This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft File: RIvZcaMGqwNjmecW3CIcozj1i1k.mft (raw, json) Hash identifier: 80a+BzWNFQhl05HYAIi1PKF1unsdk5ocNpQ/TBff0Es= Subject key identifier: C7:8E:DE:35:03:FF:3D:3E:82:9D:30:10:22:07:3A:33:6A:DA:3F:05 Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 157C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft Manifest number: 1530 Signing time: Sat 06 Dec 2025 16:24:05 +0000 Manifest this update: Sat 06 Dec 2025 16:24:04 +0000 Manifest next update: Sat 13 Dec 2025 16:24:04 +0000 Files and hashes: 1: RIvZcaMGqwNjmecW3CIcozj1i1k.crl (hash: 8X9JKdNEahnMRss4vGGdXXUYNspf4lUjP5V5EDmwMfw=) 2: 7338235CC06011EE882BC34AC4F9AE02.roa (hash: YK6Hmo3PllZtdE5hm6A8K6SCgV+te0dB3ba976/6MCY=) 3: 743770A0C06011EE882BC34AC4F9AE02.roa (hash: 3SKd7JKNbo4VQv7IRdQ4lKTCd0NxnhIdEQAdsmvLftg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5500 (0x157c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5, serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: Dec 6 16:24:04 2025 GMT Not After : Dec 13 16:24:04 2025 GMT Subject: CN=693458a4-555d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ba:d9:be:8f:42:c1:fa:09:1f:f2:de:f4:1a: ba:64:9f:83:e2:e7:36:27:40:84:e6:de:3f:c7:06: 23:76:48:9d:fa:da:9a:fe:25:0c:51:b9:3e:84:5b: 79:03:21:58:32:fe:e2:3a:f1:ad:06:88:06:42:2e: 48:71:cd:a3:c3:c2:3a:d3:7c:c8:2b:4f:3b:46:d0: d4:c5:89:de:75:98:1c:7d:3c:ff:66:5e:5d:68:df: af:90:aa:59:90:d8:73:49:64:e0:34:81:ab:64:63: 03:b1:1e:1f:dc:76:00:45:8f:91:88:d8:74:af:76: cc:ad:4f:fe:56:99:f9:53:3c:04:fa:a7:04:34:df: ed:a6:0d:e2:15:15:e9:15:a7:24:33:9b:8f:0d:80: 87:35:2f:b6:89:6c:a7:1b:fa:40:86:7b:fd:10:8e: 78:b8:b2:47:29:00:26:52:c6:5f:8d:ae:99:b8:d7: a3:78:04:a0:63:da:9a:ad:4e:cb:dc:45:ea:b7:aa: e7:c9:db:d5:52:35:03:c8:80:aa:d3:38:71:d2:d6: 4b:93:34:9d:c8:02:f3:3c:d8:fc:3e:4d:a4:5b:02: 19:37:2a:4b:bf:e8:1f:e1:e8:c7:4a:ca:cb:d4:9e: dd:9f:6d:3e:38:ac:e9:7d:4d:6a:7b:b3:6d:e1:38: 39:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:8E:DE:35:03:FF:3D:3E:82:9D:30:10:22:07:3A:33:6A:DA:3F:05 X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:1b:fa:bf:f9:53:a4:56:66:55:4a:b7:28:6b:b9:db:9e:75: 3c:a8:0e:c2:50:2c:26:52:5e:09:54:6b:5b:55:17:7f:d9:bd: b9:18:47:ac:1b:a4:5c:99:74:35:a9:5f:e0:0e:1c:a4:9d:09: f2:fd:b0:68:10:97:d9:bd:82:65:88:78:5c:03:1a:59:10:49: df:ee:16:5d:c6:87:60:e7:b4:05:f3:22:95:1d:cc:ad:da:17: 12:48:7d:bb:f5:1b:6a:13:3c:c9:3d:c3:4c:c1:8e:2e:f4:63: 81:bf:f4:65:07:45:be:4e:22:f9:04:a7:6b:e6:e8:47:7d:a5: 7a:6a:da:f7:53:80:f6:4b:7c:97:56:3d:c0:de:cc:83:3d:35: ee:e3:ae:06:2b:83:b4:f4:8a:93:a0:27:9e:a1:ac:0e:02:4a: e1:75:24:db:52:1e:80:78:9f:87:be:4b:70:8d:a1:22:fc:6d: bb:ee:31:cb:e4:c1:4d:43:95:eb:68:27:89:c7:0b:e1:30:50: 66:41:12:af:f1:5f:26:94:01:ae:1d:8b:c6:8d:9f:a1:b7:b7: e0:36:83:ae:e2:88:c9:c8:e6:e6:7c:2c:95:d0:e4:ce:4a:51: 5a:bf:56:94:7b:de:a9:e8:9c:e8:60:76:65:06:25:a6:79:ab: ef:39:85:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjUxMjA2MTYyNDA0WhcNMjUxMjEzMTYyNDA0WjAYMRYwFAYD VQQDEw02OTM0NThhNC01NTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7rZvo9CwfoJH/Le9Bq6ZJ+D4uc2J0CE5t4/xwYjdkid+tqa/iUMUbk+hFt5 AyFYMv7iOvGtBogGQi5Icc2jw8I603zIK087RtDUxYnedZgcfTz/Zl5daN+vkKpZ kNhzSWTgNIGrZGMDsR4f3HYARY+RiNh0r3bMrU/+Vpn5UzwE+qcENN/tpg3iFRXp FackM5uPDYCHNS+2iWynG/pAhnv9EI54uLJHKQAmUsZfja6ZuNejeASgY9qarU7L 3EXqt6rnydvVUjUDyICq0zhx0tZLkzSdyALzPNj8Pk2kWwIZNypLv+gf4ejHSsrL 1J7dn20+OKzpfU1qe7Nt4Tg5awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMeO3jUD /z0+gp0wECIHOjNq2j8FMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDFENS9ENEJFMDBENDYzRTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3 TmptZWNXM0NJY296ajFpMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmG/q/+VOkVmZVSrcoa7nbnnU8qA7CUCwmUl4JVGtbVRd/2b25GEes G6RcmXQ1qV/gDhyknQny/bBoEJfZvYJliHhcAxpZEEnf7hZdxodg57QF8yKVHcyt 2hcSSH279RtqEzzJPcNMwY4u9GOBv/RlB0W+TiL5BKdr5uhHfaV6atr3U4D2S3yX Vj3A3syDPTXu464GK4O09IqToCeeoawOAkrhdSTbUh6AeJ+HvktwjaEi/G277jHL 5MFNQ5XraCeJxwvhMFBmQRKv8V8mlAGuHYvGjZ+ht7fgNoOu4ojJyObmfCyV0OTO SlFav1aUe96p6JzoYHZlBiWmeavvOYUs -----END CERTIFICATE-----Generated at Mon Dec 8 06:23:07 2025 by rpki-client