This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft File: CB6icKn0s2sOyJai0hSO5Ok-Xys.mft (raw, json) Hash identifier: BbLh2rJF7VYz6IgVhPujWmA+7e5w3sWTQ26DxWdjWuk= Subject key identifier: 2C:B6:2F:43:9A:B3:66:F5:8E:06:F3:A0:30:60:9B:27:5D:2D:5D:4D Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft Manifest number: 018C Signing time: Fri 05 Dec 2025 01:47:27 +0000 Manifest this update: Fri 05 Dec 2025 01:47:27 +0000 Manifest next update: Fri 12 Dec 2025 01:47:27 +0000 Files and hashes: 1: CB6icKn0s2sOyJai0hSO5Ok-Xys.crl (hash: Vuwu8xVp4cu8R/Z15cM96zmEH8FTG4WvcQWd+De6yhY=) 2: 5A387584756311EEA256FD57C4F9AE02.roa (hash: WlVbAYT9fiHzzxm704tgTYSSn+rIKNtEXDFFKehNTaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:47:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921, serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: Dec 5 01:47:27 2025 GMT Not After : Dec 12 01:47:27 2025 GMT Subject: CN=693239af-5acc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4f:ae:75:e3:c4:9c:58:38:70:41:30:f0:5a: 51:66:12:32:84:83:6b:86:d6:23:a6:e6:7e:6d:6f: 10:2f:9a:49:3e:81:44:2f:b7:45:2b:14:db:39:21: 71:b0:a9:14:02:86:bb:66:9f:7a:e7:d9:ca:5f:22: 95:c8:cc:de:54:a9:bf:57:ac:f7:3a:bb:5b:63:86: ad:f1:6f:ee:b9:79:9a:e4:43:fe:13:2e:61:a0:ba: 48:70:83:fd:47:76:26:77:d6:e1:1c:17:1d:7d:ed: 7b:2c:97:09:32:0b:a1:a3:fc:c6:72:44:2e:6e:00: f7:b5:e3:78:0e:e5:f4:34:fa:8e:7c:d4:4f:8c:e1: 46:90:c6:ed:db:f3:b1:af:a9:e5:23:cd:09:9c:79: 0d:c2:4d:54:66:66:fe:29:f1:10:eb:dd:5f:7f:bb: ad:62:f6:ee:09:8d:aa:c3:15:84:ca:2c:c1:98:ca: a1:d0:2e:1d:ad:60:de:1e:71:3f:5b:3e:b9:66:88: b9:55:f0:8e:51:31:c7:a2:f2:4f:f3:80:b2:a8:5a: 22:1d:f2:51:91:0f:cd:e1:be:fb:54:68:b8:fa:2b: 4d:4d:ca:b8:c9:db:19:b7:40:56:19:6c:7c:ad:ae: d5:3c:55:72:e7:17:87:02:32:d8:c6:b8:1e:ac:bb: 9b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B6:2F:43:9A:B3:66:F5:8E:06:F3:A0:30:60:9B:27:5D:2D:5D:4D X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:2c:ac:81:8e:1d:ff:27:90:de:cb:7d:ba:ba:87:1c:a6:ef: 38:42:71:cf:24:47:ab:a5:06:13:04:67:48:07:6d:57:5a:de: f5:d3:e7:cc:8b:96:a8:82:85:51:40:c8:e2:a1:95:d3:b7:a3: d4:29:76:62:c7:3f:f2:c4:b6:38:48:ff:b3:d1:a0:69:46:68: de:b4:5f:c6:b4:dc:3d:0d:39:77:38:0a:de:53:73:e6:b5:fa: 6f:5e:18:f6:2c:54:86:99:5d:b1:e1:ee:f8:42:6c:3b:d3:cf: 66:0d:96:0b:58:e2:e1:75:68:53:c6:c0:a4:bb:2b:66:1a:c7: be:ff:21:16:7b:4a:88:4f:91:83:4d:3c:96:8b:d9:28:5b:70: fa:9b:be:a0:c5:f9:8e:8c:40:c5:e7:a2:95:b9:db:03:af:bd: 3c:46:32:58:59:26:6a:d9:0e:c8:a9:45:23:0a:b1:d3:5d:0d: 06:ea:bc:36:d3:79:48:a4:e8:bf:96:d0:5f:8c:55:ca:d7:29: 92:65:71:fc:da:5b:5c:37:7e:a8:f2:9d:4c:be:de:6f:34:0a: 51:dd:35:1a:1c:cd:44:1c:61:58:2b:ce:6a:7b:91:c4:44:b1: 1d:4b:3c:12:44:dd:54:c5:70:91:c1:a7:c8:79:66:14:92:06: 48:cf:20:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5MjExMTAvBgNVBAUTKDA4MUVBMjcwQTlGNEIzNkIwRUM4OTZBMkQyMTQ4RUU0 RTkzRTVGMkIwHhcNMjUxMjA1MDE0NzI3WhcNMjUxMjEyMDE0NzI3WjAYMRYwFAYD VQQDEw02OTMyMzlhZi01YWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0+udePEnFg4cEEw8FpRZhIyhINrhtYjpuZ+bW8QL5pJPoFEL7dFKxTbOSFx sKkUAoa7Zp9659nKXyKVyMzeVKm/V6z3OrtbY4at8W/uuXma5EP+Ey5hoLpIcIP9 R3Ymd9bhHBcdfe17LJcJMguho/zGckQubgD3teN4DuX0NPqOfNRPjOFGkMbt2/Ox r6nlI80JnHkNwk1UZmb+KfEQ691ff7utYvbuCY2qwxWEyizBmMqh0C4drWDeHnE/ Wz65Zoi5VfCOUTHHovJP84CyqFoiHfJRkQ/N4b77VGi4+itNTcq4ydsZt0BWGWx8 ra7VPFVy5xeHAjLYxrgerLubHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCy2L0Oa s2b1jgbzoDBgmyddLV1NMB8GA1UdIwQYMBaAFAgeonCp9LNrDsiWotIUjuTpPl8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjkyMS9EREI4RTE0Qzc1 NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMyc095SmFpMGhTTzVPay1Y eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjkyMS9EREI4RTE0Qzc1NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMy c095SmFpMGhTTzVPay1YeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAULKyBjh3/J5Dey326uoccpu84QnHPJEerpQYTBGdIB21XWt710+fM i5aogoVRQMjioZXTt6PUKXZixz/yxLY4SP+z0aBpRmjetF/GtNw9DTl3OAreU3Pm tfpvXhj2LFSGmV2x4e74Qmw7089mDZYLWOLhdWhTxsCkuytmGse+/yEWe0qIT5GD TTyWi9koW3D6m76gxfmOjEDF56KVudsDr708RjJYWSZq2Q7IqUUjCrHTXQ0G6rw2 03lIpOi/ltBfjFXK1ymSZXH82ltcN36o8p1Mvt5vNApR3TUaHM1EHGFYK85qe5HE RLEdSzwSRN1UxXCRwafIeWYUkgZIzyC5 -----END CERTIFICATE-----Generated at Sat Dec 6 13:35:19 2025 by rpki-client