This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft File: f_xaKedfnr4HnQUkfw3_DPmH8cI.mft (raw, json) Hash identifier: F+hsJK5o7nQBkBeohfHnPqqVPxxNZsvkp3TqJXHgo+o= Subject key identifier: 57:9C:45:19:83:A6:2F:48:39:BE:96:80:5F:24:24:1E:82:A3:51:A1 Authority key identifier: 7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 Certificate issuer: /CN=A91B4C67/serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Certificate serial: 34E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft Manifest number: 34E6 Signing time: Thu 04 Dec 2025 14:56:23 +0000 Manifest this update: Thu 04 Dec 2025 14:56:22 +0000 Manifest next update: Thu 11 Dec 2025 14:56:22 +0000 Files and hashes: 1: f_xaKedfnr4HnQUkfw3_DPmH8cI.crl (hash: Qer8dL0QyRBdYAczDuxPZKqhArv15vWNpKMnOiaxCF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:56:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13542 (0x34e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C67, serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Validity Not Before: Dec 4 14:56:22 2025 GMT Not After : Dec 11 14:56:22 2025 GMT Subject: CN=6931a117-d323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:da:df:ee:1b:96:3d:a9:ac:2d:02:12:28:af: 5b:ab:ca:f7:b1:5f:e5:f3:f0:69:ac:0d:ee:16:b1: b6:30:13:04:c1:4e:c3:ac:0c:36:7e:00:8c:0c:52: f1:c5:2d:ee:24:b5:c4:4c:e4:16:97:41:fe:75:f2: 9b:15:23:13:9a:1e:35:7e:0f:36:48:11:94:58:55: bc:14:d5:db:79:f3:16:9a:4a:39:27:84:f1:0e:77: 3f:57:b0:3e:88:40:fa:7d:6f:3f:54:ba:c8:12:fe: 38:8a:ed:4b:a4:b2:5c:03:7e:95:95:f3:14:8d:56: ab:be:6f:05:44:d8:6d:c3:40:98:99:f5:f4:e4:bb: dd:0b:b5:05:9c:b4:ae:64:64:bd:21:e0:16:29:87: 35:0a:c3:02:9d:de:1e:21:b5:90:46:ec:35:e0:0b: b6:15:33:bc:9f:4d:e7:65:43:5c:df:86:26:42:90: c5:65:7e:6e:36:0b:c3:cf:e0:2a:e9:f9:98:dd:4e: 5f:d3:6c:d6:c1:1b:63:d8:95:70:10:e7:90:28:ba: b4:70:de:49:2e:41:03:bf:fd:b7:76:d6:7a:1e:19: 9d:f8:09:c5:fd:db:3c:f0:14:a6:4b:55:74:45:3c: 86:a0:f8:f2:6c:ba:28:63:0a:d9:bf:0d:7a:cd:80: ce:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:9C:45:19:83:A6:2F:48:39:BE:96:80:5F:24:24:1E:82:A3:51:A1 X509v3 Authority Key Identifier: keyid:7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:08:6e:65:72:09:b8:97:81:c0:48:bb:c0:e0:7e:c4:0d:c9: 76:d7:46:b4:f8:c2:e9:4f:47:76:e2:ef:fd:99:9f:26:c9:28: 50:55:a4:cf:af:5a:1b:76:2b:db:37:e7:bf:5c:09:1e:8f:c0: 91:6b:8c:e0:6c:ff:a5:65:65:2a:af:73:db:13:8c:89:26:6a: 0d:b8:22:42:1f:de:14:2b:a4:ed:e8:55:ce:64:4e:91:e2:5a: f1:68:4a:ed:08:47:9a:0b:e4:02:e9:76:5e:df:aa:81:a5:3a: c7:a2:08:c6:6a:1e:3e:4f:53:52:56:1f:93:19:3b:28:40:21: 1d:57:f2:ca:69:26:35:7c:32:94:71:6c:ce:64:be:86:79:a0: 53:e3:88:6b:eb:d3:fa:15:0c:0f:22:53:81:12:c2:5a:8a:56: 7a:59:33:0a:a5:aa:19:43:bd:9a:a6:3e:f4:d5:ad:62:76:4c: 37:35:0d:5c:71:dd:ec:28:76:6c:d8:96:dc:ba:56:23:80:6a: b0:8a:d8:0e:73:f5:57:68:5f:ae:bb:44:ce:ee:e1:2d:db:68: a8:c4:9f:08:92:d2:91:67:b4:13:26:cc:cb:e3:46:ef:e9:02: ce:9e:b9:14:48:1b:51:d5:4d:2d:36:08:f3:5f:2d:c8:e9:a2: 2d:fa:81:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDNjcxMTAvBgNVBAUTKDdGRkM1QTI5RTc1RjlFQkUwNzlEMDUyNDdGMERGRjBD Rjk4N0YxQzIwHhcNMjUxMjA0MTQ1NjIyWhcNMjUxMjExMTQ1NjIyWjAYMRYwFAYD VQQDEw02OTMxYTExNy1kMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdrf7huWPamsLQISKK9bq8r3sV/l8/BprA3uFrG2MBMEwU7DrAw2fgCMDFLx xS3uJLXETOQWl0H+dfKbFSMTmh41fg82SBGUWFW8FNXbefMWmko5J4TxDnc/V7A+ iED6fW8/VLrIEv44iu1LpLJcA36VlfMUjVarvm8FRNhtw0CYmfX05LvdC7UFnLSu ZGS9IeAWKYc1CsMCnd4eIbWQRuw14Au2FTO8n03nZUNc34YmQpDFZX5uNgvDz+Aq 6fmY3U5f02zWwRtj2JVwEOeQKLq0cN5JLkEDv/23dtZ6Hhmd+AnF/ds88BSmS1V0 RTyGoPjybLooYwrZvw16zYDOEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFecRRmD pi9IOb6WgF8kJB6Co1GhMB8GA1UdIwQYMBaAFH/8WinnX56+B50FJH8N/wz5h/HC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEM2Ny9CRjNGQzJGQTFE QTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5yNEhuUVVrZnczX0RQbUg4 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeGFLZWRmbnI0SG5RVWtmdzNfRFBtSDhjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEM2Ny9CRjNGQzJGQTFEQTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5y NEhuUVVrZnczX0RQbUg4Y0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBECG5lcgm4l4HASLvA4H7EDcl210a0+MLpT0d24u/9mZ8myShQVaTP r1obdivbN+e/XAkej8CRa4zgbP+lZWUqr3PbE4yJJmoNuCJCH94UK6Tt6FXOZE6R 4lrxaErtCEeaC+QC6XZe36qBpTrHogjGah4+T1NSVh+TGTsoQCEdV/LKaSY1fDKU cWzOZL6GeaBT44hr69P6FQwPIlOBEsJailZ6WTMKpaoZQ72apj701a1idkw3NQ1c cd3sKHZs2JbculYjgGqwitgOc/VXaF+uu0TO7uEt22ioxJ8IktKRZ7QTJszL40bv 6QLOnrkUSBtR1U0tNgjzXy3I6aIt+oGs -----END CERTIFICATE-----Generated at Sat Dec 6 16:07:02 2025 by rpki-client