This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: 7zRt1zlKC9URQkpYh76dwa864u7cDMRFeFoqyOEvsrI= Subject key identifier: 2C:7D:CE:E7:CB:C9:0E:2D:25:94:4F:1F:E2:37:0B:D7:A0:00:1D:0C Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: F5 Signing time: Fri 05 Dec 2025 03:15:01 +0000 Manifest this update: Fri 05 Dec 2025 03:15:01 +0000 Manifest next update: Fri 12 Dec 2025 03:15:01 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: PFoJqrouRGh8E1VBQeD2/Rm2eVNj95XFAPheImiC+wA=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: YxY/TXb7ZV7RLnxJEIm3XTlQ67ELpalTGoTZTqConuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Dec 5 03:15:01 2025 GMT Not After : Dec 12 03:15:01 2025 GMT Subject: CN=69324e35-3b76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:32:01:27:d0:73:da:e9:c7:6b:50:11:ce:ae: ca:d6:78:83:06:9e:84:64:97:75:b2:90:20:99:08: e3:55:ff:c8:40:ff:51:a1:c7:06:0a:d1:be:86:de: 1e:27:67:37:49:2c:5d:40:7c:47:c5:81:7b:68:42: d0:92:68:24:ec:00:de:af:cd:b6:21:5c:53:a4:f8: 01:7f:a2:c0:5d:e2:3d:91:ba:5f:aa:f8:0a:9e:04: 8f:85:c3:2f:ae:aa:f9:0e:d3:53:cb:56:bf:05:6c: e8:64:3b:b4:15:25:a8:9f:56:e5:f5:f7:54:8d:70: bc:e7:b9:09:20:54:9b:cf:bb:a1:f0:df:f4:be:d5: 42:cc:4b:2d:40:ed:9b:82:75:39:4e:31:88:d3:a9: 28:6f:81:e7:f9:9a:fb:b9:1f:79:69:d9:d1:02:a3: 17:69:ad:3e:a0:ee:aa:30:f8:49:61:9f:42:35:ef: d7:a3:db:57:77:02:c1:14:62:f4:04:81:23:31:8c: 08:e4:34:cb:c4:de:91:11:b9:cc:80:ba:f6:bc:f2: 74:06:e2:a6:42:50:53:09:71:ae:f9:2b:ab:1e:09: 57:d5:4f:78:eb:39:d8:5f:b6:07:b9:6d:69:8e:14: 94:82:22:81:23:eb:c4:26:93:47:52:94:61:39:5a: e8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:7D:CE:E7:CB:C9:0E:2D:25:94:4F:1F:E2:37:0B:D7:A0:00:1D:0C X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:df:0d:47:fd:41:bd:c0:e1:dc:59:b5:1a:68:b9:a7:ac:fd: 9d:8c:16:21:7a:62:df:98:bb:0b:2c:2a:fc:2e:86:92:84:c0: 77:8a:49:10:36:7c:c9:23:e1:b6:4b:df:47:b0:1b:04:4d:2d: 13:0e:48:f0:25:b7:91:63:dd:6f:8e:fe:78:04:5f:33:b2:86: 6a:1e:71:06:ee:b6:f2:e7:19:10:9c:8e:a4:15:cb:46:c6:9c: 9a:f5:c0:2b:37:75:67:03:65:f9:38:1f:49:26:97:24:a8:aa: 82:77:c0:b5:22:da:96:e3:16:e7:92:18:e8:7f:61:31:19:65: 45:68:65:7b:71:5e:a4:08:f7:b9:bc:46:d3:02:c0:26:dc:68: aa:b8:12:37:a9:20:12:2b:e7:bd:f2:6b:0a:b8:22:20:3c:1c: e9:83:93:86:75:5f:53:13:c6:8d:39:a3:13:ee:cb:38:21:8c: ca:7a:4b:27:74:96:40:95:b2:61:b5:f2:06:d2:59:b7:c9:47: 2d:a8:05:1e:1d:5f:4f:22:d9:ba:c1:5d:8b:b8:43:eb:dd:4d: 7f:e4:db:b4:63:bb:97:f4:79:9e:a6:03:dc:61:a0:8c:a5:d4: 82:d2:c0:24:46:8c:52:25:48:01:94:be:37:3d:6e:9e:c0:24: 3c:0a:27:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjUxMjA1MDMxNTAxWhcNMjUxMjEyMDMxNTAxWjAYMRYwFAYD VQQDEw02OTMyNGUzNS0zYjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTIBJ9Bz2unHa1ARzq7K1niDBp6EZJd1spAgmQjjVf/IQP9RoccGCtG+ht4e J2c3SSxdQHxHxYF7aELQkmgk7ADer822IVxTpPgBf6LAXeI9kbpfqvgKngSPhcMv rqr5DtNTy1a/BWzoZDu0FSWon1bl9fdUjXC857kJIFSbz7uh8N/0vtVCzEstQO2b gnU5TjGI06kob4Hn+Zr7uR95adnRAqMXaa0+oO6qMPhJYZ9CNe/Xo9tXdwLBFGL0 BIEjMYwI5DTLxN6REbnMgLr2vPJ0BuKmQlBTCXGu+SurHglX1U946znYX7YHuW1p jhSUgiKBI+vEJpNHUpRhOVroQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCx9zufL yQ4tJZRPH+I3C9egAB0MMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+3w1H/UG9wOHcWbUaaLmnrP2djBYhemLfmLsLLCr8LoaShMB3ikkQ NnzJI+G2S99HsBsETS0TDkjwJbeRY91vjv54BF8zsoZqHnEG7rby5xkQnI6kFctG xpya9cArN3VnA2X5OB9JJpckqKqCd8C1ItqW4xbnkhjof2ExGWVFaGV7cV6kCPe5 vEbTAsAm3GiquBI3qSASK+e98msKuCIgPBzpg5OGdV9TE8aNOaMT7ss4IYzKeksn dJZAlbJhtfIG0lm3yUctqAUeHV9PItm6wV2LuEPr3U1/5Nu0Y7uX9HmepgPcYaCM pdSC0sAkRoxSJUgBlL43PW6ewCQ8CicV -----END CERTIFICATE-----Generated at Sat Dec 6 12:22:35 2025 by rpki-client