This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft File: df43qD7agAphAmCFh-30CJ2CQOA.mft (raw, json) Hash identifier: lJba8sWAGZWFizyaAmvJpnVYoWs5i/N2HD4wgFZR7Qk= Subject key identifier: 58:25:1B:72:EA:42:3F:9C:AE:E1:26:DF:32:1D:19:47:CE:6E:1C:FE Authority key identifier: 75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 Certificate issuer: /CN=A91DC7AA/serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft Manifest number: 72 Signing time: Fri 05 Dec 2025 04:48:42 +0000 Manifest this update: Fri 05 Dec 2025 04:48:42 +0000 Manifest next update: Fri 12 Dec 2025 04:48:42 +0000 Files and hashes: 1: df43qD7agAphAmCFh-30CJ2CQOA.crl (hash: atdEYSwfyspMcBkjQwLqNO/6kK0CT429wXIjatsJonY=) 2: A7C7EF962A8911F09526D35BC4F9AE02.roa (hash: t0RTmg56JthvruW6/lKLjUx4XzWAwdY96H4SSM4fLcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC7AA, serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Validity Not Before: Dec 5 04:48:42 2025 GMT Not After : Dec 12 04:48:42 2025 GMT Subject: CN=6932642a-f4cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8a:e6:99:c3:94:20:b3:98:e8:55:0d:f7:f5: 84:27:66:13:57:7b:62:b5:8a:55:73:30:ae:1a:ea: 78:57:a2:df:99:96:c8:43:b0:f6:40:ce:93:8a:0f: 02:49:e3:29:6d:98:f1:09:d7:b7:90:ed:ba:3a:c7: 05:58:9e:33:9a:ed:ba:de:61:4c:bd:52:80:66:da: 4d:9a:95:83:f2:41:63:e9:bf:57:49:d5:ac:b9:49: 63:48:19:16:84:c2:3f:2f:c1:7d:ea:93:f5:7f:e1: 6e:eb:3c:e4:5b:92:c4:a8:61:c4:6b:1d:89:e8:cf: f5:40:c4:96:f6:0e:6f:64:55:11:07:8e:48:37:8e: 66:21:ac:8e:c0:04:e7:85:7d:54:aa:de:50:d3:29: a8:18:a1:81:21:4b:2f:43:19:16:05:45:5f:23:21: 23:9d:1b:ba:b3:ab:a2:b9:97:b0:d9:2f:f5:b8:01: f5:ae:b0:f2:27:17:9e:f4:8c:d3:76:9f:18:3c:5f: a4:63:2c:97:41:4a:82:14:7a:72:bc:e2:d3:51:3e: 83:f1:b0:8a:78:c6:7e:99:34:c4:85:2e:b1:65:e9: 66:23:e2:47:8b:8a:e3:12:5f:58:20:78:9f:65:20: b2:14:a4:e9:54:17:ef:2f:aa:aa:d7:ce:cd:b2:c0: f7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:25:1B:72:EA:42:3F:9C:AE:E1:26:DF:32:1D:19:47:CE:6E:1C:FE X509v3 Authority Key Identifier: keyid:75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:15:46:d7:d8:50:39:52:98:07:f0:dc:de:24:96:c3:e5:92: cd:c4:bd:08:7f:d2:32:8c:e0:31:89:b7:db:4d:c9:37:91:eb: f7:72:11:9f:ea:29:a2:f6:1a:91:c6:f5:d8:4a:bf:cd:43:28: 1d:7f:3b:41:47:0c:22:13:a6:91:7c:62:cf:96:44:d7:85:42: e5:0c:36:bc:52:35:a9:c6:a3:07:8a:ab:ea:18:95:69:09:e9: 56:bd:c1:e3:13:a6:1e:b7:da:d6:85:aa:fa:5e:61:d9:33:39: 47:9c:5a:bd:84:df:d3:72:21:7e:d4:bf:b1:4d:50:ea:c0:06: e4:89:4c:f4:1c:1e:38:84:17:4e:9e:dd:2e:37:c4:d8:1c:89: 56:2d:b3:f8:d4:6d:68:c6:0d:ac:40:bc:27:21:63:64:5b:de: 00:19:ff:66:59:9d:b5:2d:a6:80:5f:fb:dd:a5:4b:92:9a:53: c4:8b:c1:d6:a0:cf:8a:43:e8:be:f9:cf:51:0f:f2:31:c8:98: 14:f1:49:34:79:00:8e:88:f8:c3:00:96:9f:d4:00:51:37:31: aa:87:42:6d:16:7f:cf:ec:60:dd:7d:9d:e4:44:b6:a5:c9:c9: ec:eb:cd:de:b4:f5:cf:c3:75:a3:3a:f6:0f:03:39:12:af:ab: a3:e2:d8:2c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzdBQTExMC8GA1UEBRMoNzVGRTM3QTgzRURBODAwQTYxMDI2MDg1ODdFREY0MDg5 RDgyNDBFMDAeFw0yNTEyMDUwNDQ4NDJaFw0yNTEyMTIwNDQ4NDJaMBgxFjAUBgNV BAMTDTY5MzI2NDJhLWY0Y2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3iuaZw5Qgs5joVQ339YQnZhNXe2K1ilVzMK4a6nhXot+ZlshDsPZAzpOKDwJJ 4yltmPEJ17eQ7bo6xwVYnjOa7breYUy9UoBm2k2alYPyQWPpv1dJ1ay5SWNIGRaE wj8vwX3qk/V/4W7rPORbksSoYcRrHYnoz/VAxJb2Dm9kVREHjkg3jmYhrI7ABOeF fVSq3lDTKagYoYEhSy9DGRYFRV8jISOdG7qzq6K5l7DZL/W4AfWusPInF570jNN2 nxg8X6RjLJdBSoIUenK84tNRPoPxsIp4xn6ZNMSFLrFl6WYj4keLiuMSX1ggeJ9l ILIUpOlUF+8vqqrXzs2ywPftAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWCUbcupC P5yu4SbfMh0ZR85uHP4wHwYDVR0jBBgwFoAUdf43qD7agAphAmCFh+30CJ2CQOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDN0FBL0QyMkVEQTM0MkE4 ODExRjBBMzBEOTE1OUM0RjlBRTAyL2RmNDNxRDdhZ0FwaEFtQ0ZoLTMwQ0oyQ1FP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGY0M3FEN2FnQXBoQW1DRmgtMzBDSjJDUU9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD N0FBL0QyMkVEQTM0MkE4ODExRjBBMzBEOTE1OUM0RjlBRTAyL2RmNDNxRDdhZ0Fw aEFtQ0ZoLTMwQ0oyQ1FPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHYVRtfYUDlSmAfw3N4klsPlks3EvQh/0jKM4DGJt9tNyTeR6/dyEZ/q KaL2GpHG9dhKv81DKB1/O0FHDCITppF8Ys+WRNeFQuUMNrxSNanGoweKq+oYlWkJ 6Va9weMTph632taFqvpeYdkzOUecWr2E39NyIX7Uv7FNUOrABuSJTPQcHjiEF06e 3S43xNgciVYts/jUbWjGDaxAvCchY2Rb3gAZ/2ZZnbUtpoBf+92lS5KaU8SLwdag z4pD6L75z1EP8jHImBTxSTR5AI6I+MMAlp/UAFE3MaqHQm0Wf8/sYN19neREtqXJ yezrzd609c/DdaM69g8DORKvq6Pi2Cw= -----END CERTIFICATE-----Generated at Sat Dec 6 17:46:49 2025 by rpki-client