This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft File: REDuIbNImmUKYWsSDY5b5Xku4Es.mft (raw, json) Hash identifier: yDzuQfG8AeI+RWQ2ltEO6K9DwGbSerfJfcT5Yp0pyBU= Subject key identifier: 7C:70:02:24:05:FC:29:BE:97:AD:1E:8B:42:8E:1E:98:F8:F2:53:A5 Authority key identifier: 44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B Certificate issuer: /CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Certificate serial: 0CAE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft Manifest number: 0CA6 Signing time: Sat 06 Dec 2025 17:40:54 +0000 Manifest this update: Sat 06 Dec 2025 17:40:54 +0000 Manifest next update: Sat 13 Dec 2025 17:40:54 +0000 Files and hashes: 1: REDuIbNImmUKYWsSDY5b5Xku4Es.crl (hash: ijaW67/NMcoOrwgPepNqEmFhlzLJrqxIwyY+v0b4YeU=) 2: 7155C8563E5E11EAB043A522C4F9AE02.roa (hash: M3bsS+Xk9LNsygw5XkjDTpnJwQmvk0v371BaGHqkpV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3246 (0xcae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Validity Not Before: Dec 6 17:40:54 2025 GMT Not After : Dec 13 17:40:54 2025 GMT Subject: CN=69346aa6-c3b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:31:55:18:1d:bf:02:7a:61:a9:23:7b:91:04: 19:af:d9:d2:1c:5a:36:0b:83:ee:3a:a0:54:19:a5: 53:95:8a:b1:6a:ac:49:93:25:61:fd:7f:b8:45:d7: ae:f7:a5:23:7b:b0:d7:db:dc:66:fb:76:0b:e6:a6: d3:d3:c2:9e:10:fc:9d:61:b1:3d:a8:01:d7:45:34: 7f:fc:c3:74:65:cf:b9:40:2a:68:d6:ea:9e:51:f3: 3e:76:2e:c3:a8:0c:66:c6:3f:9f:7e:14:c6:34:df: f7:ca:0b:26:57:b6:8b:7a:e9:db:d6:e5:52:f5:b3: 86:cb:d2:cc:d6:69:9b:04:e6:31:c3:b3:4e:fd:40: 13:87:44:fa:db:a6:b6:a1:c4:aa:1a:05:41:c0:95: 5f:4c:ab:b3:f3:5e:db:3d:25:8c:4c:ed:c4:e0:21: c1:b4:3a:62:61:c1:95:de:1c:92:7a:5c:7f:b1:40: 0b:c9:2d:9c:fa:9f:b4:81:9f:d7:67:ee:63:f0:6d: f7:df:1a:b0:4d:52:48:9f:ab:e7:72:11:3a:87:65: 13:5f:81:c3:f4:bc:64:19:b1:70:d1:c2:b8:04:16: 3d:02:d2:ab:35:1e:ef:77:72:e7:f0:56:8f:37:44: bd:9f:ee:33:2d:8e:e8:b0:ea:78:4e:c3:15:a2:8e: 6e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:70:02:24:05:FC:29:BE:97:AD:1E:8B:42:8E:1E:98:F8:F2:53:A5 X509v3 Authority Key Identifier: keyid:44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:03:ea:b0:f7:9b:98:93:be:1b:34:74:a9:e4:c7:62:b5:3d: c9:38:15:e3:6e:ab:7a:36:3f:4b:b8:34:67:65:8a:b1:3a:15: bf:76:f6:8d:d4:30:fd:5f:b7:90:5d:43:0c:b1:54:f1:5c:cb: db:a3:eb:4e:07:68:e3:60:26:25:4d:69:8a:e9:77:50:36:95: 81:ee:d2:98:1e:e4:6b:99:31:b9:99:6d:33:54:fd:75:d9:c8: 77:db:a5:1e:3f:a0:dc:2a:fc:3a:4c:86:14:1b:da:e7:cc:c5: 5b:fc:54:8e:eb:e6:d4:0e:b3:5f:4b:98:5a:cf:1e:63:bf:65: 74:31:e9:7c:2a:9d:17:1f:b7:71:e0:b5:f8:cb:c6:a6:06:39: ee:94:66:0b:d2:03:27:c5:fe:3a:1d:ba:e2:f9:5c:c0:20:db: dd:3b:ef:9c:ac:73:c6:66:e2:b7:ba:6e:e4:15:76:f4:42:71: d0:54:47:41:92:36:c1:ed:ab:c2:ab:11:b4:25:76:7b:9c:8f: 82:66:02:89:13:2e:e5:52:65:08:76:28:97:3d:71:51:41:31: c7:93:76:42:a2:8c:b3:54:a2:ee:2f:3b:a0:89:94:12:34:d7: 10:34:5c:a2:1c:4e:62:90:25:2b:5f:da:2c:94:66:57:da:02: 1c:c3:7b:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKDQ0NDBFRTIxQjM0ODlBNjUwQTYxNkIxMjBEOEU1QkU1 NzkyRUUwNEIwHhcNMjUxMjA2MTc0MDU0WhcNMjUxMjEzMTc0MDU0WjAYMRYwFAYD VQQDEw02OTM0NmFhNi1jM2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjFVGB2/AnphqSN7kQQZr9nSHFo2C4PuOqBUGaVTlYqxaqxJkyVh/X+4Rdeu 96Uje7DX29xm+3YL5qbT08KeEPydYbE9qAHXRTR//MN0Zc+5QCpo1uqeUfM+di7D qAxmxj+ffhTGNN/3ygsmV7aLeunb1uVS9bOGy9LM1mmbBOYxw7NO/UATh0T626a2 ocSqGgVBwJVfTKuz817bPSWMTO3E4CHBtDpiYcGV3hySelx/sUALyS2c+p+0gZ/X Z+5j8G333xqwTVJIn6vnchE6h2UTX4HD9LxkGbFw0cK4BBY9AtKrNR7vd3Ln8FaP N0S9n+4zLY7osOp4TsMVoo5u+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxwAiQF /Cm+l60ei0KOHpj48lOlMB8GA1UdIwQYMBaAFERA7iGzSJplCmFrEg2OW+V5LuBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8xODgyM0M4QzA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1tVUtZV3NTRFk1YjVYa3U0 RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JFRHVJYk5JbW1VS1lXc1NEWTViNVhrdTRFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8xODgyM0M4QzA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1t VUtZV3NTRFk1YjVYa3U0RXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAA+qw95uYk74bNHSp5MditT3JOBXjbqt6Nj9LuDRnZYqxOhW/dvaN 1DD9X7eQXUMMsVTxXMvbo+tOB2jjYCYlTWmK6XdQNpWB7tKYHuRrmTG5mW0zVP11 2ch326UeP6DcKvw6TIYUG9rnzMVb/FSO6+bUDrNfS5hazx5jv2V0Mel8Kp0XH7dx 4LX4y8amBjnulGYL0gMnxf46Hbri+VzAINvdO++crHPGZuK3um7kFXb0QnHQVEdB kjbB7avCqxG0JXZ7nI+CZgKJEy7lUmUIdiiXPXFRQTHHk3ZCooyzVKLuLzugiZQS NNcQNFyiHE5ikCUrX9oslGZX2gIcw3vL -----END CERTIFICATE-----Generated at Sat Dec 6 22:25:43 2025 by rpki-client