This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: PGJQrUclAVx349uZ9YQwoBesAWFf8Cc3kTOvzU2oHDs= Subject key identifier: B6:A2:33:2C:5E:A5:D1:89:DF:5F:41:7E:9C:DF:2D:FD:A8:A0:D7:01 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: D9 Signing time: Fri 05 Dec 2025 03:35:20 +0000 Manifest this update: Fri 05 Dec 2025 03:35:19 +0000 Manifest next update: Fri 12 Dec 2025 03:35:19 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: hOr6ixwQ5SK0QVWujRvckheRnk5T8LRFRBe+R2v4RFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:35:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Dec 5 03:35:19 2025 GMT Not After : Dec 12 03:35:19 2025 GMT Subject: CN=693252f8-41bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d5:aa:82:26:79:74:d4:a7:6b:42:b7:99:9f: c1:f9:e9:ad:7b:40:fc:e7:fc:55:9e:a5:c2:a2:db: 33:f6:a7:c0:b9:90:eb:fc:8a:2d:42:5c:20:54:9d: 2a:92:c6:1b:a7:06:7f:04:dd:94:67:ce:16:4d:d2: f7:4a:66:ab:00:13:21:c1:a4:7c:4f:2a:48:9c:b5: 5a:58:ff:96:60:83:d3:90:cc:a7:bc:35:32:5e:87: ad:31:0d:6b:ca:c7:7b:59:06:37:d2:2c:2d:ee:99: c9:7d:88:85:ed:6e:b4:c7:1a:3a:46:3a:5e:0f:82: 89:cc:5a:3f:bd:19:86:0b:9d:ce:13:36:8c:f2:d0: 53:cb:6c:d2:ee:22:0f:95:f3:8c:e1:2d:a7:74:f7: 12:43:d4:92:be:7c:e1:4d:32:c7:b9:1e:4c:4c:7c: a0:09:11:53:26:50:5b:55:30:6e:a3:8b:f8:36:73: ec:5d:7d:71:11:3b:c7:d6:c8:45:42:f7:4e:fb:37: d9:0f:b3:55:a6:1f:56:1b:4b:83:e2:58:fe:e3:c1: 6d:5f:63:1d:67:f3:1c:93:cf:7b:77:8f:22:82:33: da:dc:0b:9b:19:15:da:43:b9:20:55:91:21:10:36: 44:ea:a1:17:68:25:f1:c3:da:31:10:b7:c4:a9:53: fc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A2:33:2C:5E:A5:D1:89:DF:5F:41:7E:9C:DF:2D:FD:A8:A0:D7:01 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:7f:ac:5b:3a:7a:c6:0c:c3:b0:6b:2b:b7:1f:13:4d:61:3f: dc:7d:09:96:52:21:2a:af:19:92:02:3d:6d:db:09:dd:d8:4a: 8b:58:67:ea:b8:30:fd:34:51:fd:11:19:ee:4f:1b:0d:46:cc: 1a:ca:88:68:8e:d7:75:8f:24:03:b8:64:1c:7f:e4:7a:41:b3: 7c:22:fb:f1:51:9e:6b:25:46:65:e6:3e:04:1f:ce:af:07:e5: c1:33:ef:a7:83:41:2d:c4:48:27:27:8d:14:e7:19:83:11:b1: 86:30:54:8e:99:10:fe:ca:cb:de:d9:f1:b5:e2:b1:85:79:ac: 9e:c8:a2:d3:09:8f:85:81:ea:0e:4c:ee:c8:5e:a1:b1:c8:12: f2:93:2e:08:f3:87:80:6f:e6:be:a2:f9:d3:a3:0c:9c:98:6e: a3:07:f2:33:ab:5b:5e:a9:28:9c:6c:b6:eb:35:ed:6d:47:be: 7f:31:30:b4:03:a0:38:d4:4f:d3:d4:3d:1f:8d:7e:7a:52:0d: 80:0a:10:6a:3d:e0:a0:46:7e:7b:cc:e7:d2:ed:e4:cb:e8:86: bb:97:61:a8:f0:a9:03:46:09:3b:5f:39:44:ee:78:8d:c3:54: 97:c6:23:78:a4:00:9d:71:3f:3f:35:86:e8:1c:10:10:bc:3e: d0:bb:bf:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDY4QjMyM0RBODRFMTIwNTQ2NkNFQjVBRkQ3RDYwNzcy Njc1QjA1MzEwHhcNMjUxMjA1MDMzNTE5WhcNMjUxMjEyMDMzNTE5WjAYMRYwFAYD VQQDEw02OTMyNTJmOC00MWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dWqgiZ5dNSna0K3mZ/B+emte0D85/xVnqXCotsz9qfAuZDr/IotQlwgVJ0q ksYbpwZ/BN2UZ84WTdL3SmarABMhwaR8TypInLVaWP+WYIPTkMynvDUyXoetMQ1r ysd7WQY30iwt7pnJfYiF7W60xxo6RjpeD4KJzFo/vRmGC53OEzaM8tBTy2zS7iIP lfOM4S2ndPcSQ9SSvnzhTTLHuR5MTHygCRFTJlBbVTBuo4v4NnPsXX1xETvH1shF QvdO+zfZD7NVph9WG0uD4lj+48FtX2MdZ/Mck897d48igjPa3AubGRXaQ7kgVZEh EDZE6qEXaCXxw9oxELfEqVP87QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaiMyxe pdGJ319BfpzfLf2ooNcBMB8GA1UdIwQYMBaAFGizI9qE4SBUZs61r9fWB3JnWwUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi83NDFBMUUyQzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElGUm16cld2MTlZSGNtZGJC VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi83NDFBMUUyQzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElG Um16cld2MTlZSGNtZGJCVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIf6xbOnrGDMOwayu3HxNNYT/cfQmWUiEqrxmSAj1t2wnd2EqLWGfq uDD9NFH9ERnuTxsNRswayohojtd1jyQDuGQcf+R6QbN8IvvxUZ5rJUZl5j4EH86v B+XBM++ng0EtxEgnJ40U5xmDEbGGMFSOmRD+ysve2fG14rGFeayeyKLTCY+FgeoO TO7IXqGxyBLyky4I84eAb+a+ovnTowycmG6jB/Izq1teqSicbLbrNe1tR75/MTC0 A6A41E/T1D0fjX56Ug2AChBqPeCgRn57zOfS7eTL6Ia7l2Go8KkDRgk7XzlE7niN w1SXxiN4pACdcT8/NYboHBAQvD7Qu78b -----END CERTIFICATE-----Generated at Sat Dec 6 19:03:08 2025 by rpki-client