This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: 3BR1P82ma94h2LqtEHPjpgVQaLa8/iEKNVIkglCNGVc= Subject key identifier: 30:75:28:4F:5D:4A:09:08:A8:7D:C8:F4:97:37:BD:A6:F0:23:69:93 Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 09BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 0974 Signing time: Sat 06 Dec 2025 19:23:33 +0000 Manifest this update: Sat 06 Dec 2025 19:23:32 +0000 Manifest next update: Sat 13 Dec 2025 19:23:32 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: GX9RhwujfrgotfA+UYKeWWRH12KJ3up5lrscpHFtbmc=) 2: 6B7D02AEB4A111F08515F713C4F9AE02.roa (hash: 8dIXmowCXPZAD2UJ+5qefOaUBnMZVuWIuv6x5mQBQWI=) 3: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: BOBDyoF9n7xbx3TtkofAs1yOLOgU9o92r9+fjg3ExtE=) 4: 6BF6643CB4A111F08515F713C4F9AE02.roa (hash: Gt8jcc9BxYE0RKDJpKuGjcT4RRngdw+3k/tgoWee/f4=) 5: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ=) 6: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: 4OgZKWzHSPDUQ7eYlV4agiNuq4N/lgNw19COSO6Bfk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2491 (0x9bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Dec 6 19:23:32 2025 GMT Not After : Dec 13 19:23:32 2025 GMT Subject: CN=693482b4-c0b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bf:5b:8d:db:65:e7:8e:e3:e3:9d:86:cf:3b: 13:88:ee:7f:c4:5f:71:7e:7a:25:eb:26:b1:0a:49: b5:ac:93:00:fe:32:77:6f:7a:37:24:27:62:ad:23: ae:62:77:ce:71:4f:ac:be:76:f6:d4:9a:74:17:a8: 00:37:71:a4:e8:82:01:3d:57:a5:59:c9:99:a4:45: 49:eb:20:b8:56:34:b7:b0:81:06:1c:70:a7:db:d2: a1:63:98:fb:45:99:19:a5:e4:61:ba:73:30:f6:8c: 87:e3:16:51:db:4a:a3:71:7c:c0:8b:aa:f4:c7:ff: f2:84:9a:11:77:22:dc:48:1c:47:8b:f1:0d:e8:80: 20:57:cd:e9:fa:e2:c9:2d:b6:37:8f:6a:f2:dc:65: 84:83:6b:97:d8:62:93:aa:76:e7:4e:15:ab:43:84: 37:ed:35:b2:69:f6:bb:95:2f:cd:86:a4:b6:51:11: 99:f0:73:f1:9a:33:0b:d5:73:80:d9:c3:b3:7c:b7: fe:60:89:d9:7d:54:97:89:f5:e0:4b:12:15:02:8a: bb:3c:1c:89:9d:cc:79:a2:1c:81:09:4c:24:0f:78: a0:a9:bd:0e:74:a7:8c:19:f2:77:37:e0:3f:e7:00: 7c:0f:fe:b4:7c:75:8b:5e:ea:5d:a5:a8:1e:4f:27: 04:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:75:28:4F:5D:4A:09:08:A8:7D:C8:F4:97:37:BD:A6:F0:23:69:93 X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:b9:cc:9a:2c:ab:16:23:06:3c:1a:cf:b3:d2:a3:00:2c:67: 36:1f:4f:7a:e9:a1:0e:c7:8f:e4:aa:e3:56:50:75:46:9e:67: 5b:06:2f:7d:47:b2:32:38:1a:f0:98:05:7c:b6:1c:2a:b1:06: 4a:bd:a1:c0:48:e4:50:62:0d:77:dc:b8:00:40:c8:4a:c2:af: e5:e4:64:1d:f0:5a:a2:0d:87:0d:4d:b7:58:c3:65:a0:dd:4a: 46:0e:cf:2d:76:7e:24:c2:b7:e8:b2:3b:e8:05:c0:ad:3d:cc: 1f:8d:f4:55:76:b4:8f:e2:07:a6:57:aa:b1:c8:ce:86:f5:6e: 39:2a:be:d5:32:1c:5e:c7:86:6a:af:37:7f:4d:98:24:d1:fa: bd:ea:b6:8e:9d:e1:67:d5:49:59:2a:f6:e2:f8:8f:0e:b7:bb: 44:a9:47:37:e9:19:19:d3:18:cc:d8:27:52:c9:10:69:8c:e7: f9:07:ff:a1:a2:2a:9f:fb:69:89:58:10:28:a5:c5:d1:77:7d: df:85:bc:bb:68:64:49:fc:4e:be:89:12:ee:42:3d:87:61:12: 76:e6:b6:61:b8:33:2a:da:d2:88:fc:f7:d7:f9:d9:7a:b3:fd: 42:75:f9:a4:4c:49:f3:4f:72:ec:c7:51:8b:cf:8d:7a:fc:6e: ec:05:c2:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjUxMjA2MTkyMzMyWhcNMjUxMjEzMTkyMzMyWjAYMRYwFAYD VQQDEw02OTM0ODJiNC1jMGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuL9bjdtl547j452GzzsTiO5/xF9xfnol6yaxCkm1rJMA/jJ3b3o3JCdirSOu YnfOcU+svnb21Jp0F6gAN3Gk6IIBPVelWcmZpEVJ6yC4VjS3sIEGHHCn29KhY5j7 RZkZpeRhunMw9oyH4xZR20qjcXzAi6r0x//yhJoRdyLcSBxHi/EN6IAgV83p+uLJ LbY3j2ry3GWEg2uX2GKTqnbnThWrQ4Q37TWyafa7lS/NhqS2URGZ8HPxmjML1XOA 2cOzfLf+YInZfVSXifXgSxIVAoq7PByJncx5ohyBCUwkD3igqb0OdKeMGfJ3N+A/ 5wB8D/60fHWLXupdpageTycELwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDB1KE9d SgkIqH3I9Jc3vabwI2mTMB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4ucyaLKsWIwY8Gs+z0qMALGc2H0966aEOx4/kquNWUHVGnmdbBi99 R7IyOBrwmAV8thwqsQZKvaHASORQYg133LgAQMhKwq/l5GQd8FqiDYcNTbdYw2Wg 3UpGDs8tdn4kwrfosjvoBcCtPcwfjfRVdrSP4gemV6qxyM6G9W45Kr7VMhxex4Zq rzd/TZgk0fq96raOneFn1UlZKvbi+I8Ot7tEqUc36RkZ0xjM2CdSyRBpjOf5B/+h oiqf+2mJWBAopcXRd33fhby7aGRJ/E6+iRLuQj2HYRJ25rZhuDMq2tKI/PfX+dl6 s/1CdfmkTEnzT3Lsx1GLz416/G7sBcIc -----END CERTIFICATE-----Generated at Sat Dec 6 21:19:06 2025 by rpki-client