This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: XCFT8pqkNvufaaaLPNk+y8/O0UOlsaRDhnNMVz82/Zg= Subject key identifier: 5A:87:82:50:BF:45:86:A4:40:8F:EE:B2:0A:EA:A0:32:57:4A:DB:78 Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 3522 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 3509 Signing time: Sat 06 Dec 2025 14:42:07 +0000 Manifest this update: Sat 06 Dec 2025 14:42:07 +0000 Manifest next update: Sat 13 Dec 2025 14:42:07 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: BevIWnAGmpNqQWcBQTjz8OxRVTS2RVOVpw+4/C2Iuyw=) 2: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: AsLmLNpdLhba6hfcYMLpd0sVqrUh2auGXL+sqK0hCjo=) 3: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: Ia/j0/zm2+DZmW6lBQa66nn1YakkPhVuWJjGJSOQHIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13602 (0x3522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Dec 6 14:42:07 2025 GMT Not After : Dec 13 14:42:07 2025 GMT Subject: CN=693440bf-a6d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:14:4d:f5:96:a8:ca:42:80:a4:78:05:4b:05: 55:83:fb:6d:b7:b8:47:80:51:d7:83:bb:96:bf:d0: c6:90:ee:07:f4:ee:24:b7:cc:b2:31:18:4c:e4:ab: a2:d3:61:b5:97:c5:2a:0a:a1:96:13:18:27:87:67: 81:71:11:9e:dc:be:b4:14:dd:38:d5:f6:ef:22:b7: 31:39:e4:45:95:22:c7:04:cd:fd:c0:3a:6a:bd:dd: 98:4b:cb:56:30:38:b7:45:03:21:49:dd:7d:ee:1c: 6f:f4:58:fb:f1:0f:27:2b:b0:63:36:7f:5a:90:83: 4f:10:90:48:e9:0c:db:4d:f9:78:f9:e0:7c:5a:da: 19:91:2a:3c:1e:71:2c:2e:95:e9:03:16:bb:5e:cd: 22:17:55:6a:30:8e:0c:18:c3:c8:d7:81:be:97:ec: 2d:7e:56:bb:8b:6b:b3:f6:24:4a:d3:e0:3e:62:98: 98:6e:99:8d:77:13:f7:4b:3d:71:6b:d8:7c:44:89: 33:67:14:d8:12:b7:6b:dc:9c:b5:07:1e:65:96:a2: e7:66:2d:24:df:92:05:44:12:3c:5d:e2:b0:f7:35: 53:aa:7a:d9:fc:d1:e4:2a:da:05:60:c1:cd:51:77: 6c:ae:e7:4b:ad:79:d7:75:7b:15:43:b2:81:4b:fb: 48:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:87:82:50:BF:45:86:A4:40:8F:EE:B2:0A:EA:A0:32:57:4A:DB:78 X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:7a:43:3d:f3:8b:b1:b9:22:9a:c1:b2:27:fa:3e:21:43:f0: d0:34:b9:d6:4c:d3:bb:89:5c:e3:5e:e5:83:8f:bc:8a:f5:8f: 6a:64:8f:aa:f2:d0:d9:4b:da:c0:87:1b:a1:6f:5a:e7:12:ed: 5d:ac:2a:1e:f3:f4:d3:a9:d6:9f:40:df:cd:cd:46:f9:90:02: 28:ac:cf:e1:a0:ed:e5:65:38:3e:f2:6c:fe:4b:eb:e2:bf:0b: fc:7d:6d:fb:2d:7f:5e:4b:80:cf:56:e7:df:4b:e0:a5:a9:24: e3:8a:4b:b0:b7:a8:e0:c6:cc:76:77:21:44:2a:14:6a:a3:b3: 31:0e:c7:3a:91:59:26:a4:99:c0:e5:e7:c3:61:dc:0a:7a:cf: 5f:87:7b:c1:5f:3c:8a:f7:43:4b:01:ac:21:ae:13:2d:7a:dd: 12:1a:06:ba:54:98:74:54:80:74:5a:2f:a9:0d:66:eb:d2:20: 32:23:fa:65:e7:fa:ef:3b:a9:7c:5f:88:22:17:5b:c6:62:ac: 3f:2a:05:ba:a8:8b:b1:d7:5a:0f:22:59:92:3e:48:01:a7:4b: 6a:8a:2f:64:7a:36:19:a2:d5:87:d3:ff:d9:23:2b:da:fe:4e: fb:07:c2:03:d1:a4:90:6a:23:49:24:a0:7e:47:8a:4f:53:f3: 6f:b1:ea:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjUxMjA2MTQ0MjA3WhcNMjUxMjEzMTQ0MjA3WjAYMRYwFAYD VQQDEw02OTM0NDBiZi1hNmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhRN9ZaoykKApHgFSwVVg/ttt7hHgFHXg7uWv9DGkO4H9O4kt8yyMRhM5Kui 02G1l8UqCqGWExgnh2eBcRGe3L60FN041fbvIrcxOeRFlSLHBM39wDpqvd2YS8tW MDi3RQMhSd197hxv9Fj78Q8nK7BjNn9akINPEJBI6QzbTfl4+eB8WtoZkSo8HnEs LpXpAxa7Xs0iF1VqMI4MGMPI14G+l+wtfla7i2uz9iRK0+A+YpiYbpmNdxP3Sz1x a9h8RIkzZxTYErdr3Jy1Bx5llqLnZi0k35IFRBI8XeKw9zVTqnrZ/NHkKtoFYMHN UXdsrudLrXnXdXsVQ7KBS/tIFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqHglC/ RYakQI/usgrqoDJXStt4MB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQekM984uxuSKawbIn+j4hQ/DQNLnWTNO7iVzjXuWDj7yK9Y9qZI+q 8tDZS9rAhxuhb1rnEu1drCoe8/TTqdafQN/NzUb5kAIorM/hoO3lZTg+8mz+S+vi vwv8fW37LX9eS4DPVuffS+ClqSTjikuwt6jgxsx2dyFEKhRqo7MxDsc6kVkmpJnA 5efDYdwKes9fh3vBXzyK90NLAawhrhMtet0SGga6VJh0VIB0Wi+pDWbr0iAyI/pl 5/rvO6l8X4giF1vGYqw/KgW6qIux11oPIlmSPkgBp0tqii9kejYZotWH0//ZIyva /k77B8ID0aSQaiNJJKB+R4pPU/NvseqX -----END CERTIFICATE-----Generated at Sun Dec 7 03:31:33 2025 by rpki-client