This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft File: IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft (raw, json) Hash identifier: IWajvAzXUgH+MxkhcBlRhzc0XP8CFSQvDl3QCYf8lxY= Subject key identifier: 9B:9C:55:67:2E:BF:7D:B1:62:13:CD:F0:57:84:5F:DE:6A:AD:6C:30 Authority key identifier: 21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 Certificate issuer: /CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft Manifest number: 0130 Signing time: Fri 05 Dec 2025 02:40:14 +0000 Manifest this update: Fri 05 Dec 2025 02:40:13 +0000 Manifest next update: Fri 12 Dec 2025 02:40:13 +0000 Files and hashes: 1: IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl (hash: gaAUFi93LdNQbFIq5NdxfuQp6onui/kvV7UapDeuyfY=) 2: B15E8BECFF3211EEA8607454C4F9AE02.roa (hash: rdcsVeSD/0uRXsupB+gdsyd8ZZ4QY82jQKGKV8TuBBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53FD, serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Validity Not Before: Dec 5 02:40:13 2025 GMT Not After : Dec 12 02:40:13 2025 GMT Subject: CN=6932460d-d77b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b9:1f:ba:ad:ff:3b:16:4d:ff:d3:2f:6f:cb: 5d:c6:0c:20:b6:80:a9:7d:a4:7d:f7:f1:1e:e1:4e: e2:d5:5e:f0:47:2d:aa:d5:4d:67:52:d8:7a:41:df: 3b:50:47:8e:ca:d5:9d:77:c0:00:db:b3:5e:b6:59: de:77:b1:c7:ca:89:55:fb:d9:af:8f:ce:e0:bf:ca: 4d:71:a9:7d:7b:47:12:3d:b7:85:65:1e:26:4b:02: 8e:eb:7c:2b:4b:6d:aa:92:5c:ae:69:7c:9c:05:ba: c7:d4:09:78:48:fc:10:cb:ff:d0:cd:46:ed:83:ff: b9:d3:e8:5e:15:7c:4e:42:e6:b1:a6:63:9d:c5:f0: c7:55:c3:d7:5a:a5:23:57:83:9d:27:ac:80:02:d9: 94:06:a7:38:a1:c0:05:21:2a:92:77:4f:ce:29:c4: 6e:17:a8:91:d9:54:f7:c7:9e:89:69:fa:ff:07:dd: 67:33:2a:38:69:ea:90:db:c7:d5:fb:db:2d:c6:87: 3a:70:b0:bf:2e:ad:7c:53:08:12:ed:59:75:50:cc: c4:ca:3a:d3:d8:44:ab:60:a1:67:0f:38:ed:e5:0a: 1a:98:01:f9:b9:f5:62:1a:37:a7:8d:57:cf:f0:43: 50:f8:2f:7d:95:f8:3f:b4:b4:e6:1e:0e:0f:2a:4f: c2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:9C:55:67:2E:BF:7D:B1:62:13:CD:F0:57:84:5F:DE:6A:AD:6C:30 X509v3 Authority Key Identifier: keyid:21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:87:a3:a5:77:2f:76:8d:85:db:b7:85:86:84:a7:17:3a:ae: a7:62:32:1c:c1:85:f2:9b:65:8e:10:c4:87:82:e5:e5:b9:66: 27:e3:45:9c:88:99:99:17:30:ae:96:48:aa:be:8b:33:2a:7e: 06:5c:8b:be:d9:8e:b4:80:e7:be:7a:32:96:a1:c1:ac:7c:e5: 7e:b2:97:3c:1e:28:ba:3d:0d:7a:cf:ee:87:a5:a5:34:58:8e: 47:7b:d0:ff:a2:76:e7:3b:74:f8:b9:f0:7f:e2:e0:4b:c2:81: cf:bb:7a:14:30:41:eb:df:d9:dd:eb:23:fc:3d:0c:48:10:79: 64:16:a2:11:b4:5c:41:ea:7e:c0:33:c5:03:be:6a:b4:8c:9f: 40:f8:ca:03:96:28:8a:30:40:a7:5b:49:6f:49:e2:89:c9:9d: 7c:b2:6e:f3:eb:02:73:70:4c:a3:20:86:6f:86:2b:00:1e:f0: 54:b2:c6:d3:e4:56:db:db:82:78:53:36:ce:73:2d:bc:f6:4d: eb:74:50:00:f8:45:63:ad:70:d2:4e:c0:cd:ca:ad:75:f6:df: 7d:c7:42:6e:3a:4f:73:a9:6d:a7:a0:3c:63:26:81:68:7b:3f: d1:91:5c:fe:ff:6c:cc:fe:4c:75:3f:1c:33:4a:e1:77:e6:f3: 66:25:d4:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzRkQxMTAvBgNVBAUTKDIxOTM0MTk4RTgzMzEwNjFEMjc1QjhDRkM3OTQ1OEQz MkZBQkQ2QzkwHhcNMjUxMjA1MDI0MDEzWhcNMjUxMjEyMDI0MDEzWjAYMRYwFAYD VQQDEw02OTMyNDYwZC1kNzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrkfuq3/OxZN/9Mvb8tdxgwgtoCpfaR99/Ee4U7i1V7wRy2q1U1nUth6Qd87 UEeOytWdd8AA27Netlned7HHyolV+9mvj87gv8pNcal9e0cSPbeFZR4mSwKO63wr S22qklyuaXycBbrH1Al4SPwQy//QzUbtg/+50+heFXxOQuaxpmOdxfDHVcPXWqUj V4OdJ6yAAtmUBqc4ocAFISqSd0/OKcRuF6iR2VT3x56Jafr/B91nMyo4aeqQ28fV +9stxoc6cLC/Lq18UwgS7Vl1UMzEyjrT2ESrYKFnDzjt5QoamAH5ufViGjenjVfP 8ENQ+C99lfg/tLTmHg4PKk/CEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJucVWcu v32xYhPN8FeEX95qrWwwMB8GA1UdIwQYMBaAFCGTQZjoMxBh0nW4z8eUWNMvq9bJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTNGRC82ODhFNTdFRUZG MzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVHSFNkYmpQeDVSWTB5LXIx c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laTkJtT2d6RUdIU2RialB4NVJZMHktcjFzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTNGRC82ODhFNTdFRUZGMzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVH SFNkYmpQeDVSWTB5LXIxc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkh6Oldy92jYXbt4WGhKcXOq6nYjIcwYXym2WOEMSHguXluWYn40Wc iJmZFzCulkiqvoszKn4GXIu+2Y60gOe+ejKWocGsfOV+spc8Hii6PQ16z+6HpaU0 WI5He9D/onbnO3T4ufB/4uBLwoHPu3oUMEHr39nd6yP8PQxIEHlkFqIRtFxB6n7A M8UDvmq0jJ9A+MoDliiKMECnW0lvSeKJyZ18sm7z6wJzcEyjIIZvhisAHvBUssbT 5Fbb24J4UzbOcy289k3rdFAA+EVjrXDSTsDNyq119t99x0JuOk9zqW2noDxjJoFo ez/RkVz+/2zM/kx1PxwzSuF35vNmJdTE -----END CERTIFICATE-----Generated at Sun Dec 7 03:51:01 2025 by rpki-client