This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: I0wunBkXWoS6SEGtjApTFsGBFNe5ylJszuXTR2i35no= Subject key identifier: 9D:B6:A3:E0:71:0F:74:5B:1C:71:56:90:08:9A:CA:32:4A:03:3A:CE Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 053C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 0535 Signing time: Thu 04 Dec 2025 22:05:30 +0000 Manifest this update: Thu 04 Dec 2025 22:05:29 +0000 Manifest next update: Thu 11 Dec 2025 22:05:29 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: CzHHSwKpQmuA9rLMaAWS7K1NlYMA/LRxny/itbnNYzI=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: DBSMAaVKSu+pqc7fO689Fw0nJpqzkZ1jfjGBu9BRx34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1340 (0x53c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Dec 4 22:05:29 2025 GMT Not After : Dec 11 22:05:29 2025 GMT Subject: CN=693205aa-3d21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b3:d8:88:cc:c3:4e:71:96:29:ee:df:f7:10: 9e:1b:46:c5:75:26:00:ab:15:91:09:55:d8:fd:9f: 34:8f:77:11:92:d8:71:25:c3:6c:d9:d6:74:fc:57: 22:14:df:85:38:aa:18:38:c5:c5:74:ab:ac:b1:d7: af:11:05:6b:c7:d1:f1:70:7b:56:ee:88:96:3e:c3: 76:3b:c4:fa:36:4b:e8:0b:49:f5:37:75:36:b2:85: 74:fd:b5:2f:dc:83:6c:6f:84:72:43:c7:3f:7a:73: ab:dc:9a:7f:7d:49:cb:5a:10:75:d1:ea:cc:90:75: d9:b4:b2:bb:05:4e:c0:3e:0c:95:fe:cf:2e:e6:5b: 9e:81:8d:38:b8:88:44:fe:16:a5:ff:0f:be:7f:95: 95:1c:5c:0f:c8:e3:09:d9:11:e2:6e:5c:53:91:24: 94:5d:1c:ed:15:65:25:93:d8:f2:36:40:6d:07:46: a6:10:56:f1:e4:76:76:33:94:df:0e:e7:fe:58:9e: d8:7f:60:84:ad:53:85:8e:bc:6a:4e:3f:6e:4a:f4: 35:23:e4:9f:77:c1:e2:62:92:6f:f0:b6:98:b7:b7: d4:f2:79:00:2d:8d:e5:6b:e8:9f:a0:09:91:0c:f7: d7:59:e0:52:92:2a:75:57:01:25:ce:a0:36:06:41: 45:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B6:A3:E0:71:0F:74:5B:1C:71:56:90:08:9A:CA:32:4A:03:3A:CE X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:de:16:cf:ee:c1:cb:4e:b4:1e:51:a8:8e:b9:28:f0:2e:d8: 56:5a:b1:b1:b3:32:02:2f:1b:ee:e0:80:a6:ce:39:19:67:39: 62:a3:0e:d1:4a:57:0b:82:ab:06:8c:ef:07:60:28:99:44:4b: c6:92:47:c2:59:c6:e2:fe:90:9b:96:6d:78:c2:75:ea:b0:34: a0:1d:52:ca:0a:b6:9e:71:93:05:73:14:b7:93:ff:83:ec:cb: d3:12:f3:0b:7a:62:b6:97:9b:bf:a9:b3:86:de:54:a1:ea:41: 20:d7:1e:b0:74:84:5e:e1:af:b4:7e:79:9f:a4:a8:75:6c:68: cc:4e:68:e9:c6:43:a7:90:2b:b9:a6:d7:2f:94:52:b8:25:de: 1c:75:2d:e8:b1:40:ae:c9:27:fe:df:b9:a3:c1:59:97:ad:c8: a9:de:41:4e:08:04:1c:4f:5b:06:b5:ad:b8:c7:91:a2:3f:97: df:db:bf:6f:dd:f2:f0:47:f4:64:d3:b5:34:7b:e3:59:cc:2d: 5a:07:19:9f:90:bf:f1:ba:79:b6:2d:e5:63:e6:cc:6d:fb:01: 3a:b5:99:e2:9b:ec:b5:a1:64:ee:bb:fd:37:41:47:dc:d9:06: 9d:2a:d8:16:d2:4b:fd:57:a4:fb:71:c1:2f:bf:6a:a8:5d:6c: 76:61:b7:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjUxMjA0MjIwNTI5WhcNMjUxMjExMjIwNTI5WjAYMRYwFAYD VQQDEw02OTMyMDVhYS0zZDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrPYiMzDTnGWKe7f9xCeG0bFdSYAqxWRCVXY/Z80j3cRkthxJcNs2dZ0/Fci FN+FOKoYOMXFdKussdevEQVrx9HxcHtW7oiWPsN2O8T6NkvoC0n1N3U2soV0/bUv 3INsb4RyQ8c/enOr3Jp/fUnLWhB10erMkHXZtLK7BU7APgyV/s8u5luegY04uIhE /hal/w++f5WVHFwPyOMJ2RHiblxTkSSUXRztFWUlk9jyNkBtB0amEFbx5HZ2M5Tf Duf+WJ7Yf2CErVOFjrxqTj9uSvQ1I+Sfd8HiYpJv8LaYt7fU8nkALY3la+ifoAmR DPfXWeBSkip1VwElzqA2BkFFQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ22o+Bx D3RbHHFWkAiayjJKAzrOMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB13hbP7sHLTrQeUaiOuSjwLthWWrGxszICLxvu4ICmzjkZZzliow7R SlcLgqsGjO8HYCiZREvGkkfCWcbi/pCblm14wnXqsDSgHVLKCraecZMFcxS3k/+D 7MvTEvMLemK2l5u/qbOG3lSh6kEg1x6wdIRe4a+0fnmfpKh1bGjMTmjpxkOnkCu5 ptcvlFK4Jd4cdS3osUCuySf+37mjwVmXrcip3kFOCAQcT1sGta24x5GiP5ff279v 3fLwR/Rk07U0e+NZzC1aBxmfkL/xunm2LeVj5sxt+wE6tZnim+y1oWTuu/03QUfc 2QadKtgW0kv9V6T7ccEvv2qoXWx2Ybc/ -----END CERTIFICATE-----Generated at Sat Dec 6 19:15:31 2025 by rpki-client