This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft File: iruZJsMSoUFJxSMLpV-oz1uJquE.mft (raw, json) Hash identifier: Tkqh95Y7hzZ6HwuWwUpkl7rJmLZPeJjUYry14cfPTLU= Subject key identifier: E3:8C:C6:E3:6F:59:51:2C:88:8A:0C:BE:D7:AB:9E:B1:84:DC:6F:22 Authority key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 Certificate issuer: /CN=A91E8C52/serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Certificate serial: 06A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft Manifest number: 069C Signing time: Thu 04 Dec 2025 21:11:11 +0000 Manifest this update: Thu 04 Dec 2025 21:11:10 +0000 Manifest next update: Thu 11 Dec 2025 21:11:10 +0000 Files and hashes: 1: iruZJsMSoUFJxSMLpV-oz1uJquE.crl (hash: kUEpcQMoUhiXPNizYwzEttph9EE3FY8Cla5XK7b0u6w=) 2: 09C9D20691BC11EB8C38801CC4F9AE02.roa (hash: WLK6J5FK1cyYi8od3TiV/xRyzkXSS7BDCS8cGAhSdLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:11:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Validity Not Before: Dec 4 21:11:10 2025 GMT Not After : Dec 11 21:11:10 2025 GMT Subject: CN=6931f8ef-da0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3e:d5:0e:7e:29:ba:0f:db:7d:ed:44:65:1d: a5:37:78:b0:9e:08:32:8c:7b:5d:73:2d:9c:51:84: be:fe:df:56:a3:3f:02:f7:3e:ac:e9:af:63:e5:6b: 53:38:54:47:c1:30:8c:e3:66:93:3a:c6:56:12:62: f2:cb:df:f7:86:8d:4c:38:a0:ad:69:77:34:7a:2f: a6:a1:08:ef:9d:b9:a2:3e:08:4b:b6:ab:24:53:7c: c0:89:7d:e4:f9:bf:e6:6c:b8:1f:a0:01:a6:12:70: fa:7d:6e:62:c1:ac:c4:43:5d:e1:09:68:7e:20:8b: a6:25:5b:7c:42:05:67:19:91:62:d9:74:14:6c:16: ef:6f:64:ab:7d:f9:2c:18:27:58:47:7c:4c:79:d7: 25:82:c2:d1:33:86:d6:93:61:30:27:01:6a:ec:be: 23:11:79:a8:d5:71:62:97:68:e2:dc:b7:0c:89:71: 0e:18:a9:55:75:b3:be:e7:c8:58:90:1e:d3:db:29: 78:75:f1:3b:6f:19:a1:f7:8a:c6:f4:df:5d:03:ec: d9:e3:31:d0:8d:27:de:1f:49:06:6c:43:c7:69:d5: f8:13:e1:7f:3d:16:0c:b3:a0:a3:93:7e:ed:ef:00: 3b:8e:02:a6:e6:d7:e2:da:5c:88:d9:35:a8:9b:6a: 97:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:8C:C6:E3:6F:59:51:2C:88:8A:0C:BE:D7:AB:9E:B1:84:DC:6F:22 X509v3 Authority Key Identifier: keyid:8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:84:a4:44:f6:9d:0a:a6:f2:e9:7b:34:c6:85:27:2d:ab:c4: e1:a8:46:05:65:65:22:1f:cc:66:82:e8:89:f5:3e:13:98:dd: b7:78:7d:56:91:0c:48:f6:b8:c3:0b:8a:bb:8f:b2:d7:23:45: 42:69:d0:37:20:68:cd:63:86:ae:58:b7:80:36:87:c7:8b:49: 02:ec:4e:55:eb:21:8e:45:2f:e3:3f:1c:78:5a:9d:2e:be:b1: 83:24:d6:82:4a:d4:9e:db:a9:e2:65:03:27:65:70:14:f8:3e: 4a:0f:c9:e2:25:dd:05:c3:4c:d3:29:e5:b9:d5:da:99:bb:55: 07:e1:70:04:17:33:67:00:73:a8:70:fb:c5:a6:11:fc:a2:f0: e0:08:9c:fe:5b:8e:11:2f:31:e6:75:0f:10:1e:39:d8:b4:61: 11:be:17:80:59:ba:ad:00:de:09:44:53:f3:cf:5b:9a:06:b2: 45:4d:86:e0:eb:c0:b8:d5:ad:4c:51:51:66:14:94:e1:a0:bb: 61:d1:77:5a:18:de:2d:26:33:e0:ae:ab:0f:e7:54:33:8a:ac: 5b:20:41:48:f9:f0:be:f4:9a:d6:c0:92:b2:9f:0f:56:b8:89: a7:4f:12:40:0c:b1:1f:62:47:c7:ea:6b:49:d8:19:27:84:be: 82:2b:1e:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDNTIxMTAvBgNVBAUTKDhBQkI5OTI2QzMxMkExNDE0OUM1MjMwQkE1NUZBOENG NUI4OUFBRTEwHhcNMjUxMjA0MjExMTEwWhcNMjUxMjExMjExMTEwWjAYMRYwFAYD VQQDEw02OTMxZjhlZi1kYTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApz7VDn4pug/bfe1EZR2lN3iwnggyjHtdcy2cUYS+/t9Woz8C9z6s6a9j5WtT OFRHwTCM42aTOsZWEmLyy9/3ho1MOKCtaXc0ei+moQjvnbmiPghLtqskU3zAiX3k +b/mbLgfoAGmEnD6fW5iwazEQ13hCWh+IIumJVt8QgVnGZFi2XQUbBbvb2Srffks GCdYR3xMedclgsLRM4bWk2EwJwFq7L4jEXmo1XFil2ji3LcMiXEOGKlVdbO+58hY kB7T2yl4dfE7bxmh94rG9N9dA+zZ4zHQjSfeH0kGbEPHadX4E+F/PRYMs6Cjk37t 7wA7jgKm5tfi2lyI2TWom2qXswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOMxuNv WVEsiIoMvternrGE3G8iMB8GA1UdIwQYMBaAFIq7mSbDEqFBScUjC6VfqM9biarh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM1Mi9CNDZDRDc3RTkx QjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29VRkp4U01McFYtb3oxdUpx dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lydVpKc01Tb1VGSnhTTUxwVi1vejF1SnF1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEM1Mi9CNDZDRDc3RTkxQjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29V Rkp4U01McFYtb3oxdUpxdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVhKRE9p0KpvLpezTGhSctq8ThqEYFZWUiH8xmguiJ9T4TmN23eH1W kQxI9rjDC4q7j7LXI0VCadA3IGjNY4auWLeANofHi0kC7E5V6yGORS/jPxx4Wp0u vrGDJNaCStSe26niZQMnZXAU+D5KD8niJd0Fw0zTKeW51dqZu1UH4XAEFzNnAHOo cPvFphH8ovDgCJz+W44RLzHmdQ8QHjnYtGERvheAWbqtAN4JRFPzz1uaBrJFTYbg 68C41a1MUVFmFJThoLth0XdaGN4tJjPgrqsP51QziqxbIEFI+fC+9JrWwJKynw9W uImnTxJADLEfYkfH6mtJ2BknhL6CKx7a -----END CERTIFICATE-----Generated at Sat Dec 6 13:55:30 2025 by rpki-client