This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft File: A0a2NPJj9jaEI52232S7us33-KQ.mft (raw, json) Hash identifier: RwdOlgrUbb5z6VFjr7C6QRxA8kgBXjvCqFkabt7FmCE= Subject key identifier: 7B:54:24:96:03:ED:8B:67:C6:41:71:34:3D:9A:A0:95:B4:9D:99:DC Authority key identifier: 03:46:B6:34:F2:63:F6:36:84:23:9D:B6:DF:64:BB:BA:CD:F7:F8:A4 Certificate issuer: /CN=A91D7156/serialNumber=0346B634F263F63684239DB6DF64BBBACDF7F8A4 Certificate serial: 119A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft Manifest number: 0F66 Signing time: Thu 04 Dec 2025 17:33:53 +0000 Manifest this update: Thu 04 Dec 2025 17:33:52 +0000 Manifest next update: Thu 11 Dec 2025 17:33:52 +0000 Files and hashes: 1: A0a2NPJj9jaEI52232S7us33-KQ.crl (hash: dBnpndddQ3Rz1LdFY5NDLswZhomLCjIqBykBqOMaRGE=) 2: 26DA1E16247411EA8E1A1178C4F9AE02.roa (hash: j7XNm5DKP0Bl1Qb4lNAiZR4S+roC1NEkMzkbumJCusw=) 3: F13EB484826311F092F0144AC4F9AE02.roa (hash: GZZJl1eE+4cKYzJ1SIxoVng8+8JqX7BjD1PpjJ2aFy0=) 4: 942F8E2CCB7811F08DD67782C4F9AE02.roa (hash: JiSs/MyyKf91SvEzW9GyCAyecuNfv95KJI9TELzwxYg=) 5: 161D8022A24611EF966F6286C4F9AE02.roa (hash: TBlZiuTwGUAL/S4SWJ+uMXyA9TxQ/N4TkgdjoflSU1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.crl rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4506 (0x119a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7156, serialNumber=0346B634F263F63684239DB6DF64BBBACDF7F8A4 Validity Not Before: Dec 4 17:33:52 2025 GMT Not After : Dec 11 17:33:52 2025 GMT Subject: CN=6931c601-7673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:29:e8:ef:8f:cb:ad:40:38:6f:a5:90:e8:2d: b7:41:9f:c8:8f:c4:f8:b0:bf:df:44:73:55:b1:13: db:74:0e:01:34:17:61:5a:f8:87:92:bb:10:08:ec: b8:67:15:71:c8:07:81:0c:22:75:1a:47:0e:64:55: d4:1e:b7:2e:9d:6b:af:a0:ab:98:6b:2b:56:95:7b: e4:6e:84:0c:77:55:d0:d7:b6:e8:c8:9b:ef:cc:52: 4b:08:e5:9d:35:7e:d6:71:5d:cc:2f:39:ac:4a:00: 0e:b9:59:fe:ef:fb:a3:3d:77:69:3c:76:99:5e:c5: 74:94:e4:ae:4f:cf:ea:a0:7d:8f:b6:b3:ce:1b:ea: ea:6f:28:3c:37:8d:3f:a2:e4:c0:09:20:7c:0a:13: f5:6d:52:08:07:47:cb:10:a5:50:3a:0f:dc:c5:bb: 9b:58:24:5d:78:91:39:59:ab:87:2b:aa:1d:71:ec: ef:38:b8:28:05:9f:4c:75:02:45:ce:32:56:00:90: 16:b3:c6:1b:12:86:98:1c:71:88:67:cd:02:da:0d: 13:13:ed:84:f8:46:eb:31:41:ca:76:f6:9d:f0:cf: fb:51:ab:86:fd:06:03:ec:b4:e1:6d:35:d5:8c:c1: 18:3a:48:cc:ad:d6:81:59:bc:f1:93:b6:81:4c:73: 2f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:54:24:96:03:ED:8B:67:C6:41:71:34:3D:9A:A0:95:B4:9D:99:DC X509v3 Authority Key Identifier: keyid:03:46:B6:34:F2:63:F6:36:84:23:9D:B6:DF:64:BB:BA:CD:F7:F8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:a7:45:35:96:f4:b4:9b:40:77:c8:41:77:fd:4c:e3:54:20: 35:f5:1f:b6:43:8d:f4:09:15:94:47:65:e2:f2:34:11:d0:8e: db:61:2f:04:e2:3b:6b:09:cb:e5:e2:dc:1c:a5:ed:7c:43:35: 72:f8:72:75:b8:62:cf:d8:4a:f7:d3:a1:0c:24:14:35:61:44: ba:c2:e7:4a:f9:e8:52:0d:1f:bf:f6:2b:7f:13:15:ef:10:e7: 4e:d9:1c:93:51:98:40:36:8a:ab:dc:f8:fc:69:73:cb:1d:bb: 42:37:65:a9:ce:76:62:78:02:2f:ca:ea:3d:f2:70:cf:26:56: e1:46:21:6e:45:5a:59:90:25:42:88:90:fa:70:62:ad:ea:a9: 44:92:ad:e2:f2:1d:56:10:fe:6b:7b:78:15:bd:57:cd:b9:85: 49:cc:6a:a7:98:7a:be:26:ba:86:15:3f:19:67:cd:e1:0e:3d: 50:cf:0a:7e:1b:08:dc:7e:09:4f:63:84:c8:27:cf:09:e4:6f: 03:c4:13:39:cf:10:96:8b:51:a9:57:dc:5f:49:e4:98:3b:f7: c1:09:70:d0:8a:80:76:42:d4:0a:70:f4:b1:e5:2e:21:65:d5: 05:3e:b3:02:33:c9:27:c7:bc:59:48:4c:05:dd:87:9b:a3:13: 6b:e2:62:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxNTYxMTAvBgNVBAUTKDAzNDZCNjM0RjI2M0Y2MzY4NDIzOURCNkRGNjRCQkJB Q0RGN0Y4QTQwHhcNMjUxMjA0MTczMzUyWhcNMjUxMjExMTczMzUyWjAYMRYwFAYD VQQDEw02OTMxYzYwMS03NjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCno74/LrUA4b6WQ6C23QZ/Ij8T4sL/fRHNVsRPbdA4BNBdhWviHkrsQCOy4 ZxVxyAeBDCJ1GkcOZFXUHrcunWuvoKuYaytWlXvkboQMd1XQ17boyJvvzFJLCOWd NX7WcV3MLzmsSgAOuVn+7/ujPXdpPHaZXsV0lOSuT8/qoH2PtrPOG+rqbyg8N40/ ouTACSB8ChP1bVIIB0fLEKVQOg/cxbubWCRdeJE5WauHK6odcezvOLgoBZ9MdQJF zjJWAJAWs8YbEoaYHHGIZ80C2g0TE+2E+EbrMUHKdvad8M/7UauG/QYD7LThbTXV jMEYOkjMrdaBWbzxk7aBTHMv4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtUJJYD 7YtnxkFxND2aoJW0nZncMB8GA1UdIwQYMBaAFANGtjTyY/Y2hCOdtt9ku7rN9/ik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzE1Ni9COUYwODQ0Q0Yy M0QxMUU5QUY4NDI3MjRDNEY5QUUwMi9BMGEyTlBKajlqYUVJNTIyMzJTN3VzMzMt S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwYTJOUEpqOWphRUk1MjIzMlM3dXMzMy1LUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzE1Ni9COUYwODQ0Q0YyM0QxMUU5QUY4NDI3MjRDNEY5QUUwMi9BMGEyTlBKajlq YUVJNTIyMzJTN3VzMzMtS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUp0U1lvS0m0B3yEF3/UzjVCA19R+2Q430CRWUR2Xi8jQR0I7bYS8E 4jtrCcvl4twcpe18QzVy+HJ1uGLP2Er306EMJBQ1YUS6wudK+ehSDR+/9it/ExXv EOdO2RyTUZhANoqr3Pj8aXPLHbtCN2WpznZieAIvyuo98nDPJlbhRiFuRVpZkCVC iJD6cGKt6qlEkq3i8h1WEP5re3gVvVfNuYVJzGqnmHq+JrqGFT8ZZ83hDj1Qzwp+ GwjcfglPY4TIJ88J5G8DxBM5zxCWi1GpV9xfSeSYO/fBCXDQioB2QtQKcPSx5S4h ZdUFPrMCM8knx7xZSEwF3YeboxNr4mLc -----END CERTIFICATE-----Generated at Sat Dec 6 12:19:21 2025 by rpki-client