This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: hkRuLNDU1eltzUFv3GGh4MULJKFhhT1U8OzrCYrXqRg= Subject key identifier: CF:23:B5:53:A3:7A:B8:8D:51:30:3F:40:0B:D8:30:E1:1D:EA:4D:9D Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 084C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 083D Signing time: Fri 05 Dec 2025 03:46:40 +0000 Manifest this update: Fri 05 Dec 2025 03:46:40 +0000 Manifest next update: Fri 12 Dec 2025 03:46:40 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: l2HE+I7vgNSWx4nKcQnRFXQN1KxOgpjpKs06cUc5x0U=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2124 (0x84c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Dec 5 03:46:40 2025 GMT Not After : Dec 12 03:46:40 2025 GMT Subject: CN=693255a0-0eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:32:fe:38:b0:b8:27:ba:81:74:59:33:13:8f: 99:d2:c5:a5:b2:72:63:0a:aa:a4:ca:9e:de:63:7c: 8a:2d:84:5a:fc:09:95:d5:4c:2e:c3:d6:e6:0e:e9: ef:d6:50:67:31:a6:e2:64:a8:1d:37:20:79:58:6e: 12:10:c4:30:1a:69:09:74:ff:f2:e7:bb:40:0e:2c: da:3e:f5:1d:c9:90:66:83:4b:fb:ef:32:e5:72:6f: af:37:63:61:5d:33:7f:36:9c:13:06:1f:8f:66:59: ee:0c:8d:a0:f7:14:f3:4f:a0:7b:f9:85:d9:09:a4: 10:52:90:eb:40:35:ba:57:72:58:d2:8e:ca:dc:52: 35:d4:61:9c:cc:80:f6:f0:05:9f:f3:ee:27:49:c4: 88:b8:55:5e:40:2e:10:f1:39:8b:a9:50:b9:ec:6c: 15:54:b7:93:63:14:cd:4e:da:d5:51:01:e6:1d:f5: 71:6f:a6:40:48:d5:cd:30:23:ec:27:67:cc:c2:88: 09:7a:51:6b:40:41:95:2f:b1:71:ef:3d:f1:2c:ea: 62:0c:61:b5:b2:b8:54:f6:41:08:ec:b4:1c:49:d0: 2c:ee:7a:23:50:8e:c3:15:a1:42:04:04:02:69:35: e9:4d:f0:06:0d:01:8a:6c:f2:d6:b2:76:e7:94:9b: ac:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:23:B5:53:A3:7A:B8:8D:51:30:3F:40:0B:D8:30:E1:1D:EA:4D:9D X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:cb:9a:55:fd:da:30:9f:6c:ad:b4:15:34:a1:11:02:ca:86: 1c:9c:31:38:1b:8c:3c:39:16:9f:98:d0:81:1e:c4:39:33:87: b2:2e:27:2d:4c:9c:b8:56:17:aa:b4:36:21:21:8d:7e:8d:f4: b1:69:30:fa:3d:6f:15:f9:09:b7:a7:4e:ce:81:a6:5a:19:3c: 37:a8:2f:34:2d:71:22:b7:f6:11:9d:2b:30:fb:d5:b5:7d:41: 49:e5:71:79:5f:94:b8:d5:92:24:f6:bc:58:46:16:87:7b:d0: 9d:32:0c:e1:7e:12:ae:eb:a2:2e:12:0a:21:e7:b6:0f:a7:e9: db:7f:c2:b2:ed:30:f0:65:39:3b:ba:dd:3e:58:1e:a6:bb:a0: bd:1d:d2:e3:bd:61:15:03:cd:38:ed:de:b5:d5:e9:b6:ac:1d: ce:12:1a:05:89:d3:9e:30:e8:e3:0c:3c:c4:78:58:1c:a3:bc: c1:77:c2:f4:cc:c0:3a:ad:7e:fe:9f:30:9f:9f:1e:84:0b:7a: eb:c5:1a:4c:e6:48:cd:fd:d5:d4:9f:c0:20:71:54:51:71:40: 23:d5:f7:96:59:da:93:d4:73:32:ce:e9:82:c2:b1:2c:b7:a4: 57:12:2f:e7:f6:d7:9d:23:43:ee:d5:50:f6:12:31:12:8c:e6: a0:53:c1:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUxMjA1MDM0NjQwWhcNMjUxMjEyMDM0NjQwWjAYMRYwFAYD VQQDEw02OTMyNTVhMC0wZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjL+OLC4J7qBdFkzE4+Z0sWlsnJjCqqkyp7eY3yKLYRa/AmV1Uwuw9bmDunv 1lBnMabiZKgdNyB5WG4SEMQwGmkJdP/y57tADizaPvUdyZBmg0v77zLlcm+vN2Nh XTN/NpwTBh+PZlnuDI2g9xTzT6B7+YXZCaQQUpDrQDW6V3JY0o7K3FI11GGczID2 8AWf8+4nScSIuFVeQC4Q8TmLqVC57GwVVLeTYxTNTtrVUQHmHfVxb6ZASNXNMCPs J2fMwogJelFrQEGVL7Fx7z3xLOpiDGG1srhU9kEI7LQcSdAs7nojUI7DFaFCBAQC aTXpTfAGDQGKbPLWsnbnlJusvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8jtVOj eriNUTA/QAvYMOEd6k2dMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcy5pV/down2yttBU0oRECyoYcnDE4G4w8ORafmNCBHsQ5M4eyLict TJy4VheqtDYhIY1+jfSxaTD6PW8V+Qm3p07OgaZaGTw3qC80LXEit/YRnSsw+9W1 fUFJ5XF5X5S41ZIk9rxYRhaHe9CdMgzhfhKu66IuEgoh57YPp+nbf8Ky7TDwZTk7 ut0+WB6mu6C9HdLjvWEVA8047d611em2rB3OEhoFidOeMOjjDDzEeFgco7zBd8L0 zMA6rX7+nzCfnx6EC3rrxRpM5kjN/dXUn8AgcVRRcUAj1feWWdqT1HMyzumCwrEs t6RXEi/n9tedI0Pu1VD2EjESjOagU8Hz -----END CERTIFICATE-----Generated at Sat Dec 6 13:54:57 2025 by rpki-client