This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: QsrP3nvZYo3/W5nOWqMKVTbvDl2KsJAfYu791oCWPqU= Subject key identifier: 7F:B3:30:46:94:EB:1A:3F:82:82:35:E5:58:40:A6:F4:27:26:A3:D9 Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0EFC Signing time: Thu 04 Dec 2025 17:20:24 +0000 Manifest this update: Thu 04 Dec 2025 17:20:24 +0000 Manifest next update: Thu 11 Dec 2025 17:20:24 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: E0boKhZ+Neh0B7S+Sen7vgPaaO/oIjglv2RMb76/cb4=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: Dfnpdx7fQvQO0Rh8jNA5Tx09pBgCccW2N8IKNsboZGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: Dec 4 17:20:24 2025 GMT Not After : Dec 11 17:20:24 2025 GMT Subject: CN=6931c2d8-8152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:9b:58:d9:3c:f5:e1:70:bb:28:7c:10:74: c1:55:51:3b:92:52:f9:b0:f2:99:a8:df:f0:03:4a: e5:75:3b:e7:ca:c8:88:f2:e1:3a:3c:dc:81:2f:1b: d7:25:9e:ca:de:8f:85:fd:59:92:c5:95:9f:e3:ea: 3d:d2:04:13:05:ec:9c:d3:04:23:a0:b8:02:48:a1: 2a:e1:a8:ba:f5:36:79:0c:c7:52:aa:84:06:ea:fd: 9f:b4:b4:eb:35:15:e4:06:96:13:fb:de:6b:61:ac: d6:e0:50:82:5e:ec:a4:98:a0:fe:90:9d:2b:1d:a3: 4f:f3:a9:ae:cd:9a:84:7f:fb:97:25:d8:4b:db:a6: be:c8:d0:ca:da:50:33:a0:c5:c6:bb:5b:4b:7d:b0: 42:36:1e:70:87:70:9b:76:5d:fd:0e:db:47:a9:16: fb:01:8c:2a:d5:44:ee:e6:1e:2f:06:11:c9:00:26: ec:b1:fb:a5:47:17:10:f4:d7:21:fc:42:3d:3d:76: 09:fd:57:d5:74:01:c0:aa:ec:63:63:0f:df:5e:af: a6:52:49:34:17:32:f9:f4:f3:e0:d5:6d:e3:e4:9c: cb:5f:4c:2b:e7:4d:c5:0a:a1:36:d4:cc:f7:89:97: 6d:c5:00:8b:18:55:80:00:45:a9:26:98:6a:da:05: f9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:B3:30:46:94:EB:1A:3F:82:82:35:E5:58:40:A6:F4:27:26:A3:D9 X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:88:9c:0c:ef:92:58:ef:df:95:b4:94:27:be:7a:c7:bf:00: 38:99:4d:8c:44:80:15:44:d1:d3:83:3b:0b:e8:5e:b6:ed:cf: ac:0a:65:a0:d9:27:e6:85:5a:8e:0c:0d:d5:ab:d1:f8:ff:84: 52:c0:f4:ad:8c:ee:6e:e0:67:96:59:89:a4:0c:a3:66:f9:9a: 66:e5:f1:c7:9f:55:ce:4e:25:f3:62:ab:59:eb:40:a2:0e:13: 5d:a9:17:07:f1:ae:9c:43:29:fe:76:eb:15:5f:76:9c:e9:d5: 31:4d:65:54:6f:08:67:6a:30:b1:5f:4b:00:5c:ba:3a:d0:4e: d0:eb:4d:b6:3c:c1:2d:33:83:aa:52:52:2a:65:e6:24:8f:1d: 1a:a9:ab:28:0f:6c:44:58:e4:a5:05:07:e5:a7:f5:03:47:b1: 2f:25:fa:48:18:fb:06:c6:67:8a:fd:83:a4:3b:e8:fe:19:d2: 5d:55:41:08:48:6f:d1:91:76:b4:a4:b5:a0:de:09:e9:b6:44: 94:c2:a4:53:10:79:56:43:ea:aa:4c:58:15:10:fb:54:fc:56: 9f:56:0e:e2:cf:b3:a5:8c:4a:00:f4:53:0d:63:5a:6a:3d:92: aa:94:3f:ff:56:43:31:2b:87:17:d3:03:2a:de:92:de:3f:62: b1:aa:57:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKERCNzhEOUY5MzU4RTU2N0QzMDZFRTNCRDFFQUM3NDhF OTYwNkJGOEYwHhcNMjUxMjA0MTcyMDI0WhcNMjUxMjExMTcyMDI0WjAYMRYwFAYD VQQDEw02OTMxYzJkOC04MTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYybWNk89eFwuyh8EHTBVVE7klL5sPKZqN/wA0rldTvnysiI8uE6PNyBLxvX JZ7K3o+F/VmSxZWf4+o90gQTBeyc0wQjoLgCSKEq4ai69TZ5DMdSqoQG6v2ftLTr NRXkBpYT+95rYazW4FCCXuykmKD+kJ0rHaNP86muzZqEf/uXJdhL26a+yNDK2lAz oMXGu1tLfbBCNh5wh3Cbdl39DttHqRb7AYwq1UTu5h4vBhHJACbssfulRxcQ9Nch /EI9PXYJ/VfVdAHAquxjYw/fXq+mUkk0FzL59PPg1W3j5JzLX0wr503FCqE21Mz3 iZdtxQCLGFWAAEWpJphq2gX5AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+zMEaU 6xo/goI15VhApvQnJqPZMB8GA1UdIwQYMBaAFNt42fk1jlZ9MG7jvR6sdI6WBr+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1ZuMHdidU85SHF4MGpwWUd2 NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1Zu MHdidU85SHF4MGpwWUd2NDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXiJwM75JY79+VtJQnvnrHvwA4mU2MRIAVRNHTgzsL6F627c+sCmWg 2SfmhVqODA3Vq9H4/4RSwPStjO5u4GeWWYmkDKNm+Zpm5fHHn1XOTiXzYqtZ60Ci DhNdqRcH8a6cQyn+dusVX3ac6dUxTWVUbwhnajCxX0sAXLo60E7Q6022PMEtM4Oq UlIqZeYkjx0aqasoD2xEWOSlBQflp/UDR7EvJfpIGPsGxmeK/YOkO+j+GdJdVUEI SG/RkXa0pLWg3gnptkSUwqRTEHlWQ+qqTFgVEPtU/FafVg7iz7OljEoA9FMNY1pq PZKqlD//VkMxK4cX0wMq3pLeP2Kxqley -----END CERTIFICATE-----Generated at Sat Dec 6 17:28:28 2025 by rpki-client