This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json) Hash identifier: mishlTiXqk346UM+tNG4kObKSN9BV6EHFq0EMa5x/Js= Subject key identifier: C5:0B:3A:0E:D0:18:A2:D7:C9:31:D8:50:B3:12:B4:C9:DD:0E:09:DD Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Certificate serial: 34E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft Manifest number: 34E3 Signing time: Sat 06 Dec 2025 15:07:27 +0000 Manifest this update: Sat 06 Dec 2025 15:07:26 +0000 Manifest next update: Sat 13 Dec 2025 15:07:26 +0000 Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: fS1I/g8lTXW0Piqrap24zKkQKIJ4sZ7kdf0BU7y6fy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13539 (0x34e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD73B, serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Validity Not Before: Dec 6 15:07:26 2025 GMT Not After : Dec 13 15:07:26 2025 GMT Subject: CN=693446af-1243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:00:27:59:d0:82:f3:10:90:06:e5:58:30:09: e3:0c:97:00:34:f4:9c:c2:b3:df:15:77:33:fe:e5: 33:16:4a:a0:d5:66:3f:20:0e:7c:ed:1a:5d:e1:0c: 65:c4:60:e5:b3:72:97:09:15:db:9c:21:30:a2:03: b6:29:95:44:a2:79:22:3e:87:77:b6:52:ed:eb:7b: 36:c9:4c:73:19:19:d1:d1:ab:0d:bb:6a:ce:f4:f0: ca:64:3c:9e:18:06:dd:38:79:7d:90:9a:d7:84:68: a9:a8:2d:3d:e2:78:92:7e:20:5f:4b:d9:c1:51:52: 9c:4c:1e:65:08:d6:97:d0:43:20:fb:c9:8c:93:5c: 3f:b0:34:e6:87:b6:5b:d7:5d:1a:d8:26:16:17:aa: da:49:50:e4:d3:31:c4:81:66:98:73:68:2a:e7:2e: 19:fd:c4:c1:c9:d4:09:ed:6b:39:6c:60:c8:0a:b1: 58:e4:92:ad:b1:00:ba:f2:ab:cb:5d:92:ac:b4:df: 22:13:96:2a:39:4d:9f:24:d8:87:c8:2f:62:c6:bf: bd:15:e7:d2:53:8d:6a:ac:13:61:26:a3:b6:23:99: 71:ce:08:d4:b2:07:5b:67:46:83:61:10:1a:8f:d1: 31:77:ad:cf:9a:b2:7a:0f:be:1e:a6:b6:90:56:75: 48:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0B:3A:0E:D0:18:A2:D7:C9:31:D8:50:B3:12:B4:C9:DD:0E:09:DD X509v3 Authority Key Identifier: keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:10:8d:e4:91:11:f8:86:0d:01:29:1c:e3:86:85:c0:3c:48: ba:37:e8:27:72:0a:43:b0:68:b0:02:76:aa:07:76:db:21:da: 9d:b8:5b:f6:b0:99:aa:25:2c:38:bc:80:e9:0a:32:c6:63:78: 7b:52:08:f1:9b:6a:50:6c:7f:76:de:f8:7f:94:fa:19:64:f2: 3f:06:6a:d4:7a:d5:74:69:e6:dd:78:17:0b:8a:bf:de:02:9b: ee:49:cb:95:3c:e2:79:65:b3:97:65:67:5f:69:9e:79:1e:6a: b2:d7:4b:27:bc:fc:e7:46:6b:55:64:7c:83:23:9d:18:a7:62: 39:0f:db:fd:91:ab:fb:05:0e:a1:dd:5c:69:f6:97:ac:84:99: ec:ec:f6:b5:f9:a8:a5:19:dc:7d:cc:27:67:d7:a1:ca:b9:9e: 5f:3c:12:fd:51:dd:35:97:c1:9b:1f:da:31:fb:be:c7:5f:e2: d5:b9:5c:c9:be:a4:52:2d:e4:f2:5c:dd:bb:96:d4:6f:a4:3e: 18:55:2c:3c:53:9a:ca:a1:e3:b8:f8:f4:9c:a3:e3:c9:f2:a7: 56:83:45:6f:b4:31:d1:6a:70:ee:b8:76:0b:72:55:52:e0:1e: 36:6d:2c:f8:23:e3:62:f6:b9:c6:4e:6f:5a:d6:6a:66:78:99: f1:33:c6:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ3M0IxMTAvBgNVBAUTKDQ0NDg0QzlGM0E3M0Y3MTk1NzJCOEJDOEExQTFGRDlF NTlGQTg0RjYwHhcNMjUxMjA2MTUwNzI2WhcNMjUxMjEzMTUwNzI2WjAYMRYwFAYD VQQDEw02OTM0NDZhZi0xMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8QAnWdCC8xCQBuVYMAnjDJcANPScwrPfFXcz/uUzFkqg1WY/IA587Rpd4Qxl xGDls3KXCRXbnCEwogO2KZVEonkiPod3tlLt63s2yUxzGRnR0asNu2rO9PDKZDye GAbdOHl9kJrXhGipqC094niSfiBfS9nBUVKcTB5lCNaX0EMg+8mMk1w/sDTmh7Zb 110a2CYWF6raSVDk0zHEgWaYc2gq5y4Z/cTBydQJ7Ws5bGDICrFY5JKtsQC68qvL XZKstN8iE5YqOU2fJNiHyC9ixr+9FefSU41qrBNhJqO2I5lxzgjUsgdbZ0aDYRAa j9Exd63PmrJ6D74epraQVnVIRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMULOg7Q GKLXyTHYULMStMndDgndMB8GA1UdIwQYMBaAFERITJ86c/cZVyuLyKGh/Z5Z+oT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDczQi8yNkJERjMyQzFE QUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4bFhLNHZJb2FIOW5sbjZo UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFaE1uenB6OXhsWEs0dklvYUg5bmxuNmhQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDczQi8yNkJERjMyQzFEQUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4 bFhLNHZJb2FIOW5sbjZoUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsEI3kkRH4hg0BKRzjhoXAPEi6N+gncgpDsGiwAnaqB3bbIdqduFv2 sJmqJSw4vIDpCjLGY3h7Ugjxm2pQbH923vh/lPoZZPI/BmrUetV0aebdeBcLir/e ApvuScuVPOJ5ZbOXZWdfaZ55Hmqy10snvPznRmtVZHyDI50Yp2I5D9v9kav7BQ6h 3Vxp9peshJns7Pa1+ailGdx9zCdn16HKuZ5fPBL9Ud01l8GbH9ox+77HX+LVuVzJ vqRSLeTyXN27ltRvpD4YVSw8U5rKoeO4+PSco+PJ8qdWg0VvtDHRanDuuHYLclVS 4B42bSz4I+Ni9rnGTm9a1mpmeJnxM8YN -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:35 2025 by rpki-client