This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft File: iPsdIcuIPJfCmst31NaIhLOnpgg.mft (raw, json) Hash identifier: dou05/b8bszebhcFLjOjw5b2sR+XGHA1llO7shNkjSw= Subject key identifier: A5:B7:F3:5E:7A:43:3B:C6:13:3B:EF:C2:35:51:30:79:60:64:85:3D Authority key identifier: 88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 Certificate issuer: /CN=A91B6A04/serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft Manifest number: 07 Signing time: Fri 05 Dec 2025 05:53:55 +0000 Manifest this update: Fri 05 Dec 2025 05:53:55 +0000 Manifest next update: Fri 12 Dec 2025 05:53:55 +0000 Files and hashes: 1: iPsdIcuIPJfCmst31NaIhLOnpgg.crl (hash: OojbPMpxTkLu9tKPQKB3hFHLENl4O8PdkYgvhIpPf2Q=) 2: 8D7D3942C9AE11F0A867D348C4F9AE02.roa (hash: f6LJ1o+/HlkVTaZ1lRAj/+eYOJXKRmJ8r7oZSOqaeL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6A04, serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Validity Not Before: Dec 5 05:53:55 2025 GMT Not After : Dec 12 05:53:55 2025 GMT Subject: CN=69327373-b367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:08:ac:22:0e:ba:fb:66:8f:8e:fd:f5:aa:9f: 73:3a:a6:59:06:98:71:32:ba:8a:92:e6:aa:ea:b7: 08:f5:a0:44:ac:dc:41:54:d5:88:40:f0:9c:a2:f5: 51:86:3c:97:6a:cd:49:20:45:e3:04:e0:a1:5f:f9: f0:53:30:13:f5:c0:21:13:2c:04:3c:43:cb:87:57: 73:71:54:a9:80:62:3f:e1:21:56:c0:6b:0f:20:54: e4:c5:22:b1:f4:52:b6:1c:33:65:a4:a9:94:bf:9d: a8:f4:11:72:37:bb:69:c4:9f:4d:10:65:34:54:2d: 69:61:fa:5d:18:7e:37:97:54:01:a7:4b:83:88:45: 52:90:73:a2:ea:67:08:af:6a:4d:9d:26:4e:59:ed: 65:1c:8b:1d:99:4c:8c:72:d1:06:23:59:10:04:82: 75:8e:c4:c4:5f:51:ec:a3:1c:94:dc:e3:f6:ec:62: b1:b5:3d:7f:c1:8c:3e:ec:e3:45:fb:cc:7e:69:6e: 10:36:4b:27:43:34:00:9c:df:33:06:11:31:24:bb: 23:f6:8a:e3:35:b9:cf:58:45:12:e6:96:85:b2:83: 1f:52:6e:8d:4c:5c:0c:d6:65:fa:85:58:f3:10:47: d2:79:b9:b7:d3:74:b3:89:65:79:1d:62:75:2e:9a: aa:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B7:F3:5E:7A:43:3B:C6:13:3B:EF:C2:35:51:30:79:60:64:85:3D X509v3 Authority Key Identifier: keyid:88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:42:2a:53:7b:d3:23:96:7e:4c:1b:d0:e5:a3:20:7e:75:b1: b6:e4:d7:19:3b:1f:8a:ed:0c:26:50:c2:41:d3:8b:4f:3c:55: e6:16:6f:92:a7:86:94:e4:30:57:34:f3:3a:9c:8b:7f:25:9a: 93:8b:6b:b9:2f:18:4c:70:e3:42:80:4f:ea:09:c9:c4:cf:11: 7b:f6:f4:35:30:03:28:eb:59:64:34:0a:0f:79:55:3f:95:c3: 4d:a6:50:35:13:ee:4a:2d:d1:c7:16:93:64:57:3c:3c:47:f7: a6:cc:a2:18:be:05:47:d2:d0:cb:00:60:f5:49:ec:d1:43:85: 07:12:55:41:f3:a4:b1:6d:eb:b6:bc:d8:68:66:a6:c8:18:53: 97:6d:94:47:a0:20:06:92:9b:96:9d:47:ac:69:b8:5d:57:87: bf:b5:a7:5d:0b:69:a9:94:f3:42:9e:6b:de:6f:6d:36:d4:62: 0d:47:72:51:8a:b8:2e:3c:e2:7c:97:0e:5c:5e:1e:10:40:15: 76:51:de:65:8e:ac:a6:42:a1:70:ac:f4:37:ba:e0:e7:2d:d8: b0:ba:3c:c9:d5:89:8f:4e:83:5c:ab:c5:45:b1:ef:73:6a:02: 80:1f:0e:8b:ea:69:78:c1:f6:88:90:1c:65:11:c8:64:c0:4f: e6:9a:50:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkEwNDExMC8GA1UEBRMoODhGQjFEMjFDQjg4M0M5N0MyOUFDQjc3RDRENjg4ODRC M0E3QTYwODAeFw0yNTEyMDUwNTUzNTVaFw0yNTEyMTIwNTUzNTVaMBgxFjAUBgNV BAMTDTY5MzI3MzczLWIzNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtCKwiDrr7Zo+O/fWqn3M6plkGmHEyuoqS5qrqtwj1oESs3EFU1YhA8Jyi9VGG PJdqzUkgReME4KFf+fBTMBP1wCETLAQ8Q8uHV3NxVKmAYj/hIVbAaw8gVOTFIrH0 UrYcM2WkqZS/naj0EXI3u2nEn00QZTRULWlh+l0YfjeXVAGnS4OIRVKQc6LqZwiv ak2dJk5Z7WUcix2ZTIxy0QYjWRAEgnWOxMRfUeyjHJTc4/bsYrG1PX/BjD7s40X7 zH5pbhA2SydDNACc3zMGETEkuyP2iuM1uc9YRRLmloWygx9Sbo1MXAzWZfqFWPMQ R9J5ubfTdLOJZXkdYnUumqrlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpbfzXnpD O8YTO+/CNVEweWBkhT0wHwYDVR0jBBgwFoAUiPsdIcuIPJfCmst31NaIhLOnpggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QTA0LzI1QzUyNzdFQzlB RTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpmQ21zdDMxTmFJaExPbnBn Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaVBzZEljdUlQSmZDbXN0MzFOYUloTE9ucGdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 QTA0LzI1QzUyNzdFQzlBRTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpm Q21zdDMxTmFJaExPbnBnZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGRCKlN70yOWfkwb0OWjIH51sbbk1xk7H4rtDCZQwkHTi088VeYWb5Kn hpTkMFc08zqci38lmpOLa7kvGExw40KAT+oJycTPEXv29DUwAyjrWWQ0Cg95VT+V w02mUDUT7kot0ccWk2RXPDxH96bMohi+BUfS0MsAYPVJ7NFDhQcSVUHzpLFt67a8 2GhmpsgYU5dtlEegIAaSm5adR6xpuF1Xh7+1p10LaamU80Kea95vbTbUYg1HclGK uC484nyXDlxeHhBAFXZR3mWOrKZCoXCs9De64Oct2LC6PMnViY9Og1yrxUWx73Nq AoAfDovqaXjB9oiQHGURyGTAT+aaUPA= -----END CERTIFICATE-----Generated at Sat Dec 6 14:54:23 2025 by rpki-client