This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: gkPTeUstePnEouLogEWfCPIyBu123tugQSYNQW6BU9Y= Subject key identifier: 0E:F9:44:03:E0:D7:1B:0D:DB:AE:BF:C9:35:55:F4:C7:B4:64:50:61 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2BF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2BCD Signing time: Sat 06 Dec 2025 15:19:55 +0000 Manifest this update: Sat 06 Dec 2025 15:19:54 +0000 Manifest next update: Sat 13 Dec 2025 15:19:54 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: hMH7W+bQk2HObqoNuTONPODiwn7iZBIwxsqPe8CruZY=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:19:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11249 (0x2bf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Dec 6 15:19:54 2025 GMT Not After : Dec 13 15:19:54 2025 GMT Subject: CN=6934499b-05a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8e:a2:31:4e:b1:4e:8b:14:77:ee:da:c2:e0: 82:ff:bd:ce:b9:a0:73:bc:ce:fa:ac:75:4f:b8:13: 81:41:b6:c6:c8:6e:13:6d:8b:a0:21:a0:cc:df:1b: d8:55:6f:88:66:de:46:d9:c5:7f:b2:28:a1:37:90: be:0d:e8:fd:7b:cf:47:4d:c5:4d:b4:9f:56:ad:4a: dc:e0:12:64:54:10:ce:de:b5:d6:6e:60:f1:21:85: 68:64:63:08:8b:97:de:3a:e2:5d:4f:94:4b:d8:26: c1:55:07:fc:59:c3:88:56:31:29:74:69:02:61:41: 82:a7:56:2d:98:3f:3f:5f:d1:02:2e:67:5a:87:36: 56:26:9d:f6:d0:d3:3e:9d:90:24:8c:f0:e6:bf:fd: f1:21:90:d7:61:b3:3a:65:08:1c:72:f9:f8:5d:69: 31:da:6c:de:81:7f:ef:9b:bd:e6:fa:f9:97:59:a8: 85:8e:d1:d9:b2:3f:40:5a:5a:d7:5d:28:a4:1b:f1: 67:19:f9:8c:72:38:88:18:2f:c9:8f:2c:35:8f:55: ba:68:20:f7:d9:44:a3:52:0c:d5:9d:83:b6:f6:4c: 91:95:64:00:33:92:2f:9c:7e:36:5a:df:4d:0b:80: 1f:ae:42:3a:d2:f1:e9:de:e8:b5:d2:63:6a:4e:48: b6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F9:44:03:E0:D7:1B:0D:DB:AE:BF:C9:35:55:F4:C7:B4:64:50:61 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:16:f4:6e:12:82:e8:98:9a:56:00:fc:cd:28:35:63:e8:83: f5:94:37:2a:49:46:44:74:41:4b:de:23:c9:12:76:55:fd:27: 21:1d:0c:fc:98:dd:e2:12:70:cd:e2:c6:a1:40:12:84:ba:ea: fe:02:c9:43:f0:30:2f:75:26:a0:7c:14:5d:ba:f2:0d:75:15: 5a:ec:ca:55:07:88:0a:5c:fb:86:46:8d:6b:3f:7b:20:b9:89: 15:cd:3f:71:3c:bf:76:da:73:1d:a1:b6:2e:9a:88:73:fd:14: b6:aa:b7:38:17:15:84:42:f3:07:3e:62:ba:4b:ec:4c:7b:ef: 29:aa:35:f1:27:a5:3d:51:73:75:85:70:84:c0:5d:cb:94:ae: fa:ec:d6:b3:a4:61:2e:55:6a:d8:12:48:f9:d8:c9:50:f4:42: b1:2d:a9:90:af:b3:af:74:92:37:52:91:13:77:24:bc:16:62: 9e:32:64:b2:be:92:7f:29:0b:9d:7a:3c:26:1d:d8:bb:ec:0e: 8b:06:12:b2:d3:f2:fe:38:d0:dc:0a:04:22:41:b5:a9:8b:9f: 06:a8:6f:c9:f9:3b:a0:ee:31:cb:05:ae:90:b9:30:59:b3:06: 41:c1:63:60:5b:d4:03:e3:7a:62:8e:a9:09:fd:dc:2f:7a:9c: fe:24:75:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUxMjA2MTUxOTU0WhcNMjUxMjEzMTUxOTU0WjAYMRYwFAYD VQQDEw02OTM0NDk5Yi0wNWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Y6iMU6xTosUd+7awuCC/73OuaBzvM76rHVPuBOBQbbGyG4TbYugIaDM3xvY VW+IZt5G2cV/siihN5C+Dej9e89HTcVNtJ9WrUrc4BJkVBDO3rXWbmDxIYVoZGMI i5feOuJdT5RL2CbBVQf8WcOIVjEpdGkCYUGCp1YtmD8/X9ECLmdahzZWJp320NM+ nZAkjPDmv/3xIZDXYbM6ZQgccvn4XWkx2mzegX/vm73m+vmXWaiFjtHZsj9AWlrX XSikG/FnGfmMcjiIGC/Jjyw1j1W6aCD32USjUgzVnYO29kyRlWQAM5IvnH42Wt9N C4AfrkI60vHp3ui10mNqTki2NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA75RAPg 1xsN266/yTVV9Me0ZFBhMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrFvRuEoLomJpWAPzNKDVj6IP1lDcqSUZEdEFL3iPJEnZV/SchHQz8 mN3iEnDN4sahQBKEuur+AslD8DAvdSagfBRduvINdRVa7MpVB4gKXPuGRo1rP3sg uYkVzT9xPL922nMdobYumohz/RS2qrc4FxWEQvMHPmK6S+xMe+8pqjXxJ6U9UXN1 hXCEwF3LlK767NazpGEuVWrYEkj52MlQ9EKxLamQr7OvdJI3UpETdyS8FmKeMmSy vpJ/KQudejwmHdi77A6LBhKy0/L+ONDcCgQiQbWpi58GqG/J+Tug7jHLBa6QuTBZ swZBwWNgW9QD43pijqkJ/dwvepz+JHWc -----END CERTIFICATE-----Generated at Sat Dec 6 23:45:12 2025 by rpki-client