This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft File: iP8qX1-BdhNDU35LVLXmoW8gfqk.mft (raw, json) Hash identifier: rdUB9iqVl0TdC8UcfzCdiohXHcZYN1hWs0WxZnypn9E= Subject key identifier: B9:B4:22:CB:4C:00:F8:B9:A8:83:08:00:4B:73:93:9F:44:36:F5:A0 Authority key identifier: 88:FF:2A:5F:5F:81:76:13:43:53:7E:4B:54:B5:E6:A1:6F:20:7E:A9 Certificate issuer: /CN=A91CF1E7/serialNumber=88FF2A5F5F81761343537E4B54B5E6A16F207EA9 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft Manifest number: 01A5 Signing time: Fri 05 Dec 2025 01:28:30 +0000 Manifest this update: Fri 05 Dec 2025 01:28:29 +0000 Manifest next update: Fri 12 Dec 2025 01:28:29 +0000 Files and hashes: 1: iP8qX1-BdhNDU35LVLXmoW8gfqk.crl (hash: 19lhxb/TgWXTM5zFpNTdt71xq5n7RNejLuGU9Ay2Ezk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.crl rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF1E7, serialNumber=88FF2A5F5F81761343537E4B54B5E6A16F207EA9 Validity Not Before: Dec 5 01:28:29 2025 GMT Not After : Dec 12 01:28:29 2025 GMT Subject: CN=6932353d-dcb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3a:1a:c7:f8:55:4c:0d:b8:3e:24:20:44:dd: 2c:80:ec:19:2c:b4:17:67:39:b6:4e:2d:f0:32:9f: 41:e6:ed:d1:3a:da:0b:5d:7d:94:dd:ba:35:56:5f: 15:6b:23:7a:1c:e5:a4:da:b4:4b:f4:ee:f5:69:ba: 54:fa:3c:0c:7d:13:6d:e1:40:fd:30:c6:7a:8b:e3: 0f:91:0b:72:a9:69:f8:f6:90:d3:0f:27:a4:6b:25: 4d:c1:93:55:a9:c7:eb:53:3b:c2:f3:fd:70:8f:c3: aa:1b:bf:84:e7:f9:88:54:b2:de:46:55:35:04:8d: f5:d9:6f:e9:81:49:cf:2a:eb:d3:78:58:6e:18:ed: 85:7b:0a:06:d5:4c:70:08:07:ab:7e:33:1e:34:98: aa:46:30:b1:91:93:0b:30:a1:71:e6:a3:7c:7c:e2: 4c:09:37:7e:08:2c:48:e9:d7:b0:81:6b:ca:5a:c7: c1:54:39:b5:f3:d8:22:c8:5a:24:55:af:e8:ce:c9: 91:54:5d:33:87:cb:95:04:c9:4b:f7:34:74:18:ed: 55:5e:89:21:89:80:20:b3:61:29:73:68:99:56:43: 9f:e8:a9:58:16:42:c8:13:88:40:df:4f:21:cb:92: c5:3d:fc:7d:93:75:f3:01:b1:74:8c:e6:5f:a3:07: d1:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B4:22:CB:4C:00:F8:B9:A8:83:08:00:4B:73:93:9F:44:36:F5:A0 X509v3 Authority Key Identifier: keyid:88:FF:2A:5F:5F:81:76:13:43:53:7E:4B:54:B5:E6:A1:6F:20:7E:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:73:81:86:09:e3:68:fe:4a:b2:82:07:85:4f:7b:c4:34:53: ec:dd:50:92:2c:ed:50:3a:e7:83:e1:16:ae:a7:53:7d:1d:5b: 6d:28:5f:2a:dd:22:cb:4b:6b:bc:13:b1:8f:f9:0f:d7:0b:dd: 1c:d1:ad:fc:ee:93:f3:05:d9:58:7e:28:8f:f2:05:b0:82:0b: ae:a4:46:37:ed:9a:33:b2:0a:fb:43:cf:94:ce:e7:20:32:35: 9f:fe:a2:3a:51:43:fe:8e:cb:be:17:0c:55:25:a5:95:1b:84: 1f:65:29:55:40:a2:78:03:20:a5:a1:5f:0a:64:f8:2e:7c:b0: 74:da:c6:50:3f:48:aa:a9:11:17:bd:fb:f7:9b:68:1a:5e:26: 2b:0c:a9:23:70:23:24:93:96:57:e5:54:10:65:ef:f1:33:d8: 8c:56:16:78:e5:7f:f5:d1:7c:10:e9:3b:4a:a9:0c:c6:51:4c: ec:9c:ce:fb:c1:1f:85:4e:ec:c5:73:09:4b:3f:aa:b5:8b:e9: 13:0c:a8:15:c1:d6:db:13:5e:a2:2b:10:b4:4d:40:96:4e:0a: d4:c0:e2:4a:2f:d2:d7:d4:34:49:b9:55:d4:7c:9f:ea:5a:d7: 2b:e6:f9:3d:7b:bc:24:6a:da:cb:8d:43:06:5b:6b:91:83:f2: 0d:77:b9:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YxRTcxMTAvBgNVBAUTKDg4RkYyQTVGNUY4MTc2MTM0MzUzN0U0QjU0QjVFNkEx NkYyMDdFQTkwHhcNMjUxMjA1MDEyODI5WhcNMjUxMjEyMDEyODI5WjAYMRYwFAYD VQQDEw02OTMyMzUzZC1kY2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDoax/hVTA24PiQgRN0sgOwZLLQXZzm2Ti3wMp9B5u3ROtoLXX2U3bo1Vl8V ayN6HOWk2rRL9O71abpU+jwMfRNt4UD9MMZ6i+MPkQtyqWn49pDTDyekayVNwZNV qcfrUzvC8/1wj8OqG7+E5/mIVLLeRlU1BI312W/pgUnPKuvTeFhuGO2FewoG1Uxw CAerfjMeNJiqRjCxkZMLMKFx5qN8fOJMCTd+CCxI6dewgWvKWsfBVDm189giyFok Va/ozsmRVF0zh8uVBMlL9zR0GO1VXokhiYAgs2Epc2iZVkOf6KlYFkLIE4hA308h y5LFPfx9k3XzAbF0jOZfowfRgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLm0IstM APi5qIMIAEtzk59ENvWgMB8GA1UdIwQYMBaAFIj/Kl9fgXYTQ1N+S1S15qFvIH6p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjFFNy8xREJFMUEzMjQ3 QjkxMUVFQUFEM0RCNEFDNEY5QUUwMi9pUDhxWDEtQmRoTkRVMzVMVkxYbW9XOGdm cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lQOHFYMS1CZGhORFUzNUxWTFhtb1c4Z2Zxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjFFNy8xREJFMUEzMjQ3QjkxMUVFQUFEM0RCNEFDNEY5QUUwMi9pUDhxWDEtQmRo TkRVMzVMVkxYbW9XOGdmcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEc4GGCeNo/kqyggeFT3vENFPs3VCSLO1QOueD4Raup1N9HVttKF8q 3SLLS2u8E7GP+Q/XC90c0a387pPzBdlYfiiP8gWwgguupEY37Zozsgr7Q8+Uzucg MjWf/qI6UUP+jsu+FwxVJaWVG4QfZSlVQKJ4AyCloV8KZPgufLB02sZQP0iqqREX vfv3m2gaXiYrDKkjcCMkk5ZX5VQQZe/xM9iMVhZ45X/10XwQ6TtKqQzGUUzsnM77 wR+FTuzFcwlLP6q1i+kTDKgVwdbbE16iKxC0TUCWTgrUwOJKL9LX1DRJuVXUfJ/q Wtcr5vk9e7wkatrLjUMGW2uRg/INd7lp -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:36 2025 by rpki-client