This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft File: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft (raw, json) Hash identifier: ILPCJ28r0F39U5ZkjC+xPiuOYFta7q9UDUIbADI92JM= Subject key identifier: 28:34:33:04:DF:9C:02:9A:26:9A:D5:87:48:3C:EB:52:97:38:E0:9A Authority key identifier: 22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A Certificate issuer: /CN=A91F83DC/serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft Manifest number: 011B Signing time: Fri 05 Dec 2025 02:54:30 +0000 Manifest this update: Fri 05 Dec 2025 02:54:30 +0000 Manifest next update: Fri 12 Dec 2025 02:54:30 +0000 Files and hashes: 1: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl (hash: CarSjEx0mvxUJVLtxKaBl2KbfBqoudxrTE+CV2BwewY=) 2: 097951DC271E11EFA1884C2EC4F9AE02.roa (hash: Ha/cGz3EuqzsAq4mNf1LJHzYtP6EU2XABOfv8TEGk30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:54:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F83DC, serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Validity Not Before: Dec 5 02:54:30 2025 GMT Not After : Dec 12 02:54:30 2025 GMT Subject: CN=69324966-57bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bc:3a:4e:03:95:23:85:3b:dd:a3:43:cd:3d: 4a:60:8a:46:7c:8b:6e:2e:41:79:3f:d3:af:b1:c6: b9:70:bc:6e:3a:71:53:a0:15:3e:bf:52:b3:e5:e1: 87:df:a0:ed:19:21:16:da:77:61:74:18:20:b6:fe: 4d:b6:bf:58:98:d5:cb:c6:cc:ad:e3:4e:eb:6c:79: d9:cc:20:b5:aa:10:9c:2e:f8:fb:66:0a:78:9d:98: 60:d8:df:0c:e6:b3:ff:5c:5e:a0:a1:15:c0:a4:c9: 81:d2:a4:e9:b5:a9:ac:2d:d6:2d:5e:79:05:ba:7d: 7c:2b:24:61:74:18:21:db:20:76:3b:67:b7:19:e8: 14:12:2e:2d:24:28:66:4f:11:51:30:87:85:3d:2d: 73:f3:96:3f:e1:09:d2:8d:f2:71:d2:71:97:18:87: 8d:dc:91:ea:92:0e:b8:a5:f1:76:58:c4:76:43:7a: b0:f0:79:45:0d:6f:6e:51:05:23:a7:0d:ac:3a:34: 39:cf:43:d8:97:fc:3a:e7:0c:57:3c:14:ef:8a:c9: fa:6f:d2:da:6d:53:46:d7:f2:1a:e9:94:7d:ae:a5: 2b:a0:25:e5:a0:3e:50:24:17:47:5e:3c:8b:54:0b: b7:b6:ab:60:0a:2c:09:17:4d:b0:d5:12:d6:59:6f: 0f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:34:33:04:DF:9C:02:9A:26:9A:D5:87:48:3C:EB:52:97:38:E0:9A X509v3 Authority Key Identifier: keyid:22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:6c:f9:70:88:f2:19:6c:29:e6:54:c1:19:c0:79:2f:70:eb: 79:99:e1:96:25:f9:54:98:ce:43:34:82:1f:e6:48:a5:b7:61: 8a:14:e3:28:f1:c0:16:87:6b:25:c8:aa:88:db:9a:e4:bb:01: 0a:d1:65:61:f6:47:ad:13:cd:e6:0a:d9:c6:33:59:68:54:fe: 21:ee:f5:36:f9:80:6f:f2:66:57:69:48:3b:b2:4e:b0:6e:aa: 9c:5e:01:3c:18:b5:1f:0f:ad:6d:54:04:69:ca:28:82:ff:fb: 49:84:7f:4b:77:d7:a1:1f:e4:87:83:c8:8d:4f:0a:48:38:31: 84:af:2e:24:03:d3:68:55:8e:6d:37:6c:3e:4f:dc:91:26:c3: 11:75:39:46:6c:55:04:8d:a0:3b:62:56:50:99:f1:6f:f3:90: e9:1d:b8:e8:d8:8f:ab:81:d9:e0:77:26:dd:ac:ad:d0:7a:b8: db:12:51:3d:41:42:a0:70:8c:ed:66:0d:81:b4:15:37:f6:ab: 4c:22:87:c2:ee:54:a1:fb:96:d9:e2:7d:0a:b8:8a:b3:3e:76: b9:a4:c5:c1:62:7a:92:45:89:d9:66:32:c9:0c:18:67:48:6b: 87:ae:29:fd:22:c1:84:ab:43:62:cb:d1:ec:c8:aa:58:31:9e: 28:87:4f:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzREMxMTAvBgNVBAUTKDIyNEU2NjhGNDA1NjAxQ0FEQzMzOTEzODNGQ0E5NkRG OTQ2OEQ5NUEwHhcNMjUxMjA1MDI1NDMwWhcNMjUxMjEyMDI1NDMwWjAYMRYwFAYD VQQDEw02OTMyNDk2Ni01N2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLw6TgOVI4U73aNDzT1KYIpGfItuLkF5P9Ovsca5cLxuOnFToBU+v1Kz5eGH 36DtGSEW2ndhdBggtv5Ntr9YmNXLxsyt407rbHnZzCC1qhCcLvj7Zgp4nZhg2N8M 5rP/XF6goRXApMmB0qTptamsLdYtXnkFun18KyRhdBgh2yB2O2e3GegUEi4tJChm TxFRMIeFPS1z85Y/4QnSjfJx0nGXGIeN3JHqkg64pfF2WMR2Q3qw8HlFDW9uUQUj pw2sOjQ5z0PYl/w65wxXPBTvisn6b9LabVNG1/Ia6ZR9rqUroCXloD5QJBdHXjyL VAu3tqtgCiwJF02w1RLWWW8PGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCg0MwTf nAKaJprVh0g861KXOOCaMB8GA1UdIwQYMBaAFCJOZo9AVgHK3DOROD/Klt+UaNla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODNEQy85OUM3NDg4ODI2 RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0FjcmNNNUU0UDhxVzM1Um8y Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrNW1qMEJXQWNyY001RTRQOHFXMzVSbzJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODNEQy85OUM3NDg4ODI2RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0Fj cmNNNUU0UDhxVzM1Um8yVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzbPlwiPIZbCnmVMEZwHkvcOt5meGWJflUmM5DNIIf5kilt2GKFOMo 8cAWh2slyKqI25rkuwEK0WVh9ketE83mCtnGM1loVP4h7vU2+YBv8mZXaUg7sk6w bqqcXgE8GLUfD61tVARpyiiC//tJhH9Ld9ehH+SHg8iNTwpIODGEry4kA9NoVY5t N2w+T9yRJsMRdTlGbFUEjaA7YlZQmfFv85DpHbjo2I+rgdngdybdrK3QerjbElE9 QUKgcIztZg2BtBU39qtMIofC7lSh+5bZ4n0KuIqzPna5pMXBYnqSRYnZZjLJDBhn SGuHrin9IsGEq0Niy9HsyKpYMZ4oh09B -----END CERTIFICATE-----Generated at Sat Dec 6 22:40:18 2025 by rpki-client