This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft File: itYQrIti8qb8qCWJVdXxJJJ7OgA.mft (raw, json) Hash identifier: OBNyt79LZ+HnKg7nSjBhFLw1GXdWZxF+zWbO0Bca1No= Subject key identifier: 96:E2:4C:E2:64:0B:6E:C8:EB:EF:F2:09:4D:2C:C7:C9:CB:CA:19:7D Authority key identifier: 8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 Certificate issuer: /CN=A91BEE1D/serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft Manifest number: AE Signing time: Fri 05 Dec 2025 04:06:56 +0000 Manifest this update: Fri 05 Dec 2025 04:06:55 +0000 Manifest next update: Fri 12 Dec 2025 04:06:55 +0000 Files and hashes: 1: itYQrIti8qb8qCWJVdXxJJJ7OgA.crl (hash: x9ZLy+vkoDzHcRWTRg6duvJycB0m97cd3PiP+QHJsRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:06:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Validity Not Before: Dec 5 04:06:55 2025 GMT Not After : Dec 12 04:06:55 2025 GMT Subject: CN=69325a5f-c95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:00:2d:4b:e4:f5:11:36:96:e4:95:c3:95:70: 2a:64:f6:e7:9c:b2:e3:f5:81:f1:07:cb:d2:d5:67: 4a:1e:43:88:0d:5a:39:fd:96:ca:fa:47:c7:87:d0: ac:c9:20:96:b8:6b:52:66:16:14:05:69:74:6e:81: 92:4f:bc:3c:bf:46:d5:b3:b5:68:b9:4c:c2:e1:ad: cf:50:95:80:7f:25:9c:ae:11:4c:23:05:18:6e:29: 7c:c0:bd:8a:62:e9:25:9b:ed:87:2f:d9:e7:74:a2: 44:07:5d:ac:97:42:ab:9e:f9:d7:39:1e:cb:07:5e: 1d:2b:38:64:b9:32:75:1d:b7:27:52:79:7a:a6:93: ee:05:11:06:38:b4:4f:96:fd:cb:0b:96:01:27:7d: 6a:4a:30:44:dc:e6:d9:2b:8d:4b:6a:33:17:0d:87: 4c:2d:44:a4:f0:ac:2a:bc:97:0b:49:82:b1:49:f4: 0c:19:70:9a:e1:1a:c1:db:c8:d3:1f:6c:81:d2:64: c9:ce:04:8c:01:e7:44:16:01:46:aa:2e:2a:47:97: dd:56:24:5a:df:f2:ef:db:53:85:b5:b9:62:f9:f8: 8a:2b:a4:e1:15:9f:3c:92:4d:e1:d8:54:e2:b8:03: 98:b5:37:b8:8b:87:d2:e5:22:43:bd:f7:c7:c9:1f: a8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E2:4C:E2:64:0B:6E:C8:EB:EF:F2:09:4D:2C:C7:C9:CB:CA:19:7D X509v3 Authority Key Identifier: keyid:8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:91:93:4f:5e:8a:72:2c:05:df:bf:b2:87:6f:20:95:26:a9: d0:38:ef:d3:0f:b4:75:7f:af:fb:87:8b:9e:80:e0:71:59:37: 19:57:86:d0:7b:65:7d:82:2c:a8:5f:de:aa:b7:51:f3:02:60: 5e:7f:0e:ca:2b:ec:73:e3:9d:e6:c6:c6:f2:00:3b:ec:08:1a: fb:ac:28:3a:0a:f6:f8:94:24:a6:75:05:37:ba:a9:fd:d2:21: 19:fc:46:10:36:00:75:16:3a:c6:70:e3:4c:06:4a:2e:c1:6f: 09:9b:7d:7d:7f:b4:03:eb:32:e0:d9:85:ce:63:8e:3b:c5:68: 6a:8a:23:50:1a:7b:64:34:84:32:73:8b:fb:e0:3a:c6:ce:d8: 89:78:2e:38:00:8d:40:cd:4f:cc:ca:65:11:9f:32:01:4b:a0: 13:16:3e:6a:cd:ea:73:f1:41:d6:71:92:97:99:f4:d8:9e:04: 85:a6:ad:3e:a8:4e:bd:0a:d0:4c:fc:af:37:e7:6b:1d:51:55: d6:91:a2:12:73:35:49:7c:26:cf:eb:86:3f:20:41:41:50:d2: de:10:5a:86:0d:b7:d0:ef:96:83:06:de:77:a4:ef:eb:30:0e: a4:9e:e5:e5:7b:df:e2:d0:fc:c4:92:92:2f:0e:95:30:ce:27: f3:19:33:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVFMUQxMTAvBgNVBAUTKDhBRDYxMEFDOEI2MkYyQTZGQ0E4MjU4OTU1RDVGMTI0 OTI3QjNBMDAwHhcNMjUxMjA1MDQwNjU1WhcNMjUxMjEyMDQwNjU1WjAYMRYwFAYD VQQDEw02OTMyNWE1Zi1jOTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwAtS+T1ETaW5JXDlXAqZPbnnLLj9YHxB8vS1WdKHkOIDVo5/ZbK+kfHh9Cs ySCWuGtSZhYUBWl0boGST7w8v0bVs7VouUzC4a3PUJWAfyWcrhFMIwUYbil8wL2K Yuklm+2HL9nndKJEB12sl0KrnvnXOR7LB14dKzhkuTJ1HbcnUnl6ppPuBREGOLRP lv3LC5YBJ31qSjBE3ObZK41LajMXDYdMLUSk8KwqvJcLSYKxSfQMGXCa4RrB28jT H2yB0mTJzgSMAedEFgFGqi4qR5fdViRa3/Lv21OFtbli+fiKK6ThFZ88kk3h2FTi uAOYtTe4i4fS5SJDvffHyR+oOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbiTOJk C27I6+/yCU0sx8nLyhl9MB8GA1UdIwQYMBaAFIrWEKyLYvKm/KgliVXV8SSSezoA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUUxRC85QURBREFERUM3 MEUxMUVGODA2N0M0NjZDNEY5QUUwMi9pdFlRckl0aThxYjhxQ1dKVmRYeEpKSjdP Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l0WVFySXRpOHFiOHFDV0pWZFh4SkpKN09nQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUUxRC85QURBREFERUM3MEUxMUVGODA2N0M0NjZDNEY5QUUwMi9pdFlRckl0aThx YjhxQ1dKVmRYeEpKSjdPZ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYkZNPXopyLAXfv7KHbyCVJqnQOO/TD7R1f6/7h4uegOBxWTcZV4bQ e2V9giyoX96qt1HzAmBefw7KK+xz453mxsbyADvsCBr7rCg6Cvb4lCSmdQU3uqn9 0iEZ/EYQNgB1FjrGcONMBkouwW8Jm319f7QD6zLg2YXOY447xWhqiiNQGntkNIQy c4v74DrGztiJeC44AI1AzU/MymURnzIBS6ATFj5qzepz8UHWcZKXmfTYngSFpq0+ qE69CtBM/K8352sdUVXWkaISczVJfCbP64Y/IEFBUNLeEFqGDbfQ75aDBt53pO/r MA6knuXle9/i0PzEkpIvDpUwzifzGTOb -----END CERTIFICATE-----Generated at Sat Dec 6 22:20:43 2025 by rpki-client