This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft File: iH554lttHTfvHzG8WgIy-OdlFUU.mft (raw, json) Hash identifier: RfAUy3ST/twrHVn9/N6Sl/odMtsPPZ/zx6A0yziSp2Y= Subject key identifier: 9E:F2:46:E6:CA:26:BD:57:6E:C1:C5:E5:67:38:E4:E8:63:95:EF:CE Authority key identifier: 88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 Certificate issuer: /CN=A91D9F5A/serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft Manifest number: 082A Signing time: Thu 04 Dec 2025 20:11:24 +0000 Manifest this update: Thu 04 Dec 2025 20:11:24 +0000 Manifest next update: Thu 11 Dec 2025 20:11:24 +0000 Files and hashes: 1: iH554lttHTfvHzG8WgIy-OdlFUU.crl (hash: oKk21TaAspG1k7hiSH3iv4oZfk9dDTs6BiXlgMGlQtc=) 2: CF6A89D86B3D11F0A0837D7FC4F9AE02.roa (hash: O05NjBwYNNvXC8JoMWk3EyZg7iktCjusVDBEEW7nGKc=) 3: CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa (hash: cqaNGUAp+AM9Nk5TWMcE/5SRJKY4Makpxzc5uTKkH7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Validity Not Before: Dec 4 20:11:24 2025 GMT Not After : Dec 11 20:11:24 2025 GMT Subject: CN=6931eaec-9e20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:60:03:df:8e:dc:3e:b1:24:cd:55:6b:90:3e: b1:56:9c:2a:96:24:28:a6:98:aa:74:a2:db:bc:c1: cb:91:84:b5:6d:95:66:35:f9:4b:c9:af:53:8d:4c: a9:d8:14:97:43:42:58:19:5f:a2:76:d0:88:a2:4e: 6c:16:b5:32:2b:a8:ff:94:a3:30:15:67:a9:73:93: 48:bc:13:b2:3b:b0:f5:e2:9a:33:f4:c9:a0:14:87: 4f:b8:9f:c6:cd:6b:fb:bb:e4:37:78:be:c8:ca:00: 2a:05:ac:2f:db:37:59:7a:c7:6a:ba:72:5c:4a:c6: 8c:52:5f:6f:83:2d:b4:85:40:6a:0e:22:9c:e1:6c: 48:1e:0d:4a:f9:c5:c4:8c:78:e8:bb:c8:2a:27:87: b4:49:57:55:cf:44:42:8d:53:71:18:80:cd:7c:73: 99:b1:c2:e5:e1:cd:44:86:a8:a9:01:4b:57:d7:0b: 53:73:35:cc:e4:fd:97:32:8a:83:8d:05:76:9c:37: fb:6f:0c:5e:b8:6a:93:50:92:80:0b:da:b2:63:58: d4:a6:00:c1:c4:3f:d5:67:8b:cb:d3:22:ca:98:8a: ec:f2:de:9c:30:b0:0d:de:eb:81:cf:30:c0:a6:0e: 8e:b2:f9:f8:91:a4:27:bd:7b:be:5f:fd:fc:7e:0a: 38:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F2:46:E6:CA:26:BD:57:6E:C1:C5:E5:67:38:E4:E8:63:95:EF:CE X509v3 Authority Key Identifier: keyid:88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:ac:cc:cc:94:46:38:8d:ef:cb:93:bf:61:c3:42:11:74:e6: 4d:b6:2b:41:57:49:04:b8:61:2b:6a:51:7d:5b:63:50:3b:bb: d8:20:c4:37:a8:d9:1a:eb:70:25:5f:68:4e:1e:88:40:fc:5b: 8c:b2:e5:70:18:9f:50:11:ca:dc:7f:71:df:f1:36:ae:32:bb: 6c:e6:f6:37:ca:6b:46:92:02:8c:fe:54:1f:8f:83:25:e6:e0: c5:4b:19:ba:a6:a9:aa:99:a3:a6:9c:87:8a:b0:01:26:55:bf: a1:9c:8d:65:fe:b8:79:da:3e:04:89:76:5f:87:82:d1:4b:cf: bd:df:03:f5:50:1c:e9:d0:b9:8b:c6:2e:de:c4:08:8a:3f:0b: 01:51:ee:13:97:02:30:a0:a2:4d:c1:00:ee:e9:72:10:10:3c: 35:3e:bb:61:45:42:6f:25:71:66:7b:92:5a:23:5c:6a:ee:02: 6f:e5:71:b3:56:5c:84:ee:b5:38:13:6b:e2:65:4c:dc:d2:34: ed:e9:4a:1b:33:31:5f:00:ce:a1:ee:72:83:1d:83:ee:f1:35: 9a:78:93:cd:6e:b0:e6:0c:77:37:c4:6a:49:69:26:9f:5c:c3: a6:41:de:f7:23:82:c3:44:06:1f:c7:b3:c5:06:d5:1e:8b:96: 1e:9c:94:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUY1QTExMC8GA1UEBRMoODg3RTc5RTI1QjZEMUQzN0VGMUYzMUJDNUEwMjMyRjhF NzY1MTU0NTAeFw0yNTEyMDQyMDExMjRaFw0yNTEyMTEyMDExMjRaMBgxFjAUBgNV BAMTDTY5MzFlYWVjLTllMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmYAPfjtw+sSTNVWuQPrFWnCqWJCimmKp0otu8wcuRhLVtlWY1+UvJr1ONTKnY FJdDQlgZX6J20IiiTmwWtTIrqP+UozAVZ6lzk0i8E7I7sPXimjP0yaAUh0+4n8bN a/u75Dd4vsjKACoFrC/bN1l6x2q6clxKxoxSX2+DLbSFQGoOIpzhbEgeDUr5xcSM eOi7yConh7RJV1XPREKNU3EYgM18c5mxwuXhzUSGqKkBS1fXC1NzNczk/ZcyioON BXacN/tvDF64apNQkoAL2rJjWNSmAMHEP9Vni8vTIsqYiuzy3pwwsA3e64HPMMCm Do6y+fiRpCe9e75f/fx+CjhnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnvJG5som vVduwcXlZzjk6GOV784wHwYDVR0jBBgwFoAUiH554lttHTfvHzG8WgIy+OdlFUUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5RjVBLzA4OThCMjNBMTFC QTExRUJCQzFBNTg0Q0M0RjlBRTAyL2lINTU0bHR0SFRmdkh6RzhXZ0l5LU9kbEZV VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUg1NTRsdHRIVGZ2SHpHOFdnSXktT2RsRlVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 RjVBLzA4OThCMjNBMTFCQTExRUJCQzFBNTg0Q0M0RjlBRTAyL2lINTU0bHR0SFRm dkh6RzhXZ0l5LU9kbEZVVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKyszMyURjiN78uTv2HDQhF05k22K0FXSQS4YStqUX1bY1A7u9ggxDeo 2RrrcCVfaE4eiED8W4yy5XAYn1ARytx/cd/xNq4yu2zm9jfKa0aSAoz+VB+PgyXm 4MVLGbqmqaqZo6ach4qwASZVv6GcjWX+uHnaPgSJdl+HgtFLz73fA/VQHOnQuYvG Lt7ECIo/CwFR7hOXAjCgok3BAO7pchAQPDU+u2FFQm8lcWZ7klojXGruAm/lcbNW XITutTgTa+JlTNzSNO3pShszMV8AzqHucoMdg+7xNZp4k81usOYMdzfEaklpJp9c w6ZB3vcjgsNEBh/Hs8UG1R6Llh6clKs= -----END CERTIFICATE-----Generated at Sat Dec 6 13:14:27 2025 by rpki-client