This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft File: xIKbbAf9gE3wklz_wWHGcCgHoCY.mft (raw, json) Hash identifier: vQOba44bZ+rOQyDQFwoq7yux9xtJpzhk5hzm1RIxS1U= Subject key identifier: AE:6F:7D:63:3D:CA:F2:64:46:D2:35:8A:93:9F:85:4D:24:9D:23:3E Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 0A6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft Manifest number: 0A36 Signing time: Sat 06 Dec 2025 19:01:37 +0000 Manifest this update: Sat 06 Dec 2025 19:01:36 +0000 Manifest next update: Sat 13 Dec 2025 19:01:36 +0000 Files and hashes: 1: xIKbbAf9gE3wklz_wWHGcCgHoCY.crl (hash: OJ8Gtq5pbmg2dDNCbkHLL3FPm44S/Tt0q7JDwUsqcv4=) 2: 7A976A4E0A7011F0AA901820C4F9AE02.roa (hash: fT5I6I+PgWW4dacN3a4Ms0RKDB8N3MNCREMj8FDesrg=) 3: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (hash: 2Dd7cd8I4OSARGKZ0mccoyZW6iVZIc9ObRTGe4O/Dcc=) 4: 9406C1209FDB11EDB88C5662C4F9AE02.roa (hash: NOfiYVkjVgVKJdndF7rjEsZWLBXmxcXaA+rDg1JFfcI=) 5: E8137EDEA29011EAA7A47878C4F9AE02.roa (hash: eb8Dxmgs1pJ56B+p/g4fWelI2bfJeXR9VvaW0O1EVCY=) 6: FBA017C0B26F11EF9B327759C4F9AE02.roa (hash: Fh5T2BpUHXj8z7zvCSIDzf9GCkAnUEieH5BE04K3ZeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2668 (0xa6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45, serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Validity Not Before: Dec 6 19:01:36 2025 GMT Not After : Dec 13 19:01:36 2025 GMT Subject: CN=69347d90-af4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:95:a2:f5:f3:64:e9:05:13:70:88:97:3b:c0: f4:16:51:9e:55:98:05:69:6c:ce:45:4d:59:e8:9f: d6:ff:fe:72:34:c4:3b:b0:9e:a2:61:98:b9:47:92: de:b5:53:45:eb:fa:4a:f2:68:0d:a9:c1:1d:78:43: 60:16:13:8a:77:90:4b:9a:0b:8f:10:52:06:29:71: 56:82:91:70:d7:ad:89:e8:3f:23:6b:71:8c:8e:d6: 22:68:26:8e:8c:a1:6e:d5:1f:1d:52:53:50:cf:bf: 37:1e:05:fc:a8:a6:4c:2d:cd:c8:4e:bc:d1:20:4f: f6:8b:4c:53:a0:01:f8:ea:28:4e:4e:2c:ed:0d:79: e3:63:16:52:e9:ca:31:16:41:9b:a8:a2:c9:51:38: 41:a6:25:cc:73:b0:72:2b:1f:33:54:fc:45:1a:1c: dc:5f:eb:69:d1:fe:04:d8:5a:00:e7:fd:59:c2:56: d1:19:81:ad:63:84:70:9c:66:d8:81:be:0d:72:52: 59:e4:e5:ae:e3:7a:47:9d:a0:1d:e4:7f:4d:10:06: 43:86:f0:0e:24:c0:38:e1:06:9b:88:90:5d:7e:31: 08:22:c5:97:34:90:b8:94:a9:e5:19:bf:8d:7d:00: e9:79:51:cb:37:e2:4d:bf:9e:82:b1:43:a0:ab:a3: 84:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:6F:7D:63:3D:CA:F2:64:46:D2:35:8A:93:9F:85:4D:24:9D:23:3E X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ba:8c:1f:d4:ea:6f:1e:54:e2:02:e9:55:f9:5d:9d:b0:53: 6b:18:79:86:ae:7b:45:22:c6:f4:80:80:53:4d:6c:a0:c4:5f: d3:f8:32:ca:c3:28:00:e8:86:f8:4f:32:a1:c2:72:aa:55:a3: 35:28:88:3a:b3:56:12:ae:9b:95:1a:c6:ed:7b:f3:d1:17:54: a9:61:ab:f4:58:57:97:47:3b:11:13:b4:2e:a0:21:02:77:91: 02:bb:c9:6a:cf:2b:15:b9:b2:22:0b:06:35:46:bf:92:53:db: 7e:ff:25:cd:b4:9f:66:e6:f9:d7:fe:ec:e0:fd:60:d0:fc:fd: 61:3a:09:84:51:3a:84:9f:04:48:eb:bf:e3:ee:08:65:7b:6c: 29:44:b3:7d:e4:bc:d4:db:7b:7a:ca:af:a5:0d:09:a5:69:c2: e7:be:20:71:97:dd:05:65:23:a3:e2:f1:16:f3:33:e5:19:ad: 40:99:7c:3e:0c:fb:f3:68:f2:5d:38:f7:82:75:d3:3f:5e:06: 92:c9:96:51:38:78:46:be:d2:ea:61:00:97:13:9a:c6:b8:1b: 08:35:97:16:e9:80:92:40:f1:57:5f:b2:f3:0a:14:7d:9b:13: d7:87:b5:5f:03:da:78:ce:76:d7:a2:2c:ec:f1:ed:29:6c:88: 44:94:d6:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjUxMjA2MTkwMTM2WhcNMjUxMjEzMTkwMTM2WjAYMRYwFAYD VQQDEw02OTM0N2Q5MC1hZjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJWi9fNk6QUTcIiXO8D0FlGeVZgFaWzORU1Z6J/W//5yNMQ7sJ6iYZi5R5Le tVNF6/pK8mgNqcEdeENgFhOKd5BLmguPEFIGKXFWgpFw162J6D8ja3GMjtYiaCaO jKFu1R8dUlNQz783HgX8qKZMLc3ITrzRIE/2i0xToAH46ihOTiztDXnjYxZS6cox FkGbqKLJUThBpiXMc7ByKx8zVPxFGhzcX+tp0f4E2FoA5/1ZwlbRGYGtY4RwnGbY gb4NclJZ5OWu43pHnaAd5H9NEAZDhvAOJMA44QabiJBdfjEIIsWXNJC4lKnlGb+N fQDpeVHLN+JNv56CsUOgq6OEVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5vfWM9 yvJkRtI1ipOfhU0knSM+MB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U0NS8wNkM4NTYzQzgzRDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdF M3drbHpfd1dIR2NDZ0hvQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbuowf1OpvHlTiAulV+V2dsFNrGHmGrntFIsb0gIBTTWygxF/T+DLK wygA6Ib4TzKhwnKqVaM1KIg6s1YSrpuVGsbte/PRF1SpYav0WFeXRzsRE7QuoCEC d5ECu8lqzysVubIiCwY1Rr+SU9t+/yXNtJ9m5vnX/uzg/WDQ/P1hOgmEUTqEnwRI 67/j7ghle2wpRLN95LzU23t6yq+lDQmlacLnviBxl90FZSOj4vEW8zPlGa1AmXw+ DPvzaPJdOPeCddM/XgaSyZZROHhGvtLqYQCXE5rGuBsINZcW6YCSQPFXX7LzChR9 mxPXh7VfA9p4znbXoizs8e0pbIhElNZk -----END CERTIFICATE-----Generated at Sat Dec 6 22:27:44 2025 by rpki-client