This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft File: cri4zRAwexYyTYeYJ98ypKqNaqE.mft (raw, json) Hash identifier: OJEzG8qh3YNFrCTFe4uxqoQlj9olnEPogFYoyNxu524= Subject key identifier: ED:79:11:21:A7:0B:46:CA:4F:61:0C:4D:A2:11:85:D1:D3:5A:0E:7C Authority key identifier: 72:B8:B8:CD:10:30:7B:16:32:4D:87:98:27:DF:32:A4:AA:8D:6A:A1 Certificate issuer: /CN=A91FF19B/serialNumber=72B8B8CD10307B16324D879827DF32A4AA8D6AA1 Certificate serial: 0495 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft Manifest number: 048A Signing time: Thu 04 Dec 2025 22:36:09 +0000 Manifest this update: Thu 04 Dec 2025 22:36:08 +0000 Manifest next update: Thu 11 Dec 2025 22:36:08 +0000 Files and hashes: 1: cri4zRAwexYyTYeYJ98ypKqNaqE.crl (hash: AbBbi1yclCvpiEOEPcne0+z9SD/W3rAYT0KcrqxZi4A=) 2: 0C023160C4C911EE9278E261C4F9AE02.roa (hash: WCMKfsm9/EeBkBa5cFgOrZbAGuLyEt0uGvg0UunKLIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.crl rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1173 (0x495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF19B, serialNumber=72B8B8CD10307B16324D879827DF32A4AA8D6AA1 Validity Not Before: Dec 4 22:36:08 2025 GMT Not After : Dec 11 22:36:08 2025 GMT Subject: CN=69320cd8-5802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:84:55:b5:af:49:01:3f:5e:0a:e3:f7:06:00: 8b:d4:f7:1d:d7:0d:de:44:58:78:c7:33:1c:10:6e: 1e:f7:40:20:8f:01:fe:f9:43:97:ed:ba:19:bc:54: d1:a9:59:37:0b:a5:e7:69:8a:f5:3f:af:00:d9:3e: ac:1a:12:f6:68:3f:4a:e1:4a:5d:46:9d:93:42:23: b8:38:fc:c2:f4:32:93:55:4f:ff:42:17:a7:3c:a4: 37:6d:1f:1a:2d:91:0e:41:a8:2a:a5:11:81:f8:2b: 6a:4f:ca:c3:b4:be:5a:75:53:b6:ec:83:70:1b:1b: a3:f3:57:b1:e9:c5:41:d5:dc:4c:ff:df:0e:8f:2b: 9a:f6:45:59:96:6f:01:bb:e0:b3:39:0b:92:5a:7c: c5:3b:0c:da:15:cd:36:fd:6a:57:16:a6:4f:8d:f3: 7c:f4:a7:44:cf:52:c3:1a:03:6c:63:2a:5c:4c:b4: 0e:94:26:08:de:ba:f0:f3:9d:c7:0e:d6:4a:d2:bb: 67:3d:8a:f2:75:8a:f6:2c:c3:df:f0:1f:6e:f4:8f: 9a:f0:48:84:60:55:57:f0:a9:9d:48:1c:49:a7:1b: e2:87:d6:43:0b:28:0a:0b:04:5c:08:aa:10:e0:a8: 66:c2:e2:6d:49:65:b6:d2:72:d5:7a:fc:e4:b2:e0: 72:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:79:11:21:A7:0B:46:CA:4F:61:0C:4D:A2:11:85:D1:D3:5A:0E:7C X509v3 Authority Key Identifier: keyid:72:B8:B8:CD:10:30:7B:16:32:4D:87:98:27:DF:32:A4:AA:8D:6A:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:b4:49:c8:02:00:a7:33:24:32:7e:cc:50:f5:6f:f8:44:9f: 5c:c4:6b:3a:d7:f9:ce:72:82:a4:5b:f3:77:96:94:b9:84:1f: 69:8a:48:1c:c7:6b:cd:33:3c:1c:1a:ec:78:e6:7c:37:80:ed: b2:77:3a:a5:d1:80:ea:a4:1d:c2:53:fb:a4:3f:f1:fd:f2:3b: d0:1c:7f:3f:f1:44:c1:29:45:42:e9:23:72:fd:c5:72:62:cd: 0a:f6:ec:53:c6:88:be:27:a8:1c:56:3f:ac:a7:75:94:14:a3: 43:cb:73:91:41:2a:36:fa:68:75:f3:c1:5b:32:d9:fc:d3:77: ff:39:1d:63:79:f1:95:72:05:69:fa:58:e5:ed:e6:c0:04:3e: 28:58:47:db:5e:8c:b6:b6:01:79:76:5b:40:c3:1b:04:6c:3b: 20:b6:f0:04:5d:92:7e:a3:c8:cc:6c:7f:f3:7e:6b:34:cf:ce: d2:2e:b8:29:3a:27:8a:eb:f5:ba:68:e1:e5:81:c8:fa:93:ee: 37:90:56:95:cc:b2:5f:00:3b:66:ca:4c:fa:8d:0a:93:c6:75: 27:91:b8:09:fb:39:d7:d6:85:5f:80:4d:5c:7d:bf:4e:7d:7b: f0:bd:92:c5:8a:9f:59:cd:80:e2:51:34:df:9c:93:dc:e6:cd: 4f:89:c4:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYxOUIxMTAvBgNVBAUTKDcyQjhCOENEMTAzMDdCMTYzMjREODc5ODI3REYzMkE0 QUE4RDZBQTEwHhcNMjUxMjA0MjIzNjA4WhcNMjUxMjExMjIzNjA4WjAYMRYwFAYD VQQDEw02OTMyMGNkOC01ODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYRVta9JAT9eCuP3BgCL1Pcd1w3eRFh4xzMcEG4e90AgjwH++UOX7boZvFTR qVk3C6XnaYr1P68A2T6sGhL2aD9K4UpdRp2TQiO4OPzC9DKTVU//QhenPKQ3bR8a LZEOQagqpRGB+CtqT8rDtL5adVO27INwGxuj81ex6cVB1dxM/98Ojyua9kVZlm8B u+CzOQuSWnzFOwzaFc02/WpXFqZPjfN89KdEz1LDGgNsYypcTLQOlCYI3rrw853H DtZK0rtnPYrydYr2LMPf8B9u9I+a8EiEYFVX8KmdSBxJpxvih9ZDCygKCwRcCKoQ 4KhmwuJtSWW20nLVevzksuByNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO15ESGn C0bKT2EMTaIRhdHTWg58MB8GA1UdIwQYMBaAFHK4uM0QMHsWMk2HmCffMqSqjWqh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjE5Qi8zNjQ4OEQ4MDY2 NUIxMUVDODg4NUE0ODBDNEY5QUUwMi9jcmk0elJBd2V4WXlUWWVZSjk4eXBLcU5h cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NyaTR6UkF3ZXhZeVRZZVlKOTh5cEtxTmFxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjE5Qi8zNjQ4OEQ4MDY2NUIxMUVDODg4NUE0ODBDNEY5QUUwMi9jcmk0elJBd2V4 WXlUWWVZSjk4eXBLcU5hcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3tEnIAgCnMyQyfsxQ9W/4RJ9cxGs61/nOcoKkW/N3lpS5hB9pikgc x2vNMzwcGux45nw3gO2ydzql0YDqpB3CU/ukP/H98jvQHH8/8UTBKUVC6SNy/cVy Ys0K9uxTxoi+J6gcVj+sp3WUFKNDy3ORQSo2+mh188FbMtn803f/OR1jefGVcgVp +ljl7ebABD4oWEfbXoy2tgF5dltAwxsEbDsgtvAEXZJ+o8jMbH/zfms0z87SLrgp OieK6/W6aOHlgcj6k+43kFaVzLJfADtmykz6jQqTxnUnkbgJ+znX1oVfgE1cfb9O fXvwvZLFip9ZzYDiUTTfnJPc5s1PicQy -----END CERTIFICATE-----Generated at Sat Dec 6 12:23:40 2025 by rpki-client