This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: VAnjWPw0XslxUi0/E73ha2MyHGGPV9IkooQos5JZL9c= Subject key identifier: 55:47:46:91:D4:73:10:D8:61:AA:A7:7C:9C:CF:6B:37:70:F7:83:83 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0BCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0BC0 Signing time: Thu 04 Dec 2025 18:19:07 +0000 Manifest this update: Thu 04 Dec 2025 18:19:06 +0000 Manifest next update: Thu 11 Dec 2025 18:19:06 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: Tnu64+AyNMoTStJA+PnOYxu+48885jv0ZE2fc8uyKlM=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: dZqvR0xqd13+DRj0vsCnaFuawrKyEqpLXk81wck6o3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3019 (0xbcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Dec 4 18:19:06 2025 GMT Not After : Dec 11 18:19:06 2025 GMT Subject: CN=6931d09b-42bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:45:e6:81:4e:fb:f3:e0:44:d0:7e:47:07:19: 1e:a6:cf:6c:f3:40:ba:ba:ed:34:47:f4:0e:a5:ec: a2:25:32:d5:27:7d:42:bb:ea:dc:09:c9:38:ad:5e: 4b:7c:72:1e:1e:a3:1a:90:ef:8d:b0:f2:a8:bc:c5: 4b:9a:81:a2:9c:ab:46:c9:ac:d6:30:5f:3b:b0:8b: c4:5d:1f:eb:30:b3:2b:58:34:26:67:5b:f6:a9:ef: 33:72:cd:73:60:34:8a:76:47:f1:81:85:02:14:fa: 86:55:c3:67:df:82:bb:69:63:77:a3:f8:79:7c:fc: f2:a8:7a:f4:27:9a:c5:7a:8e:a9:33:7c:13:e7:83: 6c:b8:b1:bb:ef:90:a1:48:52:93:49:74:8c:2a:34: 35:61:da:02:ca:0f:1b:0e:68:0b:4b:af:35:fb:23: 05:d5:68:47:64:b3:77:bc:8d:bb:58:66:a2:94:de: c0:3c:35:73:2b:1e:a0:3b:80:d3:f4:0d:79:93:dd: c0:c6:37:d4:7a:26:ac:40:32:2b:62:cf:15:eb:88: c8:bd:17:64:8c:4b:b7:9c:a2:db:31:fc:45:7b:29: f6:49:e2:c8:2f:a7:39:e9:a0:67:70:b5:6b:98:5a: 83:61:ef:47:63:c1:e7:bb:8d:02:03:b8:a3:65:54: bf:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:47:46:91:D4:73:10:D8:61:AA:A7:7C:9C:CF:6B:37:70:F7:83:83 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:39:c4:1e:27:b3:37:3b:d7:f5:8e:88:10:0b:46:d7:9d:06: 71:c5:31:ec:f4:48:6f:9b:af:7b:b9:73:6b:5c:f0:58:56:37: 09:a8:d2:2c:22:80:15:c4:2b:d0:64:2f:e5:50:7c:45:71:58: 68:ed:76:5b:98:4a:55:f8:05:6e:d0:77:fc:0f:4f:02:ff:8a: 44:07:74:27:6b:7e:fc:34:7e:23:bc:75:40:cf:50:44:4f:21: 2a:ba:a7:40:aa:8a:c6:f2:0d:65:a6:6c:8a:bb:ca:7d:14:c4: 03:79:4f:5d:51:68:3e:0d:50:8a:49:9f:5a:b5:3b:50:8a:0f: a3:c6:62:ca:3d:fc:73:00:6b:90:67:a2:47:ee:85:19:2b:4e: d4:69:bd:49:ad:c9:f1:0b:81:57:e9:df:42:f0:08:e2:65:f3: 89:ea:97:e0:ca:54:0e:40:fc:e9:27:f7:19:dc:25:a8:1e:40: cb:29:65:03:88:8a:e4:97:f2:5b:d0:fd:ad:ca:03:66:0b:e5: 7b:9d:8e:93:b3:07:36:c3:89:2e:05:51:5d:52:9c:f0:73:b4: 19:3c:af:3a:96:d7:44:c0:56:1c:a2:d3:7d:8d:87:03:b4:db: cf:e7:7d:cb:7b:f5:5e:cb:96:ac:75:31:f2:60:50:5c:3c:70: 26:c1:af:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjUxMjA0MTgxOTA2WhcNMjUxMjExMTgxOTA2WjAYMRYwFAYD VQQDEw02OTMxZDA5Yi00MmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUXmgU778+BE0H5HBxkeps9s80C6uu00R/QOpeyiJTLVJ31Cu+rcCck4rV5L fHIeHqMakO+NsPKovMVLmoGinKtGyazWMF87sIvEXR/rMLMrWDQmZ1v2qe8zcs1z YDSKdkfxgYUCFPqGVcNn34K7aWN3o/h5fPzyqHr0J5rFeo6pM3wT54NsuLG775Ch SFKTSXSMKjQ1YdoCyg8bDmgLS681+yMF1WhHZLN3vI27WGailN7APDVzKx6gO4DT 9A15k93AxjfUeiasQDIrYs8V64jIvRdkjEu3nKLbMfxFeyn2SeLIL6c56aBncLVr mFqDYe9HY8Hnu40CA7ijZVS/3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVHRpHU cxDYYaqnfJzPazdw94ODMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6OcQeJ7M3O9f1jogQC0bXnQZxxTHs9Ehvm697uXNrXPBYVjcJqNIs IoAVxCvQZC/lUHxFcVho7XZbmEpV+AVu0Hf8D08C/4pEB3Qna378NH4jvHVAz1BE TyEquqdAqorG8g1lpmyKu8p9FMQDeU9dUWg+DVCKSZ9atTtQig+jxmLKPfxzAGuQ Z6JH7oUZK07Uab1JrcnxC4FX6d9C8AjiZfOJ6pfgylQOQPzpJ/cZ3CWoHkDLKWUD iIrkl/Jb0P2tygNmC+V7nY6Tswc2w4kuBVFdUpzwc7QZPK86ltdEwFYcotN9jYcD tNvP533Le/Vey5asdTHyYFBcPHAmwa98 -----END CERTIFICATE-----Generated at Sat Dec 6 14:53:03 2025 by rpki-client