This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft File: S0Nd1JrBEcPde6D08IaF8hZRWFk.mft (raw, json) Hash identifier: fur7BrM4nn5qBhe3eWAvhmEb8hYRi+hGPNAZxyKiyqE= Subject key identifier: E7:9E:E3:10:04:01:96:63:A9:6A:00:4C:66:49:5D:FC:20:4C:F9:9A Authority key identifier: 4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 Certificate issuer: /CN=A91DC33B/serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Certificate serial: 16D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft Manifest number: 170C Signing time: Thu 04 Dec 2025 16:20:11 +0000 Manifest this update: Thu 04 Dec 2025 16:20:11 +0000 Manifest next update: Thu 11 Dec 2025 16:20:11 +0000 Files and hashes: 1: S0Nd1JrBEcPde6D08IaF8hZRWFk.crl (hash: N7qrPh+vCa6orQ7i5dgbJIeNGBrQJfdDnFpPzrw5Znk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:20:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5842 (0x16d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC33B, serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Validity Not Before: Dec 4 16:20:11 2025 GMT Not After : Dec 11 16:20:11 2025 GMT Subject: CN=6931b4bb-4236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2c:d4:8b:87:e7:9f:3d:38:b6:6e:b9:94:14: e1:43:b4:60:3b:af:48:1c:31:5c:c7:e6:cf:d8:0e: cf:4f:ef:6d:17:ef:b6:76:2f:ef:78:d7:3f:5c:e6: 2b:f8:20:b6:5f:31:66:5c:f5:a8:df:78:8b:3f:cd: 18:bd:ed:7b:a3:29:88:a2:f3:67:a0:49:6e:de:a8: 82:81:ea:59:5e:8f:94:f2:15:af:cd:db:15:3a:51: 4b:f6:74:d5:70:58:fa:77:fc:94:cf:4c:1c:d4:e1: 11:3e:7d:78:f4:1a:3b:96:c1:38:7d:07:4e:c9:bd: 22:59:8b:a5:a9:3e:28:2e:09:4e:dc:ef:7c:33:14: fc:6d:f7:9b:06:fc:31:41:ab:2e:c4:81:2b:0b:b8: af:34:c5:be:4f:f7:13:f8:1a:3a:4b:8d:b3:c2:2f: a5:03:c4:ad:b9:03:4f:24:1f:1b:19:28:1c:c2:9e: 5e:e7:67:5e:55:88:fc:9f:98:a2:ff:0f:57:fa:0d: 96:2d:09:ed:60:fd:a4:c4:9f:40:e2:2c:01:ef:61: 3e:58:fc:04:34:c8:5a:04:5a:06:ab:f2:8f:e5:e1: 2c:ed:52:48:25:2e:91:ca:56:91:cf:3e:99:87:fa: 50:41:56:55:94:e8:3e:cb:fa:43:ef:81:b5:ba:18: cc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:9E:E3:10:04:01:96:63:A9:6A:00:4C:66:49:5D:FC:20:4C:F9:9A X509v3 Authority Key Identifier: keyid:4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:5c:ac:ce:17:a4:f3:50:b0:99:54:f5:f9:cb:4a:1e:b6:e4: 33:b0:87:d5:ec:a9:ed:ce:6a:8a:4c:12:8a:35:a2:68:21:80: ac:71:12:21:44:61:b4:4a:57:ac:4d:ef:ab:a8:cd:8f:07:a5: 77:b9:83:d0:3a:aa:ad:76:85:e8:09:ff:b0:e1:fb:e5:c4:fb: 26:5a:28:0e:5f:d8:92:21:4c:20:a4:cf:d0:88:0e:8a:ea:83: a3:5b:a8:eb:0f:4d:7b:12:9b:16:19:83:73:9f:7e:fa:82:0f: db:e2:74:49:49:7d:21:fd:91:bf:d9:95:7d:0b:3a:ad:ff:dc: e3:4b:29:63:ee:be:a4:02:b2:04:37:6c:24:28:08:fe:f6:82: 52:fc:07:94:4e:1e:24:dd:b2:9a:68:72:a0:4e:da:0d:17:0f: c4:a6:69:df:3c:8e:45:bd:26:1a:d3:3b:0e:62:b6:71:96:c2: 6f:ee:91:49:16:ee:76:c7:2e:47:a8:70:ee:49:65:4f:fb:57: aa:90:4b:7e:d3:2b:21:4d:1b:9f:a4:c2:73:1d:8c:48:15:3d: 4a:aa:bb:55:99:6f:5e:0f:11:29:85:f8:d7:0f:2b:9d:55:76: 47:fb:83:7a:ad:dd:1c:66:95:e2:cf:02:ab:b2:9e:0a:90:a5: 46:48:fa:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzM0IxMTAvBgNVBAUTKDRCNDM1REQ0OUFDMTExQzNERDdCQTBGNEYwODY4NUYy MTY1MTU4NTkwHhcNMjUxMjA0MTYyMDExWhcNMjUxMjExMTYyMDExWjAYMRYwFAYD VQQDEw02OTMxYjRiYi00MjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yzUi4fnnz04tm65lBThQ7RgO69IHDFcx+bP2A7PT+9tF++2di/veNc/XOYr +CC2XzFmXPWo33iLP80Yve17oymIovNnoElu3qiCgepZXo+U8hWvzdsVOlFL9nTV cFj6d/yUz0wc1OERPn149Bo7lsE4fQdOyb0iWYulqT4oLglO3O98MxT8bfebBvwx QasuxIErC7ivNMW+T/cT+Bo6S42zwi+lA8StuQNPJB8bGSgcwp5e52deVYj8n5ii /w9X+g2WLQntYP2kxJ9A4iwB72E+WPwENMhaBFoGq/KP5eEs7VJIJS6RylaRzz6Z h/pQQVZVlOg+y/pD74G1uhjMxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOee4xAE AZZjqWoATGZJXfwgTPmaMB8GA1UdIwQYMBaAFEtDXdSawRHD3Xug9PCGhfIWUVhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMzQi9CNEM5RkU5MjA2 RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVjUGRlNkQwOElhRjhoWlJX RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwTmQxSnJCRWNQZGU2RDA4SWFGOGhaUldGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMzQi9CNEM5RkU5MjA2RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVj UGRlNkQwOElhRjhoWlJXRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiXKzOF6TzULCZVPX5y0oetuQzsIfV7KntzmqKTBKKNaJoIYCscRIh RGG0SlesTe+rqM2PB6V3uYPQOqqtdoXoCf+w4fvlxPsmWigOX9iSIUwgpM/QiA6K 6oOjW6jrD017EpsWGYNzn376gg/b4nRJSX0h/ZG/2ZV9Czqt/9zjSylj7r6kArIE N2wkKAj+9oJS/AeUTh4k3bKaaHKgTtoNFw/EpmnfPI5FvSYa0zsOYrZxlsJv7pFJ Fu52xy5HqHDuSWVP+1eqkEt+0yshTRufpMJzHYxIFT1KqrtVmW9eDxEphfjXDyud VXZH+4N6rd0cZpXizwKrsp4KkKVGSPoO -----END CERTIFICATE-----Generated at Sat Dec 6 16:21:08 2025 by rpki-client