This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft File: tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft (raw, json) Hash identifier: 3n96yWzupuLxF5z2PskpWWMJThgM4PMD2OK0gfvI+gI= Subject key identifier: 4D:BA:ED:A1:4B:3C:24:68:06:16:C4:84:1F:DE:E1:0F:53:34:11:CC Authority key identifier: B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE Certificate issuer: /CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Certificate serial: 0CAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft Manifest number: 0CA2 Signing time: Sat 06 Dec 2025 17:42:55 +0000 Manifest this update: Sat 06 Dec 2025 17:42:54 +0000 Manifest next update: Sat 13 Dec 2025 17:42:54 +0000 Files and hashes: 1: tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl (hash: WYekHv/bHRGoeO/q/g7SYw+jFgkYCq9zMtWQOKIRoBE=) 2: AA5D86B2381311EA998E103FC4F9AE02.roa (hash: SvZjqtxcRIhPhrqiLm27nklXEkCJpvMYZMwhSGgkVOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3243 (0xcab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD38A, serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Validity Not Before: Dec 6 17:42:54 2025 GMT Not After : Dec 13 17:42:54 2025 GMT Subject: CN=69346b1e-8bfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8d:1f:c9:e7:13:8e:ff:a3:7b:22:2a:97:47: 62:49:35:1b:ea:b7:08:ac:0a:f6:45:e7:b0:6a:e1: 45:8e:c8:d1:21:f6:05:ad:28:c0:6e:91:43:e1:a2: 21:b7:05:1c:bc:2d:52:4b:b6:51:f4:ef:c0:1d:ed: 1a:66:82:90:df:35:09:cd:c4:4b:02:09:e9:5c:68: 91:05:bd:6a:96:97:5c:af:87:24:9e:24:38:3e:90: d3:2c:b5:65:81:0c:1f:50:7d:7f:13:fc:0f:f3:aa: ed:9f:a3:ad:ba:25:20:aa:c1:cb:f9:2a:b1:9f:4a: d9:d1:f1:e0:b2:39:68:29:ba:b0:6f:f4:ef:27:fb: 37:f1:4c:e6:9f:5c:57:33:6b:9f:23:df:81:40:2b: 1b:54:88:fd:c0:62:ba:b4:ef:dc:75:9f:f5:e1:98: 1c:c6:ad:dc:37:8d:c9:ab:c0:a0:fe:f1:57:78:4a: c4:07:d3:32:ae:70:f8:e8:cf:2d:af:a4:22:7f:1f: bd:c9:39:b4:59:51:30:26:28:86:e0:12:f7:d8:8e: 49:03:55:b7:90:14:fa:29:aa:9f:15:f4:cc:61:48: b5:b9:a4:d6:b5:6a:61:a7:00:7b:0d:b8:81:fa:70: ec:64:8d:bc:3f:d1:36:ba:90:f1:b0:2e:8d:6a:7b: 70:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BA:ED:A1:4B:3C:24:68:06:16:C4:84:1F:DE:E1:0F:53:34:11:CC X509v3 Authority Key Identifier: keyid:B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:0b:da:af:7c:88:a5:e2:c3:76:c7:54:9d:02:bb:49:e4:ce: ea:a7:32:7a:b0:c9:a0:fa:8b:d6:cf:b6:55:63:39:d1:b1:83: 1d:71:c4:a1:e7:ae:38:09:82:9a:cf:8e:49:62:fd:07:04:f6: a4:b5:40:d1:f0:94:c9:41:47:b7:1e:b6:4e:32:5e:17:fe:d2: 12:bb:0e:af:16:cb:aa:1c:3a:c2:b6:c6:ae:24:42:e5:cc:2f: bd:61:39:4e:40:00:d8:2f:fc:cd:e7:fe:b3:bd:ed:00:a6:39: 59:8e:b7:72:26:ca:7d:e5:30:94:95:28:99:ae:9d:2a:80:27: a8:96:fe:2b:c8:d8:ac:8c:dc:8a:9e:a4:38:1e:89:8a:f9:7c: 8a:4b:33:9e:6e:ba:92:99:1e:aa:d9:08:c4:79:a8:13:5b:ff: 56:dd:1f:c3:4d:b0:a3:7e:45:47:8a:b0:bd:33:14:b4:31:3a: db:59:4b:69:23:fe:15:37:94:fa:55:58:d0:ac:f2:32:a4:a1: 1e:98:40:a7:34:be:c1:56:28:7f:06:e7:76:aa:ca:68:ec:94: 78:2d:f1:fe:58:b7:6a:65:16:73:78:bc:32:53:37:66:07:0a: 65:76:27:e3:81:8c:91:8a:92:56:e2:5d:bc:4d:94:d7:ae:e7: e8:2e:62:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzOEExMTAvBgNVBAUTKEI2MjBBOUM0OTYzNzY2Q0MzQzU4MDYwNjk0OTIyRTlG Njc4ODExREUwHhcNMjUxMjA2MTc0MjU0WhcNMjUxMjEzMTc0MjU0WjAYMRYwFAYD VQQDEw02OTM0NmIxZS04YmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvY0fyecTjv+jeyIql0diSTUb6rcIrAr2ReewauFFjsjRIfYFrSjAbpFD4aIh twUcvC1SS7ZR9O/AHe0aZoKQ3zUJzcRLAgnpXGiRBb1qlpdcr4ckniQ4PpDTLLVl gQwfUH1/E/wP86rtn6OtuiUgqsHL+Sqxn0rZ0fHgsjloKbqwb/TvJ/s38Uzmn1xX M2ufI9+BQCsbVIj9wGK6tO/cdZ/14Zgcxq3cN43Jq8Cg/vFXeErEB9MyrnD46M8t r6Qifx+9yTm0WVEwJiiG4BL32I5JA1W3kBT6KaqfFfTMYUi1uaTWtWphpwB7DbiB +nDsZI28P9E2upDxsC6Nantw6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE267aFL PCRoBhbEhB/e4Q9TNBHMMB8GA1UdIwQYMBaAFLYgqcSWN2bMPFgGBpSSLp9niBHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM4QS85QUVGMTdCRTA1 RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pzdzhXQVlHbEpJdW4yZUlF ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpQ3B4SlkzWnN3OFdBWUdsSkl1bjJlSUVkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM4QS85QUVGMTdCRTA1RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pz dzhXQVlHbEpJdW4yZUlFZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaC9qvfIil4sN2x1SdArtJ5M7qpzJ6sMmg+ovWz7ZVYznRsYMdccSh 5644CYKaz45JYv0HBPaktUDR8JTJQUe3HrZOMl4X/tISuw6vFsuqHDrCtsauJELl zC+9YTlOQADYL/zN5/6zve0ApjlZjrdyJsp95TCUlSiZrp0qgCeolv4ryNisjNyK nqQ4HomK+XyKSzOebrqSmR6q2QjEeagTW/9W3R/DTbCjfkVHirC9MxS0MTrbWUtp I/4VN5T6VVjQrPIypKEemECnNL7BVih/Bud2qspo7JR4LfH+WLdqZRZzeLwyUzdm BwpldifjgYyRipJW4l28TZTXrufoLmJw -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:02 2025 by rpki-client