This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: jQQEQSvWMSyr0AMiTYevo8QTStuTPNicwTJOpcdPUUU= Subject key identifier: 91:63:A7:E8:86:1F:58:43:6C:0A:1E:76:52:34:8F:86:F5:70:D3:09 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0E36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0E2C Signing time: Sat 06 Dec 2025 17:15:21 +0000 Manifest this update: Sat 06 Dec 2025 17:15:21 +0000 Manifest next update: Sat 13 Dec 2025 17:15:21 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: V0SlYH3FKsQq9YhqSe3xRNSpp670T0G5Kp2lONpGQQo=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: iU2Hi3gnDAAGhDttleotVYNL88jidVA94xxut38qdqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3638 (0xe36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Dec 6 17:15:21 2025 GMT Not After : Dec 13 17:15:21 2025 GMT Subject: CN=693464a9-da81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:46:36:b3:44:44:1d:c6:7a:7b:76:0b:07:c9: 56:ef:be:72:4f:9a:9e:62:04:fa:a8:32:a4:3d:4a: 10:93:29:91:93:ea:1a:5a:44:3a:21:4f:8d:5b:bd: 89:69:4a:6f:60:2b:f1:6d:16:e9:39:25:3c:0c:2d: 7b:2c:3e:12:0b:10:23:3f:fa:76:89:63:3e:d4:43: 5f:e5:6d:14:42:85:c8:10:28:0b:fc:5f:29:52:7a: c7:f9:06:bd:82:01:40:74:04:fb:9b:53:07:24:b6: 30:e2:30:ca:9c:7e:11:97:d6:2c:20:44:9f:c7:db: ac:9c:bb:7f:39:53:3a:f6:56:89:a1:5e:be:40:90: d2:83:f3:4e:95:76:da:51:bb:c0:37:7f:b8:21:fa: 46:bc:97:54:ac:1e:34:84:88:11:24:aa:60:f5:ad: 09:62:de:50:e5:10:69:22:7b:33:04:60:6e:eb:a1: dd:ff:eb:82:84:98:3d:59:a6:af:d5:5f:46:f6:01: 29:2a:bb:5a:fa:80:8f:50:a0:10:8e:60:ec:58:f8: 58:31:b5:b3:fa:65:e3:12:13:40:ed:59:7e:21:ec: df:81:50:69:4a:aa:1d:2d:0b:2e:f0:69:bf:b9:c9: 75:62:d5:cc:77:0d:ef:36:88:1f:c9:96:8f:48:5a: 13:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:63:A7:E8:86:1F:58:43:6C:0A:1E:76:52:34:8F:86:F5:70:D3:09 X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:85:b7:aa:ad:22:cb:1c:3e:c9:1e:59:ab:ea:d5:2c:b7:f9: 94:61:c6:1c:0f:64:93:27:d4:e8:67:a7:6d:b4:2e:9c:b5:c5: 9f:8e:a1:39:cf:72:38:ba:26:51:12:d5:77:6d:73:bc:22:1d: e0:d3:c2:13:03:d6:47:e8:b6:37:0b:c8:3d:26:27:71:8a:ad: 58:36:25:92:4b:15:25:4e:96:97:c2:16:e1:da:c0:c1:90:73: 30:ac:fa:19:85:db:2c:5b:4b:b9:5b:08:bb:d9:9a:5a:89:91: 16:8c:2e:f3:d6:02:69:b6:2c:7e:9f:29:d9:00:eb:7f:2e:02: 93:bb:ec:fa:23:04:f3:9e:6b:d8:29:64:8c:c2:c3:83:c2:32: 49:95:3d:50:33:a0:61:98:02:36:1b:f0:db:ad:44:74:2b:4f: d7:20:c8:70:a7:5e:d4:4a:0e:97:ad:b2:37:88:f8:6f:53:2b: 4e:31:29:64:de:23:7c:c1:dc:c7:51:0f:e5:f7:df:ef:65:8a: 28:21:9d:d0:8c:eb:82:53:af:fc:2f:3f:40:08:16:b6:ed:22: 26:95:dc:bd:94:1b:1d:b8:55:ce:2c:e1:bd:0c:bd:be:6d:73: b0:eb:f1:2a:62:6c:45:04:b4:d4:2e:ed:3e:22:9a:8c:2f:1a: 80:81:17:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUxMjA2MTcxNTIxWhcNMjUxMjEzMTcxNTIxWjAYMRYwFAYD VQQDEw02OTM0NjRhOS1kYTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0Y2s0REHcZ6e3YLB8lW775yT5qeYgT6qDKkPUoQkymRk+oaWkQ6IU+NW72J aUpvYCvxbRbpOSU8DC17LD4SCxAjP/p2iWM+1ENf5W0UQoXIECgL/F8pUnrH+Qa9 ggFAdAT7m1MHJLYw4jDKnH4Rl9YsIESfx9usnLt/OVM69laJoV6+QJDSg/NOlXba UbvAN3+4IfpGvJdUrB40hIgRJKpg9a0JYt5Q5RBpInszBGBu66Hd/+uChJg9Waav 1V9G9gEpKrta+oCPUKAQjmDsWPhYMbWz+mXjEhNA7Vl+IezfgVBpSqodLQsu8Gm/ ucl1YtXMdw3vNogfyZaPSFoTRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFjp+iG H1hDbAoedlI0j4b1cNMJMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChhbeqrSLLHD7JHlmr6tUst/mUYcYcD2STJ9ToZ6dttC6ctcWfjqE5 z3I4uiZREtV3bXO8Ih3g08ITA9ZH6LY3C8g9Jidxiq1YNiWSSxUlTpaXwhbh2sDB kHMwrPoZhdssW0u5Wwi72ZpaiZEWjC7z1gJptix+nynZAOt/LgKTu+z6IwTznmvY KWSMwsODwjJJlT1QM6BhmAI2G/DbrUR0K0/XIMhwp17USg6XrbI3iPhvUytOMSlk 3iN8wdzHUQ/l99/vZYooIZ3QjOuCU6/8Lz9ACBa27SImldy9lBsduFXOLOG9DL2+ bXOw6/EqYmxFBLTULu0+IpqMLxqAgRcp -----END CERTIFICATE-----Generated at Sun Dec 7 06:07:54 2025 by rpki-client