This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: 2eArqZhtAz6llSu76eOKxGov1GhDAD4qcOx1qEQs/ko= Subject key identifier: B5:38:F9:C7:87:A0:C6:D2:03:32:4C:EA:98:94:AE:B7:8E:9E:79:AA Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 048E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 048A Signing time: Sat 06 Dec 2025 22:46:18 +0000 Manifest this update: Sat 06 Dec 2025 22:46:17 +0000 Manifest next update: Sat 13 Dec 2025 22:46:17 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: iUIZldBSR8hU3Puw+geCCQ2pVfo8lDFfm3UzhcFiRFw=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: RCWPaj7t0e1p3rp6/K3vTM6gR0rDSmQTnwQnVmwe2ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1166 (0x48e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Dec 6 22:46:17 2025 GMT Not After : Dec 13 22:46:17 2025 GMT Subject: CN=6934b239-4969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:60:0a:ed:3a:f2:99:28:f1:29:32:8e:22:d9: 0b:93:2f:84:07:dc:35:09:5a:04:8e:94:cc:a3:0e: cd:6e:41:eb:6a:ac:a3:c8:70:1b:bb:de:9b:5f:c7: 57:df:ca:9a:5d:49:4f:b8:7b:cc:5e:e1:ab:a3:91: 58:4f:be:ed:dc:1e:00:a1:44:08:08:e3:b3:1e:0f: 5c:1c:90:ef:c6:8f:4b:0c:fb:d2:12:6a:25:36:0f: 54:76:06:0f:8a:48:a5:38:e6:e9:2b:54:fb:8d:cb: 59:17:47:da:3a:e6:ac:7c:1b:da:86:03:58:52:a4: 3e:fc:66:c0:04:78:4d:4f:80:f3:cd:fb:9a:72:3c: 22:6b:2a:42:3e:74:2c:1b:b7:b7:b5:a8:a2:2b:06: 5d:1d:35:18:bf:c2:db:d1:cd:ae:a6:00:dd:c6:05: 3f:47:6b:ff:1a:3e:bf:6f:a6:2f:58:d4:a0:e0:ed: cb:24:30:b5:95:c6:6f:e2:7c:6e:a4:db:1e:78:e1: c0:b0:01:91:c5:83:1b:26:8e:7c:5c:27:6e:8a:27: 7c:57:40:8c:65:a7:8d:dd:dc:5c:4b:5c:8c:72:a4: 91:70:a4:fc:56:5d:79:4d:15:70:e4:76:f3:15:44: 8a:59:ad:70:32:a4:39:ea:10:ea:fa:77:cc:d0:60: a5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:38:F9:C7:87:A0:C6:D2:03:32:4C:EA:98:94:AE:B7:8E:9E:79:AA X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f1:93:ee:bc:f7:06:7e:a4:2c:13:d1:a0:a7:77:d2:c2:08: 79:36:20:c1:1d:4e:f1:83:e7:0d:ef:7f:04:82:33:b0:52:36: c8:cf:f8:9f:6e:02:bd:23:c7:b3:9f:bc:98:03:9a:70:28:d5: 9f:5b:a6:19:58:9f:b0:74:8a:a4:a4:4d:df:b1:61:70:10:ef: 4c:a7:c4:6b:b5:06:1d:ed:6a:e3:ba:1f:f7:1f:7c:d1:84:94: 4e:21:72:a0:f5:9a:02:61:05:bc:54:a6:2e:b1:30:e9:87:4f: d1:38:48:06:d0:71:e6:91:ab:bc:f0:4c:a1:57:91:7a:22:fb: 91:5b:72:63:79:c1:30:97:c0:30:69:63:ec:2c:70:2c:45:b0: 76:10:ec:b1:12:68:8a:5f:52:32:ea:fb:9a:59:16:e1:bb:cb: d7:e3:e2:07:01:a4:59:f7:83:1a:4e:fa:a5:a5:07:c3:3a:9b: a4:6d:ee:77:62:47:a9:a6:6b:98:62:c7:57:7f:c8:7a:6c:ef: e2:3a:49:61:d9:74:68:39:4e:c0:4b:ef:b6:21:18:2b:8d:39: 10:e4:60:28:56:be:97:9e:ba:45:8e:af:4c:96:61:27:7c:bb: 3b:f1:bc:8b:2f:fc:59:df:5d:a8:9d:2b:42:d2:80:a7:54:06: 86:bb:bb:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjUxMjA2MjI0NjE3WhcNMjUxMjEzMjI0NjE3WjAYMRYwFAYD VQQDEw02OTM0YjIzOS00OTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWAK7TrymSjxKTKOItkLky+EB9w1CVoEjpTMow7NbkHraqyjyHAbu96bX8dX 38qaXUlPuHvMXuGro5FYT77t3B4AoUQICOOzHg9cHJDvxo9LDPvSEmolNg9UdgYP ikilOObpK1T7jctZF0faOuasfBvahgNYUqQ+/GbABHhNT4DzzfuacjwiaypCPnQs G7e3taiiKwZdHTUYv8Lb0c2upgDdxgU/R2v/Gj6/b6YvWNSg4O3LJDC1lcZv4nxu pNseeOHAsAGRxYMbJo58XCduiid8V0CMZaeN3dxcS1yMcqSRcKT8Vl15TRVw5Hbz FUSKWa1wMqQ56hDq+nfM0GCl/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLU4+ceH oMbSAzJM6piUrreOnnmqMB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC8ZPuvPcGfqQsE9Ggp3fSwgh5NiDBHU7xg+cN738EgjOwUjbIz/if bgK9I8ezn7yYA5pwKNWfW6YZWJ+wdIqkpE3fsWFwEO9Mp8RrtQYd7Wrjuh/3H3zR hJROIXKg9ZoCYQW8VKYusTDph0/ROEgG0HHmkau88EyhV5F6IvuRW3JjecEwl8Aw aWPsLHAsRbB2EOyxEmiKX1Iy6vuaWRbhu8vX4+IHAaRZ94MaTvqlpQfDOpukbe53 YkeppmuYYsdXf8h6bO/iOklh2XRoOU7AS++2IRgrjTkQ5GAoVr6XnrpFjq9MlmEn fLs78byLL/xZ312onStC0oCnVAaGu7sK -----END CERTIFICATE-----Generated at Sun Dec 7 08:13:50 2025 by rpki-client