This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: ia3pVtg1T/HXdpg277m/V/7//rHd+kStVPkVO7c86k0= Subject key identifier: A4:03:74:9F:EF:7B:7A:44:57:B9:D4:90:24:8D:9C:34:98:E0:D8:07 Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 09E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 09CF Signing time: Sat 06 Dec 2025 19:10:39 +0000 Manifest this update: Sat 06 Dec 2025 19:10:38 +0000 Manifest next update: Sat 13 Dec 2025 19:10:38 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: 3dPAbr9JY1LiYVu1fmGVvIUKrbqHHRo14T1/urBwr2w=) 2: 7AEEA290829E11F0975FC440C4F9AE02.roa (hash: ylXeGQVKEpyBpdJm+bvsrD7tk3lV9xXY1bBsN7fiPY0=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2529 (0x9e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Dec 6 19:10:38 2025 GMT Not After : Dec 13 19:10:38 2025 GMT Subject: CN=69347faf-b414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:83:0b:f5:cf:1e:99:f4:a8:28:f9:85:28:f4: fd:86:b3:9d:7d:d7:cf:ea:0f:8c:e3:dd:11:b4:4f: 8e:24:2c:aa:0a:b1:1c:6f:46:3a:47:5b:c6:3d:b4: 0d:e5:16:3c:bf:49:6b:e4:36:ea:ae:bd:1a:54:e1: 8c:df:6d:8f:4e:15:08:59:60:4e:17:08:45:b1:21: 34:4e:91:a3:e2:c9:ce:30:ae:78:d3:e9:50:6b:e3: 13:b9:b8:0c:09:e7:fe:c4:40:42:d6:6f:7f:f5:88: 2e:45:3a:b3:fc:5b:40:07:45:4d:64:1f:ce:35:d6: cd:e2:f6:78:e9:5b:51:97:ea:fb:cd:61:0b:aa:af: a4:f9:ae:95:9a:97:6c:b3:7c:8d:e7:1f:ae:a1:17: bc:b9:f0:3b:3c:5c:95:3b:ba:ff:3e:6a:99:d5:6f: 3f:5c:c2:c9:d0:61:b0:11:bd:b0:33:54:65:16:48: 65:49:6e:66:54:ad:7b:88:b2:e3:81:6f:dd:8e:96: 19:d6:a4:a8:6b:5c:68:ac:de:36:78:ea:05:a0:4f: e7:b3:c0:bf:34:fd:60:a4:a5:10:79:3d:a7:dd:10: 3c:a0:d0:c1:b5:5a:74:0b:7b:2b:44:a2:9f:c6:ff: 98:7f:7e:cd:26:94:76:4e:77:ab:99:fa:cd:1b:62: ee:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:03:74:9F:EF:7B:7A:44:57:B9:D4:90:24:8D:9C:34:98:E0:D8:07 X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:8b:18:0e:f5:aa:8e:11:18:19:e4:7d:70:02:cc:e4:f9:db: 1f:ec:06:80:0a:ec:d6:6b:cb:b6:f6:1a:c8:fd:6e:26:58:1d: f3:dd:b1:25:c6:96:9a:d4:33:89:5b:84:2c:14:74:35:ca:33: 70:f7:99:8e:3b:62:e2:1b:69:c6:0e:f1:45:ca:ef:df:41:e2: c5:9d:72:2d:0a:ea:eb:7c:b8:2c:ce:bd:7e:06:5b:51:1d:b2: c0:24:af:e6:d5:d5:07:62:6f:0f:37:ab:31:d6:2a:80:c6:04: 14:c5:a4:3e:54:47:27:13:7a:c6:48:42:5f:ce:b2:75:bf:70: 31:76:b1:d1:3d:3c:61:59:f3:33:13:44:24:0d:15:a4:cb:3c: a8:92:01:12:ea:ad:c0:76:7e:fd:b6:0b:e3:a5:d6:d0:15:9d: 9a:12:02:47:da:77:98:b8:4f:28:e8:43:65:e6:1f:17:34:17: be:33:12:b8:3f:db:d5:da:2a:17:f5:2c:1c:8a:51:f4:65:d1: 96:3f:50:5d:f9:61:cc:97:2e:42:4c:6e:88:3f:16:4a:e7:17: f8:98:28:e0:89:4f:04:f4:16:d5:cc:7a:85:24:b3:6a:f1:fd: 33:4a:f6:e9:78:62:cf:69:82:3c:9e:6b:b5:11:04:78:06:82: 25:75:3a:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjUxMjA2MTkxMDM4WhcNMjUxMjEzMTkxMDM4WjAYMRYwFAYD VQQDEw02OTM0N2ZhZi1iNDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8oML9c8emfSoKPmFKPT9hrOdfdfP6g+M490RtE+OJCyqCrEcb0Y6R1vGPbQN 5RY8v0lr5Dbqrr0aVOGM322PThUIWWBOFwhFsSE0TpGj4snOMK540+lQa+MTubgM Cef+xEBC1m9/9YguRTqz/FtAB0VNZB/ONdbN4vZ46VtRl+r7zWELqq+k+a6Vmpds s3yN5x+uoRe8ufA7PFyVO7r/PmqZ1W8/XMLJ0GGwEb2wM1RlFkhlSW5mVK17iLLj gW/djpYZ1qSoa1xorN42eOoFoE/ns8C/NP1gpKUQeT2n3RA8oNDBtVp0C3srRKKf xv+Yf37NJpR2TnermfrNG2LurwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQDdJ/v e3pEV7nUkCSNnDSY4NgHMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2ixgO9aqOERgZ5H1wAszk+dsf7AaACuzWa8u29hrI/W4mWB3z3bEl xpaa1DOJW4QsFHQ1yjNw95mOO2LiG2nGDvFFyu/fQeLFnXItCurrfLgszr1+BltR HbLAJK/m1dUHYm8PN6sx1iqAxgQUxaQ+VEcnE3rGSEJfzrJ1v3AxdrHRPTxhWfMz E0QkDRWkyzyokgES6q3Adn79tgvjpdbQFZ2aEgJH2neYuE8o6ENl5h8XNBe+MxK4 P9vV2ioX9SwcilH0ZdGWP1Bd+WHMly5CTG6IPxZK5xf4mCjgiU8E9BbVzHqFJLNq 8f0zSvbpeGLPaYI8nmu1EQR4BoIldToo -----END CERTIFICATE-----Generated at Sat Dec 6 23:04:13 2025 by rpki-client