This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft File: dddb2lG8oAYPcIETI0xBReREQho.mft (raw, json) Hash identifier: 2sB4KS+BVIfCOru8zv8bizkuUdOeBMcMmpbImk+lXcY= Subject key identifier: 5E:97:C9:16:AE:2B:33:A5:48:4F:17:A9:32:D9:A4:B7:66:C2:DD:75 Authority key identifier: 75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A Certificate issuer: /CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Certificate serial: 08B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft Manifest number: 08AA Signing time: Sat 06 Dec 2025 19:38:38 +0000 Manifest this update: Sat 06 Dec 2025 19:38:37 +0000 Manifest next update: Sat 13 Dec 2025 19:38:37 +0000 Files and hashes: 1: dddb2lG8oAYPcIETI0xBReREQho.crl (hash: kqZ+CxHp6XfR92UGPGDipXolwVI5acYIEv96zTQ7dds=) 2: 96AC80A2CBB411EA99BB9A4DC4F9AE02.roa (hash: tYFsHgxAF9/ErgmR/KDg2eSuObnl9aWU/P2C3GZmtAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2225 (0x8b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB48, serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Validity Not Before: Dec 6 19:38:37 2025 GMT Not After : Dec 13 19:38:37 2025 GMT Subject: CN=6934863e-95f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fa:c5:5e:fa:ba:18:c3:81:f2:b2:43:ca:4a: f8:85:5f:29:5c:30:ff:05:17:b6:04:b2:34:0f:77: 26:b2:27:73:c0:bf:86:d3:e3:d7:f5:f8:5f:21:45: 37:c5:a4:79:19:32:b9:4f:74:84:db:57:1b:68:82: 82:4a:dc:f8:23:7c:1c:46:47:d0:92:b5:7f:19:7f: f3:95:24:95:de:ba:5a:1a:cf:3c:c8:73:f5:c9:25: 6a:7a:47:fe:83:83:23:49:e5:3f:29:6f:2b:28:82: 57:81:a6:b9:e0:8a:cb:ac:7d:d9:aa:54:33:66:b9: 2d:75:36:38:67:2a:7d:ca:fd:da:7c:e2:bc:17:79: 42:d6:61:06:77:ac:97:5d:9d:d4:29:d5:1b:d0:ef: 6d:1f:06:2f:09:ef:37:61:22:79:78:1d:c4:43:fb: 75:ba:71:ac:14:34:3c:4d:5e:97:24:d3:cc:b7:f4: 0b:9e:37:1c:e3:bd:16:44:04:d3:c4:90:d7:5a:2b: a3:b6:6c:70:e0:90:ea:dd:b5:6d:e4:4a:80:cc:18: 7a:bc:25:11:15:0c:5a:79:79:85:eb:c5:62:e1:49: dd:76:17:4e:38:f1:e8:37:eb:fd:ce:36:ee:03:e7: 92:b9:8c:2e:88:43:16:3d:3e:64:88:18:b9:33:a5: 4e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:97:C9:16:AE:2B:33:A5:48:4F:17:A9:32:D9:A4:B7:66:C2:DD:75 X509v3 Authority Key Identifier: keyid:75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:8f:2f:7c:8c:14:d4:61:9f:c3:11:72:ba:79:20:19:e9:98: cb:6a:da:ca:48:ce:c1:81:68:50:f0:04:c5:6f:57:3a:82:9a: c3:ae:6a:16:db:84:11:e1:b7:ca:3d:bf:9a:9f:a9:94:e4:81: a6:dc:79:2b:d4:28:67:9a:37:28:bb:4e:5d:6c:4b:cd:35:d5: 2e:65:4f:fa:37:1b:31:9f:ab:4a:41:f8:46:23:9f:ee:00:2f: e7:00:6f:91:66:74:76:82:61:7f:3e:a2:30:44:e4:ae:9d:7b: b1:87:bb:2f:3c:79:84:00:73:ad:a3:e0:93:4d:49:31:aa:b6: 99:95:79:10:36:a1:0e:59:11:4b:3f:34:a8:e4:68:57:26:8f: bb:8b:2d:af:de:b1:67:e3:e1:5c:e0:78:eb:9f:dd:27:ae:1e: 4e:bf:c8:ff:ec:c5:5e:cb:c3:5d:b4:d9:88:99:23:ea:2e:4e: 64:10:4b:a3:43:71:36:8b:7c:d6:06:fb:95:2d:67:27:49:19: f5:52:89:97:b6:f2:fc:35:2c:3d:59:ef:11:49:08:05:49:05: 5b:1d:50:4d:00:2e:76:9d:3f:54:f4:c2:da:37:64:78:ed:e8: d3:9d:9d:e1:ef:2e:38:2a:80:61:1a:f3:1b:5e:1c:b1:12:1e: 51:f3:8f:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCNDgxMTAvBgNVBAUTKDc1RDc1QkRBNTFCQ0EwMDYwRjcwODExMzIzNEM0MTQ1 RTQ0NDQyMUEwHhcNMjUxMjA2MTkzODM3WhcNMjUxMjEzMTkzODM3WjAYMRYwFAYD VQQDEw02OTM0ODYzZS05NWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvrFXvq6GMOB8rJDykr4hV8pXDD/BRe2BLI0D3cmsidzwL+G0+PX9fhfIUU3 xaR5GTK5T3SE21cbaIKCStz4I3wcRkfQkrV/GX/zlSSV3rpaGs88yHP1ySVqekf+ g4MjSeU/KW8rKIJXgaa54IrLrH3ZqlQzZrktdTY4Zyp9yv3afOK8F3lC1mEGd6yX XZ3UKdUb0O9tHwYvCe83YSJ5eB3EQ/t1unGsFDQ8TV6XJNPMt/QLnjcc470WRATT xJDXWiujtmxw4JDq3bVt5EqAzBh6vCURFQxaeXmF68Vi4UnddhdOOPHoN+v9zjbu A+eSuYwuiEMWPT5kiBi5M6VODwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6XyRau KzOlSE8XqTLZpLdmwt11MB8GA1UdIwQYMBaAFHXXW9pRvKAGD3CBEyNMQUXkREIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkI0OC85MEM0NzkxQ0NC QjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9BWVBjSUVUSTB4QlJlUkVR aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkZGIybEc4b0FZUGNJRVRJMHhCUmVSRVFoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkI0OC85MEM0NzkxQ0NCQjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9B WVBjSUVUSTB4QlJlUkVRaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGjy98jBTUYZ/DEXK6eSAZ6ZjLatrKSM7BgWhQ8ATFb1c6gprDrmoW 24QR4bfKPb+an6mU5IGm3Hkr1Chnmjcou05dbEvNNdUuZU/6Nxsxn6tKQfhGI5/u AC/nAG+RZnR2gmF/PqIwROSunXuxh7svPHmEAHOto+CTTUkxqraZlXkQNqEOWRFL PzSo5GhXJo+7iy2v3rFn4+Fc4Hjrn90nrh5Ov8j/7MVey8NdtNmImSPqLk5kEEuj Q3E2i3zWBvuVLWcnSRn1UomXtvL8NSw9We8RSQgFSQVbHVBNAC52nT9U9MLaN2R4 7ejTnZ3h7y44KoBhGvMbXhyxEh5R8488 -----END CERTIFICATE-----Generated at Sun Dec 7 01:57:54 2025 by rpki-client