This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: nfGifSAqvDAIUW6Q3S/xCke/q5vbdzvMZLXeV35xnzA= Subject key identifier: 8F:1E:14:C3:C7:09:4A:4B:2A:18:FE:E9:DF:9C:EC:89:2F:37:AA:17 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1D3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1D28 Signing time: Sat 06 Dec 2025 15:49:49 +0000 Manifest this update: Sat 06 Dec 2025 15:49:48 +0000 Manifest next update: Sat 13 Dec 2025 15:49:48 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: xE4Qg/6REj0clJ5/h4eBqPF412uM6uecSRS6ZXFrHzA=) 2: 40EAC2C0685111F0A688505EC4F9AE02.roa (hash: 2aGejYYAILu+vq+h9Ds1ItJ4A2WEADfQRUwQnuAzQp4=) 3: 402AE4B4685111F0A688505EC4F9AE02.roa (hash: dyKQZQJFWOlaLCos4pICmePW3GQtvzVk28wWqQnX6xA=) 4: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: RrfRQiaJQ/K/F0pEWCxhmnA6Eh04yX02RfUKJUyZudE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7485 (0x1d3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Dec 6 15:49:48 2025 GMT Not After : Dec 13 15:49:48 2025 GMT Subject: CN=6934509c-966a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fa:75:0f:d6:d2:e2:39:51:85:54:1d:45:d2: e2:39:9c:8b:da:66:57:e4:be:94:48:ad:4e:2a:2f: 43:b9:29:2c:fe:7e:ec:55:e3:1c:cd:3f:cb:a2:b7: 28:eb:de:60:74:86:d1:ff:ee:81:6d:e9:cb:55:ae: 35:68:ff:27:ad:ea:b1:4d:e6:25:f0:3e:7c:cc:47: 3a:41:e6:1b:67:fe:66:f7:0c:7e:c7:60:67:29:fe: 4a:68:80:6c:9c:f1:bf:e6:39:33:2a:d3:bd:24:8d: f0:79:f1:53:72:9b:13:9c:9a:d3:b2:8c:4b:06:8f: 84:f7:46:6b:05:81:d4:ed:57:73:7a:db:10:d7:2e: 4c:5a:a9:63:20:8c:aa:33:52:ff:2d:76:0b:42:16: 7f:bf:6e:df:76:7e:09:0f:47:bc:9d:fc:e3:5d:33: 71:2c:d0:41:af:b6:32:55:e0:10:db:88:15:14:59: 6b:71:4c:2e:b3:b4:e6:41:47:f4:11:e6:21:31:32: f7:a2:4e:0a:c0:6d:37:07:0b:a1:0d:4c:4b:42:7f: 88:51:4c:37:72:12:62:38:69:a2:11:c7:eb:88:3e: e5:e2:c6:d3:7c:dc:f1:3c:e0:53:e3:fc:46:e8:0e: e0:9e:9f:c9:57:2e:ab:0b:72:30:77:de:c3:ae:15: b3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:1E:14:C3:C7:09:4A:4B:2A:18:FE:E9:DF:9C:EC:89:2F:37:AA:17 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:91:45:c0:49:83:7a:83:d2:0d:3e:a1:4a:ba:0a:ac:4f:77: d1:35:6f:3b:18:e4:16:58:e7:81:b3:62:ad:07:ac:85:81:5a: 41:8d:00:11:30:2e:71:40:66:2b:ec:80:29:e6:d6:7b:5a:f4: 2a:f6:cc:44:f2:6c:ab:ed:75:00:fc:c1:80:70:a1:d5:77:d5: a2:da:7f:17:c7:ed:65:c6:8e:49:46:e4:93:f0:7f:98:d1:52: 0f:00:96:fb:ee:44:ff:24:9c:2c:06:71:f3:07:de:c8:8a:7f: 16:67:f3:5e:e8:9c:bc:45:26:fa:05:1e:46:5e:2e:e6:7b:38: 69:d1:ee:ba:f1:e9:c5:ab:4a:e2:c2:04:ac:4b:ac:e5:c6:1b: 62:9a:42:21:75:14:87:fb:42:ff:bc:83:fe:81:5e:2c:03:8f: 4c:6a:08:66:32:99:0b:b3:26:61:bf:66:16:e2:ba:4c:20:bf: ef:4e:56:22:64:77:4c:41:b1:4d:81:fe:df:f9:1e:58:b8:73: 02:6a:8f:1e:5f:b1:06:c3:e6:db:ac:76:87:51:08:20:eb:d3: 45:3b:c0:e0:81:88:7a:e6:26:b5:26:1d:55:1d:ad:2a:c0:29: 58:ec:6f:e8:ca:19:b9:9d:c7:f9:70:ad:2b:84:b9:38:00:67: 7e:dc:9c:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjUxMjA2MTU0OTQ4WhcNMjUxMjEzMTU0OTQ4WjAYMRYwFAYD VQQDEw02OTM0NTA5Yy05NjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPp1D9bS4jlRhVQdRdLiOZyL2mZX5L6USK1OKi9DuSks/n7sVeMczT/Lorco 695gdIbR/+6BbenLVa41aP8nreqxTeYl8D58zEc6QeYbZ/5m9wx+x2BnKf5KaIBs nPG/5jkzKtO9JI3wefFTcpsTnJrTsoxLBo+E90ZrBYHU7VdzetsQ1y5MWqljIIyq M1L/LXYLQhZ/v27fdn4JD0e8nfzjXTNxLNBBr7YyVeAQ24gVFFlrcUwus7TmQUf0 EeYhMTL3ok4KwG03BwuhDUxLQn+IUUw3chJiOGmiEcfriD7l4sbTfNzxPOBT4/xG 6A7gnp/JVy6rC3Iwd97DrhWzxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8eFMPH CUpLKhj+6d+c7IkvN6oXMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6kUXASYN6g9INPqFKugqsT3fRNW87GOQWWOeBs2KtB6yFgVpBjQAR MC5xQGYr7IAp5tZ7WvQq9sxE8myr7XUA/MGAcKHVd9Wi2n8Xx+1lxo5JRuST8H+Y 0VIPAJb77kT/JJwsBnHzB97Iin8WZ/Ne6Jy8RSb6BR5GXi7mezhp0e668enFq0ri wgSsS6zlxhtimkIhdRSH+0L/vIP+gV4sA49MaghmMpkLsyZhv2YW4rpMIL/vTlYi ZHdMQbFNgf7f+R5YuHMCao8eX7EGw+bbrHaHUQgg69NFO8DggYh65ia1Jh1VHa0q wClY7G/oyhm5ncf5cK0rhLk4AGd+3JzK -----END CERTIFICATE-----Generated at Sun Dec 7 02:34:19 2025 by rpki-client