This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft File: xIKbbAf9gE3wklz_wWHGcCgHoCY.mft (raw, json) Hash identifier: C9BRU0/yb21vm+azBGPUBaAE5byZ5+hUpV4l7NPSpPU= Subject key identifier: 8A:FE:3B:FC:E7:F9:2B:F5:60:1D:FC:30:EE:3E:4D:EA:94:28:65:A0 Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 0A6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft Manifest number: 0A35 Signing time: Thu 04 Dec 2025 19:04:25 +0000 Manifest this update: Thu 04 Dec 2025 19:04:24 +0000 Manifest next update: Thu 11 Dec 2025 19:04:24 +0000 Files and hashes: 1: xIKbbAf9gE3wklz_wWHGcCgHoCY.crl (hash: doDFQYs7QTD3XdMID1CMFJyCZgaTzgbKhmm+TGuY8hE=) 2: 7A976A4E0A7011F0AA901820C4F9AE02.roa (hash: fT5I6I+PgWW4dacN3a4Ms0RKDB8N3MNCREMj8FDesrg=) 3: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (hash: 2Dd7cd8I4OSARGKZ0mccoyZW6iVZIc9ObRTGe4O/Dcc=) 4: 9406C1209FDB11EDB88C5662C4F9AE02.roa (hash: NOfiYVkjVgVKJdndF7rjEsZWLBXmxcXaA+rDg1JFfcI=) 5: E8137EDEA29011EAA7A47878C4F9AE02.roa (hash: eb8Dxmgs1pJ56B+p/g4fWelI2bfJeXR9VvaW0O1EVCY=) 6: FBA017C0B26F11EF9B327759C4F9AE02.roa (hash: Fh5T2BpUHXj8z7zvCSIDzf9GCkAnUEieH5BE04K3ZeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2667 (0xa6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45, serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Validity Not Before: Dec 4 19:04:24 2025 GMT Not After : Dec 11 19:04:24 2025 GMT Subject: CN=6931db38-d288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9e:20:80:22:ba:8b:94:c2:3e:bc:92:40:96: 4b:a4:d6:e4:19:ae:ae:e6:60:68:b4:81:60:a4:88: ff:14:36:23:78:53:6c:01:0b:5c:5a:67:93:17:df: 1e:33:ee:23:d3:55:41:4c:14:05:48:07:9d:cb:53: 70:d1:52:cf:d2:54:6d:a5:8b:a4:e5:55:43:f8:d1: 26:9b:57:44:ac:00:6a:4f:13:ed:70:6c:53:c0:ee: e9:6e:9d:51:94:97:9a:13:b8:10:7b:87:30:5f:4b: 06:99:23:ad:a6:6f:bf:3c:01:0a:65:60:d7:23:1f: e6:a3:8b:67:ad:38:87:46:69:e5:d1:1e:2c:04:0b: 9d:5e:48:1a:2c:59:ea:6e:d2:00:b4:c6:e6:b4:a4: 2d:47:b0:fb:f8:e9:0f:18:56:7a:92:63:e8:7d:77: 9a:17:2d:aa:47:56:a3:86:0c:f2:1b:bc:d6:e0:04: 11:89:8c:c6:d7:19:9f:d2:52:8d:b2:0e:41:06:25: b3:20:4c:64:ef:57:7f:aa:1e:72:e3:89:3d:1b:42: 19:78:a1:d0:80:c9:5d:2a:8f:55:ba:86:66:52:bb: 90:5d:96:95:d2:54:06:66:be:b7:ee:85:b1:cf:8c: b0:0a:ce:3a:fe:9a:49:a2:c4:fc:dd:0a:da:41:3f: 7e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:FE:3B:FC:E7:F9:2B:F5:60:1D:FC:30:EE:3E:4D:EA:94:28:65:A0 X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:60:e3:51:86:e2:b9:08:56:fd:c8:50:90:53:76:5b:ef:38: 6e:71:1e:f9:ab:2a:29:46:a5:b2:a2:98:00:a3:22:7a:be:a5: fd:29:11:63:c1:35:06:0d:10:c2:06:a5:db:f7:ba:9f:66:59: a4:20:0f:81:d9:ea:73:48:bc:bf:5e:ae:6f:4d:b4:e5:83:88: 2a:d9:ba:57:da:75:e2:47:a6:c5:18:14:c7:48:58:d7:df:f7: 86:02:c6:94:0d:29:5e:04:f8:62:35:68:0d:a8:f2:a2:45:51: 90:af:d4:6f:8d:cd:e9:7c:98:89:9c:1d:62:4c:ed:d5:40:24: c3:e4:bc:f8:a8:32:d7:ad:bd:c8:ec:db:80:c0:f8:e8:9d:37: 79:81:17:47:08:ee:78:c2:4e:da:08:f5:ee:95:b6:8e:b4:e2: 53:22:aa:42:eb:64:15:87:fd:16:c2:8b:49:dc:b0:15:0b:52: 70:11:08:46:2b:a3:3e:c3:24:51:c4:b9:5a:2f:4d:b7:31:f1: 8e:5a:49:c5:50:74:f1:15:ed:1d:53:83:40:b0:95:6f:02:ff: 40:f7:ef:32:e7:63:fd:60:00:fa:46:e9:15:b4:56:f4:26:a4: ab:d8:24:67:aa:6d:8e:1b:38:24:a9:00:2d:9a:e5:e9:82:66: 11:78:1e:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjUxMjA0MTkwNDI0WhcNMjUxMjExMTkwNDI0WjAYMRYwFAYD VQQDEw02OTMxZGIzOC1kMjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy54ggCK6i5TCPrySQJZLpNbkGa6u5mBotIFgpIj/FDYjeFNsAQtcWmeTF98e M+4j01VBTBQFSAedy1Nw0VLP0lRtpYuk5VVD+NEmm1dErABqTxPtcGxTwO7pbp1R lJeaE7gQe4cwX0sGmSOtpm+/PAEKZWDXIx/mo4tnrTiHRmnl0R4sBAudXkgaLFnq btIAtMbmtKQtR7D7+OkPGFZ6kmPofXeaFy2qR1ajhgzyG7zW4AQRiYzG1xmf0lKN sg5BBiWzIExk71d/qh5y44k9G0IZeKHQgMldKo9VuoZmUruQXZaV0lQGZr637oWx z4ywCs46/ppJosT83QraQT9+qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIr+O/zn +Sv1YB38MO4+TeqUKGWgMB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U0NS8wNkM4NTYzQzgzRDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdF M3drbHpfd1dIR2NDZ0hvQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhYONRhuK5CFb9yFCQU3Zb7zhucR75qyopRqWyopgAoyJ6vqX9KRFj wTUGDRDCBqXb97qfZlmkIA+B2epzSLy/Xq5vTbTlg4gq2bpX2nXiR6bFGBTHSFjX 3/eGAsaUDSleBPhiNWgNqPKiRVGQr9Rvjc3pfJiJnB1iTO3VQCTD5Lz4qDLXrb3I 7NuAwPjonTd5gRdHCO54wk7aCPXulbaOtOJTIqpC62QVh/0WwotJ3LAVC1JwEQhG K6M+wyRRxLlaL023MfGOWknFUHTxFe0dU4NAsJVvAv9A9+8y52P9YAD6RukVtFb0 JqSr2CRnqm2OGzgkqQAtmuXpgmYReB7R -----END CERTIFICATE-----Generated at Sat Dec 6 14:52:18 2025 by rpki-client