This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft File: IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft (raw, json) Hash identifier: WaylXdN7gGgR/P0BQ166+Ql+y393lbmCWW8F8ZD0LKg= Subject key identifier: 42:84:C6:7A:D6:B7:80:58:7D:8D:13:12:AD:9E:7C:D3:31:D4:B7:EC Authority key identifier: 22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 Certificate issuer: /CN=A91CFFCB/serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft Manifest number: 5F Signing time: Fri 05 Dec 2025 04:58:38 +0000 Manifest this update: Fri 05 Dec 2025 04:58:38 +0000 Manifest next update: Fri 12 Dec 2025 04:58:38 +0000 Files and hashes: 1: IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl (hash: bLrjJ/fW0VpxUtuSSlzLy6elxHVS8NGltZPmWdNF5Kc=) 2: BAEA3A3C497B11F096DCA14EC4F9AE02.roa (hash: NGudT5ffYxQaLDuPITb3DSyOtSWSbubIZoe2i4vUMeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Validity Not Before: Dec 5 04:58:38 2025 GMT Not After : Dec 12 04:58:38 2025 GMT Subject: CN=6932667e-6f8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e8:c4:da:8c:15:6c:28:bc:12:17:62:6b:5c: 6f:d3:76:ac:56:8e:27:f4:aa:dc:5b:cc:5d:33:06: 7b:af:c8:d7:19:a3:f2:9d:c4:6f:90:d9:3c:93:f0: 22:65:5a:07:06:ca:ed:94:ee:fd:69:e6:f9:57:14: b6:2a:b8:b3:d3:37:d8:8b:ab:5d:41:62:54:f9:3b: a9:bd:a1:76:29:a1:86:36:4f:4e:bd:52:1b:c6:92: 0f:49:ae:2e:7f:c1:14:52:4c:f7:8b:b2:3c:4b:ff: 03:43:f0:eb:b3:62:b5:18:61:35:ae:ba:28:ee:de: 4f:ee:a2:ef:f4:c7:b1:90:47:92:da:02:03:e8:5c: b7:9a:cb:8e:79:bf:5f:71:bb:da:62:d7:a1:7d:93: b3:8a:c8:94:d0:26:31:62:23:95:00:f5:2d:ed:7a: 8f:91:01:e2:1a:5a:b0:80:d8:e1:50:38:62:bb:8d: 38:c2:28:9d:e8:06:90:e6:d2:c2:6e:8f:8b:1c:df: ae:bd:f4:b7:df:29:90:08:2b:a1:37:cf:da:e6:36: 4c:00:d0:95:7b:ac:de:ed:0b:cd:da:5d:44:9c:b8: 86:31:cf:c9:c0:7b:19:d6:ab:75:da:39:09:6a:02: f5:72:41:82:c6:27:e2:ee:85:37:9b:1c:f4:6f:4e: 68:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:84:C6:7A:D6:B7:80:58:7D:8D:13:12:AD:9E:7C:D3:31:D4:B7:EC X509v3 Authority Key Identifier: keyid:22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:8a:81:03:ed:c9:e3:44:1c:0e:d8:c6:0d:45:88:59:f1:f5: 86:ff:94:db:3c:41:81:c0:28:c8:1e:a8:89:73:ff:31:a3:31: 1d:ef:3f:2f:08:3c:0c:8a:af:46:a7:eb:d1:6f:f4:4e:2e:49: 98:96:cf:6d:12:bf:44:5c:b2:ee:2c:2b:ae:ef:66:b7:b2:72: 48:56:ec:5f:30:75:c1:d3:f9:c0:b2:db:2d:e0:60:9c:c2:76: 44:b3:1f:77:83:a7:57:81:b2:53:7d:b5:b4:99:e1:7b:26:ef: 70:10:60:54:97:87:03:37:2f:97:99:a6:1a:9f:26:0a:b2:ee: ba:a3:a7:2f:c1:30:ea:14:29:fd:09:5b:a2:d9:6f:dc:76:47: 98:02:71:8d:6f:88:ce:75:20:97:7e:73:cb:4a:02:52:c7:68: fd:16:4a:c7:90:ac:a0:64:30:a9:71:0b:9a:7b:4a:1e:ad:af: 60:0a:51:fd:6b:6f:27:83:00:91:df:9c:33:f8:6c:8a:60:bf: 12:3a:71:7a:15:91:3d:d8:f4:f0:90:ff:5e:0f:49:ea:9a:8a: ff:00:cc:66:c7:0c:eb:89:98:42:45:71:a1:b0:6b:9f:e8:94: bc:33:6b:39:16:7b:fa:a4:72:4c:02:2b:e4:b7:6a:ab:7d:17: 88:fd:28:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkZDQjExMC8GA1UEBRMoMjIyNDI5NDQxNkI4NDY1NzA2NTU0QjUyQ0JDNTZGNDQ5 QkM0NkM4OTAeFw0yNTEyMDUwNDU4MzhaFw0yNTEyMTIwNDU4MzhaMBgxFjAUBgNV BAMTDTY5MzI2NjdlLTZmOGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR6MTajBVsKLwSF2JrXG/TdqxWjif0qtxbzF0zBnuvyNcZo/KdxG+Q2TyT8CJl WgcGyu2U7v1p5vlXFLYquLPTN9iLq11BYlT5O6m9oXYpoYY2T069UhvGkg9Jri5/ wRRSTPeLsjxL/wND8OuzYrUYYTWuuiju3k/uou/0x7GQR5LaAgPoXLeay455v19x u9pi16F9k7OKyJTQJjFiI5UA9S3teo+RAeIaWrCA2OFQOGK7jTjCKJ3oBpDm0sJu j4sc36699LffKZAIK6E3z9rmNkwA0JV7rN7tC83aXUScuIYxz8nAexnWq3XaOQlq AvVyQYLGJ+LuhTebHPRvTmj7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQoTGeta3 gFh9jRMSrZ580zHUt+wwHwYDVR0jBBgwFoAUIiQpRBa4RlcGVUtSy8VvRJvEbIkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRkNCL0VEMEYxMUY0NDIw NTExRjBCRjdBODcxMUM0RjlBRTAyL0lpUXBSQmE0UmxjR1ZVdFN5OFZ2Ukp2RWJJ ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWlRcFJCYTRSbGNHVlV0U3k4VnZSSnZFYklrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG RkNCL0VEMEYxMUY0NDIwNTExRjBCRjdBODcxMUM0RjlBRTAyL0lpUXBSQmE0Umxj R1ZVdFN5OFZ2Ukp2RWJJay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE6KgQPtyeNEHA7Yxg1FiFnx9Yb/lNs8QYHAKMgeqIlz/zGjMR3vPy8I PAyKr0an69Fv9E4uSZiWz20Sv0Rcsu4sK67vZreyckhW7F8wdcHT+cCy2y3gYJzC dkSzH3eDp1eBslN9tbSZ4Xsm73AQYFSXhwM3L5eZphqfJgqy7rqjpy/BMOoUKf0J W6LZb9x2R5gCcY1viM51IJd+c8tKAlLHaP0WSseQrKBkMKlxC5p7Sh6tr2AKUf1r byeDAJHfnDP4bIpgvxI6cXoVkT3Y9PCQ/14PSeqaiv8AzGbHDOuJmEJFcaGwa5/o lLwzazkWe/qkckwCK+S3aqt9F4j9KCA= -----END CERTIFICATE-----Generated at Sat Dec 6 22:19:39 2025 by rpki-client