This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: 3L8bcx1Pj1xB9/kPXIIJATgNNt614fpvVRcW01rFFHs= Subject key identifier: F9:1A:9D:0A:71:19:33:C9:36:DC:8A:9D:68:90:D2:6E:C4:DA:32:28 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0CB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0CA6 Signing time: Sat 06 Dec 2025 17:42:15 +0000 Manifest this update: Sat 06 Dec 2025 17:42:14 +0000 Manifest next update: Sat 13 Dec 2025 17:42:14 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: ex9ZOeTrErNp4uhcr28Y+WPMLo4+I6glee9FA8ZZLMg=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3248 (0xcb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Dec 6 17:42:14 2025 GMT Not After : Dec 13 17:42:14 2025 GMT Subject: CN=69346af7-41ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:77:c0:7c:b2:39:8c:f2:b3:de:92:b8:67:dd: e6:be:d5:c5:a5:d4:1b:d0:b6:1c:5b:2e:e3:d0:79: 48:eb:f7:9f:d2:d6:b8:36:e9:0c:4d:e5:2c:be:a2: 8c:83:2c:86:f5:ad:bb:9d:30:43:b4:b2:3c:7f:28: ad:c6:63:7a:f6:6f:e2:37:51:01:b5:f2:84:d9:bf: d0:66:1c:9e:db:04:32:2b:48:7c:4b:11:04:cf:5e: aa:4d:f3:f4:e0:61:d5:a4:93:5d:ce:a0:ed:ca:28: 28:5c:db:e1:a6:44:a6:d0:9e:2b:46:de:b5:55:2e: c5:d2:12:08:b6:9c:11:e0:34:ec:8f:7d:17:91:e4: 77:ff:96:02:df:5f:9a:ea:90:5b:c3:1b:4e:33:81: 52:cf:78:34:53:f8:47:7a:28:7e:f4:c3:ec:e9:19: bc:6a:6d:30:6b:f5:6e:f4:64:f4:34:a5:34:57:2f: cd:52:07:c5:e5:c2:6d:22:45:fa:5b:92:58:39:f4: d8:97:28:91:bd:81:a6:cb:97:89:7b:75:e3:91:2f: a7:9f:9f:cd:d7:28:33:70:f9:18:f3:28:75:a7:87: 4c:75:1b:fa:78:e2:2c:e5:95:d0:31:4e:94:47:dc: 66:1b:27:d5:56:67:f9:d7:26:39:97:3a:5a:a1:f6: a8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:1A:9D:0A:71:19:33:C9:36:DC:8A:9D:68:90:D2:6E:C4:DA:32:28 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:be:08:ce:1c:13:4a:d6:b2:cc:ed:bb:76:b3:14:39:c1:35: ed:20:62:91:0e:a2:f1:2f:39:6f:0a:c4:27:56:ce:d1:99:7c: c8:8b:85:4f:ce:91:cc:b4:24:3a:18:e6:06:bd:4c:e4:0a:40: 5e:f4:de:9f:cc:04:b6:48:6c:d4:18:e0:12:14:f4:a0:97:3d: 39:9f:2a:3b:aa:08:13:b3:4e:a4:16:f1:8d:83:b9:de:d4:6b: eb:c9:99:f2:bd:83:11:4f:32:42:12:a9:e7:97:31:3d:b3:f5: c1:b2:8b:d8:8d:aa:46:8e:19:27:ef:19:ac:9d:65:85:20:60: 96:89:c7:85:6d:51:7f:25:eb:f1:c4:6d:5b:f4:d9:7c:7b:36: ef:55:88:bd:d6:25:e9:15:25:ac:70:37:d4:9d:3c:bc:84:17: 53:e9:44:3e:03:12:77:4a:35:c5:de:68:81:7a:cc:bd:22:3d: e3:13:ce:ae:20:f8:71:ae:2c:71:96:f3:c3:d2:b9:67:1b:48: ea:df:93:6e:bd:34:08:6b:d8:6d:9d:aa:26:38:a8:a8:7f:5e: fe:e7:de:f5:ba:30:aa:73:bf:36:9d:e5:12:5b:d3:7d:ff:e4: eb:ef:2f:2e:45:44:e1:37:ec:21:cc:79:4f:a1:b7:49:a2:87: 04:de:5f:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUxMjA2MTc0MjE0WhcNMjUxMjEzMTc0MjE0WjAYMRYwFAYD VQQDEw02OTM0NmFmNy00MWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznfAfLI5jPKz3pK4Z93mvtXFpdQb0LYcWy7j0HlI6/ef0ta4NukMTeUsvqKM gyyG9a27nTBDtLI8fyitxmN69m/iN1EBtfKE2b/QZhye2wQyK0h8SxEEz16qTfP0 4GHVpJNdzqDtyigoXNvhpkSm0J4rRt61VS7F0hIItpwR4DTsj30XkeR3/5YC31+a 6pBbwxtOM4FSz3g0U/hHeih+9MPs6Rm8am0wa/Vu9GT0NKU0Vy/NUgfF5cJtIkX6 W5JYOfTYlyiRvYGmy5eJe3XjkS+nn5/N1ygzcPkY8yh1p4dMdRv6eOIs5ZXQMU6U R9xmGyfVVmf51yY5lzpaofaonQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkanQpx GTPJNtyKnWiQ0m7E2jIoMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1vgjOHBNK1rLM7bt2sxQ5wTXtIGKRDqLxLzlvCsQnVs7RmXzIi4VP zpHMtCQ6GOYGvUzkCkBe9N6fzAS2SGzUGOASFPSglz05nyo7qggTs06kFvGNg7ne 1GvryZnyvYMRTzJCEqnnlzE9s/XBsovYjapGjhkn7xmsnWWFIGCWiceFbVF/Jevx xG1b9Nl8ezbvVYi91iXpFSWscDfUnTy8hBdT6UQ+AxJ3SjXF3miBesy9Ij3jE86u IPhxrixxlvPD0rlnG0jq35NuvTQIa9htnaomOKiof17+5971ujCqc782neUSW9N9 /+Tr7y8uRUThN+whzHlPobdJoocE3l9r -----END CERTIFICATE-----Generated at Sat Dec 6 22:06:10 2025 by rpki-client