This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: LM7MRHalGvWFuxQ0AREzyCzPjb9lyTjDfChHkxUtGvg= Subject key identifier: 1B:C7:55:3C:F8:7B:10:C7:37:26:92:59:7F:44:1D:D7:E8:3C:BA:DC Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: 01D2 Signing time: Fri 05 Dec 2025 01:10:16 +0000 Manifest this update: Fri 05 Dec 2025 01:10:15 +0000 Manifest next update: Fri 12 Dec 2025 01:10:15 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: ji8lOnP9dHF+ndCRSIa5hdGOR6EH3vnTWRpPeFOY7MY=) 2: 939530627B6311F0BF7B4936C4F9AE02.roa (hash: 3WTSm0ARO6OxYTvyrfdEmxZEWxigI2p51l76SgzYhn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: Dec 5 01:10:15 2025 GMT Not After : Dec 12 01:10:15 2025 GMT Subject: CN=693230f8-cd51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:51:94:28:3f:ba:85:90:e0:de:7c:5f:4d:1a: e8:8f:2e:dd:f5:a5:82:09:20:6c:71:ca:c4:92:bb: de:3d:f2:e6:d3:ce:62:74:1b:37:2a:61:89:3f:c7: 42:55:3a:d6:19:8a:a5:a4:4d:89:de:d5:f3:36:36: d2:7c:7f:1f:43:1c:29:6d:c1:f1:65:99:4d:ec:e5: 79:32:0f:e9:1f:6f:54:f5:67:41:5f:c4:29:8f:07: a4:ac:57:29:fe:80:f2:ae:c1:16:eb:9f:7c:01:c8: e2:77:2a:23:ed:30:2f:61:7c:b5:a6:21:a8:cc:de: 2b:a9:a7:fb:35:c0:9a:37:e6:2e:4b:77:bb:23:e0: 53:be:85:8a:11:9b:9c:fb:c8:0b:e7:ef:26:13:9b: b3:88:d5:4b:72:d3:ab:ab:a8:2b:93:a7:de:05:57: 04:df:36:7d:2c:e8:d7:bb:27:7b:b4:78:ba:ee:df: 7c:07:18:b7:95:b5:ed:ef:6b:65:a4:95:02:f8:30: f0:8f:27:1f:38:75:5e:0d:3f:ba:1e:28:2e:f4:1d: e9:e5:3f:dd:56:8b:1c:2f:83:40:c4:a6:74:7e:65: 4b:f5:08:7f:71:2d:6f:9a:12:e3:6b:be:0f:81:2a: 13:cd:2b:b8:1e:80:8c:e9:fc:5d:fe:de:7b:b1:8c: f4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C7:55:3C:F8:7B:10:C7:37:26:92:59:7F:44:1D:D7:E8:3C:BA:DC X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:8b:55:5b:9e:4e:19:ef:9d:04:cf:3d:47:37:00:08:8c:01: 93:33:01:40:5b:0c:af:00:e9:f9:5a:84:ed:2e:5f:e3:e8:88: 57:9a:33:92:fe:7c:e5:69:a9:08:ef:03:75:8c:30:f9:9c:21: 3d:d6:2e:79:73:9d:11:5b:f5:41:4a:ce:8d:29:12:36:83:3e: 41:8c:0b:92:05:60:33:55:b5:d4:07:85:7e:e3:bf:71:5b:fd: 02:48:6b:fb:16:c7:a5:d6:75:9a:b5:55:9e:06:5b:63:db:fa: e8:2e:4d:78:ef:70:d8:8c:51:ec:3e:f1:0d:e5:37:c8:45:15: 4c:db:e5:f6:df:0b:0b:ca:dd:a5:d0:84:83:f2:c2:96:3f:be: 52:79:74:0a:71:a4:6b:d7:42:66:48:2d:8e:b7:53:c8:d9:d3: 98:ca:4c:53:29:05:4c:9b:d7:63:c1:2d:26:f9:11:db:36:a5: 01:a3:c8:5d:69:1b:79:da:74:16:31:aa:ed:a5:5e:75:ce:6c: 34:f0:40:c8:f9:2e:b0:41:30:8c:56:17:73:7a:dc:37:49:c0: 51:f8:40:a7:56:6d:be:99:2f:24:de:94:c4:a3:35:fc:ec:9f: 86:57:55:3e:e1:50:08:c2:49:05:c6:7e:7d:b9:f6:e1:82:75: 65:80:d3:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUxMjA1MDExMDE1WhcNMjUxMjEyMDExMDE1WjAYMRYwFAYD VQQDEw02OTMyMzBmOC1jZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1GUKD+6hZDg3nxfTRrojy7d9aWCCSBsccrEkrvePfLm085idBs3KmGJP8dC VTrWGYqlpE2J3tXzNjbSfH8fQxwpbcHxZZlN7OV5Mg/pH29U9WdBX8QpjwekrFcp /oDyrsEW6598Acjidyoj7TAvYXy1piGozN4rqaf7NcCaN+YuS3e7I+BTvoWKEZuc +8gL5+8mE5uziNVLctOrq6grk6feBVcE3zZ9LOjXuyd7tHi67t98Bxi3lbXt72tl pJUC+DDwjycfOHVeDT+6Higu9B3p5T/dVoscL4NAxKZ0fmVL9Qh/cS1vmhLja74P gSoTzSu4HoCM6fxd/t57sYz09wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvHVTz4 exDHNyaSWX9EHdfoPLrcMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpi1Vbnk4Z750Ezz1HNwAIjAGTMwFAWwyvAOn5WoTtLl/j6IhXmjOS /nzlaakI7wN1jDD5nCE91i55c50RW/VBSs6NKRI2gz5BjAuSBWAzVbXUB4V+479x W/0CSGv7Fsel1nWatVWeBltj2/roLk1473DYjFHsPvEN5TfIRRVM2+X23wsLyt2l 0ISD8sKWP75SeXQKcaRr10JmSC2Ot1PI2dOYykxTKQVMm9djwS0m+RHbNqUBo8hd aRt52nQWMartpV51zmw08EDI+S6wQTCMVhdzetw3ScBR+ECnVm2+mS8k3pTEozX8 7J+GV1U+4VAIwkkFxn59ufbhgnVlgNPy -----END CERTIFICATE-----Generated at Sat Dec 6 22:43:46 2025 by rpki-client