This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft File: rHzRY2nXDaZnWZ2jaOICQknLAvw.mft (raw, json) Hash identifier: wPpiXR+0+qiYgEbE7Ki3orx2LNSIAgOy30kaATazhGE= Subject key identifier: 40:D4:C6:92:6D:33:1C:E1:8A:57:CB:11:F5:78:1D:A2:F9:C8:35:46 Authority key identifier: AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC Certificate issuer: /CN=A91FB4F7/serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft Manifest number: 2D Signing time: Fri 05 Dec 2025 05:26:58 +0000 Manifest this update: Fri 05 Dec 2025 05:26:57 +0000 Manifest next update: Fri 12 Dec 2025 05:26:57 +0000 Files and hashes: 1: rHzRY2nXDaZnWZ2jaOICQknLAvw.crl (hash: /LJtZAAmTNwSwx5b7ZxwoJhKjV+Xs8JD7NUVYH7PHkU=) 2: 53AEC77E8C7511F0BEEC137FC4F9AE02.roa (hash: bltQP8R8HZQyv1HSKxR7BSQwCkOH7hsa3qOC3GHr4Dg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB4F7, serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Validity Not Before: Dec 5 05:26:57 2025 GMT Not After : Dec 12 05:26:57 2025 GMT Subject: CN=69326d21-5660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4a:d3:bb:00:0b:00:a9:6d:62:d5:1d:10:63: b2:05:a7:e1:2a:f2:49:59:d3:bf:83:9c:65:9f:eb: b2:32:68:d4:48:bc:55:f5:38:a6:9f:b8:11:e6:23: e4:8c:14:41:d5:0c:f1:ed:df:92:7e:4b:3c:77:12: 5a:42:bd:94:11:f6:fe:15:ca:a6:da:8a:d6:a9:4b: 69:d1:41:a2:e6:4e:41:32:37:77:68:bf:3b:2a:4a: 9b:e4:ec:e6:94:39:4a:db:58:14:11:a7:d3:a9:3b: 85:38:bc:b3:2d:3c:40:45:2a:43:e5:95:77:9c:17: a9:be:dc:4c:3c:fe:04:86:a2:7c:46:8b:14:47:6f: be:0b:ec:3c:f3:7f:17:f1:30:7d:48:c1:1b:19:42: 4d:94:bc:ed:dd:0d:d4:bd:71:ef:7c:44:48:cd:0f: e3:54:ef:df:39:52:e6:e4:a3:ed:79:c5:1d:f7:a2: bd:07:a7:9d:d2:ae:d1:aa:15:8e:44:f6:a4:4a:3f: 10:2f:cf:a3:43:c3:47:e5:a5:7d:9c:e5:b4:57:62: fb:45:51:ad:31:84:41:27:24:bb:97:a1:68:c6:14: 06:cb:52:91:73:ef:86:c4:df:ce:d6:e8:37:c4:fd: ad:8b:5f:b5:97:18:51:23:02:74:8f:ff:65:2a:21: d3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D4:C6:92:6D:33:1C:E1:8A:57:CB:11:F5:78:1D:A2:F9:C8:35:46 X509v3 Authority Key Identifier: keyid:AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:42:0c:1e:ea:3b:5d:c3:c8:9c:8a:d9:0b:cb:cf:6f:71:01: 8f:a2:df:3f:51:9d:dd:e5:05:d3:49:70:9a:ba:64:63:67:f9: bb:e4:fe:04:60:40:44:c9:4c:4f:05:50:7f:d6:93:7b:af:cf: ca:a4:3f:b1:ed:17:17:ee:fd:e5:80:af:11:82:c6:d1:1a:a5: 3a:5a:0e:29:62:a1:29:f1:b4:a7:4b:02:e0:a6:84:b0:0b:3b: d5:46:02:bd:83:69:da:99:df:7c:ed:e6:41:13:03:d6:b8:c2: 27:7b:df:89:21:b4:29:99:7a:da:01:5f:40:a8:b8:fb:74:36: 84:f8:6a:67:a6:12:2b:14:89:85:e3:52:5d:f9:d1:d0:35:5c: 09:0e:2f:22:3a:12:67:bd:30:26:e9:f8:37:81:70:fc:6c:90: 26:42:a2:7e:cf:3f:01:32:ec:f9:f7:8e:44:69:ac:de:ae:f7: 37:57:ea:95:6c:a4:96:ba:7e:94:99:ea:18:88:4f:03:77:78: f4:eb:dc:4a:51:58:7e:9e:36:d3:94:4a:d4:e4:23:7d:e6:5d: 87:6e:54:2e:86:87:e2:ad:d9:e9:bb:7b:4b:7d:56:45:fd:17: a4:5b:64:57:47:03:7e:06:6a:05:83:d2:b6:de:86:b7:d3:fd: 1b:dc:6c:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjRGNzExMC8GA1UEBRMoQUM3Q0QxNjM2OUQ3MERBNjY3NTk5REEzNjhFMjAyNDI0 OUNCMDJGQzAeFw0yNTEyMDUwNTI2NTdaFw0yNTEyMTIwNTI2NTdaMBgxFjAUBgNV BAMTDTY5MzI2ZDIxLTU2NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDStO7AAsAqW1i1R0QY7IFp+Eq8klZ07+DnGWf67IyaNRIvFX1OKafuBHmI+SM FEHVDPHt35J+Szx3ElpCvZQR9v4VyqbaitapS2nRQaLmTkEyN3dovzsqSpvk7OaU OUrbWBQRp9OpO4U4vLMtPEBFKkPllXecF6m+3Ew8/gSGonxGixRHb74L7Dzzfxfx MH1IwRsZQk2UvO3dDdS9ce98REjND+NU7985Uubko+15xR33or0Hp53SrtGqFY5E 9qRKPxAvz6NDw0flpX2c5bRXYvtFUa0xhEEnJLuXoWjGFAbLUpFz74bE387W6DfE /a2LX7WXGFEjAnSP/2UqIdPVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQNTGkm0z HOGKV8sR9XgdovnINUYwHwYDVR0jBBgwFoAUrHzRY2nXDaZnWZ2jaOICQknLAvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNEY3LzEyQkFCODk2OEM2 RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFabldaMmphT0lDUWtuTEF2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvckh6UlkyblhEYVpuV1oyamFPSUNRa25MQXZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC NEY3LzEyQkFCODk2OEM2RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFa bldaMmphT0lDUWtuTEF2dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAVCDB7qO13DyJyK2QvLz29xAY+i3z9Rnd3lBdNJcJq6ZGNn+bvk/gRg QETJTE8FUH/Wk3uvz8qkP7HtFxfu/eWArxGCxtEapTpaDilioSnxtKdLAuCmhLAL O9VGAr2DadqZ33zt5kETA9a4wid734khtCmZetoBX0CouPt0NoT4amemEisUiYXj Ul350dA1XAkOLyI6Eme9MCbp+DeBcPxskCZCon7PPwEy7Pn3jkRprN6u9zdX6pVs pJa6fpSZ6hiITwN3ePTr3EpRWH6eNtOUStTkI33mXYduVC6Gh+Kt2em7e0t9VkX9 F6RbZFdHA34GagWD0rbehrfT/RvcbK8= -----END CERTIFICATE-----Generated at Sat Dec 6 15:01:35 2025 by rpki-client