This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json) Hash identifier: 59m41DnlpuR/Kq7ZLGAy330st7ORfKUas/zmVy/1MTQ= Subject key identifier: 4C:68:BB:6F:92:2E:65:BE:47:B1:C9:B1:A5:33:03:66:62:B7:EC:4B Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Certificate serial: 1AD8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft Manifest number: 2238 Signing time: Sat 06 Dec 2025 15:40:07 +0000 Manifest this update: Sat 06 Dec 2025 15:40:06 +0000 Manifest next update: Sat 13 Dec 2025 15:40:06 +0000 Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: 3I15drZ8W0/keIXBWzx1E0Mm66u5Av6eIlKTC72yVes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6872 (0x1ad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Validity Not Before: Dec 6 15:40:06 2025 GMT Not After : Dec 13 15:40:06 2025 GMT Subject: CN=69344e56-74ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:c2:60:c9:08:fb:b7:52:e3:f9:2c:0c:bd:0c: b4:94:af:e8:b2:1a:9e:62:ff:8b:43:6c:26:75:44: 79:02:46:95:d0:7a:80:39:e3:70:d9:c2:11:1e:af: e0:45:6e:b4:3e:ac:c7:4b:f0:2c:e3:4f:b7:44:ca: 6a:e9:44:6c:5d:a4:b3:6f:4a:fb:9c:1a:31:c0:95: c8:dd:00:58:29:e0:98:4a:cf:0f:8e:69:09:fc:c1: 2f:de:a6:56:f1:5b:08:cf:5b:b5:8e:63:c3:a6:4e: 69:83:89:20:d6:e8:6e:49:de:0f:d0:e2:f2:70:98: 69:9a:69:74:e0:d9:18:7f:52:c7:ee:f0:52:6f:52: 38:80:2e:e4:49:20:df:b9:68:d1:56:c1:44:a0:ac: 81:ef:f9:0a:7e:bd:c8:30:f7:68:34:71:49:ed:10: d7:e2:f7:5e:ca:15:0a:4a:5f:25:b8:75:3e:4b:44: b3:a9:85:07:3a:8f:80:42:ef:03:e6:c6:af:76:8b: 37:17:40:32:85:0f:3b:3a:a4:98:12:36:8d:f2:f6: 09:82:b6:9b:30:31:ef:5a:5c:35:74:d2:2d:12:73: e8:e8:4e:4e:30:a2:f9:ff:72:c8:a3:b0:fd:60:7c: ce:52:05:85:a7:40:7b:0e:c2:df:f6:80:00:e4:ee: c5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:68:BB:6F:92:2E:65:BE:47:B1:C9:B1:A5:33:03:66:62:B7:EC:4B X509v3 Authority Key Identifier: keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:c2:a0:b1:4c:cd:15:2f:05:8b:62:b9:d2:69:76:49:b6:a4: dc:6e:7f:d3:e0:83:65:78:7a:96:65:01:07:ad:b5:8d:70:a1: 85:5d:de:50:37:82:09:05:cc:96:32:55:bb:1f:0c:86:dc:0e: f3:9a:c5:f5:f5:96:b9:b3:a2:30:a6:8d:17:11:95:64:f7:1b: be:75:93:2a:9f:87:1e:f8:4f:ff:bc:75:78:c7:ac:36:b5:5a: 7a:de:ae:c4:00:dd:44:56:27:a9:b6:1f:4e:54:e2:39:a0:b0: 7b:0a:74:ed:07:f7:28:81:4f:4e:98:48:f8:92:6b:70:27:2a: 28:93:3d:2c:51:01:e6:f2:a8:e1:22:60:aa:57:e3:e7:34:3c: 2b:76:9f:2a:4a:97:79:e3:02:8a:08:0c:97:81:1a:7c:1b:76: 93:b9:ce:9d:36:ce:6d:37:db:02:82:7c:b9:a0:20:9a:4b:09: c8:98:e2:3b:c3:eb:3d:c7:ea:f6:81:54:db:35:d8:db:f9:5f: be:c3:75:0b:84:e3:67:ab:00:56:af:af:4c:9a:d0:25:c6:8f: 00:d1:16:e8:fa:14:a7:f3:1c:f8:2c:72:cc:10:66:d6:0c:56: a3:27:c4:3d:dc:22:a6:b6:32:71:f6:30:06:6d:1a:0b:fe:04: fb:c1:c3:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEQwOEQ4NjgxQzJCRTRENDdDMkEyOTA1NUY2NkU2ODk1 NTg0NjE3RjcwHhcNMjUxMjA2MTU0MDA2WhcNMjUxMjEzMTU0MDA2WjAYMRYwFAYD VQQDEw02OTM0NGU1Ni03NGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/cJgyQj7t1Lj+SwMvQy0lK/oshqeYv+LQ2wmdUR5AkaV0HqAOeNw2cIRHq/g RW60PqzHS/As40+3RMpq6URsXaSzb0r7nBoxwJXI3QBYKeCYSs8PjmkJ/MEv3qZW 8VsIz1u1jmPDpk5pg4kg1uhuSd4P0OLycJhpmml04NkYf1LH7vBSb1I4gC7kSSDf uWjRVsFEoKyB7/kKfr3IMPdoNHFJ7RDX4vdeyhUKSl8luHU+S0SzqYUHOo+AQu8D 5savdos3F0AyhQ87OqSYEjaN8vYJgrabMDHvWlw1dNItEnPo6E5OMKL5/3LIo7D9 YHzOUgWFp0B7DsLf9oAA5O7FRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExou2+S LmW+R7HJsaUzA2Zit+xLMB8GA1UdIwQYMBaAFNCNhoHCvk1HwqKQVfZuaJVYRhf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRVZkNvcEJWOW01b2xWaEdG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBJMkdnY0stVFVmQ29wQlY5bTVvbFZoR0ZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRV ZkNvcEJWOW01b2xWaEdGX2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATwqCxTM0VLwWLYrnSaXZJtqTcbn/T4INleHqWZQEHrbWNcKGFXd5Q N4IJBcyWMlW7HwyG3A7zmsX19Za5s6Iwpo0XEZVk9xu+dZMqn4ce+E//vHV4x6w2 tVp63q7EAN1EViepth9OVOI5oLB7CnTtB/cogU9OmEj4kmtwJyookz0sUQHm8qjh ImCqV+PnNDwrdp8qSpd54wKKCAyXgRp8G3aTuc6dNs5tN9sCgny5oCCaSwnImOI7 w+s9x+r2gVTbNdjb+V++w3ULhONnqwBWr69MmtAlxo8A0Rbo+hSn8xz4LHLMEGbW DFajJ8Q93CKmtjJx9jAGbRoL/gT7wcPK -----END CERTIFICATE-----Generated at Sat Dec 6 23:17:48 2025 by rpki-client