This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: LLPDkLUMISSAKwg5ABjR1o+aCmDaq4nydSmSHmYCiRo= Subject key identifier: 6F:13:7A:15:04:BB:BE:DF:B8:D9:CF:CD:EA:36:F4:2B:01:00:E9:BD Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 0A19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 09F4 Signing time: Thu 04 Dec 2025 19:10:21 +0000 Manifest this update: Thu 04 Dec 2025 19:10:20 +0000 Manifest next update: Thu 11 Dec 2025 19:10:20 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: AAV68ZcjYFrVkAkFQH5NMKdEXtT2blIpR9KYIqgCR/k=) 2: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: vvb4CejOVJri8OIdHwWGwZEAuucKhYGTP+ke3m07dcM=) 3: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: MvhHzk/9f8tTuJ4ji5wkdvYja5PdDGGnrgSYFLH3YU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2585 (0xa19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Dec 4 19:10:20 2025 GMT Not After : Dec 11 19:10:20 2025 GMT Subject: CN=6931dc9d-3aec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:88:3a:7b:94:db:33:da:6c:27:c4:15:85:d4: f9:91:2f:89:b8:ef:09:4b:94:4c:13:b9:80:b6:41: 0b:53:51:0c:d2:60:6c:d1:6e:97:5e:36:5c:d3:c4: 3b:ec:4a:cf:12:74:ed:57:fb:1c:23:66:e3:a0:50: 01:89:1d:e8:79:95:5d:ac:e5:0c:16:59:d0:2d:45: 79:2d:e3:fa:48:9c:41:e1:9b:be:ec:09:28:a4:69: 20:a7:38:f9:cb:39:6a:61:1a:7b:77:39:85:a9:de: 9f:f7:bb:64:16:7c:56:a4:6e:29:e2:9d:28:25:e4: 26:d6:02:58:c4:d0:bd:85:61:d3:41:11:0f:6e:1a: 9d:9a:b6:32:ce:a1:a1:76:e8:15:44:18:1c:bd:38: 2f:74:4e:e6:17:81:fe:8d:68:6e:b5:1a:79:de:47: 83:57:51:94:c3:ca:19:03:d3:d2:bf:9d:0b:91:aa: 8b:8f:90:a1:32:b5:e8:ff:aa:a5:3e:bd:87:fe:ca: 55:b7:42:4c:89:73:3d:9b:31:84:3f:ec:e9:0a:da: 8b:0d:23:27:e6:ee:ac:2a:b9:44:2c:0d:d7:70:c9: 3f:3c:1f:09:69:56:e6:56:13:e8:bb:1a:89:3b:a1: 01:16:a4:60:cf:fd:df:e1:56:9a:23:a5:b4:6a:f8: 34:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:13:7A:15:04:BB:BE:DF:B8:D9:CF:CD:EA:36:F4:2B:01:00:E9:BD X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:2b:12:9f:23:99:b7:78:26:3c:0e:6c:27:05:cf:1f:c6:1e: 6c:04:37:bb:02:3c:6e:d2:9b:82:33:7e:07:82:ae:57:80:1c: 37:e8:06:e0:f7:45:1d:bc:68:87:f4:db:2b:90:4f:d3:05:d8: 66:47:cd:9c:a7:16:e5:1a:12:2d:5f:db:43:58:68:3a:c0:3a: b9:c1:1e:c0:6c:b0:b8:be:5c:45:5f:97:7c:08:22:9b:9d:16: 83:a6:5e:f4:a2:f1:d3:39:d6:ce:05:04:33:63:89:6d:8d:12: a5:2e:c3:53:90:ed:4c:b9:5f:15:27:29:22:92:71:0b:55:19: ea:4c:c4:65:da:08:e5:b1:da:48:72:c0:c8:ac:19:48:34:9f: 6f:1f:25:42:fd:d0:53:e7:43:b0:7e:aa:90:a2:4c:59:ad:9a: 3e:2b:bf:63:a5:00:19:5b:42:2c:36:97:3b:20:b0:e0:00:d3: 46:45:6f:38:f8:91:0c:d9:0d:5f:94:e9:74:d8:92:a6:32:11: a6:0b:98:73:7e:1d:c3:ec:bd:be:1d:c4:00:76:c6:bf:0e:99: 1d:53:3a:19:db:c5:fe:48:a7:4f:7c:e5:51:92:b0:ab:f9:4e: 41:d0:98:ff:61:d1:c2:db:f3:ea:7e:b3:0f:26:a8:2e:a2:18: 54:b5:b3:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjUxMjA0MTkxMDIwWhcNMjUxMjExMTkxMDIwWjAYMRYwFAYD VQQDEw02OTMxZGM5ZC0zYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4g6e5TbM9psJ8QVhdT5kS+JuO8JS5RME7mAtkELU1EM0mBs0W6XXjZc08Q7 7ErPEnTtV/scI2bjoFABiR3oeZVdrOUMFlnQLUV5LeP6SJxB4Zu+7AkopGkgpzj5 yzlqYRp7dzmFqd6f97tkFnxWpG4p4p0oJeQm1gJYxNC9hWHTQREPbhqdmrYyzqGh dugVRBgcvTgvdE7mF4H+jWhutRp53keDV1GUw8oZA9PSv50LkaqLj5ChMrXo/6ql Pr2H/spVt0JMiXM9mzGEP+zpCtqLDSMn5u6sKrlELA3XcMk/PB8JaVbmVhPouxqJ O6EBFqRgz/3f4VaaI6W0avg0FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8TehUE u77fuNnPzeo29CsBAOm9MB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArKxKfI5m3eCY8DmwnBc8fxh5sBDe7Ajxu0puCM34Hgq5XgBw36Abg 90UdvGiH9NsrkE/TBdhmR82cpxblGhItX9tDWGg6wDq5wR7AbLC4vlxFX5d8CCKb nRaDpl70ovHTOdbOBQQzY4ltjRKlLsNTkO1MuV8VJykiknELVRnqTMRl2gjlsdpI csDIrBlINJ9vHyVC/dBT50OwfqqQokxZrZo+K79jpQAZW0IsNpc7ILDgANNGRW84 +JEM2Q1flOl02JKmMhGmC5hzfh3D7L2+HcQAdsa/DpkdUzoZ28X+SKdPfOVRkrCr +U5B0Jj/YdHC2/PqfrMPJqguohhUtbPz -----END CERTIFICATE-----Generated at Sat Dec 6 13:56:02 2025 by rpki-client