This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: mHd24HKBFIPhx1hYJljTgHdcAr4xDgf7yA3xkkLKSFM= Subject key identifier: E0:89:1B:EA:3A:FC:94:64:77:C8:1B:3D:03:34:BE:FC:60:32:AB:F2 Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: 0135 Signing time: Fri 05 Dec 2025 02:43:03 +0000 Manifest this update: Fri 05 Dec 2025 02:43:03 +0000 Manifest next update: Fri 12 Dec 2025 02:43:03 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: hOYnJ7wmYIqibQdClVudmncA0APjWD0SoWC3034b3YI=) 2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 4s3NtIvsEComlAClIWN0C/pBpA6ARQs8HzKhlcubCoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:43:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: Dec 5 02:43:03 2025 GMT Not After : Dec 12 02:43:03 2025 GMT Subject: CN=693246b7-2c17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:57:7f:98:7c:06:bd:03:dd:60:58:94:e9:0f: 68:b7:9b:8d:80:17:38:57:1e:eb:1d:f0:e1:01:6a: e5:d1:f1:fd:b2:b2:dd:92:f6:8d:f8:e5:6c:f2:07: 7b:8f:22:93:74:7a:09:40:9e:ae:96:b9:d1:e5:5a: c3:30:3f:c0:7c:6c:46:e4:a4:1d:4e:af:12:62:2c: a4:6d:df:1b:9f:b6:df:06:c4:bf:7b:5c:c6:cf:6b: ba:ef:1a:35:05:d7:03:85:64:39:37:ed:d4:74:1d: 9a:ac:d0:30:38:1c:82:d1:d0:33:c8:76:a0:99:95: b6:fc:3a:c6:99:a9:ba:19:73:d6:25:fd:67:96:49: 60:02:31:db:03:06:29:50:ce:8e:b0:aa:52:4e:d0: 01:95:f1:88:fc:34:1f:c3:53:03:9d:a4:a3:b3:58: f5:54:a4:79:68:d2:32:b8:78:e5:ca:a2:27:04:d2: 56:8b:6e:d1:30:4a:26:4f:fa:db:4a:6c:0f:cd:4e: 34:ec:99:3e:61:fe:25:8a:c9:62:56:6c:0b:0b:9c: a2:65:ca:b2:c6:74:2d:4a:d7:55:c6:37:d3:60:14: 3a:35:6f:81:7a:40:55:4d:98:f5:de:d6:1d:36:a2: d9:fa:9a:40:2e:40:3b:52:0a:25:75:11:9b:90:ff: 63:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:89:1B:EA:3A:FC:94:64:77:C8:1B:3D:03:34:BE:FC:60:32:AB:F2 X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:b4:e3:21:08:06:07:c2:6f:ec:a5:61:e4:3f:0c:ff:d1:ff: dc:93:73:9b:c3:b4:c9:8e:a5:65:0d:c3:a5:8e:90:e7:a5:65: 00:76:2c:3a:69:56:13:69:e2:f0:d0:46:9f:52:3b:8c:22:b8: e1:9d:e4:74:c0:aa:79:1f:a6:87:ed:6a:a8:87:23:5b:60:0f: 4f:e0:df:95:a8:5c:7c:4a:3f:17:a7:22:58:26:d8:fb:58:c3: d5:53:cf:8c:39:80:aa:c9:63:3b:e1:bf:e4:04:85:31:c5:ec: 88:0d:5b:06:fd:9a:06:53:df:1c:05:62:96:0a:04:e7:5b:03: 8b:40:f0:42:86:2c:68:0a:ac:73:41:83:95:83:9d:57:85:a3: cd:f8:91:fa:93:f7:c5:a8:c5:53:7b:f8:48:e2:8d:47:12:36: d1:0c:7a:1b:9b:4f:5a:96:b2:8b:c0:40:27:00:21:da:0b:c1: 3d:21:4b:2a:05:79:5f:74:35:0b:fd:2b:c6:15:d3:24:ef:d9: 18:67:1b:73:81:f0:00:05:1c:76:af:db:91:81:d1:83:b2:ee: b2:a0:23:04:61:e6:ce:a2:c7:f5:e9:78:45:5e:94:a9:70:ad: 9d:9f:ae:f4:2b:21:7e:7c:d4:24:85:82:f1:90:a7:31:29:7e: 19:3b:e3:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUxMjA1MDI0MzAzWhcNMjUxMjEyMDI0MzAzWjAYMRYwFAYD VQQDEw02OTMyNDZiNy0yYzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFd/mHwGvQPdYFiU6Q9ot5uNgBc4Vx7rHfDhAWrl0fH9srLdkvaN+OVs8gd7 jyKTdHoJQJ6ulrnR5VrDMD/AfGxG5KQdTq8SYiykbd8bn7bfBsS/e1zGz2u67xo1 BdcDhWQ5N+3UdB2arNAwOByC0dAzyHagmZW2/DrGmam6GXPWJf1nlklgAjHbAwYp UM6OsKpSTtABlfGI/DQfw1MDnaSjs1j1VKR5aNIyuHjlyqInBNJWi27RMEomT/rb SmwPzU407Jk+Yf4lisliVmwLC5yiZcqyxnQtStdVxjfTYBQ6NW+BekBVTZj13tYd NqLZ+ppALkA7UgoldRGbkP9j7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCJG+o6 /JRkd8gbPQM0vvxgMqvyMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFtOMhCAYHwm/spWHkPwz/0f/ck3Obw7TJjqVlDcOljpDnpWUAdiw6 aVYTaeLw0EafUjuMIrjhneR0wKp5H6aH7WqohyNbYA9P4N+VqFx8Sj8XpyJYJtj7 WMPVU8+MOYCqyWM74b/kBIUxxeyIDVsG/ZoGU98cBWKWCgTnWwOLQPBChixoCqxz QYOVg51XhaPN+JH6k/fFqMVTe/hI4o1HEjbRDHobm09alrKLwEAnACHaC8E9IUsq BXlfdDUL/SvGFdMk79kYZxtzgfAABRx2r9uRgdGDsu6yoCMEYebOosf16XhFXpSp cK2dn670KyF+fNQkhYLxkKcxKX4ZO+NR -----END CERTIFICATE-----Generated at Sat Dec 6 17:28:43 2025 by rpki-client