This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft File: 4idah1qSyusBBPicRvSlhbet9bY.mft (raw, json) Hash identifier: M0AZZcqTfrS4+KLfG77a8qbsxWZaUEQfLjrzl/6f0OM= Subject key identifier: D6:E8:90:5D:D0:98:E2:97:4C:E2:E6:62:C3:19:D1:16:60:68:B1:E1 Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0D50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft Manifest number: 0D44 Signing time: Sat 06 Dec 2025 17:25:59 +0000 Manifest this update: Sat 06 Dec 2025 17:25:58 +0000 Manifest next update: Sat 13 Dec 2025 17:25:58 +0000 Files and hashes: 1: 4idah1qSyusBBPicRvSlhbet9bY.crl (hash: CAcI7DaHCzSwMAXh5ZbRxYiEAp4ZenZkT4f5dT+SdbU=) 2: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (hash: qxCxFSPkCJMsK7i3RHMxc9Lr9Tcp57aZA1WThFY3ZFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3408 (0xd50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Dec 6 17:25:58 2025 GMT Not After : Dec 13 17:25:58 2025 GMT Subject: CN=69346727-1630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b2:62:bb:ea:b6:d0:99:00:94:4a:3e:fa:56: d5:9d:82:fa:c9:25:ad:b2:16:6a:56:e1:1c:ac:b2: f0:89:bf:a5:fb:18:e6:33:1c:c1:14:93:45:6a:10: f8:4a:9b:14:a3:6c:7a:33:54:40:7c:92:81:27:5f: 68:86:4d:61:91:b7:85:6b:80:58:a2:5b:ba:48:58: f8:da:89:48:5a:3a:04:a6:09:53:ff:0e:33:0c:eb: 82:24:dc:07:85:18:c6:a6:b6:3b:34:9a:13:d9:a4: 91:68:f0:02:9e:6e:1c:b6:b6:43:7e:b3:72:b0:f0: 9a:b0:ab:cb:2c:a4:fa:55:60:59:11:c5:2d:54:27: 77:ec:2b:29:53:c1:55:03:72:8a:3e:bf:29:75:da: fa:bf:f0:6b:9d:d1:88:91:97:cd:85:38:ff:61:0b: 9e:cf:f3:e3:7a:e5:25:18:d1:95:71:7e:50:20:d4: 18:ef:77:c6:59:73:81:f4:b5:f2:6e:c0:e8:ec:f7: ab:70:1f:56:e8:ef:74:a3:52:3c:56:81:6b:32:ab: f9:b0:2b:65:ef:2f:d1:cd:65:a0:71:09:54:98:02: 75:fa:1b:b3:1e:2e:0d:ad:6a:97:db:ce:73:26:20: 61:d3:be:10:1a:8d:55:3a:4a:fc:4e:01:a7:5e:50: da:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E8:90:5D:D0:98:E2:97:4C:E2:E6:62:C3:19:D1:16:60:68:B1:E1 X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:fd:16:6a:59:96:fd:a6:bf:1a:1f:d2:dd:ca:dd:6e:d3:80: 61:1a:61:a1:b2:80:31:18:fe:59:ee:b5:39:2d:bb:97:e0:96: b5:ae:35:88:b1:fd:d2:23:5b:20:30:1c:4f:ea:01:57:1d:1a: 14:c1:9b:c9:61:91:47:d6:02:e0:68:3c:9c:23:02:5c:6b:90: 26:b0:4f:74:8b:f4:97:fe:09:d2:aa:a1:f4:18:15:3e:48:b3: 3b:b1:fc:1e:7e:58:a1:02:95:b2:c0:79:f0:82:f7:7b:b6:a2: 95:a8:51:14:87:ed:e1:99:ed:10:7f:21:c7:8c:46:ed:c4:12: 97:c5:59:fc:ee:d8:4e:18:e4:2f:80:70:de:94:58:cc:5f:32: 27:2d:31:78:14:99:9d:4e:e7:27:8e:ee:52:b6:6b:f4:ab:14: 10:c7:58:9a:92:11:d9:1d:e4:b1:f4:3e:3f:25:fd:a1:7c:2f: 0b:14:aa:a6:26:4a:ce:eb:21:de:64:f2:15:c7:fc:f1:bc:69: ef:da:04:fa:f0:4c:21:0d:19:bf:10:71:da:33:56:45:b8:41: 53:d0:a0:21:b4:9f:8c:98:27:04:f4:19:de:af:ee:f2:59:21: b6:e7:10:17:ca:b4:b1:c4:6c:5b:5c:57:e2:dc:bd:23:0b:08: e7:59:10:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjUxMjA2MTcyNTU4WhcNMjUxMjEzMTcyNTU4WjAYMRYwFAYD VQQDEw02OTM0NjcyNy0xNjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbJiu+q20JkAlEo++lbVnYL6ySWtshZqVuEcrLLwib+l+xjmMxzBFJNFahD4 SpsUo2x6M1RAfJKBJ19ohk1hkbeFa4BYolu6SFj42olIWjoEpglT/w4zDOuCJNwH hRjGprY7NJoT2aSRaPACnm4ctrZDfrNysPCasKvLLKT6VWBZEcUtVCd37CspU8FV A3KKPr8pddr6v/BrndGIkZfNhTj/YQuez/PjeuUlGNGVcX5QINQY73fGWXOB9LXy bsDo7PercB9W6O90o1I8VoFrMqv5sCtl7y/RzWWgcQlUmAJ1+huzHi4NrWqX285z JiBh074QGo1VOkr8TgGnXlDaOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbokF3Q mOKXTOLmYsMZ0RZgaLHhMB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzU2MS84NkMzMDQ4MkU3MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1 c0JCUGljUnZTbGhiZXQ5YlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5/RZqWZb9pr8aH9Ldyt1u04BhGmGhsoAxGP5Z7rU5LbuX4Ja1rjWI sf3SI1sgMBxP6gFXHRoUwZvJYZFH1gLgaDycIwJca5AmsE90i/SX/gnSqqH0GBU+ SLM7sfweflihApWywHnwgvd7tqKVqFEUh+3hme0QfyHHjEbtxBKXxVn87thOGOQv gHDelFjMXzInLTF4FJmdTucnju5Stmv0qxQQx1iakhHZHeSx9D4/Jf2hfC8LFKqm JkrO6yHeZPIVx/zxvGnv2gT68EwhDRm/EHHaM1ZFuEFT0KAhtJ+MmCcE9Bner+7y WSG25xAXyrSxxGxbXFfi3L0jCwjnWRBq -----END CERTIFICATE-----Generated at Sat Dec 6 23:04:36 2025 by rpki-client