This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: nfPVhkK3PObo42u1W24/dxWZlv0zfO5qnbPPaifSE7U= Subject key identifier: 58:8A:E5:C2:40:95:04:C8:C9:18:5C:7D:8E:1A:90:CF:83:C5:44:2B Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 01B6 Signing time: Fri 05 Dec 2025 01:21:48 +0000 Manifest this update: Fri 05 Dec 2025 01:21:47 +0000 Manifest next update: Fri 12 Dec 2025 01:21:47 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: ywhUJDmhTHPGR5rqOvlimmvN82J/Ht9XW6kuHh/w08E=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Dec 5 01:21:47 2025 GMT Not After : Dec 12 01:21:47 2025 GMT Subject: CN=693233ab-9a20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:52:e8:4e:09:a0:2e:43:e0:e4:dd:e5:34:3e: 07:3a:1d:c8:d1:1a:04:76:fd:9d:f7:18:bd:a1:58: b1:0f:1b:88:3c:6f:ca:df:c9:97:23:b0:67:cd:fd: 8e:fd:a4:e8:f1:4e:47:99:07:f2:09:01:13:3a:69: f9:ea:cd:c5:02:62:3c:99:b5:6a:02:f0:10:9c:01: 11:3d:f3:49:4a:3f:ba:08:24:38:ae:e0:3f:62:5b: 08:6a:91:93:38:d4:4c:78:4b:e5:6c:09:38:3d:36: 8d:dc:d5:fb:f5:58:0f:37:4c:53:09:8b:8a:81:c8: c7:84:d4:cd:a5:cc:dd:bf:39:e6:c2:d9:92:8f:46: af:83:76:90:38:c8:40:1d:e5:31:c1:3d:67:c9:85: 74:c6:26:95:06:14:17:05:b5:d3:4f:8a:d3:35:9e: cc:f8:b6:ac:d8:45:44:fe:2c:cf:42:42:fb:51:d3: 1e:cc:0f:1b:88:c4:3c:66:d2:34:a4:bc:d2:32:4c: 16:56:c1:38:b2:bf:39:a7:38:6c:aa:22:51:42:51: 52:e9:84:53:a1:cc:d5:de:f2:f5:ad:56:43:38:d4: ef:ad:2a:b4:a9:01:c0:0c:7e:b5:84:e8:32:95:d5: 0c:56:51:f1:f0:dd:f4:bc:6e:4f:e0:f0:ee:82:70: c8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:8A:E5:C2:40:95:04:C8:C9:18:5C:7D:8E:1A:90:CF:83:C5:44:2B X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:af:fd:48:24:57:b2:0c:64:b5:a2:c2:d0:5f:1a:02:95:59: da:f5:65:7a:7e:5c:36:9f:be:51:6e:75:d9:2f:33:5d:96:19: d5:c7:29:d1:82:b1:35:d0:1e:7f:ba:82:b5:12:d6:ba:11:42: 1d:23:53:ba:c5:4d:59:aa:6f:49:5c:0b:08:f6:62:46:5b:56: 42:62:f7:f8:21:0b:86:51:dd:6f:0f:38:3f:4b:bb:bd:07:b0: 1e:5f:d2:02:70:e8:4b:b1:31:ef:b6:44:24:a6:9a:60:ba:ed: 3d:2b:a3:78:ce:4c:45:f2:37:7e:61:f6:e6:0c:7d:be:bb:6a: cd:d0:f6:bc:b1:af:ff:6c:ea:a7:a7:43:64:fb:a7:64:75:2b: c0:f4:3a:bc:27:f8:7c:48:3b:66:e2:87:47:d2:47:81:6a:fa: a2:2d:e2:08:e5:d3:1c:60:cd:8e:9b:c8:9a:c6:da:30:e9:16: 83:08:57:09:16:20:c2:b0:bc:bb:23:38:67:a3:e4:83:57:ba: ba:73:4a:a6:03:57:c8:c5:63:80:4d:61:19:12:23:e8:d9:db: df:53:0b:6a:a5:59:c0:10:ba:46:f7:11:f0:5e:48:13:22:cb: 02:77:73:bd:72:f4:90:e3:24:6f:45:2e:c8:cd:40:a6:9e:c2: 18:52:e9:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUxMjA1MDEyMTQ3WhcNMjUxMjEyMDEyMTQ3WjAYMRYwFAYD VQQDEw02OTMyMzNhYi05YTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1LoTgmgLkPg5N3lND4HOh3I0RoEdv2d9xi9oVixDxuIPG/K38mXI7Bnzf2O /aTo8U5HmQfyCQETOmn56s3FAmI8mbVqAvAQnAERPfNJSj+6CCQ4ruA/YlsIapGT ONRMeEvlbAk4PTaN3NX79VgPN0xTCYuKgcjHhNTNpczdvznmwtmSj0avg3aQOMhA HeUxwT1nyYV0xiaVBhQXBbXTT4rTNZ7M+Las2EVE/izPQkL7UdMezA8biMQ8ZtI0 pLzSMkwWVsE4sr85pzhsqiJRQlFS6YRToczV3vL1rVZDONTvrSq0qQHADH61hOgy ldUMVlHx8N30vG5P4PDugnDITwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiK5cJA lQTIyRhcfY4akM+DxUQrMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjr/1IJFeyDGS1osLQXxoClVna9WV6flw2n75RbnXZLzNdlhnVxynR grE10B5/uoK1Eta6EUIdI1O6xU1Zqm9JXAsI9mJGW1ZCYvf4IQuGUd1vDzg/S7u9 B7AeX9ICcOhLsTHvtkQkpppguu09K6N4zkxF8jd+YfbmDH2+u2rN0Pa8sa//bOqn p0Nk+6dkdSvA9Dq8J/h8SDtm4odH0keBavqiLeII5dMcYM2Om8iaxtow6RaDCFcJ FiDCsLy7Izhno+SDV7q6c0qmA1fIxWOATWEZEiPo2dvfUwtqpVnAELpG9xHwXkgT IssCd3O9cvSQ4yRvRS7IzUCmnsIYUum+ -----END CERTIFICATE-----Generated at Sat Dec 6 11:42:08 2025 by rpki-client