This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: GwbSVj/KTqnDnrNY2lF83vjIjTnGYUob8vAYuPYzP0s= Subject key identifier: A9:04:83:AF:E5:2B:F0:06:A8:2E:E7:6F:26:AE:FB:82:98:B1:05:A0 Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: E9 Signing time: Fri 05 Dec 2025 03:25:37 +0000 Manifest this update: Fri 05 Dec 2025 03:25:37 +0000 Manifest next update: Fri 12 Dec 2025 03:25:37 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: niVeWah8qpCLWsOiuwY++KRmZFoOIARmkOXFUwPWTD8=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: OkcwSLx62N14Khc7pixM+04Kss5uqBIS1Fg1GMXXo9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:25:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Dec 5 03:25:37 2025 GMT Not After : Dec 12 03:25:37 2025 GMT Subject: CN=693250b1-7b09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b3:ac:a4:c1:f3:97:09:c2:87:bb:02:94:56: 8b:99:e2:88:4a:3d:50:84:d5:f3:ce:f4:65:ab:5e: c3:05:a6:fa:cf:f6:c9:f4:3d:79:b9:15:68:fe:19: 81:34:78:b4:38:63:6c:b2:d1:bd:ed:45:77:ad:c4: 4f:80:cf:23:53:a9:1f:6e:98:e1:bf:8d:b0:33:3a: 32:65:1d:e5:ba:10:0d:84:cc:b5:57:31:53:ef:bd: 0a:bc:44:61:d3:cd:9b:0b:42:71:8b:44:cb:e6:ca: ca:cb:35:08:6c:ca:1a:60:bc:52:4e:f3:ff:ed:63: 43:08:c1:63:14:94:05:6c:a4:38:f6:cc:44:65:59: 20:af:b0:87:9a:15:7f:33:e7:21:c0:21:f5:b9:5d: 08:4b:1b:3d:55:bf:3c:a5:e2:3a:b3:c3:24:89:e0: a9:b5:5a:eb:23:ab:eb:d0:3f:7b:35:67:3b:cf:6b: 6e:11:98:f5:f3:75:f1:2a:b8:27:64:99:5c:28:8e: 86:e8:0d:4e:63:22:77:16:54:d9:52:18:2c:c3:8f: 7d:6d:6a:36:b6:78:4e:89:ed:41:19:27:57:51:81: 5f:55:1d:77:d7:ce:58:a2:ae:e6:4c:30:f5:cb:cc: 2a:40:9c:57:82:54:04:ee:81:d1:26:53:af:1c:42: 4d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:04:83:AF:E5:2B:F0:06:A8:2E:E7:6F:26:AE:FB:82:98:B1:05:A0 X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:dd:dc:74:f2:69:85:af:51:1f:dc:31:30:12:04:cf:10:ce: 11:1f:39:78:b7:b8:d6:97:c1:de:71:c2:14:ea:6f:2e:7f:0b: b0:e9:f1:cf:40:d6:7e:10:25:06:17:06:ab:99:e7:3b:a9:1c: c3:a5:db:90:98:13:2d:83:8f:e1:9a:9f:cf:2f:e7:b7:e8:f7: 3f:7d:5f:39:7d:1a:e9:b1:63:80:c8:22:1c:5f:07:1a:77:86: e3:42:30:32:cf:ac:43:e9:7e:39:a1:1f:45:87:e2:b6:18:c1: 6d:cb:ec:06:48:ce:26:87:b9:d1:41:8f:c2:50:9c:f6:5c:07: 62:15:4b:03:3b:b8:1a:8a:f9:d0:33:cf:8e:ce:50:21:c6:6e: 9e:23:4c:78:55:34:93:43:ed:d5:ed:5f:bd:44:5d:df:7e:1a: 48:bb:bb:63:2d:a8:87:8b:e4:af:81:e5:82:42:ee:2a:6c:0f: 99:ed:82:d7:bf:4c:67:ce:d9:5d:25:98:20:f0:f6:2c:47:a0: a0:1c:8c:c6:73:90:b1:7e:3e:36:2c:ff:d6:97:f6:60:8a:1e: 4f:c1:4f:78:59:c7:83:43:b9:b1:2f:00:25:0b:c4:4b:fe:df: ab:e5:ed:c2:fe:da:ef:75:1d:53:c1:3e:46:ef:51:62:08:a7: fa:90:1d:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDMyMTRFMjYwQTc4RjdEMTY3N0U4MzAxMzdDMTA2NTcz MDAzMUNGNjYwHhcNMjUxMjA1MDMyNTM3WhcNMjUxMjEyMDMyNTM3WjAYMRYwFAYD VQQDEw02OTMyNTBiMS03YjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbOspMHzlwnCh7sClFaLmeKISj1QhNXzzvRlq17DBab6z/bJ9D15uRVo/hmB NHi0OGNsstG97UV3rcRPgM8jU6kfbpjhv42wMzoyZR3luhANhMy1VzFT770KvERh 082bC0Jxi0TL5srKyzUIbMoaYLxSTvP/7WNDCMFjFJQFbKQ49sxEZVkgr7CHmhV/ M+chwCH1uV0ISxs9Vb88peI6s8MkieCptVrrI6vr0D97NWc7z2tuEZj183XxKrgn ZJlcKI6G6A1OYyJ3FlTZUhgsw499bWo2tnhOie1BGSdXUYFfVR13185Yoq7mTDD1 y8wqQJxXglQE7oHRJlOvHEJNrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkEg6/l K/AGqC7nbyau+4KYsQWgMB8GA1UdIwQYMBaAFDIU4mCnj30Wd+gwE3wQZXMAMc9m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8yNzJCNEM3MDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZSWjM2REFUZkJCbGN3QXh6 MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8yNzJCNEM3MDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZS WjM2REFUZkJCbGN3QXh6MlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB13dx08mmFr1Ef3DEwEgTPEM4RHzl4t7jWl8HeccIU6m8ufwuw6fHP QNZ+ECUGFwarmec7qRzDpduQmBMtg4/hmp/PL+e36Pc/fV85fRrpsWOAyCIcXwca d4bjQjAyz6xD6X45oR9Fh+K2GMFty+wGSM4mh7nRQY/CUJz2XAdiFUsDO7gaivnQ M8+OzlAhxm6eI0x4VTSTQ+3V7V+9RF3ffhpIu7tjLaiHi+SvgeWCQu4qbA+Z7YLX v0xnztldJZgg8PYsR6CgHIzGc5Cxfj42LP/Wl/Zgih5PwU94WceDQ7mxLwAlC8RL /t+r5e3C/trvdR1TwT5G71FiCKf6kB2v -----END CERTIFICATE-----Generated at Sat Dec 6 12:20:18 2025 by rpki-client