This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft File: iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft (raw, json) Hash identifier: die9DlqFEhFmvBqULl66Rk1Ibued6OOJzvlxNi5AXY8= Subject key identifier: 20:21:56:EA:C8:7A:70:17:40:E9:93:20:E3:E5:D6:BB:2C:12:D2:3C Authority key identifier: 89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE Certificate issuer: /CN=A91F40E0/serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft Manifest number: 41 Signing time: Fri 05 Dec 2025 05:20:26 +0000 Manifest this update: Fri 05 Dec 2025 05:20:25 +0000 Manifest next update: Fri 12 Dec 2025 05:20:25 +0000 Files and hashes: 1: iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl (hash: a2eW1FQWDOgnDGH4q7gZcQ9H19YRX2mC8jDxcep82vo=) 2: 399480C4ACD011F08828DD7BC4F9AE02.roa (hash: Mnd71Ffk/psJgLiSkChk25qvX5F/utFXFDACcylb68Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F40E0, serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Validity Not Before: Dec 5 05:20:25 2025 GMT Not After : Dec 12 05:20:25 2025 GMT Subject: CN=69326b99-fc58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:02:12:d1:39:90:7b:03:d4:dc:72:88:b2:a4: 03:00:f7:39:d7:75:47:df:57:03:3b:19:a1:bf:0f: 13:b7:af:0c:43:85:30:f1:25:01:1a:ee:a1:93:b6: 8d:ae:5d:61:1e:db:a8:33:17:86:a6:84:22:36:06: b3:27:2a:3e:fc:fd:49:5c:a2:1e:65:e8:ae:3b:20: e3:e2:f4:b3:fa:0c:2b:b5:c5:dd:79:2f:d6:0f:37: e0:9c:cf:e9:39:38:b5:9a:aa:5a:99:9d:33:3a:57: 5d:37:62:c3:61:a0:58:a1:2c:66:13:de:74:8c:28: 6c:b1:c4:73:b3:b6:d9:b4:c5:67:6d:39:1d:a0:8f: 75:4e:a9:3d:54:2e:d2:f6:93:7d:21:f7:9b:4e:07: 0b:4e:4f:37:ff:80:5a:e5:d4:27:6f:77:47:f9:8e: a5:bc:40:13:20:03:3a:86:23:06:12:00:0a:81:36: 35:58:a8:09:3b:19:ca:bb:93:c9:9e:7e:d7:21:27: 37:88:26:b2:4b:dc:55:20:a5:e6:36:a3:ca:92:6c: 63:77:8f:8f:93:63:3f:0c:d9:0f:99:b0:14:c4:3a: 9c:cb:b5:d7:35:ec:c7:83:12:0f:6e:d1:db:f5:c0: cd:4b:85:c3:34:9d:09:87:77:f0:06:9e:be:2c:85: 23:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:21:56:EA:C8:7A:70:17:40:E9:93:20:E3:E5:D6:BB:2C:12:D2:3C X509v3 Authority Key Identifier: keyid:89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:cc:cf:42:a6:ed:1b:44:ed:f5:ff:fe:b8:81:95:1f:34:93: 72:aa:98:34:b6:e1:26:28:ec:5b:45:09:b8:34:0e:e7:20:4e: 3e:1c:20:92:84:59:cd:2d:6f:03:b7:9d:6c:a0:65:fd:eb:47: ac:5b:06:52:6d:65:ea:10:62:23:c5:c0:60:c9:a1:5e:d8:a8: 8f:6f:a0:eb:13:3d:05:26:10:cb:0c:5e:87:bc:44:dc:49:72: 68:40:f4:4c:b8:de:ba:fc:ec:c1:b7:14:03:a0:9e:cc:e7:9e: a2:65:e0:99:79:b9:7c:7b:a5:40:96:bd:a3:2d:5f:0e:6f:05: 93:66:c9:aa:a2:c5:58:c1:e0:ef:18:21:d7:c1:25:db:38:d0: f1:0e:c7:78:07:fc:14:32:ef:7e:d5:13:df:05:ed:c2:b5:65: 2c:d0:4b:1d:1a:2c:a4:40:69:72:59:c9:fa:8e:37:47:1e:06: cb:33:6e:64:28:87:a4:78:28:27:0a:76:0a:2d:7c:af:f8:f4: 86:9d:21:3b:f5:2d:d3:95:88:e5:33:d6:88:59:2c:87:85:73: 4b:03:69:da:68:40:43:cf:c9:a4:d0:7d:e4:54:87:a4:51:1f: 72:de:98:46:8f:09:7a:39:c0:c0:2d:2e:3a:e0:d4:f5:a2:7b: 04:35:9c:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDBFMDExMC8GA1UEBRMoODk3MDc3QjcxRjJDNUFFRERFNkMxREQ0OTU0N0RDQzk5 NTJDREFCRTAeFw0yNTEyMDUwNTIwMjVaFw0yNTEyMTIwNTIwMjVaMBgxFjAUBgNV BAMTDTY5MzI2Yjk5LWZjNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzAhLROZB7A9TccoiypAMA9znXdUffVwM7GaG/DxO3rwxDhTDxJQEa7qGTto2u XWEe26gzF4amhCI2BrMnKj78/Ulcoh5l6K47IOPi9LP6DCu1xd15L9YPN+Ccz+k5 OLWaqlqZnTM6V103YsNhoFihLGYT3nSMKGyxxHOzttm0xWdtOR2gj3VOqT1ULtL2 k30h95tOBwtOTzf/gFrl1Cdvd0f5jqW8QBMgAzqGIwYSAAqBNjVYqAk7Gcq7k8me ftchJzeIJrJL3FUgpeY2o8qSbGN3j4+TYz8M2Q+ZsBTEOpzLtdc17MeDEg9u0dv1 wM1LhcM0nQmHd/AGnr4shSNDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUICFW6sh6 cBdA6ZMg4+XWuywS0jwwHwYDVR0jBBgwFoAUiXB3tx8sWu3ebB3UlUfcyZUs2r4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0MEUwLzNGQkI1RTA0N0I1 MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3UzZWJCM1VsVWZjeVpVczJy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVhCM3R4OHNXdTNlYkIzVWxVZmN5WlVzMnI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 MEUwLzNGQkI1RTA0N0I1MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3Uz ZWJCM1VsVWZjeVpVczJyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABnMz0Km7RtE7fX//riBlR80k3KqmDS24SYo7FtFCbg0DucgTj4cIJKE Wc0tbwO3nWygZf3rR6xbBlJtZeoQYiPFwGDJoV7YqI9voOsTPQUmEMsMXoe8RNxJ cmhA9Ey43rr87MG3FAOgnsznnqJl4Jl5uXx7pUCWvaMtXw5vBZNmyaqixVjB4O8Y IdfBJds40PEOx3gH/BQy737VE98F7cK1ZSzQSx0aLKRAaXJZyfqON0ceBsszbmQo h6R4KCcKdgotfK/49IadITv1LdOViOUz1ohZLIeFc0sDadpoQEPPyaTQfeRUh6RR H3LemEaPCXo5wMAtLjrg1PWiewQ1nD0= -----END CERTIFICATE-----Generated at Sat Dec 6 17:11:13 2025 by rpki-client