This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft File: snbxWm1Kl8SBkekr0WYfNovvIeQ.mft (raw, json) Hash identifier: 4sWF9qRQIDDIv60V+6HdBOOy3kAYQz4FScDC6IoSXw4= Subject key identifier: 86:22:72:A6:BF:DA:B7:5D:8D:F4:0A:41:6D:63:66:F4:9E:03:24:29 Authority key identifier: B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 Certificate issuer: /CN=A91B37C4/serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft Manifest number: D9 Signing time: Fri 05 Dec 2025 03:38:59 +0000 Manifest this update: Fri 05 Dec 2025 03:38:59 +0000 Manifest next update: Fri 12 Dec 2025 03:38:59 +0000 Files and hashes: 1: snbxWm1Kl8SBkekr0WYfNovvIeQ.crl (hash: Xky2L6W6JpJjoKGc2rlz9XBMKusVqJSXE/r/GjroKtY=) 2: 3E4B01008BDA11EFA4A11684C4F9AE02.roa (hash: m+cTvWrh74cJIwtxb5YNKAjFtv2dZKfs+BjQs+Q2hMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:38:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37C4, serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Validity Not Before: Dec 5 03:38:59 2025 GMT Not After : Dec 12 03:38:59 2025 GMT Subject: CN=693253d3-814a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cb:ad:f9:32:be:9d:8a:b6:29:d0:38:c1:35: e0:c2:27:02:0f:6f:0e:38:0a:c0:97:49:49:11:d8: ea:fb:7e:b6:41:97:4b:cb:86:e6:ee:cf:3b:31:83: b4:1d:41:63:c1:4e:41:91:7f:a6:a4:96:c1:cb:71: 95:15:44:7a:12:ef:c5:02:44:1a:4d:b1:ca:0c:50: 86:49:05:8a:2e:c9:95:6b:01:79:9a:96:bd:82:28: 3e:a9:e0:b0:93:60:96:83:50:c2:72:cf:6b:79:f8: fd:4d:84:30:f3:0e:ce:7b:59:6b:45:f5:49:9f:6b: a6:84:ec:cd:66:a9:63:f6:23:f3:27:7a:20:c1:7d: bc:3c:35:f0:61:8c:46:3c:a9:4f:d2:f5:d8:d2:25: 4a:03:74:6e:a9:85:bd:44:77:7c:41:af:15:96:ed: c4:6f:d8:71:8f:e5:9f:de:3c:00:e3:f2:cc:fd:6e: ad:a2:39:57:be:3e:7d:8c:e3:9e:e0:a0:f0:9a:ea: cf:cf:c9:b8:dd:4e:53:bf:da:96:29:69:ff:ac:44: 80:52:2b:62:f6:ff:d4:8e:6a:cd:7b:c0:69:43:bc: 38:56:f6:79:2a:9f:31:2a:21:4a:62:6b:1d:1c:7e: 5a:5c:58:46:ec:39:e0:1b:17:92:4a:7f:45:cf:5b: 47:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:22:72:A6:BF:DA:B7:5D:8D:F4:0A:41:6D:63:66:F4:9E:03:24:29 X509v3 Authority Key Identifier: keyid:B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:40:70:40:2d:63:06:9c:e7:27:e9:1f:1d:ed:3c:28:b5:6b: b3:6e:3c:5c:f7:8f:71:f3:96:76:f4:08:c8:dd:bd:b1:08:e3: 8d:be:a3:5b:ad:df:ae:6c:62:ec:a1:ad:0e:be:0c:cc:fc:cf: e2:c2:aa:a9:80:1d:a1:61:a8:77:ff:dc:30:b2:f1:3d:5b:36: 40:6c:69:99:de:76:1a:a6:d8:ae:3c:83:27:01:f8:70:7c:b5: 60:d0:7c:d1:ff:38:c4:49:1e:f8:28:4d:f5:a4:18:3d:b5:82: 77:df:ff:9d:89:de:4e:34:ad:0a:8c:e8:36:51:74:dd:81:a1: 42:02:6b:c9:7f:57:a4:f6:4e:66:1b:fb:d5:60:23:3c:c2:5d: e4:a8:6e:8b:bd:12:69:47:78:28:f1:06:37:52:1e:8b:aa:93: 51:23:5e:db:40:f9:57:4b:16:36:26:2b:e4:81:7b:29:b6:a3: 5d:98:13:18:b1:68:15:dd:7a:c4:e6:a9:06:42:0b:8b:c8:6c: 99:33:69:6d:a7:b7:9c:06:93:b0:67:32:2c:45:57:87:63:f6: 17:16:2f:2d:35:16:15:6c:1f:a7:4a:92:6f:1a:cc:b5:96:fa: a0:8b:3a:cb:fc:4d:26:ba:ad:ce:83:e4:4f:8c:2f:4a:4e:63: 45:ca:e1:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3QzQxMTAvBgNVBAUTKEIyNzZGMTVBNkQ0QTk3QzQ4MTkxRTkyQkQxNjYxRjM2 OEJFRjIxRTQwHhcNMjUxMjA1MDMzODU5WhcNMjUxMjEyMDMzODU5WjAYMRYwFAYD VQQDEw02OTMyNTNkMy04MTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8ut+TK+nYq2KdA4wTXgwicCD28OOArAl0lJEdjq+362QZdLy4bm7s87MYO0 HUFjwU5BkX+mpJbBy3GVFUR6Eu/FAkQaTbHKDFCGSQWKLsmVawF5mpa9gig+qeCw k2CWg1DCcs9refj9TYQw8w7Oe1lrRfVJn2umhOzNZqlj9iPzJ3ogwX28PDXwYYxG PKlP0vXY0iVKA3RuqYW9RHd8Qa8Vlu3Eb9hxj+Wf3jwA4/LM/W6tojlXvj59jOOe 4KDwmurPz8m43U5Tv9qWKWn/rESAUiti9v/UjmrNe8BpQ7w4VvZ5Kp8xKiFKYmsd HH5aXFhG7DngGxeSSn9Fz1tHvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYicqa/ 2rddjfQKQW1jZvSeAyQpMB8GA1UdIwQYMBaAFLJ28VptSpfEgZHpK9FmHzaL7yHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdDNC9BMkFCQTcyQzhC RDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4U0JrZWtyMFdZZk5vdnZJ ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NuYnhXbTFLbDhTQmtla3IwV1lmTm92dkllUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdDNC9BMkFCQTcyQzhCRDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4 U0JrZWtyMFdZZk5vdnZJZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4QHBALWMGnOcn6R8d7TwotWuzbjxc949x85Z29AjI3b2xCOONvqNb rd+ubGLsoa0OvgzM/M/iwqqpgB2hYah3/9wwsvE9WzZAbGmZ3nYaptiuPIMnAfhw fLVg0HzR/zjESR74KE31pBg9tYJ33/+did5ONK0KjOg2UXTdgaFCAmvJf1ek9k5m G/vVYCM8wl3kqG6LvRJpR3go8QY3Uh6LqpNRI17bQPlXSxY2JivkgXsptqNdmBMY sWgV3XrE5qkGQguLyGyZM2ltp7ecBpOwZzIsRVeHY/YXFi8tNRYVbB+nSpJvGsy1 lvqgizrL/E0muq3Og+RPjC9KTmNFyuEl -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:10 2025 by rpki-client