This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft File: _k_aOWcBbBE6yAe4STQKxlIPCAI.mft (raw, json) Hash identifier: oeSi7tKZhjjTEEdSJ8DI1MgoOS77OonZtEZplv45qEs= Subject key identifier: 1F:34:FB:FF:DC:46:FD:E9:6C:51:0F:CF:38:A2:C4:B3:9E:A6:EA:67 Authority key identifier: FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 Certificate issuer: /CN=A91E9580/serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Certificate serial: 0A5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft Manifest number: 0A39 Signing time: Thu 04 Dec 2025 19:00:55 +0000 Manifest this update: Thu 04 Dec 2025 19:00:55 +0000 Manifest next update: Thu 11 Dec 2025 19:00:55 +0000 Files and hashes: 1: _k_aOWcBbBE6yAe4STQKxlIPCAI.crl (hash: ObmPMGaa53Mq877kcL9OeMCdKSEKpaNCWB81pJsM1zo=) 2: 699CD772C2B911EBBB4C8928C4F9AE02.roa (hash: yfdf5Mv/GJ9tUDZNlDnmM6hHiINUq2OvlkNbS0rVles=) 3: DE76B04EC2BA11EB99E5E36FC4F9AE02.roa (hash: qU5SgxuYfj9EbloGsgp5NlU+LGZow7QsAYGZSye/EIM=) 4: 91F5867070B811EDB6E1F81BC4F9AE02.roa (hash: PgZPVHxtNUmnyrhnnwVcg3kijll4dZA2GpurrS7x078=) 5: 1E9514207F9311EA8177A82DC4F9AE02.roa (hash: mCrr4AsBoN0UqBzrLZ/+kB+0BpCUxnU7wJAUdq4LZdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2652 (0xa5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9580, serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Validity Not Before: Dec 4 19:00:55 2025 GMT Not After : Dec 11 19:00:55 2025 GMT Subject: CN=6931da67-7d0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:25:f6:55:58:3d:3b:97:a4:d5:95:a7:8e:60: 2b:d8:e0:e6:b1:f2:34:39:1a:a9:2a:33:e2:cb:7b: 20:78:2c:fd:aa:a2:3f:d3:7e:6f:5e:e8:ec:ee:4c: 81:80:6c:9b:16:72:2b:65:d3:f8:38:84:8b:9e:a6: 62:4e:25:7c:5f:be:73:45:67:3b:28:24:17:19:80: ee:9a:36:01:1b:cd:7e:dd:58:f8:d2:c9:da:f5:fb: 1c:48:ab:63:2b:9a:b6:8f:d9:dd:70:bc:6c:47:00: 66:74:0a:70:d6:1d:76:11:9e:c1:eb:02:90:03:58: c8:13:f4:a0:dd:17:cf:37:f7:27:3c:aa:0c:33:b4: 20:68:fe:33:1f:8b:99:74:18:ef:b2:8e:d2:7a:76: 51:b5:8a:69:c3:d8:d5:cb:89:52:c1:c7:0b:32:73: fe:69:14:cb:c2:83:ba:39:c1:46:da:f2:32:12:dc: 59:ab:72:d6:14:22:0d:c2:01:38:d6:71:2e:65:58: 03:2c:76:ed:16:4c:8c:f7:8c:78:3f:19:70:6e:30: 0f:7f:39:57:33:5a:57:74:93:3a:70:34:cc:d5:2a: 72:16:58:e6:87:9e:2c:25:84:a4:35:e7:6e:e0:cf: e7:0d:ca:6e:09:8f:78:4f:81:ba:6f:39:9e:6d:db: b1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:34:FB:FF:DC:46:FD:E9:6C:51:0F:CF:38:A2:C4:B3:9E:A6:EA:67 X509v3 Authority Key Identifier: keyid:FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:e8:2f:4b:42:4a:d0:70:5c:1b:c8:d4:b0:93:c2:3a:88:d1: 98:22:c3:4d:a2:a2:a7:7e:a1:33:e8:01:12:ce:c8:2e:c2:7e: 1f:45:6c:bc:b8:44:6b:25:a1:7a:30:7b:7a:7e:32:1f:78:bc: 0c:98:bc:5c:f6:24:e1:f0:0f:57:2f:8c:bf:ac:59:7d:f8:cb: 77:15:9b:3f:46:fd:01:97:06:78:b9:b5:e2:eb:6e:65:a8:a3: bb:7b:20:99:f4:c3:e5:41:5a:bb:b7:c4:e9:b2:2e:47:b9:fb: 2f:da:e9:38:0e:8c:20:3e:88:28:8f:52:6b:0c:34:12:93:f9: 44:8c:f1:ba:a7:ba:69:10:c9:2f:f0:f3:59:de:7f:a7:6c:4c: 64:e2:05:27:90:73:4e:7b:0f:49:65:d7:16:1c:4d:00:39:ba: 05:9d:88:33:20:d8:19:85:69:ee:58:55:ff:d5:ed:f2:2b:ca: 34:dd:aa:f9:03:5e:dc:6c:4b:b3:c7:49:2b:96:d2:ee:ef:c3: 9c:8e:03:72:e5:a8:da:d4:3d:2a:9d:f1:7f:bb:a0:a0:c8:dd: 26:1b:b7:57:e4:af:db:fe:c6:e9:c1:4c:39:f8:a8:3a:72:0e: d5:b2:1d:07:04:d1:65:70:08:0f:5f:14:de:81:2e:68:0a:f2: 77:63:0e:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1ODAxMTAvBgNVBAUTKEZFNEZEQTM5NjcwMTZDMTEzQUM4MDdCODQ5MzQwQUM2 NTIwRjA4MDIwHhcNMjUxMjA0MTkwMDU1WhcNMjUxMjExMTkwMDU1WjAYMRYwFAYD VQQDEw02OTMxZGE2Ny03ZDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2iX2VVg9O5ek1ZWnjmAr2ODmsfI0ORqpKjPiy3sgeCz9qqI/035vXujs7kyB gGybFnIrZdP4OISLnqZiTiV8X75zRWc7KCQXGYDumjYBG81+3Vj40sna9fscSKtj K5q2j9ndcLxsRwBmdApw1h12EZ7B6wKQA1jIE/Sg3RfPN/cnPKoMM7QgaP4zH4uZ dBjvso7SenZRtYppw9jVy4lSwccLMnP+aRTLwoO6OcFG2vIyEtxZq3LWFCINwgE4 1nEuZVgDLHbtFkyM94x4PxlwbjAPfzlXM1pXdJM6cDTM1SpyFljmh54sJYSkNedu 4M/nDcpuCY94T4G6bzmebduxqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB80+//c Rv3pbFEPzziixLOepupnMB8GA1UdIwQYMBaAFP5P2jlnAWwROsgHuEk0CsZSDwgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTU4MC9DN0NFMkUxMDdG OEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJCRTZ5QWU0U1RRS3hsSVBD QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rX2FPV2NCYkJFNnlBZTRTVFFLeGxJUENBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTU4MC9DN0NFMkUxMDdGOEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJC RTZ5QWU0U1RRS3hsSVBDQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM6C9LQkrQcFwbyNSwk8I6iNGYIsNNoqKnfqEz6AESzsguwn4fRWy8 uERrJaF6MHt6fjIfeLwMmLxc9iTh8A9XL4y/rFl9+Mt3FZs/Rv0BlwZ4ubXi625l qKO7eyCZ9MPlQVq7t8Tpsi5Hufsv2uk4DowgPogoj1JrDDQSk/lEjPG6p7ppEMkv 8PNZ3n+nbExk4gUnkHNOew9JZdcWHE0AOboFnYgzINgZhWnuWFX/1e3yK8o03ar5 A17cbEuzx0krltLu78OcjgNy5aja1D0qnfF/u6CgyN0mG7dX5K/b/sbpwUw5+Kg6 cg7Vsh0HBNFlcAgPXxTegS5oCvJ3Yw4h -----END CERTIFICATE-----Generated at Sat Dec 6 20:36:02 2025 by rpki-client