This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft File: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft (raw, json) Hash identifier: Nv3de31Q9r5EFwKevTMLNnoF27dTbnHMcNoiJNiBNHc= Subject key identifier: F4:0D:13:B4:20:AD:7B:7A:E7:78:FB:5C:05:02:28:65:C2:4B:EE:34 Authority key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 Certificate issuer: /CN=A91DA8C2/serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft Manifest number: 8A Signing time: Fri 05 Dec 2025 04:33:18 +0000 Manifest this update: Fri 05 Dec 2025 04:33:17 +0000 Manifest next update: Fri 12 Dec 2025 04:33:17 +0000 Files and hashes: 1: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl (hash: mJVAmKz0hjzGi+v8R7dRM4+OyGrbr3P3oztc64jrcsI=) 2: 32EE2B68005411F08A6FEB4BC4F9AE02.roa (hash: lmcfypgvF/mtoKjvnXLn6HPlmTzNJ54zQXihVqd1hIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA8C2, serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Validity Not Before: Dec 5 04:33:17 2025 GMT Not After : Dec 12 04:33:17 2025 GMT Subject: CN=6932608d-d70c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b2:fe:bf:b6:e6:72:36:00:81:00:bc:ac:58: bb:2a:4f:14:10:e0:b6:f1:d6:10:18:b2:dd:2c:f7: 53:28:e8:c6:d0:1b:b6:cb:d8:7d:39:00:24:69:d4: d9:ab:1f:c5:30:54:73:76:91:6c:4c:27:f9:b1:f5: 46:19:d4:42:e4:18:04:13:6f:00:8e:26:aa:37:09: 49:04:f4:3a:87:b6:41:d4:f6:6a:be:1a:f8:17:6a: 84:7f:2b:eb:12:4d:78:6d:1e:41:9a:63:46:ae:a3: 04:53:c2:0a:30:01:05:6b:9b:fd:87:0a:1f:b3:8f: de:94:06:e4:c9:4f:0f:92:d6:4a:29:2b:61:c0:13: 31:5a:02:90:49:a4:51:c2:e1:44:1c:c3:0a:04:d3: b3:47:16:8b:34:47:bf:d9:1f:7e:70:b4:90:32:7c: 3c:4d:cf:8e:b4:6d:22:dd:1c:17:dd:9a:25:64:64: 87:20:d5:82:e4:53:22:b4:c8:b5:f3:4d:37:e9:e5: c0:ef:3a:84:bf:5e:53:5a:65:bb:70:af:9b:3f:6f: 5c:bf:7f:e0:9c:0a:01:15:2d:8d:ea:be:36:a4:14: 7e:52:07:cc:a1:5c:46:0d:e8:34:9c:32:af:9f:41: 8b:b3:c7:91:b7:46:ac:a7:d5:d8:ff:27:25:e8:d7: 17:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:0D:13:B4:20:AD:7B:7A:E7:78:FB:5C:05:02:28:65:C2:4B:EE:34 X509v3 Authority Key Identifier: keyid:D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:72:ff:63:1a:1a:39:27:db:88:1a:f0:89:18:b0:7d:3f:1f: a5:2b:04:0e:b0:0a:8e:db:9d:76:91:4d:21:39:59:3d:b2:ca: e1:a3:51:66:cb:49:85:15:86:fc:51:d6:62:da:ab:98:43:17: 8a:d6:76:a2:b0:8f:d2:f5:22:ac:68:3c:74:06:06:da:41:a9: 76:a9:ec:0b:69:ad:09:23:1e:e4:ef:57:fd:b2:b5:5d:e9:4a: a4:6a:79:18:fa:23:8c:a2:28:30:54:47:55:b4:3f:b8:ab:1d: fd:e4:6c:dd:b0:a9:2f:91:fd:b2:7a:21:ca:8a:c5:38:05:d9: d1:43:6e:0e:b4:5e:a8:1d:98:65:59:a7:59:b1:be:a4:4c:a5: c2:ab:39:1b:68:0d:36:85:2e:cd:a9:20:6c:93:4f:ea:46:e7: e6:99:24:68:13:dc:40:69:b7:1e:e9:0f:a5:01:8a:ae:de:1f: b5:43:fc:49:06:ab:bb:09:77:0e:bc:15:9d:5f:5b:4b:48:39: 39:5d:7d:65:91:7a:dd:1c:ed:22:db:dd:62:e8:07:a4:3c:3a: 3e:2f:80:26:a0:0a:51:26:d6:49:f6:e7:4f:0f:87:fc:c4:ad: 20:bb:34:2e:63:e6:3e:58:99:14:74:e6:67:e5:12:94:f6:a7: 80:d7:b5:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE4QzIxMTAvBgNVBAUTKEQyNEZDQ0FEM0FDRTdGRkU1QkYwMkE2QThGNjhDMDYw MkUxQzFCNTEwHhcNMjUxMjA1MDQzMzE3WhcNMjUxMjEyMDQzMzE3WjAYMRYwFAYD VQQDEw02OTMyNjA4ZC1kNzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLL+v7bmcjYAgQC8rFi7Kk8UEOC28dYQGLLdLPdTKOjG0Bu2y9h9OQAkadTZ qx/FMFRzdpFsTCf5sfVGGdRC5BgEE28AjiaqNwlJBPQ6h7ZB1PZqvhr4F2qEfyvr Ek14bR5BmmNGrqMEU8IKMAEFa5v9hwofs4/elAbkyU8PktZKKSthwBMxWgKQSaRR wuFEHMMKBNOzRxaLNEe/2R9+cLSQMnw8Tc+OtG0i3RwX3ZolZGSHINWC5FMitMi1 80036eXA7zqEv15TWmW7cK+bP29cv3/gnAoBFS2N6r42pBR+UgfMoVxGDeg0nDKv n0GLs8eRt0asp9XY/ycl6NcXPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQNE7Qg rXt653j7XAUCKGXCS+40MB8GA1UdIwQYMBaAFNJPzK06zn/+W/Aqao9owGAuHBtR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQThDMi85NUE2OUJFMjAw NTMxMUYwOEU3M0UxNEFDNEY5QUUwMi8wa19NclRyT2ZfNWI4Q3BxajJqQVlDNGNH MUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBrX01yVHJPZl81YjhDcHFqMmpBWUM0Y0cxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QThDMi85NUE2OUJFMjAwNTMxMUYwOEU3M0UxNEFDNEY5QUUwMi8wa19NclRyT2Zf NWI4Q3BxajJqQVlDNGNHMUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXcv9jGho5J9uIGvCJGLB9Px+lKwQOsAqO2512kU0hOVk9ssrho1Fm y0mFFYb8UdZi2quYQxeK1naisI/S9SKsaDx0BgbaQal2qewLaa0JIx7k71f9srVd 6UqkankY+iOMoigwVEdVtD+4qx395GzdsKkvkf2yeiHKisU4BdnRQ24OtF6oHZhl WadZsb6kTKXCqzkbaA02hS7NqSBsk0/qRufmmSRoE9xAabce6Q+lAYqu3h+1Q/xJ Bqu7CXcOvBWdX1tLSDk5XX1lkXrdHO0i291i6AekPDo+L4AmoApRJtZJ9udPD4f8 xK0guzQuY+Y+WJkUdOZn5RKU9qeA17Uq -----END CERTIFICATE-----Generated at Sun Dec 7 02:51:24 2025 by rpki-client