This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft File: iZOTjIV1ACgOj15T3As-kweu1Kc.mft (raw, json) Hash identifier: mSpAEvSiCV60Cj8zy5Ve1Mbis5fougW5MrW3zXfDKN0= Subject key identifier: A9:7C:21:8F:44:D8:39:D0:76:CB:E4:D7:67:8D:EA:EB:17:79:1D:B2 Authority key identifier: 89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7 Certificate issuer: /CN=A91BD3E1/serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft Manifest number: 96 Signing time: Fri 05 Dec 2025 04:25:20 +0000 Manifest this update: Fri 05 Dec 2025 04:25:20 +0000 Manifest next update: Fri 12 Dec 2025 04:25:20 +0000 Files and hashes: 1: iZOTjIV1ACgOj15T3As-kweu1Kc.crl (hash: qap2r/LOtUYZAh/Vdivxd5yDGuHLtq1DZSi8fykh7Q4=) 2: 459FAF10EF4811EF8F4B9284C4F9AE02.roa (hash: t4VsjBzDPnCNqQJ4/+l/e7o+o8AvICh72VVWJ8BMmY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.crl rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:25:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3E1, serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7 Validity Not Before: Dec 5 04:25:20 2025 GMT Not After : Dec 12 04:25:20 2025 GMT Subject: CN=69325eb0-2709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:61:2e:82:f5:30:47:6a:8f:03:bb:1d:fd:7d: ed:cf:92:88:c9:1a:2a:86:dc:01:66:28:a1:3e:e1: 19:a3:d1:5f:5a:2b:e8:cc:98:e2:0c:a7:58:26:4e: ac:35:48:ed:44:bb:9e:c4:ab:75:fe:26:7c:04:e3: a2:3a:54:57:1f:e9:93:01:5a:01:6d:8c:a9:6f:e8: 23:d4:aa:21:37:4f:2f:cb:0c:cd:22:ae:1e:e1:37: ad:81:7c:75:23:5d:44:e1:20:71:ab:41:9e:f5:b9: 8c:28:46:b1:a4:c1:f3:8c:b9:f5:95:05:b7:8d:71: b3:97:d5:14:12:cd:58:ac:33:08:13:c9:0a:07:fa: bd:9f:7b:18:ab:6e:24:e7:a3:9f:40:51:ed:e5:54: b6:8b:4b:2d:47:0f:1d:06:ff:50:e3:df:bb:15:06: cc:25:b8:4d:fe:5f:fb:d0:8a:e0:ce:2f:39:35:c2: f3:bb:33:96:5f:7c:40:25:6e:76:44:50:e6:b2:fd: 0e:04:91:a3:5d:5f:16:bf:0d:30:ad:66:4f:1c:9f: 69:ae:2e:ec:0c:14:46:75:73:44:95:17:0f:87:40: c3:7e:82:bf:5a:c7:9b:45:ec:62:ba:68:a2:67:90: 42:96:37:72:ce:47:03:96:a9:aa:2d:08:b2:e9:cf: 31:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:7C:21:8F:44:D8:39:D0:76:CB:E4:D7:67:8D:EA:EB:17:79:1D:B2 X509v3 Authority Key Identifier: keyid:89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:86:41:73:3a:c7:cb:28:47:cb:88:5e:eb:84:04:7c:dc:ac: ca:62:8e:fc:8b:7c:4c:53:27:0e:c8:15:37:32:ba:45:c9:b7: 29:23:be:f5:7a:37:2f:10:e6:e3:28:bc:1d:ee:64:71:0f:2f: 5a:1e:27:81:e5:99:13:b0:c1:97:d4:99:5b:f5:0f:36:b8:ac: e8:a5:62:7d:11:49:91:49:0c:40:24:1d:ff:b6:ff:a1:29:6a: 85:3e:36:86:9f:fd:2c:3e:ed:7b:bc:99:94:57:4b:68:06:3d: 4f:42:23:3c:d8:75:b3:27:df:d4:df:cd:16:a5:d8:42:fb:86: 73:71:09:38:fe:61:41:39:17:e5:69:c1:47:f9:a7:1d:91:a4: ce:52:54:ae:db:83:20:50:e8:96:0f:88:8d:2d:1d:c5:fc:26: f7:1d:95:74:17:e1:bc:7d:7c:23:b4:b5:65:51:48:78:49:f7: 25:a4:cd:68:3c:2a:41:42:35:48:65:88:06:08:16:ac:94:e7: 89:72:63:80:39:23:44:ea:40:e7:dd:62:f3:15:be:95:08:a8: c9:d0:61:71:f2:c7:a9:6a:49:91:d9:44:aa:f5:d1:a6:16:d1: a0:9c:ef:af:aa:75:06:67:3e:ac:db:74:12:5a:36:bf:8d:ef: 2d:53:29:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRTExMTAvBgNVBAUTKDg5OTM5MzhDODU3NTAwMjgwRThGNUU1M0RDMEIzRTkz MDdBRUQ0QTcwHhcNMjUxMjA1MDQyNTIwWhcNMjUxMjEyMDQyNTIwWjAYMRYwFAYD VQQDEw02OTMyNWViMC0yNzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4GEugvUwR2qPA7sd/X3tz5KIyRoqhtwBZiihPuEZo9FfWivozJjiDKdYJk6s NUjtRLuexKt1/iZ8BOOiOlRXH+mTAVoBbYypb+gj1KohN08vywzNIq4e4TetgXx1 I11E4SBxq0Ge9bmMKEaxpMHzjLn1lQW3jXGzl9UUEs1YrDMIE8kKB/q9n3sYq24k 56OfQFHt5VS2i0stRw8dBv9Q49+7FQbMJbhN/l/70Irgzi85NcLzuzOWX3xAJW52 RFDmsv0OBJGjXV8Wvw0wrWZPHJ9pri7sDBRGdXNElRcPh0DDfoK/WsebRexiumii Z5BCljdyzkcDlqmqLQiy6c8xqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKl8IY9E 2DnQdsvk12eN6usXeR2yMB8GA1UdIwQYMBaAFImTk4yFdQAoDo9eU9wLPpMHrtSn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNFMS83Q0YwN0JDNkVG NDcxMUVGQUY0QzQ5NjhDNEY5QUUwMi9pWk9UaklWMUFDZ09qMTVUM0FzLWt3ZXUx S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2laT1RqSVYxQUNnT2oxNVQzQXMta3dldTFLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDNFMS83Q0YwN0JDNkVGNDcxMUVGQUY0QzQ5NjhDNEY5QUUwMi9pWk9UaklWMUFD Z09qMTVUM0FzLWt3ZXUxS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhhkFzOsfLKEfLiF7rhAR83KzKYo78i3xMUycOyBU3MrpFybcpI771 ejcvEObjKLwd7mRxDy9aHieB5ZkTsMGX1Jlb9Q82uKzopWJ9EUmRSQxAJB3/tv+h KWqFPjaGn/0sPu17vJmUV0toBj1PQiM82HWzJ9/U380WpdhC+4ZzcQk4/mFBORfl acFH+acdkaTOUlSu24MgUOiWD4iNLR3F/Cb3HZV0F+G8fXwjtLVlUUh4SfclpM1o PCpBQjVIZYgGCBaslOeJcmOAOSNE6kDn3WLzFb6VCKjJ0GFx8sepakmR2USq9dGm FtGgnO+vqnUGZz6s23QSWja/je8tUylY -----END CERTIFICATE-----Generated at Sat Dec 6 19:37:10 2025 by rpki-client