This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: FjpLdPEH8eqXMY/em3GFuyh7j6Na+HW+yBM7dxL5NrY= Subject key identifier: 5A:A1:0C:99:5B:2D:7D:6C:F9:5D:B0:21:A1:4A:DD:0C:34:7D:F2:3D Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 0819 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 0813 Signing time: Thu 04 Dec 2025 19:59:55 +0000 Manifest this update: Thu 04 Dec 2025 19:59:55 +0000 Manifest next update: Thu 11 Dec 2025 19:59:55 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: Re9XVpWWXqkgEHwd3ZBurYsSiacgo+yYiayvniD8a3A=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: 1JW5KMonI+myYbgnoGZrN58lfkI/ChrhCIGbsfRSUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2073 (0x819) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Dec 4 19:59:55 2025 GMT Not After : Dec 11 19:59:55 2025 GMT Subject: CN=6931e83b-0022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:26:f5:5a:32:22:db:94:8c:32:43:4f:b8:41: 87:a7:66:21:0c:8e:03:06:a4:9d:c9:91:b6:d6:e2: 5f:26:af:a2:23:c8:87:30:a7:d9:89:78:42:29:0d: c9:c1:66:bb:84:e6:02:73:ba:1d:55:f5:a7:70:88: 3b:40:a7:ca:ea:b9:9b:94:08:24:71:15:52:9c:aa: 56:e4:29:0f:41:29:5e:fa:cf:2a:04:79:e8:d5:07: 06:c9:6c:73:05:e1:3a:b0:e4:01:23:f6:8c:e4:5b: 9f:5b:a7:a2:c6:b8:82:09:a5:48:23:ba:0e:ae:0e: 8a:33:16:68:df:da:ff:5b:21:11:2d:32:af:a4:73: 21:40:26:1a:cb:14:05:83:43:c9:a5:8b:e9:1d:70: 86:39:bf:5c:89:c7:ff:97:ce:d5:4f:14:d1:f5:0d: 29:8e:c8:2e:e5:88:23:6f:ec:33:d1:d5:12:28:db: 20:26:8b:f0:d2:73:f2:37:7d:96:e7:47:f7:d3:cb: f5:fd:09:eb:bb:66:82:06:9c:b5:ce:20:f1:6c:77: 29:8c:42:45:52:72:de:4a:2a:1b:47:5c:79:d9:c0: fb:3a:3c:01:c1:48:01:fd:b8:cb:ee:fd:f4:fb:60: 97:a2:66:3b:a6:23:1b:a7:fa:b4:3a:83:44:e1:5e: ad:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A1:0C:99:5B:2D:7D:6C:F9:5D:B0:21:A1:4A:DD:0C:34:7D:F2:3D X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:3a:4c:9a:66:b1:89:3c:9c:28:23:7c:45:95:70:cc:b2:c4: 16:ba:09:29:bd:16:09:eb:58:93:33:d9:a1:1d:9a:38:da:fc: 15:4d:ae:38:59:30:55:30:cc:0d:58:e9:02:98:dc:a3:62:32: 46:44:65:94:53:19:c7:7a:29:e3:6e:a0:9d:13:25:99:f9:1f: b5:ad:e5:3d:ac:15:e6:89:9d:ee:2b:41:a9:90:23:7b:96:3b: d3:d6:8b:71:dd:f2:25:d7:be:ba:8d:b7:cb:9d:54:27:f0:03: b5:31:aa:b2:a5:9b:e1:c8:cc:2c:44:41:e9:09:91:9e:60:44: 7e:94:31:87:e1:a3:e6:b1:63:08:9c:50:bb:0f:45:52:9c:d9: a0:23:f8:80:d3:db:f1:5c:ca:6f:dc:29:72:42:1d:fa:0f:67: c7:ba:e4:fc:d8:91:e7:b8:8a:7e:74:f9:bc:73:3f:f9:54:13: 8f:5f:10:e9:18:2f:7b:37:ce:da:fb:5c:7a:b5:ea:e1:91:3e: 8a:96:e5:bb:fd:b1:6f:76:f6:6d:3e:9e:e7:cd:e7:b1:5b:8e: 63:a3:93:19:94:d8:2e:df:f0:c4:b8:43:58:cf:94:8c:ff:fb: 10:fe:86:ae:a6:96:ba:97:9c:14:52:69:96:33:b9:e1:cc:d8: 26:88:ec:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjUxMjA0MTk1OTU1WhcNMjUxMjExMTk1OTU1WjAYMRYwFAYD VQQDEw02OTMxZTgzYi0wMDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yb1WjIi25SMMkNPuEGHp2YhDI4DBqSdyZG21uJfJq+iI8iHMKfZiXhCKQ3J wWa7hOYCc7odVfWncIg7QKfK6rmblAgkcRVSnKpW5CkPQSle+s8qBHno1QcGyWxz BeE6sOQBI/aM5FufW6eixriCCaVII7oOrg6KMxZo39r/WyERLTKvpHMhQCYayxQF g0PJpYvpHXCGOb9cicf/l87VTxTR9Q0pjsgu5Ygjb+wz0dUSKNsgJovw0nPyN32W 50f308v1/Qnru2aCBpy1ziDxbHcpjEJFUnLeSiobR1x52cD7OjwBwUgB/bjL7v30 +2CXomY7piMbp/q0OoNE4V6ttwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqhDJlb LX1s+V2wIaFK3Qw0ffI9MB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTOkyaZrGJPJwoI3xFlXDMssQWugkpvRYJ61iTM9mhHZo42vwVTa44 WTBVMMwNWOkCmNyjYjJGRGWUUxnHeinjbqCdEyWZ+R+1reU9rBXmiZ3uK0GpkCN7 ljvT1otx3fIl1766jbfLnVQn8AO1MaqypZvhyMwsREHpCZGeYER+lDGH4aPmsWMI nFC7D0VSnNmgI/iA09vxXMpv3ClyQh36D2fHuuT82JHnuIp+dPm8cz/5VBOPXxDp GC97N87a+1x6terhkT6KluW7/bFvdvZtPp7nzeexW45jo5MZlNgu3/DEuENYz5SM //sQ/oauppa6l5wUUmmWM7nhzNgmiOzp -----END CERTIFICATE-----Generated at Sat Dec 6 15:58:50 2025 by rpki-client