This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: bXDg3C6VjjzAqX1GcbK1hco55/DwhJ0a1NI8O92qlvM= Subject key identifier: F2:D7:D5:DF:02:78:6E:A4:77:93:17:3F:6F:70:DC:05:5C:AF:B9:D0 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 020C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 0610 Signing time: Sat 06 Dec 2025 23:02:17 +0000 Manifest this update: Sat 06 Dec 2025 23:02:16 +0000 Manifest next update: Sat 13 Dec 2025 23:02:16 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: LRmFXuiLKWrrQ72RBtAXg/x6oUO7fnaDX7cV67Qfnss=) 2: E6756550C83811F089D6851DC4F9AE02.roa (hash: A4bQGhgPn2H3R7PaUJwYvKcF6NULuVGo1rYsJHMJQUY=) 3: 5A9E4C18BC8F11F0B6A8C33AC4F9AE02.roa (hash: UQRcjs2yvbvqQgs7ssF1xkGQJJT000wm/4Z2n6tb2p8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Dec 6 23:02:16 2025 GMT Not After : Dec 13 23:02:16 2025 GMT Subject: CN=6934b5f9-2062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d5:77:74:af:eb:ee:41:88:f6:93:48:84:3f: 51:07:3c:4e:4f:5c:d8:d3:73:6d:ef:ac:0e:51:6b: fc:c1:12:28:72:9e:f8:32:5b:f8:30:4d:bb:a1:30: d5:4f:bf:88:fa:bc:a9:aa:32:00:78:f8:71:db:1a: a6:3e:e3:2d:d9:74:39:9d:35:88:38:62:4c:ba:13: ea:aa:03:01:33:bc:f7:7a:c0:5a:f0:cf:c1:30:47: 35:e3:74:fc:08:bc:9d:bb:44:96:19:62:84:3c:bd: 11:23:35:38:a8:75:07:24:f5:51:16:45:6b:5a:b7: dc:03:db:00:50:69:17:54:20:73:49:af:4b:7a:64: dc:9c:7c:5e:84:9e:6a:51:da:0c:b1:91:74:7a:1d: 55:ac:b4:3d:20:58:23:47:b2:52:61:2b:82:8f:bd: 13:a4:d9:91:8c:33:69:2c:1e:0c:af:3c:e9:38:8f: c6:7f:02:95:28:8b:91:b7:43:4a:19:34:15:b8:93: b7:30:71:dd:28:e4:3f:06:1c:21:e8:79:b3:4b:27: e1:f5:d7:35:44:93:bb:6c:c8:07:ec:7e:5a:c4:14: 4e:f9:ed:f2:22:37:07:f9:96:a5:27:5c:5a:1e:c3: f5:81:8c:c9:cf:09:3d:e6:bd:2a:ee:25:a1:4e:70: 77:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D7:D5:DF:02:78:6E:A4:77:93:17:3F:6F:70:DC:05:5C:AF:B9:D0 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:78:ef:2b:e6:b5:0e:a2:55:fd:e9:72:a7:57:b3:1a:3a:00: a2:73:76:ea:30:1d:5a:1a:96:f8:77:1f:af:c2:92:7d:65:85: 93:61:73:4b:ff:f7:e2:d6:d3:93:8f:ee:ff:64:14:83:ee:61: c5:a0:c6:84:eb:45:c0:86:c4:f0:41:5b:9a:fb:a9:72:6d:b8: 94:f7:21:5d:4a:0f:64:48:8c:07:42:77:76:f1:4c:32:db:f9: 3d:1a:6e:26:35:ca:04:12:6e:29:02:ba:26:68:6d:12:fa:09: f6:a8:64:57:05:68:30:65:60:af:03:68:1d:17:d8:71:8e:8d: cb:e6:64:00:b7:fd:70:4b:34:0b:ab:1b:f7:e0:b0:cf:a2:d5: 13:cb:19:b4:df:9e:78:eb:ad:67:5c:11:dd:05:03:65:ab:e1: 47:c5:97:4d:1c:ae:77:77:6f:bc:e3:3f:49:d4:2c:6c:da:e3: a7:fe:42:b7:0d:1a:f5:e9:ca:a7:d4:29:76:fb:6b:80:49:02: 02:b9:fb:af:50:49:2e:3f:6f:37:d6:ca:23:6c:d8:58:a0:c9: 54:e2:fe:bc:50:17:b6:1a:fa:4a:2c:07:cb:64:b4:b9:4d:eb: 19:26:4d:8f:94:b5:d1:bc:a7:3c:8f:55:b8:1d:c5:97:6f:2e: 0f:a3:41:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUxMjA2MjMwMjE2WhcNMjUxMjEzMjMwMjE2WjAYMRYwFAYD VQQDEw02OTM0YjVmOS0yMDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdV3dK/r7kGI9pNIhD9RBzxOT1zY03Nt76wOUWv8wRIocp74Mlv4ME27oTDV T7+I+rypqjIAePhx2xqmPuMt2XQ5nTWIOGJMuhPqqgMBM7z3esBa8M/BMEc143T8 CLydu0SWGWKEPL0RIzU4qHUHJPVRFkVrWrfcA9sAUGkXVCBzSa9LemTcnHxehJ5q UdoMsZF0eh1VrLQ9IFgjR7JSYSuCj70TpNmRjDNpLB4MrzzpOI/GfwKVKIuRt0NK GTQVuJO3MHHdKOQ/Bhwh6HmzSyfh9dc1RJO7bMgH7H5axBRO+e3yIjcH+ZalJ1xa HsP1gYzJzwk95r0q7iWhTnB3iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLX1d8C eG6kd5MXP29w3AVcr7nQMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWeO8r5rUOolX96XKnV7MaOgCic3bqMB1aGpb4dx+vwpJ9ZYWTYXNL //fi1tOTj+7/ZBSD7mHFoMaE60XAhsTwQVua+6lybbiU9yFdSg9kSIwHQnd28Uwy 2/k9Gm4mNcoEEm4pAromaG0S+gn2qGRXBWgwZWCvA2gdF9hxjo3L5mQAt/1wSzQL qxv34LDPotUTyxm03554661nXBHdBQNlq+FHxZdNHK53d2+84z9J1Cxs2uOn/kK3 DRr16cqn1Cl2+2uASQICufuvUEkuP2831sojbNhYoMlU4v68UBe2GvpKLAfLZLS5 TesZJk2PlLXRvKc8j1W4HcWXby4Po0G+ -----END CERTIFICATE-----Generated at Sun Dec 7 01:54:16 2025 by rpki-client