This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft File: IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft (raw, json) Hash identifier: VYLY5UB+bmNv3k07Qw1eFKpS3rGkG67x/YN3S7uhykw= Subject key identifier: 3E:5A:72:A5:EA:76:01:DC:0D:9D:57:D6:F3:4E:4F:5D:12:9B:56:F9 Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft Manifest number: CC Signing time: Fri 05 Dec 2025 03:47:08 +0000 Manifest this update: Fri 05 Dec 2025 03:47:08 +0000 Manifest next update: Fri 12 Dec 2025 03:47:08 +0000 Files and hashes: 1: IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl (hash: ZtL9KSpBZ6bLiEI1L8BEcOUeUfsbDlq2y2Rd78cvMNY=) 2: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (hash: /L7H1H9bfON5bqOj4q1pWVjciM/BYtStadHGVAVA9LE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: Dec 5 03:47:08 2025 GMT Not After : Dec 12 03:47:08 2025 GMT Subject: CN=693255bc-88ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2d:ba:fb:72:96:be:c5:04:e1:34:76:dc:e6: b2:10:15:a0:b2:b5:97:fa:46:24:80:d7:7b:a2:9f: 48:14:1a:ab:86:eb:e5:91:0d:95:de:0a:44:6a:01: ed:5f:2f:54:3c:50:17:0b:d0:18:8d:b2:38:d3:28: 06:89:79:f5:b8:17:55:b2:0a:5e:21:5d:b0:94:6d: cc:dd:10:63:ee:a6:c1:e1:87:3c:96:1e:49:f4:aa: a3:02:26:ee:5f:e1:0c:d5:50:38:76:5d:ed:e5:55: 71:c5:1c:a9:06:31:27:4d:50:da:df:10:56:c2:f9: 74:7d:9d:c7:de:af:00:5b:70:41:64:af:08:3f:f7: ea:f3:78:e9:f6:6e:aa:57:d0:a0:a2:8c:c8:06:8a: bc:80:23:3c:8b:b1:74:e0:20:59:c6:f3:a7:5b:39: ec:4d:60:9e:b9:34:fe:f2:76:ef:d1:0c:57:b8:78: 0e:0d:89:c9:c5:44:cd:e4:d9:c3:88:de:6f:19:69: c2:12:58:b1:56:8b:65:26:5a:65:b0:35:9a:f9:8a: bc:d5:93:9b:d3:fb:2d:19:81:df:bb:7c:b4:5d:7f: da:da:ef:b3:2c:10:a5:79:d7:df:32:86:75:7b:fb: 0c:cf:3d:de:74:78:ca:16:ae:ac:ae:66:bc:d6:4d: 52:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:5A:72:A5:EA:76:01:DC:0D:9D:57:D6:F3:4E:4F:5D:12:9B:56:F9 X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:d6:85:18:74:bd:e6:a8:a0:6d:38:0f:e9:23:e4:e1:5f:4c: 9d:e8:5d:34:95:95:23:96:22:94:88:59:9e:4e:72:d9:cb:5e: 40:99:bc:e5:76:3e:49:4a:0e:c8:97:62:58:a0:31:67:a3:b2: ad:88:be:7b:a6:88:ab:a9:d5:c7:c6:2a:fb:ec:ff:8b:33:78: 1e:22:fe:df:9e:17:1c:7f:6d:f5:d7:f0:52:b2:4f:12:a2:f2: 15:48:a8:6c:6f:65:ec:f8:09:28:4b:e0:f4:11:f6:a0:06:74: 11:56:aa:a8:be:d0:d6:66:e3:16:af:b9:90:e4:54:1a:30:26: bf:cf:5b:4e:d2:68:b6:25:a3:8d:89:54:a8:81:e5:79:a4:ce: bd:e8:ad:58:bd:1d:59:44:c8:e0:71:a5:c8:7d:61:de:cd:e9: 0d:19:a4:9a:93:fd:98:6c:a8:eb:16:b1:10:8c:99:8a:51:20: ee:03:58:a4:32:b3:2c:c0:2e:bd:77:96:14:8a:28:9e:42:a2: f5:b0:a2:e3:a6:d4:92:ea:ba:78:fb:ba:e0:2f:db:60:99:46: e8:e9:1e:a3:11:50:b3:74:9e:38:59:38:f6:b7:e2:83:16:ec: 2b:46:77:02:81:75:51:9b:47:dc:e5:6d:ba:66:30:dc:ae:32: e0:1e:6b:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0MDkxMTAvBgNVBAUTKDIxNjRERDU5QTYxNUQ1RjJFMzM5M0U3MjA5OEE3M0FE ODY4RTc4REEwHhcNMjUxMjA1MDM0NzA4WhcNMjUxMjEyMDM0NzA4WjAYMRYwFAYD VQQDEw02OTMyNTViYy04OGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5S26+3KWvsUE4TR23OayEBWgsrWX+kYkgNd7op9IFBqrhuvlkQ2V3gpEagHt Xy9UPFAXC9AYjbI40ygGiXn1uBdVsgpeIV2wlG3M3RBj7qbB4Yc8lh5J9KqjAibu X+EM1VA4dl3t5VVxxRypBjEnTVDa3xBWwvl0fZ3H3q8AW3BBZK8IP/fq83jp9m6q V9CgoozIBoq8gCM8i7F04CBZxvOnWznsTWCeuTT+8nbv0QxXuHgODYnJxUTN5NnD iN5vGWnCElixVotlJlplsDWa+Yq81ZOb0/stGYHfu3y0XX/a2u+zLBCledffMoZ1 e/sMzz3edHjKFq6srma81k1SjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5acqXq dgHcDZ1X1vNOT10Sm1b5MB8GA1UdIwQYMBaAFCFk3VmmFdXy4zk+cgmKc62Gjnja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS9GOTQ0RTNDQzlD QUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFmTGpPVDV5Q1lwenJZYU9l Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS9GOTQ0RTNDQzlDQUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFm TGpPVDV5Q1lwenJZYU9lTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc1oUYdL3mqKBtOA/pI+ThX0yd6F00lZUjliKUiFmeTnLZy15Ambzl dj5JSg7Il2JYoDFno7KtiL57poirqdXHxir77P+LM3geIv7fnhccf2311/BSsk8S ovIVSKhsb2Xs+AkoS+D0EfagBnQRVqqovtDWZuMWr7mQ5FQaMCa/z1tO0mi2JaON iVSogeV5pM696K1YvR1ZRMjgcaXIfWHezekNGaSak/2YbKjrFrEQjJmKUSDuA1ik MrMswC69d5YUiiieQqL1sKLjptSS6rp4+7rgL9tgmUbo6R6jEVCzdJ44WTj2t+KD FuwrRncCgXVRm0fc5W26ZjDcrjLgHmsH -----END CERTIFICATE-----Generated at Sat Dec 6 17:44:34 2025 by rpki-client