This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: MTkYaiW5Jftuu3yw9UsGfMeU2Nq67KjsH9JYS+bvrUQ= Subject key identifier: 45:35:AD:3F:D7:F1:E6:5F:08:C1:F4:13:85:3D:0A:A7:99:1E:04:08 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 023E Signing time: Fri 05 Dec 2025 00:12:14 +0000 Manifest this update: Fri 05 Dec 2025 00:12:13 +0000 Manifest next update: Fri 12 Dec 2025 00:12:13 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: N6pAiDkUfgF254SMa79RzrFZXQNYLNyI2N7aFEoeATQ=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: tX50rThQWeAbKIESIwrC0zdSKgD+i4OgX2qNIGi6fqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Dec 5 00:12:13 2025 GMT Not After : Dec 12 00:12:13 2025 GMT Subject: CN=6932235e-b86d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:31:a4:77:d3:f6:0d:a1:95:3c:4c:8b:b9:1a: b9:1e:0c:9a:b4:a5:da:de:01:d4:1b:f2:c3:ba:6f: 22:65:2c:bf:f7:07:01:74:59:ea:11:2c:bd:96:35: a9:dd:6c:3a:92:90:6e:69:b5:c1:a8:24:21:ef:72: 18:64:6d:bb:3e:e0:33:95:ea:b1:65:08:3c:64:b5: ab:ff:f5:04:68:63:78:06:7b:84:70:50:35:3e:22: ef:77:b8:7e:2c:f2:b6:21:3c:12:1d:23:74:52:b4: 89:ed:74:4d:5f:17:7e:9c:20:2c:50:35:7b:74:a4: b0:61:3d:a2:26:1e:12:e3:a6:8f:d0:3c:2a:2a:f0: a7:b7:6c:39:1d:c9:ad:1e:47:21:64:49:7d:81:4a: 0a:55:5c:66:f5:33:fd:bc:62:d9:4d:05:69:4d:e7: 5b:46:30:50:ef:f1:04:b8:92:cb:6b:39:58:f6:c1: 30:8e:2f:35:b5:78:b6:2c:fc:be:25:39:e3:a9:fe: d6:53:3f:8d:59:29:48:f6:c0:49:85:76:8a:72:e1: bf:a9:bd:ce:08:8d:34:10:c6:cf:22:8d:9d:27:eb: 10:58:da:10:a9:37:d4:dc:28:04:c7:bf:18:1e:5c: 99:af:3a:55:cd:b8:22:4b:61:75:1f:8f:7a:c5:d8: d4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:35:AD:3F:D7:F1:E6:5F:08:C1:F4:13:85:3D:0A:A7:99:1E:04:08 X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:6e:5d:ad:de:c4:d7:f9:7d:b7:9d:67:0b:60:1b:0a:b3:e0: ef:ec:4e:63:c3:78:e9:cc:9a:a9:12:de:6d:ad:69:04:d7:40: c2:ee:ea:c9:f0:4c:21:b1:d2:7f:0e:d4:79:2d:f9:6c:c0:17: 4a:e6:e5:89:54:b6:e7:d7:e7:68:2d:c0:bd:19:02:a8:fc:5d: d1:9e:53:cb:04:8a:f3:33:78:5b:c3:23:44:16:55:b2:70:10: 0a:eb:72:93:40:cd:45:78:9a:ad:5b:50:cc:70:1e:ae:a5:f0: 62:69:56:90:b1:14:50:f8:7b:3d:51:9c:00:ce:5b:8a:cb:6e: 5e:1d:44:64:49:e6:03:3a:be:22:d0:47:e9:32:d0:86:4c:fc: 3f:e4:a4:7f:c2:1e:7b:6e:d9:1b:d2:19:0f:9a:21:39:24:40: 6c:c1:45:ac:6e:59:ec:76:37:43:80:23:b6:0a:87:af:f4:38: 52:38:82:7f:4a:79:32:e8:4e:04:0c:0e:e8:f4:07:5f:46:f4: 7a:ec:81:67:3e:46:db:40:fa:6c:31:1b:54:e2:ed:c8:ec:cd: 5f:fb:17:6c:a3:9e:85:5c:f3:82:82:e9:68:a5:be:f6:73:68: 0d:8b:70:5d:a0:9a:6f:76:17:7d:d1:be:3a:40:c5:d7:49:e3: 3a:b2:55:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjUxMjA1MDAxMjEzWhcNMjUxMjEyMDAxMjEzWjAYMRYwFAYD VQQDEw02OTMyMjM1ZS1iODZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DGkd9P2DaGVPEyLuRq5HgyatKXa3gHUG/LDum8iZSy/9wcBdFnqESy9ljWp 3Ww6kpBuabXBqCQh73IYZG27PuAzleqxZQg8ZLWr//UEaGN4BnuEcFA1PiLvd7h+ LPK2ITwSHSN0UrSJ7XRNXxd+nCAsUDV7dKSwYT2iJh4S46aP0DwqKvCnt2w5Hcmt HkchZEl9gUoKVVxm9TP9vGLZTQVpTedbRjBQ7/EEuJLLazlY9sEwji81tXi2LPy+ JTnjqf7WUz+NWSlI9sBJhXaKcuG/qb3OCI00EMbPIo2dJ+sQWNoQqTfU3CgEx78Y HlyZrzpVzbgiS2F1H496xdjUjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEU1rT/X 8eZfCMH0E4U9CqeZHgQIMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvbl2t3sTX+X23nWcLYBsKs+Dv7E5jw3jpzJqpEt5trWkE10DC7urJ 8EwhsdJ/DtR5LflswBdK5uWJVLbn1+doLcC9GQKo/F3RnlPLBIrzM3hbwyNEFlWy cBAK63KTQM1FeJqtW1DMcB6upfBiaVaQsRRQ+Hs9UZwAzluKy25eHURkSeYDOr4i 0EfpMtCGTPw/5KR/wh57btkb0hkPmiE5JEBswUWsblnsdjdDgCO2Coev9DhSOIJ/ Snky6E4EDA7o9AdfRvR67IFnPkbbQPpsMRtU4u3I7M1f+xdso56FXPOCgulopb72 c2gNi3BdoJpvdhd90b46QMXXSeM6slUb -----END CERTIFICATE-----Generated at Sun Dec 7 01:41:30 2025 by rpki-client