This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: zY0rm0AQbWruby4t3m/Qlhs+PGyscNENf2gTH82hmpM= Subject key identifier: BB:52:3E:00:70:0B:A0:57:78:B2:EC:D6:61:C4:76:01:B1:75:D3:78 Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0C3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 2D6E Signing time: Sat 06 Dec 2025 16:02:56 +0000 Manifest this update: Sat 06 Dec 2025 16:02:56 +0000 Manifest next update: Sat 13 Dec 2025 16:02:56 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: 4pTDrSYIIFDwrYZ7L7pJE34UjxGi7QsjSLjiUtJhe/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3131 (0xc3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B, serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: Dec 6 16:02:56 2025 GMT Not After : Dec 13 16:02:56 2025 GMT Subject: CN=693453b0-b340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c1:b7:2c:97:d6:ea:d8:bd:a6:a3:b9:0b:4d: d0:43:80:7c:74:eb:64:6a:69:e9:7e:03:3d:a0:2c: e2:e2:a1:f9:cd:9c:06:db:17:95:8a:58:21:93:27: 7b:03:fe:da:3b:75:71:5a:9b:86:bd:04:da:f7:fa: a1:35:d2:07:76:20:76:68:8e:1e:68:bf:73:8c:79: 1b:a8:e6:bb:66:fa:98:57:ed:d5:89:51:30:89:9d: 14:38:5d:8c:88:c7:b4:6b:79:a6:69:8b:72:f0:34: b3:43:30:c3:4a:ec:7e:73:cf:90:71:20:9d:7d:eb: 03:cf:1b:67:ea:41:97:1d:3a:d5:47:50:36:c7:b7: 25:8e:50:4a:15:97:a3:a7:46:7c:5b:5b:31:77:4c: d8:af:1a:ec:09:70:c1:c5:5c:40:af:17:0e:80:de: 9a:24:d0:0a:2d:69:a0:6d:1d:d8:60:cc:76:69:72: 30:cf:70:39:c6:6a:54:18:9c:19:89:61:61:13:37: 85:de:39:12:e3:06:17:2e:c9:d7:a7:b7:97:13:01: b1:bd:58:02:05:55:a2:78:08:b7:89:c7:de:41:93: 0d:a9:95:5b:82:fd:b7:d0:22:dc:17:b8:1d:68:b5: a7:d4:ba:2a:3a:ef:37:b7:f1:2a:64:39:7a:8b:83: cb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:52:3E:00:70:0B:A0:57:78:B2:EC:D6:61:C4:76:01:B1:75:D3:78 X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:73:2d:6e:9c:d0:31:c2:0b:f2:7e:ab:d5:42:67:7d:7f:5b: 3e:99:b9:7b:00:bb:2e:a5:d7:08:3d:f9:8a:13:fb:60:f9:5a: 09:19:30:48:c5:02:f4:4d:75:ff:81:ae:f2:3f:aa:c6:27:9f: 58:f2:31:16:35:4e:82:a3:6c:b8:0c:00:c1:47:e0:e7:31:0f: df:e7:37:f2:79:da:dd:02:b4:83:6b:67:c3:bd:0f:2b:a4:fe: 8f:1f:f7:96:fc:c6:6e:ae:c1:e7:86:53:16:93:ae:57:e7:d8: 98:aa:db:53:12:aa:6c:be:13:62:6f:28:4c:c7:98:19:55:de: a5:f9:08:ee:d8:aa:7c:05:62:b8:00:e5:f1:d9:c9:74:f9:18: 31:35:14:d5:30:2f:01:0a:7f:94:6e:2d:d5:f6:a4:f4:0a:9c: d7:cd:dd:76:b8:82:81:06:41:0e:4a:5a:4b:be:d7:44:41:92: 74:5f:f9:3c:7e:b9:02:7a:4b:cd:0c:f1:16:e3:15:a1:ee:23: 84:04:ae:73:61:e5:0a:5c:92:04:f4:f9:49:3b:ba:68:cb:fc: c0:21:9f:bb:79:83:9f:a0:7c:43:bf:ec:47:c6:1c:b5:7d:ca: 3e:5a:64:ec:9d:60:62:c0:8e:7f:bb:e4:f3:2d:db:a6:dc:e8: d6:8c:e8:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjUxMjA2MTYwMjU2WhcNMjUxMjEzMTYwMjU2WjAYMRYwFAYD VQQDEw02OTM0NTNiMC1iMzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMG3LJfW6ti9pqO5C03QQ4B8dOtkamnpfgM9oCzi4qH5zZwG2xeVilghkyd7 A/7aO3VxWpuGvQTa9/qhNdIHdiB2aI4eaL9zjHkbqOa7ZvqYV+3ViVEwiZ0UOF2M iMe0a3mmaYty8DSzQzDDSux+c8+QcSCdfesDzxtn6kGXHTrVR1A2x7cljlBKFZej p0Z8W1sxd0zYrxrsCXDBxVxArxcOgN6aJNAKLWmgbR3YYMx2aXIwz3A5xmpUGJwZ iWFhEzeF3jkS4wYXLsnXp7eXEwGxvVgCBVWieAi3icfeQZMNqZVbgv230CLcF7gd aLWn1LoqOu83t/EqZDl6i4PLOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtSPgBw C6BXeLLs1mHEdgGxddN4MB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvcy1unNAxwgvyfqvVQmd9f1s+mbl7ALsupdcIPfmKE/tg+VoJGTBI xQL0TXX/ga7yP6rGJ59Y8jEWNU6Co2y4DADBR+DnMQ/f5zfyedrdArSDa2fDvQ8r pP6PH/eW/MZursHnhlMWk65X59iYqttTEqpsvhNibyhMx5gZVd6l+Qju2Kp8BWK4 AOXx2cl0+RgxNRTVMC8BCn+Ubi3V9qT0CpzXzd12uIKBBkEOSlpLvtdEQZJ0X/k8 frkCekvNDPEW4xWh7iOEBK5zYeUKXJIE9PlJO7poy/zAIZ+7eYOfoHxDv+xHxhy1 fco+WmTsnWBiwI5/u+TzLdum3OjWjOie -----END CERTIFICATE-----Generated at Sat Dec 6 21:04:29 2025 by rpki-client