This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json) Hash identifier: W9rNLDIabfcxMrIBZcp6brNwguJ/7AIqWkavqF8GHNc= Subject key identifier: 04:2F:0B:FA:C5:FA:B0:2F:0C:89:46:CD:74:79:3F:E5:7B:57:7D:64 Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 0323 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft Manifest number: 031E Signing time: Thu 04 Dec 2025 23:28:55 +0000 Manifest this update: Thu 04 Dec 2025 23:28:54 +0000 Manifest next update: Thu 11 Dec 2025 23:28:54 +0000 Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: PxYC8123+g3I4lum+nKisMD0cdHbcwYqpmpcOSiOITE=) 2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: RY7IQ05ThI/6GtkKfLwI0St2mmRdLcPJ0ecThYjAydU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:28:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 803 (0x323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD, serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Validity Not Before: Dec 4 23:28:54 2025 GMT Not After : Dec 11 23:28:54 2025 GMT Subject: CN=69321936-02e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:51:d5:d1:26:55:23:25:96:4f:e6:9e:c8:62: 40:ec:be:7d:1f:b9:b9:86:04:a3:93:70:fa:4d:0b: 0e:f0:e5:85:2a:db:ec:47:56:83:85:05:35:30:b5: c9:c8:cd:d7:35:b7:6a:7b:1e:08:7e:26:4c:cf:f8: c4:c3:42:49:b5:9b:c2:81:f3:21:56:66:ad:84:8e: 57:95:32:ff:9c:c7:07:43:43:d5:0d:6b:0f:07:8f: 9d:64:cc:33:b7:4f:f4:21:6a:07:3e:1e:57:02:71: e1:ec:10:71:87:65:e0:75:b9:ee:28:44:01:38:4b: 19:94:8d:0a:49:4b:b5:a6:99:ba:8d:7d:d8:e6:ac: 2c:50:e2:78:17:71:c5:a5:85:cc:d2:fb:90:a9:14: 81:85:43:1b:1d:b5:28:45:9d:cd:08:31:6e:dd:c0: 93:f5:9e:52:bd:ca:fe:37:84:30:cb:da:b6:ad:3d: 03:a7:2c:98:2f:99:a8:81:84:5c:cd:09:63:6e:8d: 0e:8f:fa:8f:d1:83:9b:d0:4d:69:02:3f:c2:86:8b: b9:0d:8f:06:dd:2d:d1:9f:7e:81:32:c0:c8:25:b6: 3e:2d:f6:a4:cf:d9:fb:67:5a:63:fb:3b:8f:20:c7: 16:e1:27:97:6d:a5:f5:77:fe:0d:a7:cb:df:8e:68: f7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2F:0B:FA:C5:FA:B0:2F:0C:89:46:CD:74:79:3F:E5:7B:57:7D:64 X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:cd:d6:14:f4:37:60:8e:37:ba:96:a4:64:b8:13:f1:0f:fc: de:6b:05:54:58:e6:d5:6c:0d:fb:05:c0:d7:74:d3:ad:a5:78: 96:d4:3c:7c:15:4b:59:09:06:5e:26:c7:80:c3:db:69:95:16: ee:04:d9:05:98:2d:0d:3e:e6:e3:37:b8:5c:c9:d8:7d:43:53: 6f:15:b1:f5:96:7e:47:c0:d2:e2:49:10:a3:b6:72:83:38:0b: 21:1c:e9:7a:52:c4:9e:16:59:94:26:1f:20:5d:c4:7f:db:db: 64:f9:a4:9d:36:54:dd:6e:dc:9e:8d:fd:36:2a:13:3f:31:61: b2:c0:b7:03:09:c4:0d:bd:e4:d6:65:96:46:82:7e:42:a3:22: bc:21:36:9f:63:80:c2:8f:67:71:af:96:03:ca:6a:d3:82:ce: e3:e4:61:47:0b:a5:99:4c:b1:d1:bd:dc:60:31:a6:de:40:9c: 1b:29:8e:f8:06:55:2f:83:e5:39:f4:0f:18:f2:f3:6c:06:db: 5b:88:fb:4b:3c:4f:e5:da:e5:ce:6a:f6:7f:c0:a1:ec:6b:54: 01:1c:cd:ec:60:bb:88:5b:fb:dc:ca:c6:1d:f1:24:da:00:2a: d8:78:3c:d1:54:86:66:ec:c6:53:2d:b5:f7:47:00:b3:69:18: fc:c3:f9:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjUxMjA0MjMyODU0WhcNMjUxMjExMjMyODU0WjAYMRYwFAYD VQQDEw02OTMyMTkzNi0wMmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFHV0SZVIyWWT+aeyGJA7L59H7m5hgSjk3D6TQsO8OWFKtvsR1aDhQU1MLXJ yM3XNbdqex4IfiZMz/jEw0JJtZvCgfMhVmathI5XlTL/nMcHQ0PVDWsPB4+dZMwz t0/0IWoHPh5XAnHh7BBxh2XgdbnuKEQBOEsZlI0KSUu1ppm6jX3Y5qwsUOJ4F3HF pYXM0vuQqRSBhUMbHbUoRZ3NCDFu3cCT9Z5Svcr+N4Qwy9q2rT0DpyyYL5mogYRc zQljbo0Oj/qP0YOb0E1pAj/Chou5DY8G3S3Rn36BMsDIJbY+Lfakz9n7Z1pj+zuP IMcW4SeXbaX1d/4Np8vfjmj35wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQvC/rF +rAvDIlGzXR5P+V7V31kMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFERC9GMTUwMDNDOEYxMTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3 OUZ6MUlPZXl3YVBOb3Z5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBzdYU9Ddgjje6lqRkuBPxD/zeawVUWObVbA37BcDXdNOtpXiW1Dx8 FUtZCQZeJseAw9tplRbuBNkFmC0NPubjN7hcydh9Q1NvFbH1ln5HwNLiSRCjtnKD OAshHOl6UsSeFlmUJh8gXcR/29tk+aSdNlTdbtyejf02KhM/MWGywLcDCcQNveTW ZZZGgn5CoyK8ITafY4DCj2dxr5YDymrTgs7j5GFHC6WZTLHRvdxgMabeQJwbKY74 BlUvg+U59A8Y8vNsBttbiPtLPE/l2uXOavZ/wKHsa1QBHM3sYLuIW/vcysYd8STa ACrYeDzRVIZm7MZTLbX3RwCzaRj8w/lX -----END CERTIFICATE-----Generated at Sat Dec 6 16:26:16 2025 by rpki-client