This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft File: mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft (raw, json) Hash identifier: vXlpt1i5w5lGvYivsBaUIwHbwX28aE6z7YLOoMdTk7A= Subject key identifier: 2C:D7:D8:62:AB:4F:11:D7:79:47:F9:51:85:44:46:41:0E:BC:B1:0D Authority key identifier: 9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 Certificate issuer: /CN=A91CB21D/serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft Manifest number: 020D Signing time: Fri 05 Dec 2025 00:34:16 +0000 Manifest this update: Fri 05 Dec 2025 00:34:16 +0000 Manifest next update: Fri 12 Dec 2025 00:34:16 +0000 Files and hashes: 1: mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl (hash: xfP9GXgy1ouzSTGmTwn4D2IM4JDlbmtRAFM/1tJIXZA=) 2: 11F911FAA8D811ED90192E3CC4F9AE02.roa (hash: 1slDbS6OMsVzRicTRklA2Gp5/wmmSnjZBoyP9DPcUVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB21D, serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Validity Not Before: Dec 5 00:34:16 2025 GMT Not After : Dec 12 00:34:16 2025 GMT Subject: CN=69322888-2c5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:07:ed:74:68:10:ee:67:fe:8f:2e:71:bc:ca: 2c:24:7c:6e:ab:be:77:ff:d6:64:45:13:e1:80:45: 86:b0:d2:ed:9c:b3:89:f8:1f:35:6f:f1:c3:9d:3b: 29:9f:67:7f:dd:70:6f:b6:41:85:90:72:8a:f4:ec: 2c:fd:b8:e4:7e:28:de:61:ae:66:21:ff:d4:82:59: 80:85:94:52:87:d6:7f:c6:70:d2:b4:53:8a:83:cd: 75:ad:72:79:08:a8:27:06:fc:3d:dd:eb:68:71:bd: 13:eb:97:aa:c9:90:07:fb:61:57:0e:4c:a5:f0:c6: cc:10:f1:b9:a1:29:12:ba:ba:a5:72:3d:17:03:1c: 24:b5:7f:fa:ea:0a:cf:f0:8c:25:24:ad:e0:64:39: 0a:b2:8b:1e:28:b0:f4:6d:96:2f:4d:ef:50:5f:62: 9a:bd:51:1c:4b:7f:f5:46:de:60:ab:77:0a:e4:bf: 3e:4e:8a:d7:70:fd:b3:31:48:e3:15:ac:73:98:07: b6:6c:65:d6:89:d7:21:6a:8a:7f:6e:d3:6d:4b:94: a2:fd:8d:26:6f:4f:51:b5:95:d3:56:72:8f:92:4a: 1a:28:71:b2:06:14:84:2a:84:53:c4:87:71:04:31: 1e:71:61:ea:5b:cf:91:a0:a3:2e:be:54:83:c1:2c: f3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D7:D8:62:AB:4F:11:D7:79:47:F9:51:85:44:46:41:0E:BC:B1:0D X509v3 Authority Key Identifier: keyid:9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:b5:44:e1:62:93:7f:83:c4:ca:a7:b1:67:5f:c9:c6:15:b5: 7f:78:5e:05:86:aa:71:e4:39:79:0e:c4:9f:3e:64:b0:83:36: 72:a2:a6:ef:bb:3d:e2:71:c5:9a:b7:e1:44:04:2a:c1:f5:59: 71:02:58:14:f4:f9:39:0a:f6:df:5d:be:07:1a:c9:5f:69:75: f7:70:31:38:89:fb:72:94:d5:49:56:57:c3:45:1f:8f:b2:76: df:68:ba:df:ec:fb:3f:d3:e0:aa:df:46:a1:09:03:f0:94:26: 64:38:8e:e8:9d:be:31:f3:e5:03:7c:6e:d2:14:1b:e3:65:c5: 21:c4:cb:e5:d8:ab:f8:4f:92:02:48:fa:7b:70:85:4b:5b:39: e5:10:67:22:0f:b8:b5:68:d3:a5:7f:52:b2:56:68:a3:9d:46: cc:86:15:91:82:a5:0c:67:52:80:91:91:4c:8e:72:3a:08:29: 02:a5:ef:7e:2e:71:8c:03:75:3a:f4:4b:06:10:c4:dc:e9:36: 33:2a:f0:21:84:21:59:c9:32:56:a4:24:b2:98:1c:8f:d1:0a: cd:13:e0:ec:4d:1b:22:75:47:20:3a:b9:47:54:49:b4:de:40: 2f:0c:57:f1:2f:3f:e1:24:6e:dd:aa:64:26:36:93:e2:c1:88: 3a:23:9c:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IyMUQxMTAvBgNVBAUTKDlCMUU4MTg4Q0U2NDM5N0U4QjQyNDFFNjc1OEQ0MjlE QTBGRjJFNzAwHhcNMjUxMjA1MDAzNDE2WhcNMjUxMjEyMDAzNDE2WjAYMRYwFAYD VQQDEw02OTMyMjg4OC0yYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugftdGgQ7mf+jy5xvMosJHxuq753/9ZkRRPhgEWGsNLtnLOJ+B81b/HDnTsp n2d/3XBvtkGFkHKK9Ows/bjkfijeYa5mIf/UglmAhZRSh9Z/xnDStFOKg811rXJ5 CKgnBvw93etocb0T65eqyZAH+2FXDkyl8MbMEPG5oSkSurqlcj0XAxwktX/66grP 8IwlJK3gZDkKsoseKLD0bZYvTe9QX2KavVEcS3/1Rt5gq3cK5L8+TorXcP2zMUjj FaxzmAe2bGXWidchaop/btNtS5Si/Y0mb09RtZXTVnKPkkoaKHGyBhSEKoRTxIdx BDEecWHqW8+RoKMuvlSDwSzzaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzX2GKr TxHXeUf5UYVERkEOvLENMB8GA1UdIwQYMBaAFJsegYjOZDl+i0JB5nWNQp2g/y5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjIxRC82MzJDRDNFNkE3 RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09YNkxRa0htZFkxQ25hRF9M bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL214NkJpTTVrT1g2TFFrSG1kWTFDbmFEX0xuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjIxRC82MzJDRDNFNkE3RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09Y NkxRa0htZFkxQ25hRF9MbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAktUThYpN/g8TKp7FnX8nGFbV/eF4Fhqpx5Dl5DsSfPmSwgzZyoqbv uz3iccWat+FEBCrB9VlxAlgU9Pk5CvbfXb4HGslfaXX3cDE4iftylNVJVlfDRR+P snbfaLrf7Ps/0+Cq30ahCQPwlCZkOI7onb4x8+UDfG7SFBvjZcUhxMvl2Kv4T5IC SPp7cIVLWznlEGciD7i1aNOlf1KyVmijnUbMhhWRgqUMZ1KAkZFMjnI6CCkCpe9+ LnGMA3U69EsGEMTc6TYzKvAhhCFZyTJWpCSymByP0QrNE+DsTRsidUcgOrlHVEm0 3kAvDFfxLz/hJG7dqmQmNpPiwYg6I5zW -----END CERTIFICATE-----Generated at Sat Dec 6 19:34:56 2025 by rpki-client