gDBdw8RGmRs=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: lZ2oQ4wvz4evXveDE7LNoYJmc6E6jg/A59sR/rYBi6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:08:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Dec 5 03:08:19 2025 GMT Not After : Dec 12 03:08:19 2025 GMT Subject: CN=69324ca3-f967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:da:af:09:d0:ac:67:06:1f:b5:f1:0f:23:d1: f6:de:cd:4a:c7:b0:c0:21:ed:d3:d3:3a:15:73:28: f8:1a:6f:3c:3c:55:7d:23:69:36:56:db:10:9d:e3: 91:4f:12:33:1d:0b:3e:cf:f5:4e:ca:76:91:21:c1: bb:62:55:37:3e:d8:26:d9:eb:e7:6d:76:42:07:e7: a6:29:a9:c2:bf:ff:ac:cf:ec:95:5a:04:a3:4b:73: 9b:97:b4:89:af:29:68:b3:d2:b2:53:2c:bc:b6:c8: 9e:24:02:ec:02:85:1e:98:53:ca:4c:35:e7:3f:19: 78:a8:60:f8:11:29:fd:2b:96:2a:b8:50:5f:cf:f3: 92:c6:83:d2:26:e0:69:ef:25:3e:fc:8a:9f:9c:a2: a1:cb:29:2d:a9:6a:d9:16:2e:d4:7b:61:2a:a3:c7: fb:a4:ca:42:9e:76:44:d6:d6:48:ca:18:02:7c:5e: 07:9e:71:78:5c:2a:a4:c7:e6:d1:9f:7d:8d:fe:16: e5:b2:17:81:de:a2:46:e8:3c:88:3d:70:a1:76:ad: d1:3a:9f:c1:6e:af:f4:f5:45:61:7e:87:8e:ba:cd: 6e:4a:9a:bf:46:47:d7:ae:70:8a:20:99:4f:ed:df: 5f:3e:07:55:6f:d6:1d:7c:2a:93:98:33:34:31:48: 87:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:52:D8:F5:2B:12:CD:BD:0E:C1:F3:94:18:E9:F1:01:E2:E4:B0:D3 X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:ef:5f:bd:8b:d3:1c:82:ec:b9:2e:be:bd:4b:96:88:d1:d2: 12:86:9f:c4:a6:ea:17:b1:e0:5f:18:52:d4:19:9e:de:05:65: 2f:4f:b1:05:c6:c7:6e:a4:4b:0f:f4:53:51:8b:98:a9:da:04: 63:c2:27:a8:66:61:9b:07:e5:0b:e5:c0:21:85:2f:53:1f:bd: a9:3f:82:7e:f1:1e:b8:bb:4e:88:29:13:5d:96:10:24:12:55: 0b:2f:b6:c5:17:66:8e:f3:f9:3c:26:65:a8:23:26:b1:63:64: e9:19:0d:5a:f7:38:ba:96:a7:f1:6b:f0:4d:29:20:3a:75:8a: f9:19:b7:cf:ff:5f:96:84:d8:ae:ef:6e:70:58:db:46:03:9f: b6:7e:8f:87:b6:06:f8:ce:3b:b2:49:40:27:56:91:56:7f:d2: 6e:10:b3:d4:51:9f:c8:5a:e2:ab:59:86:97:89:10:12:77:8e: 3d:f6:e8:69:48:ce:fa:fa:0d:76:b7:cb:78:d5:50:e4:2b:c1: a8:45:b4:36:9a:00:2f:e8:36:db:0c:04:0d:70:b5:6d:8f:35: bc:a3:d6:c2:22:81:44:bb:51:16:91:f7:c3:08:68:6d:75:91: b9:4c:ed:b9:52:23:3c:9d:46:62:8b:82:1e:a8:74:c7:5b:fe: 9f:54:aa:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjUxMjA1MDMwODE5WhcNMjUxMjEyMDMwODE5WjAYMRYwFAYD VQQDEw02OTMyNGNhMy1mOTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdqvCdCsZwYftfEPI9H23s1Kx7DAIe3T0zoVcyj4Gm88PFV9I2k2VtsQneOR TxIzHQs+z/VOynaRIcG7YlU3Ptgm2evnbXZCB+emKanCv/+sz+yVWgSjS3Obl7SJ rylos9KyUyy8tsieJALsAoUemFPKTDXnPxl4qGD4ESn9K5YquFBfz/OSxoPSJuBp 7yU+/IqfnKKhyyktqWrZFi7Ue2Eqo8f7pMpCnnZE1tZIyhgCfF4HnnF4XCqkx+bR n32N/hblsheB3qJG6DyIPXChdq3ROp/Bbq/09UVhfoeOus1uSpq/RkfXrnCKIJlP 7d9fPgdVb9YdfCqTmDM0MUiHTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJS2PUr Es29DsHzlBjp8QHi5LDTMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA871+9i9Mcguy5Lr69S5aI0dIShp/EpuoXseBfGFLUGZ7eBWUvT7EF xsdupEsP9FNRi5ip2gRjwieoZmGbB+UL5cAhhS9TH72pP4J+8R64u06IKRNdlhAk ElULL7bFF2aO8/k8JmWoIyaxY2TpGQ1a9zi6lqfxa/BNKSA6dYr5GbfP/1+WhNiu 725wWNtGA5+2fo+Htgb4zjuySUAnVpFWf9JuELPUUZ/IWuKrWYaXiRASd4499uhp SM76+g12t8t41VDkK8GoRbQ2mgAv6DbbDAQNcLVtjzW8o9bCIoFEu1EWkffDCGht dZG5TO25UiM8nUZii4IeqHTHW/6fVKrb -----END CERTIFICATE-----Generated at Sat Dec 6 16:13:13 2025 by rpki-client