This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft File: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft (raw, json) Hash identifier: aKXzak8sa1Q1bmQKhq4e37tz7nJ28P6B2q9zPkUv66s= Subject key identifier: 3E:16:7C:B3:9B:2B:24:70:9D:00:31:C5:C3:A6:5D:DB:3C:CA:17:4C Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Certificate serial: 032A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft Manifest number: 031F Signing time: Thu 04 Dec 2025 23:29:31 +0000 Manifest this update: Thu 04 Dec 2025 23:29:30 +0000 Manifest next update: Thu 11 Dec 2025 23:29:30 +0000 Files and hashes: 1: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl (hash: kttwHBjRwJGc3XNdK71UlNWNrEwW/UZYAfhj4STEWBU=) 2: 5B6AD2DCF1C811ECBBC34549C4F9AE02.roa (hash: rCIHZh9wUruVRZk/2Wl+iO0bQmypaGymRp+P5pHJgrc=) 3: 5AD85A56F1C811ECBBC34549C4F9AE02.roa (hash: WLqs4EYDGZGhgsTcvZkB1qzpm9zeqwQq3iz4UzKMW3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 810 (0x32a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C0, serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Validity Not Before: Dec 4 23:29:30 2025 GMT Not After : Dec 11 23:29:30 2025 GMT Subject: CN=6932195b-d16f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1a:14:55:f7:52:91:75:c2:6d:6e:86:b3:1f: 5c:ae:6f:1d:1a:55:6a:85:2b:17:0b:d2:2b:84:cc: ea:db:5d:5e:6b:75:36:50:0b:41:cb:5b:3f:18:ba: 97:a5:f6:cb:8f:9f:b4:83:8b:a6:0b:7d:c0:de:38: dc:f6:35:fe:ec:c2:36:49:94:15:9e:c3:a0:b2:32: fb:83:08:3a:f6:3d:27:db:45:07:8f:f4:80:0d:0b: 95:d1:36:09:cd:9b:f7:52:ab:cd:43:f4:b3:77:de: ea:9d:97:d5:1a:fe:f7:1e:60:9f:a4:75:2b:ce:fa: c4:ac:ec:db:4c:e5:4a:ee:a7:96:2f:b8:60:f5:13: 08:23:1c:fe:75:2a:c9:17:fb:a3:c6:72:b2:e4:94: e6:51:87:b9:0c:37:a3:37:f1:27:5f:cc:26:40:a6: 8b:29:8a:b4:30:8d:b0:75:be:ef:2a:34:07:fa:6c: 61:30:cb:75:cb:e8:73:5e:b1:95:ae:6b:7c:16:ee: df:f4:68:aa:0b:24:41:b7:3e:0c:85:24:06:f8:4b: d4:8d:54:c1:8b:72:e6:05:2b:ea:b5:24:07:87:58: 0e:c3:57:6f:a2:ff:0a:54:70:8d:7d:0a:04:10:7d: a8:3d:de:c3:f5:f2:97:c6:50:3c:83:f9:73:0c:11: fe:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:16:7C:B3:9B:2B:24:70:9D:00:31:C5:C3:A6:5D:DB:3C:CA:17:4C X509v3 Authority Key Identifier: keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:3a:0a:1e:99:95:0d:04:1d:3d:38:dd:30:ff:8d:6d:3e:52: a2:75:1a:7c:d8:23:02:b5:f2:df:9b:1b:b9:5a:b8:70:e3:0a: fe:8e:7c:ac:c5:8b:e1:bc:26:70:e3:a4:94:43:67:0e:a5:40: 14:1a:fb:34:99:5e:39:ee:4c:47:50:bd:f0:ae:bf:57:1c:69: cc:21:2a:90:0b:84:1d:3f:8c:b1:ee:11:29:f5:01:c3:49:0f: ef:d0:33:ff:60:f6:6a:38:05:00:fc:d2:9a:07:d4:02:72:d8: 82:9f:d8:aa:55:36:72:15:44:12:89:27:1c:4b:51:f5:c6:db: 0a:b1:d7:11:c9:fc:d2:e7:f7:d9:02:2d:38:23:09:29:cc:d5: 66:4d:e6:5f:5d:73:82:ac:c0:e5:f2:c2:69:6d:f5:7e:1b:d1: 26:4f:40:eb:9c:6a:f9:7b:de:37:2a:bc:91:72:9c:8e:0f:08: b2:5f:b9:4d:f5:f4:8e:e3:59:26:e9:79:75:67:aa:5a:2b:c8: 0f:4c:d4:95:07:41:3c:2a:d8:c4:57:26:27:2b:11:0e:7c:72: a9:eb:64:80:51:93:2e:13:c4:c5:65:8c:9d:29:8e:86:ab:df: 81:3b:44:b5:b3:66:40:c3:3c:ca:01:1c:d1:0b:88:80:e9:87: 60:67:21:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzAxMTAvBgNVBAUTKDg1NzkzNzcyNjFDQTI3OUYxQzJGRjJFQkM0NDI5NzQz N0RENkU2OTQwHhcNMjUxMjA0MjMyOTMwWhcNMjUxMjExMjMyOTMwWjAYMRYwFAYD VQQDEw02OTMyMTk1Yi1kMTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BoUVfdSkXXCbW6Gsx9crm8dGlVqhSsXC9IrhMzq211ea3U2UAtBy1s/GLqX pfbLj5+0g4umC33A3jjc9jX+7MI2SZQVnsOgsjL7gwg69j0n20UHj/SADQuV0TYJ zZv3UqvNQ/Szd97qnZfVGv73HmCfpHUrzvrErOzbTOVK7qeWL7hg9RMIIxz+dSrJ F/ujxnKy5JTmUYe5DDejN/EnX8wmQKaLKYq0MI2wdb7vKjQH+mxhMMt1y+hzXrGV rmt8Fu7f9GiqCyRBtz4MhSQG+EvUjVTBi3LmBSvqtSQHh1gOw1dvov8KVHCNfQoE EH2oPd7D9fKXxlA8g/lzDBH+DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4WfLOb KyRwnQAxxcOmXds8yhdMMB8GA1UdIwQYMBaAFIV5N3JhyiefHC/y68RCl0N91uaU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMC9CQ0JENEZCNkYx QzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1OGNMX0xyeEVLWFEzM1c1 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYazNjbUhLSjU4Y0xfTHJ4RUtYUTMzVzVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjVDMC9CQ0JENEZCNkYxQzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1 OGNMX0xyeEVLWFEzM1c1cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNOgoemZUNBB09ON0w/41tPlKidRp82CMCtfLfmxu5Wrhw4wr+jnys xYvhvCZw46SUQ2cOpUAUGvs0mV457kxHUL3wrr9XHGnMISqQC4QdP4yx7hEp9QHD SQ/v0DP/YPZqOAUA/NKaB9QCctiCn9iqVTZyFUQSiSccS1H1xtsKsdcRyfzS5/fZ Ai04IwkpzNVmTeZfXXOCrMDl8sJpbfV+G9EmT0DrnGr5e943KryRcpyODwiyX7lN 9fSO41km6Xl1Z6paK8gPTNSVB0E8KtjEVyYnKxEOfHKp62SAUZMuE8TFZYydKY6G q9+BO0S1s2ZAwzzKARzRC4iA6YdgZyHm -----END CERTIFICATE-----Generated at Sat Dec 6 17:07:19 2025 by rpki-client