This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft File: IAAAWsWhdEBL07_CmUMyPpYGJbk.mft (raw, json) Hash identifier: +InMb4z9ZaGoFfqEDl83YzgDhF9MqDI2JMOogPLSWoo= Subject key identifier: 12:E5:1D:B6:CC:BC:51:C9:DD:4D:CA:CD:5E:0A:F9:7B:F6:65:F5:FB Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 Certificate issuer: /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Certificate serial: 03AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft Manifest number: 03A3 Signing time: Thu 04 Dec 2025 23:10:19 +0000 Manifest this update: Thu 04 Dec 2025 23:10:18 +0000 Manifest next update: Thu 11 Dec 2025 23:10:18 +0000 Files and hashes: 1: IAAAWsWhdEBL07_CmUMyPpYGJbk.crl (hash: UfdAZzEoE4byxBFKDXFYx1YiWncmwmUp2IBO5thzlaw=) 2: 09E46A74C07F11ECB0707F18C4F9AE02.roa (hash: eJqOfUXf9pyBvXqljah+FkA7bab4t5X+jzwwp1GzOds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 940 (0x3ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA590, serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Validity Not Before: Dec 4 23:10:18 2025 GMT Not After : Dec 11 23:10:18 2025 GMT Subject: CN=693214db-40ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:97:06:a1:6e:f7:51:ba:1d:60:59:c2:b9:1c: 12:f1:32:b7:06:9d:4f:b7:e9:36:9d:0d:91:49:23: 45:e7:b9:1f:eb:d1:c4:a2:2b:8e:18:06:46:1a:d2: 1e:91:69:df:0c:a7:43:ec:77:f2:51:91:68:42:39: 3d:e9:f5:5c:63:41:a5:cb:2d:0e:de:d0:ee:79:dd: 71:c8:37:dc:9b:ec:56:60:72:c2:2a:37:74:ac:c2: f2:c2:46:30:4a:52:c2:7e:59:8e:c0:01:60:86:8a: 87:12:d6:82:4b:64:3a:62:df:9c:82:a6:19:6b:1a: 5d:38:db:1f:3e:b4:94:56:02:7a:04:22:87:b2:8a: b6:e9:6b:82:ff:af:e9:d2:8f:c1:56:a2:c7:40:95: 4b:2b:e4:a9:30:ce:7a:3f:e5:8d:dd:75:e9:24:83: 9c:cf:2d:de:3d:7a:6d:7e:95:6b:54:19:7c:c6:a8: 4d:4b:3b:b9:76:27:b7:93:53:b4:61:7d:88:ba:09: 09:2f:ee:ed:e5:b7:05:13:f6:2e:14:19:0b:16:71: 9b:bc:92:05:fb:93:e2:a1:ef:53:1b:60:3e:90:d5: 4b:b0:12:a2:8e:d8:e0:b3:37:51:fb:b0:f2:e7:55: 90:65:e2:e9:55:4f:7d:02:8c:d3:9b:5f:27:d3:c7: 06:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E5:1D:B6:CC:BC:51:C9:DD:4D:CA:CD:5E:0A:F9:7B:F6:65:F5:FB X509v3 Authority Key Identifier: keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a5:36:8a:89:6e:56:04:4c:2b:0d:a1:cc:2c:7c:d3:b5:e5: 87:de:74:de:3b:e9:61:2d:32:df:c6:01:16:2a:33:a9:e2:af: 31:5e:fd:dd:af:6d:eb:fe:57:2c:84:8e:ef:d5:42:d7:b1:c6: 98:47:73:d6:32:ba:14:02:7f:56:75:65:36:ef:ea:ef:8f:eb: 85:63:d3:d5:dd:fe:d9:3b:0b:65:d4:f1:36:bd:14:b7:87:84: 7d:ed:84:68:e6:c9:f5:41:aa:1f:1e:15:f4:94:65:9d:77:00: 96:13:8e:71:a1:68:41:67:63:86:fc:b6:b2:21:c6:ef:89:1d: d8:52:6d:e3:f0:ae:1a:18:81:92:8d:13:27:52:18:1f:b0:7b: 0d:e2:3e:66:10:13:d7:e8:eb:a7:ec:71:72:46:bc:20:68:8e: c3:24:b6:12:fe:24:71:18:dd:55:13:11:30:5c:37:18:2d:cc: a6:c2:ba:4c:cb:f7:b9:72:bd:9a:94:e4:4a:52:74:7b:97:1c: 3e:ff:02:a0:02:c7:48:e7:37:55:f7:35:7a:9f:08:6c:b9:07: 02:39:a7:8e:e3:7d:17:54:79:8a:90:7d:d4:af:27:42:8f:37: 32:0b:b8:90:bf:ef:3b:d6:ae:7c:09:38:96:9c:fa:f6:4e:9d: 8b:08:57:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OTAxMTAvBgNVBAUTKDIwMDAwMDVBQzVBMTc0NDA0QkQzQkZDMjk5NDMzMjNF OTYwNjI1QjkwHhcNMjUxMjA0MjMxMDE4WhcNMjUxMjExMjMxMDE4WjAYMRYwFAYD VQQDEw02OTMyMTRkYi00MGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpcGoW73UbodYFnCuRwS8TK3Bp1Pt+k2nQ2RSSNF57kf69HEoiuOGAZGGtIe kWnfDKdD7HfyUZFoQjk96fVcY0Glyy0O3tDued1xyDfcm+xWYHLCKjd0rMLywkYw SlLCflmOwAFghoqHEtaCS2Q6Yt+cgqYZaxpdONsfPrSUVgJ6BCKHsoq26WuC/6/p 0o/BVqLHQJVLK+SpMM56P+WN3XXpJIOczy3ePXptfpVrVBl8xqhNSzu5die3k1O0 YX2IugkJL+7t5bcFE/YuFBkLFnGbvJIF+5Pioe9TG2A+kNVLsBKijtjgszdR+7Dy 51WQZeLpVU99AozTm18n08cGzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLlHbbM vFHJ3U3KzV4K+Xv2ZfX7MB8GA1UdIwQYMBaAFCAAAFrFoXRAS9O/wplDMj6WBiW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5MC85NTEwRTg2QUMw N0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRFQkwwN19DbVVNeVBwWUdK YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBQUFXc1doZEVCTDA3X0NtVU15UHBZR0piay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTU5MC85NTEwRTg2QUMwN0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRF QkwwN19DbVVNeVBwWUdKYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHpTaKiW5WBEwrDaHMLHzTteWH3nTeO+lhLTLfxgEWKjOp4q8xXv3d r23r/lcshI7v1ULXscaYR3PWMroUAn9WdWU27+rvj+uFY9PV3f7ZOwtl1PE2vRS3 h4R97YRo5sn1QaofHhX0lGWddwCWE45xoWhBZ2OG/LayIcbviR3YUm3j8K4aGIGS jRMnUhgfsHsN4j5mEBPX6Oun7HFyRrwgaI7DJLYS/iRxGN1VExEwXDcYLcymwrpM y/e5cr2alORKUnR7lxw+/wKgAsdI5zdV9zV6nwhsuQcCOaeO430XVHmKkH3UrydC jzcyC7iQv+871q58CTiWnPr2Tp2LCFcy -----END CERTIFICATE-----Generated at Sat Dec 6 21:29:27 2025 by rpki-client