This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: ddDitLrIQNdzS8vt0VZ+D4azscl7SLxMQG+Yj4ecnvo= Subject key identifier: A8:F1:6B:10:05:47:E3:41:32:E2:2A:98:E3:69:70:21:23:23:B8:AE Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2E3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2E21 Signing time: Thu 04 Dec 2025 15:18:03 +0000 Manifest this update: Thu 04 Dec 2025 15:18:03 +0000 Manifest next update: Thu 11 Dec 2025 15:18:03 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: 3+sVIxTA1cvi4yDOhvvjHMrJ6BqK6uQm3UvhpHZhjOY=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: dVMsL8EJuwFThJbot7dFtq6YNUkqPMYmgPIcaOtsyp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11834 (0x2e3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Dec 4 15:18:03 2025 GMT Not After : Dec 11 15:18:03 2025 GMT Subject: CN=6931a62b-ddcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dc:5c:85:fe:19:88:ff:b4:18:ae:de:d1:ff: 9b:f7:e4:2f:3e:ba:7b:1d:68:e7:fb:39:54:4a:bd: 09:f6:bc:61:82:6f:b3:5a:6e:17:e6:54:63:3a:76: c9:40:0a:4f:35:98:4b:b1:90:1e:78:07:d4:4f:29: 6b:83:a9:a7:dd:d0:fe:2f:fa:4e:42:57:dd:88:59: bf:42:5d:06:13:02:63:85:3b:4a:35:2c:8e:70:34: 2d:be:94:78:12:49:f7:06:cd:f6:67:da:41:16:e0: 3d:04:96:9f:02:86:0c:cc:63:7c:db:94:69:49:cc: 05:05:51:24:97:59:b2:81:67:a5:75:f3:42:45:a5: 7f:6a:79:ca:ef:d2:7a:1e:9f:30:6b:5a:d2:28:5d: 78:e9:27:56:f0:ab:64:89:72:31:c9:cb:2d:01:49: 7f:78:42:47:20:1b:57:12:ac:20:66:97:1b:08:11: 93:f4:eb:04:05:7a:2e:ae:89:ab:be:0d:6e:2b:8f: 4d:21:f2:f9:16:4c:90:ed:b5:ff:4c:fa:51:a8:0b: 64:f9:ca:9a:38:53:1c:73:30:da:3c:cb:11:e8:98: 13:17:5e:f1:29:d3:36:98:71:9a:3d:24:fa:32:21: 3f:a5:57:77:ad:13:ad:da:0d:b0:5a:e3:b6:a0:bc: 36:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F1:6B:10:05:47:E3:41:32:E2:2A:98:E3:69:70:21:23:23:B8:AE X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:a3:87:2c:af:89:7e:00:9c:49:38:8b:51:0a:c7:14:e3:9b: 45:f5:69:11:8e:84:16:9b:46:18:be:0c:19:1b:37:54:fe:0a: 44:55:17:eb:ca:2d:f3:6a:cf:b2:df:49:62:cb:21:69:5e:2d: 17:d7:cd:d1:75:2f:70:a5:b0:22:01:86:d9:cd:a8:5f:2f:48: 51:b2:77:67:fd:ba:43:e0:34:d5:c4:bf:3a:67:a6:75:6f:c1: 1b:18:ae:f7:4a:35:9e:91:20:02:3f:6d:d8:b9:75:dc:af:2e: 82:c5:e4:b9:97:46:25:fe:17:7d:a8:e0:f3:1a:71:f9:ad:4f: 8a:a6:6f:a7:d9:cf:d1:f9:1b:8c:62:9a:04:76:16:4b:e8:63: de:97:fe:30:b1:c4:1e:8c:a2:67:e4:96:5d:97:41:f2:d7:03: b9:4e:41:95:33:0b:cf:56:65:d1:5a:c8:3e:dc:c8:7d:61:f8: 81:62:7f:a4:5e:0d:e1:7e:d1:33:d0:21:54:a4:7d:18:88:c8: cc:bd:23:18:58:87:f1:8f:5e:5c:e2:e4:bb:12:52:3a:2e:1f: 65:24:2d:ba:66:8c:26:cd:fd:f3:cd:23:51:b9:ab:e7:4a:ab: 1e:78:8e:37:34:7e:16:9f:5c:a5:be:e5:d6:6d:50:c3:e0:58: c4:dd:63:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjUxMjA0MTUxODAzWhcNMjUxMjExMTUxODAzWjAYMRYwFAYD VQQDEw02OTMxYTYyYi1kZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9xchf4ZiP+0GK7e0f+b9+QvPrp7HWjn+zlUSr0J9rxhgm+zWm4X5lRjOnbJ QApPNZhLsZAeeAfUTylrg6mn3dD+L/pOQlfdiFm/Ql0GEwJjhTtKNSyOcDQtvpR4 Ekn3Bs32Z9pBFuA9BJafAoYMzGN825RpScwFBVEkl1mygWeldfNCRaV/annK79J6 Hp8wa1rSKF146SdW8KtkiXIxycstAUl/eEJHIBtXEqwgZpcbCBGT9OsEBXouromr vg1uK49NIfL5FkyQ7bX/TPpRqAtk+cqaOFMcczDaPMsR6JgTF17xKdM2mHGaPST6 MiE/pVd3rROt2g2wWuO2oLw2JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjxaxAF R+NBMuIqmONpcCEjI7iuMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0o4csr4l+AJxJOItRCscU45tF9WkRjoQWm0YYvgwZGzdU/gpEVRfr yi3zas+y30liyyFpXi0X183RdS9wpbAiAYbZzahfL0hRsndn/bpD4DTVxL86Z6Z1 b8EbGK73SjWekSACP23YuXXcry6CxeS5l0Yl/hd9qODzGnH5rU+Kpm+n2c/R+RuM YpoEdhZL6GPel/4wscQejKJn5JZdl0Hy1wO5TkGVMwvPVmXRWsg+3Mh9YfiBYn+k Xg3hftEz0CFUpH0YiMjMvSMYWIfxj15c4uS7ElI6Lh9lJC26Zowmzf3zzSNRuavn SqseeI43NH4Wn1ylvuXWbVDD4FjE3WO0 -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:28 2025 by rpki-client