This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft File: 30fOzFfqiK65ajhlVgufImC6mQ4.mft (raw, json) Hash identifier: LCMpN0jXssrAZIbMHA+dpYNHDVN3fdtBN0p/TQdY4Mw= Subject key identifier: 41:31:87:DC:B1:AC:D3:29:C9:67:4D:56:48:D1:B2:39:F5:81:41:F6 Authority key identifier: DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E Certificate issuer: /CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft Manifest number: E7 Signing time: Fri 05 Dec 2025 03:27:23 +0000 Manifest this update: Fri 05 Dec 2025 03:27:23 +0000 Manifest next update: Fri 12 Dec 2025 03:27:23 +0000 Files and hashes: 1: 30fOzFfqiK65ajhlVgufImC6mQ4.crl (hash: BEbXGaJQZMhEWJSvM9wv4WmPCD5AEeJ8bU9+38EKd+8=) 2: 02389B7670E811EFA8DBE571C4F9AE02.roa (hash: 0H3W1Uwt/MgB2UY+gUEFEyZDy5G8I1L4IHKY057VbGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Validity Not Before: Dec 5 03:27:23 2025 GMT Not After : Dec 12 03:27:23 2025 GMT Subject: CN=6932511b-5594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:42:26:41:9d:79:03:54:52:66:54:a1:31:12: c4:6d:d2:b5:de:46:a9:6d:b5:be:c3:67:22:75:f7: b6:80:a1:2a:62:a1:39:9e:f2:54:38:95:c2:f0:3d: a2:06:f1:f4:92:64:f1:51:38:27:3c:05:ab:2a:1f: 5e:b6:c6:ce:5a:1d:7a:5c:1a:53:32:9f:92:32:3c: c4:29:fb:70:5b:df:39:56:b9:94:20:b3:92:36:c0: c5:af:9b:07:5e:04:1c:32:98:bf:d0:02:0d:d8:6f: 3b:2c:0e:fb:40:67:51:4f:36:a4:fa:04:f6:cf:b2: e4:5b:a5:ff:34:db:d2:0f:61:34:8f:95:8d:e9:99: 56:5e:eb:4b:fc:0d:6c:88:77:06:b9:68:be:50:d8: 57:ed:03:d2:f5:54:07:f3:c8:46:ea:be:1a:e1:8b: 89:f5:40:08:b5:13:2e:55:87:b5:0f:00:16:37:bb: 4f:30:48:ce:2c:20:f0:6c:09:93:5a:49:94:96:f9: c0:18:d8:60:8e:ec:fa:ab:a7:43:9b:6a:ab:9f:c0: ce:c9:20:dc:c9:bb:cf:7f:cf:b7:1b:c5:74:10:6d: a7:e9:19:d8:b2:a6:50:16:24:61:8e:e0:4f:85:d2: 2c:94:bf:56:38:64:41:79:03:5f:31:a6:f4:24:a1: fc:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:31:87:DC:B1:AC:D3:29:C9:67:4D:56:48:D1:B2:39:F5:81:41:F6 X509v3 Authority Key Identifier: keyid:DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:a7:08:66:f3:cf:f5:3d:14:b4:2a:b7:29:f4:d0:d5:54:33: 36:61:eb:ef:03:60:5a:e9:97:00:16:cd:ed:b1:f3:25:37:a7: 09:05:1c:7e:0b:b5:b8:b2:3d:e1:b5:9d:88:02:96:ec:64:27: 72:53:f5:89:bb:a2:72:c2:a3:b6:72:ab:75:29:37:29:be:54: ff:b5:b9:99:f6:cb:61:69:36:46:00:b5:bc:0c:12:58:f8:0d: 5e:83:97:ee:c4:ef:d0:aa:59:af:16:31:63:32:3a:64:f0:8c: 14:b0:96:4f:b3:85:f7:90:7e:cb:66:dc:8b:e2:8d:5c:31:53: 63:e2:45:21:26:99:81:6f:ed:03:63:ad:1b:f3:9c:58:b9:39: 38:df:87:d7:28:23:a0:8f:3c:7d:8d:82:34:34:9e:c3:4f:fb: 3b:4b:a0:81:66:09:77:56:01:38:d4:b7:80:a7:f0:44:02:af: d2:34:7c:68:af:d9:50:b0:a3:f1:fd:6f:ab:3f:bf:d7:77:08: da:0c:5a:2a:60:bc:54:3c:8e:b0:74:05:be:d1:4e:dd:f0:74: 85:51:37:26:d1:71:af:cb:e8:7e:9b:b1:64:f5:ca:04:c8:34: bd:c0:08:5b:3c:f2:9c:a2:97:61:e7:c5:b2:e5:f8:cf:c8:ee: d4:27:d1:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKERGNDdDRUNDNTdFQTg4QUVCOTZBMzg2NTU2MEI5RjIy NjBCQTk5MEUwHhcNMjUxMjA1MDMyNzIzWhcNMjUxMjEyMDMyNzIzWjAYMRYwFAYD VQQDEw02OTMyNTExYi01NTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUImQZ15A1RSZlShMRLEbdK13kapbbW+w2cidfe2gKEqYqE5nvJUOJXC8D2i BvH0kmTxUTgnPAWrKh9etsbOWh16XBpTMp+SMjzEKftwW985VrmUILOSNsDFr5sH XgQcMpi/0AIN2G87LA77QGdRTzak+gT2z7LkW6X/NNvSD2E0j5WN6ZlWXutL/A1s iHcGuWi+UNhX7QPS9VQH88hG6r4a4YuJ9UAItRMuVYe1DwAWN7tPMEjOLCDwbAmT WkmUlvnAGNhgjuz6q6dDm2qrn8DOySDcybvPf8+3G8V0EG2n6RnYsqZQFiRhjuBP hdIslL9WOGRBeQNfMab0JKH8QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEExh9yx rNMpyWdNVkjRsjn1gUH2MB8GA1UdIwQYMBaAFN9HzsxX6oiuuWo4ZVYLnyJgupkO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi81ODAwNEFBQTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlLNjVhamhsVmd1ZkltQzZt UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMwZk96RmZxaUs2NWFqaGxWZ3VmSW1DNm1RNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi81ODAwNEFBQTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlL NjVhamhsVmd1ZkltQzZtUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/pwhm88/1PRS0Krcp9NDVVDM2YevvA2Ba6ZcAFs3tsfMlN6cJBRx+ C7W4sj3htZ2IApbsZCdyU/WJu6JywqO2cqt1KTcpvlT/tbmZ9sthaTZGALW8DBJY +A1eg5fuxO/QqlmvFjFjMjpk8IwUsJZPs4X3kH7LZtyL4o1cMVNj4kUhJpmBb+0D Y60b85xYuTk434fXKCOgjzx9jYI0NJ7DT/s7S6CBZgl3VgE41LeAp/BEAq/SNHxo r9lQsKPx/W+rP7/XdwjaDFoqYLxUPI6wdAW+0U7d8HSFUTcm0XGvy+h+m7Fk9coE yDS9wAhbPPKcopdh58Wy5fjPyO7UJ9G/ -----END CERTIFICATE-----Generated at Sat Dec 6 19:12:24 2025 by rpki-client