This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: q4UL8HGJA8JVQijvzHwGPS7dcFpEQKfP/SLE843Xn1A= Subject key identifier: C7:B1:AE:D1:60:1F:BF:5A:43:5A:6A:4C:6A:29:D0:CA:39:BD:34:1A Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: 0102 Signing time: Fri 05 Dec 2025 03:07:31 +0000 Manifest this update: Fri 05 Dec 2025 03:07:30 +0000 Manifest next update: Fri 12 Dec 2025 03:07:30 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: 9cMRw0M61+Pltq7pnClLv9rOqfr2BUh4o53qkJPsOnE=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Dec 5 03:07:30 2025 GMT Not After : Dec 12 03:07:30 2025 GMT Subject: CN=69324c72-690b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e7:bc:00:ab:9f:bd:01:db:d6:0b:d8:3b:7b: d1:18:2c:d8:db:22:0d:de:ba:d7:ad:19:b7:30:12: da:e2:0b:11:42:0e:15:17:b2:7c:5b:2b:5e:34:9d: b7:38:0a:17:6f:59:a8:7c:ee:85:81:ba:f6:c6:2f: c1:51:99:5c:02:26:98:a8:3e:ac:82:3e:50:36:f3: a1:37:64:68:e7:25:b4:0a:fd:e8:62:e3:c6:90:d5: c3:a3:57:d3:2d:45:b1:8b:22:f1:3d:c7:67:49:2e: 92:de:82:b8:58:2f:74:f4:48:da:00:fc:91:3a:de: 2d:5f:83:4b:ce:c6:4f:be:c7:01:50:64:53:dd:cc: 2b:b9:3f:bb:1b:0c:8e:94:a8:02:c8:a9:3c:9f:c3: 72:a2:a3:16:cf:f6:d2:f6:66:77:08:51:d3:fb:d5: 8b:f3:db:d6:03:13:a8:19:08:66:af:64:8f:9d:37: fd:d0:a6:25:38:b8:c5:57:b4:27:d1:88:0c:32:bd: f3:92:39:cd:9e:30:bc:a2:85:b6:5d:80:7a:6b:35: 88:98:d4:b9:ec:cd:e1:e2:69:ab:3d:bf:53:05:44: 59:13:68:3e:47:1f:4a:63:37:42:a6:c1:2d:cb:62: 6b:12:34:1b:62:d5:12:c6:1b:f4:68:a6:e7:ad:a4: fc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B1:AE:D1:60:1F:BF:5A:43:5A:6A:4C:6A:29:D0:CA:39:BD:34:1A X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:c8:7e:46:0a:f6:a1:51:a8:ca:ae:db:4c:13:a5:70:9d:b7: b7:a6:64:0e:a5:ef:f3:59:64:fb:1f:e5:80:dc:0c:bb:7f:92: 1d:2f:e4:10:e2:9d:d6:df:b3:f7:82:1b:bb:7c:97:b9:f8:bc: 22:54:08:6b:35:8f:2b:e4:a6:d3:b6:43:84:4e:f2:d4:bc:f1: 6a:92:e5:97:f3:4a:99:16:a7:ae:e4:b5:3e:7e:f6:21:bb:5c: 75:0d:04:72:94:73:6b:ab:ae:37:37:e4:9f:a4:5a:d6:33:e3: 03:be:db:1e:ba:c2:3a:47:60:a6:fe:11:bc:f3:99:63:87:3b: 0b:a6:77:f6:45:ed:34:b0:31:fd:3d:ed:47:6c:c3:86:91:5f: 52:3e:ca:1c:e9:ba:e9:d5:73:3c:9b:48:f1:06:3b:80:b4:03: 38:7c:b2:46:ec:27:70:d6:b8:e4:9f:25:0e:0d:a8:3a:6c:17: 97:a5:e1:41:d1:3e:1f:76:71:89:09:41:91:ec:0a:d6:18:d0: 24:10:cf:37:10:3c:f2:90:67:b6:99:06:d2:fe:6c:7a:cd:c0: 00:20:ab:31:96:c0:82:2c:0a:8e:7b:25:bd:91:b4:69:be:d9: 59:d5:dc:3e:a3:8c:f5:b1:15:b6:50:f9:40:ce:2b:a0:25:8c: fd:8e:3d:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUxMjA1MDMwNzMwWhcNMjUxMjEyMDMwNzMwWjAYMRYwFAYD VQQDEw02OTMyNGM3Mi02OTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ee8AKufvQHb1gvYO3vRGCzY2yIN3rrXrRm3MBLa4gsRQg4VF7J8WyteNJ23 OAoXb1mofO6Fgbr2xi/BUZlcAiaYqD6sgj5QNvOhN2Ro5yW0Cv3oYuPGkNXDo1fT LUWxiyLxPcdnSS6S3oK4WC909EjaAPyROt4tX4NLzsZPvscBUGRT3cwruT+7GwyO lKgCyKk8n8NyoqMWz/bS9mZ3CFHT+9WL89vWAxOoGQhmr2SPnTf90KYlOLjFV7Qn 0YgMMr3zkjnNnjC8ooW2XYB6azWImNS57M3h4mmrPb9TBURZE2g+Rx9KYzdCpsEt y2JrEjQbYtUSxhv0aKbnraT8XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMexrtFg H79aQ1pqTGop0Mo5vTQaMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlyH5GCvahUajKrttME6Vwnbe3pmQOpe/zWWT7H+WA3Ay7f5IdL+QQ 4p3W37P3ghu7fJe5+LwiVAhrNY8r5KbTtkOETvLUvPFqkuWX80qZFqeu5LU+fvYh u1x1DQRylHNrq643N+SfpFrWM+MDvtseusI6R2Cm/hG885ljhzsLpnf2Re00sDH9 Pe1HbMOGkV9SPsoc6brp1XM8m0jxBjuAtAM4fLJG7Cdw1rjknyUODag6bBeXpeFB 0T4fdnGJCUGR7ArWGNAkEM83EDzykGe2mQbS/mx6zcAAIKsxlsCCLAqOeyW9kbRp vtlZ1dw+o4z1sRW2UPlAziugJYz9jj34 -----END CERTIFICATE-----Generated at Sat Dec 6 22:09:30 2025 by rpki-client