This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: AOJn1idIiCODOY0Rr44k8r527urOsnlxVXSTDv9ME4A= Subject key identifier: 22:49:81:B4:47:5A:E5:CA:A2:1D:C4:76:66:7A:E8:70:69:58:2F:E3 Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 063B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 0636 Signing time: Sat 06 Dec 2025 21:35:41 +0000 Manifest this update: Sat 06 Dec 2025 21:35:41 +0000 Manifest next update: Sat 13 Dec 2025 21:35:41 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: JvoS3fCpM+KorghLX4n4e8XnoXcPQm6fNRDOFxB4+YA=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Dec 6 21:35:41 2025 GMT Not After : Dec 13 21:35:41 2025 GMT Subject: CN=6934a1ad-567e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c1:26:9c:e5:58:ef:33:94:e3:ee:de:9b:7e: b3:fc:d1:cc:d8:2c:4a:90:c0:e6:99:01:42:c1:c8: 4b:cd:e0:d3:a9:83:06:c4:dd:61:80:ef:9f:d9:fe: 15:50:fc:bd:30:5a:a3:5b:18:d5:71:8e:99:8a:ec: a4:30:76:1d:97:09:e1:06:bb:1c:fd:0e:ab:b9:90: c4:94:44:21:81:28:50:dd:17:84:58:0f:bc:e8:0d: e9:bd:90:34:d6:aa:a2:12:9f:c7:ff:26:4e:1d:6d: e4:25:3e:e6:4f:39:4b:a8:c2:4c:ad:98:72:b9:36: c3:0c:5d:76:9e:6a:08:6c:12:6d:94:bd:e0:0c:62: ab:d6:3d:3d:23:31:7f:34:9c:71:41:b8:c6:b1:7d: 25:61:4a:18:92:d2:29:ef:2a:c7:2c:bf:7b:67:6d: 53:0f:02:e7:54:81:c3:ce:0a:cc:51:cd:d4:52:db: 64:10:89:72:e4:d7:99:54:37:35:9f:42:8f:fd:9a: 86:b9:4f:47:07:0a:ca:68:83:66:d8:32:1f:4a:e3: 6b:28:71:fd:df:5f:51:63:0c:ad:7f:6e:b4:0a:7f: e0:06:05:6e:22:a0:93:9a:3d:7e:c7:04:b6:38:c6: d8:48:20:22:15:02:02:25:50:30:8d:55:87:1f:9e: c4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:49:81:B4:47:5A:E5:CA:A2:1D:C4:76:66:7A:E8:70:69:58:2F:E3 X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:ef:65:17:f6:81:35:a4:1c:f1:95:4e:53:2e:e0:23:89:80: 51:1d:c9:6e:5a:29:1c:9f:db:c7:1f:19:3a:84:4c:83:0a:6d: c8:85:b2:d2:71:6a:79:ca:cd:e0:13:32:37:f3:20:82:26:65: 5c:69:4f:5d:49:7c:74:a8:72:4e:2e:fa:84:86:10:86:26:24: 3d:01:89:dd:8b:72:b3:4b:47:1b:f0:3b:e9:13:74:f2:25:b4: f8:1b:88:7e:b3:6a:fe:3e:cf:63:97:7a:bf:09:cf:8e:10:fa: af:43:af:24:c4:44:8f:2d:ed:4e:2a:dd:6f:bd:4f:ba:a8:7b: 0c:0c:94:0e:23:ad:63:52:76:89:fe:a8:2d:67:f1:51:43:98: b9:72:88:83:b0:b6:d8:c6:6c:5a:41:37:1e:1c:04:ae:4c:fc: 8a:ec:33:a5:1a:78:21:9b:94:aa:80:a0:48:b2:ae:7c:45:2f: 07:22:53:8d:33:a0:35:d5:44:a0:7d:4f:67:96:47:96:f7:fa: eb:99:60:28:78:b3:a4:5b:60:a6:77:38:58:59:28:fd:d4:34: 6e:7a:44:7f:f7:af:08:7d:01:47:08:56:d9:82:4a:40:90:2c: 30:25:33:60:54:56:9d:7a:94:66:27:9c:ae:65:c7:af:2b:f0: 84:40:5a:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUxMjA2MjEzNTQxWhcNMjUxMjEzMjEzNTQxWjAYMRYwFAYD VQQDEw02OTM0YTFhZC01NjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsEmnOVY7zOU4+7em36z/NHM2CxKkMDmmQFCwchLzeDTqYMGxN1hgO+f2f4V UPy9MFqjWxjVcY6ZiuykMHYdlwnhBrsc/Q6ruZDElEQhgShQ3ReEWA+86A3pvZA0 1qqiEp/H/yZOHW3kJT7mTzlLqMJMrZhyuTbDDF12nmoIbBJtlL3gDGKr1j09IzF/ NJxxQbjGsX0lYUoYktIp7yrHLL97Z21TDwLnVIHDzgrMUc3UUttkEIly5NeZVDc1 n0KP/ZqGuU9HBwrKaINm2DIfSuNrKHH9319RYwytf260Cn/gBgVuIqCTmj1+xwS2 OMbYSCAiFQICJVAwjVWHH57EuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJJgbRH WuXKoh3EdmZ66HBpWC/jMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh72UX9oE1pBzxlU5TLuAjiYBRHcluWikcn9vHHxk6hEyDCm3IhbLS cWp5ys3gEzI38yCCJmVcaU9dSXx0qHJOLvqEhhCGJiQ9AYndi3KzS0cb8DvpE3Ty JbT4G4h+s2r+Ps9jl3q/Cc+OEPqvQ68kxESPLe1OKt1vvU+6qHsMDJQOI61jUnaJ /qgtZ/FRQ5i5coiDsLbYxmxaQTceHASuTPyK7DOlGnghm5SqgKBIsq58RS8HIlON M6A11USgfU9nlkeW9/rrmWAoeLOkW2CmdzhYWSj91DRuekR/968IfQFHCFbZgkpA kCwwJTNgVFadepRmJ5yuZcevK/CEQFoI -----END CERTIFICATE-----Generated at Sun Dec 7 02:18:49 2025 by rpki-client