This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft File: Iln4cJbkCts8hBgOKLVsPogi9lE.mft (raw, json) Hash identifier: UzFBmV+SsWT23vqkKgOA50LuJLDFBjXQporQ81IOsSg= Subject key identifier: 16:30:D5:AF:AB:E8:62:C9:E3:AD:11:BF:AE:8C:22:15:77:F2:4B:8A Authority key identifier: 22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 Certificate issuer: /CN=A91E9B89/serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft Manifest number: EC Signing time: Fri 05 Dec 2025 03:25:29 +0000 Manifest this update: Fri 05 Dec 2025 03:25:28 +0000 Manifest next update: Fri 12 Dec 2025 03:25:28 +0000 Files and hashes: 1: Iln4cJbkCts8hBgOKLVsPogi9lE.crl (hash: Re060OrC4QlO5H5wcFzzj6hIwPuOgSLUpoEX/m87g7w=) 2: CCFF219C6C1811EFA5619D0FC4F9AE02.roa (hash: 1z2L3hbnupa67ptFJmJyr3scDytw356F08ze+2XPBpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Validity Not Before: Dec 5 03:25:28 2025 GMT Not After : Dec 12 03:25:28 2025 GMT Subject: CN=693250a9-958f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b7:8d:87:6f:1a:e3:49:ef:49:4f:90:e6:06: 98:4e:26:2b:ae:60:29:26:5b:f7:1d:df:94:43:5a: df:3d:db:1e:25:25:ea:e3:0c:8f:42:78:94:3e:e5: f4:93:0b:a6:0c:26:16:61:31:ed:fd:e4:ab:26:60: 73:04:9c:78:96:40:78:fb:c9:df:e7:0c:80:fb:b4: bd:4b:cc:7f:c1:90:82:49:a2:07:ee:0b:87:fd:90: 13:50:b4:8d:49:b7:84:f6:d8:f9:7d:6b:19:f5:ec: 08:a5:3e:46:9b:18:5c:68:50:99:b6:d4:bf:14:13: 6a:3b:fb:37:2e:5e:63:d3:c2:9b:8e:78:22:13:7f: 01:cd:68:35:76:cf:2d:17:3c:46:27:f9:f0:6d:42: ed:92:96:63:5d:9c:31:ac:5a:69:6e:f4:ae:4b:ec: 12:d1:73:58:3c:f0:93:1f:9e:9b:62:a6:fd:06:a8: 08:3c:19:67:9a:b7:07:c3:75:86:49:7f:3f:a3:fa: 84:b8:f6:2b:dd:1d:ec:f6:97:8d:05:08:70:d0:9a: b0:ea:d9:fa:da:82:eb:c0:40:44:f1:27:09:50:7f: 22:a1:38:20:2d:95:6b:b5:15:82:00:0f:0b:97:40: fe:f7:a2:19:ec:bc:c8:34:36:77:b0:f2:2c:1e:7e: 81:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:30:D5:AF:AB:E8:62:C9:E3:AD:11:BF:AE:8C:22:15:77:F2:4B:8A X509v3 Authority Key Identifier: keyid:22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:92:27:f8:5f:79:b1:ec:29:c5:7f:ca:dc:f7:4b:56:c0:ed: 35:17:66:60:49:0b:72:92:e2:1b:15:f4:ec:cb:aa:6f:54:81: 99:29:0c:1e:42:c7:1b:f1:66:15:c9:2d:2a:f8:eb:0c:be:80: 0e:d8:79:d2:d0:cd:11:e4:4f:17:08:2f:4c:fc:68:7f:d5:90: a1:93:9e:cf:ce:9d:82:ba:21:75:af:0e:46:03:ce:f7:75:ac: d2:a5:01:00:46:33:01:11:75:37:d3:bf:75:bf:5f:82:9d:0b: 19:8d:3b:3e:20:b2:5d:c6:ae:3b:0b:26:79:f3:1e:5d:d0:df: 34:b5:2a:de:c0:bd:3b:6b:e2:2a:62:e4:f8:96:f9:4d:56:9a: a0:37:75:93:c4:14:30:41:2e:e1:f4:d2:53:11:d0:63:46:01: c4:9b:6c:ac:f2:77:b4:58:70:a0:db:01:90:cb:48:52:49:8a: c5:c8:c9:7b:72:0d:14:ee:a9:92:8b:35:02:a5:fb:d5:c9:b8: 1a:c1:91:b3:f6:bd:c2:25:ed:70:40:c1:82:cc:a6:c6:f8:4e: 89:7c:ae:fb:2d:dc:82:ed:b6:0e:fb:32:d5:c7:0a:6c:6d:97: b9:ad:66:9f:2a:e8:7f:7c:79:db:f9:5b:e6:6f:9a:e5:e6:5b: bd:b6:a0:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDIyNTlGODcwOTZFNDBBREIzQzg0MTgwRTI4QjU2QzNF ODgyMkY2NTEwHhcNMjUxMjA1MDMyNTI4WhcNMjUxMjEyMDMyNTI4WjAYMRYwFAYD VQQDEw02OTMyNTBhOS05NThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7eNh28a40nvSU+Q5gaYTiYrrmApJlv3Hd+UQ1rfPdseJSXq4wyPQniUPuX0 kwumDCYWYTHt/eSrJmBzBJx4lkB4+8nf5wyA+7S9S8x/wZCCSaIH7guH/ZATULSN SbeE9tj5fWsZ9ewIpT5GmxhcaFCZttS/FBNqO/s3Ll5j08KbjngiE38BzWg1ds8t FzxGJ/nwbULtkpZjXZwxrFppbvSuS+wS0XNYPPCTH56bYqb9BqgIPBlnmrcHw3WG SX8/o/qEuPYr3R3s9peNBQhw0Jqw6tn62oLrwEBE8ScJUH8ioTggLZVrtRWCAA8L l0D+96IZ7LzINDZ3sPIsHn6BAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYw1a+r 6GLJ460Rv66MIhV38kuKMB8GA1UdIwQYMBaAFCJZ+HCW5ArbPIQYDii1bD6IIvZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS8zQTlDOEE1NjZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0czhoQmdPS0xWc1BvZ2k5 bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lsbjRjSmJrQ3RzOGhCZ09LTFZzUG9naTlsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS8zQTlDOEE1NjZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0 czhoQmdPS0xWc1BvZ2k5bEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZkif4X3mx7CnFf8rc90tWwO01F2ZgSQtykuIbFfTsy6pvVIGZKQwe Qscb8WYVyS0q+OsMvoAO2HnS0M0R5E8XCC9M/Gh/1ZChk57Pzp2CuiF1rw5GA873 dazSpQEARjMBEXU30791v1+CnQsZjTs+ILJdxq47CyZ58x5d0N80tSrewL07a+Iq YuT4lvlNVpqgN3WTxBQwQS7h9NJTEdBjRgHEm2ys8ne0WHCg2wGQy0hSSYrFyMl7 cg0U7qmSizUCpfvVybgawZGz9r3CJe1wQMGCzKbG+E6JfK77LdyC7bYO+zLVxwps bZe5rWafKuh/fHnb+Vvmb5rl5lu9tqDW -----END CERTIFICATE-----Generated at Sat Dec 6 22:05:11 2025 by rpki-client