This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: bMn1yH+V9/yV4qVvne1MdJVyXgZG6ZziOq4WMrIc0mQ= Subject key identifier: 05:2E:6A:9B:80:A1:3A:01:2C:E5:A8:21:1A:80:35:73:A0:B6:44:1B Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 51 Signing time: Wed 03 Dec 2025 05:27:18 +0000 Manifest this update: Wed 03 Dec 2025 05:27:17 +0000 Manifest next update: Wed 10 Dec 2025 05:27:17 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: VxUaLReO09/Ou0/os3aU2yECT6UoOodW/uckfvvCWdA=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: YCsx3bwrgpHgvu8ysYuX5SuZfquoTIQRzefkEGq5/wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Dec 3 05:27:17 2025 GMT Not After : Dec 10 05:27:17 2025 GMT Subject: CN=692fca36-c82f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:76:48:12:5d:6e:5a:37:80:d7:a4:f6:66:89: a4:9b:9c:97:d0:71:32:2a:f0:b8:4c:0d:ed:b8:5c: 2f:b0:fd:a1:16:3a:19:91:59:31:72:5f:1a:8b:71: c0:75:5d:32:05:f7:10:6a:ff:97:84:78:bf:e4:03: 82:5b:ad:e6:54:d1:2b:e5:5b:f6:ac:bb:29:30:04: 9b:61:a8:d4:5c:08:52:b6:06:62:ce:a0:03:d4:42: 48:a2:ba:36:33:96:7b:b9:28:e1:ec:0d:bb:41:9a: 22:3c:ab:bb:82:3b:ab:8a:ca:22:8e:96:05:36:57: 96:c4:13:ec:60:ae:4e:1a:56:e8:dc:34:0e:7f:b7: a3:da:e3:96:42:6d:08:73:94:72:93:07:f4:1e:34: 38:48:a8:40:42:b7:5f:13:46:cb:03:90:78:3e:5d: 3b:44:e3:e7:68:71:16:57:39:72:9f:f2:50:c6:68: 9a:30:ed:c7:34:5d:68:80:e0:a6:a6:8e:13:92:9b: fa:70:9a:14:f3:43:02:a9:8e:ef:ea:c9:93:a6:5b: bd:6e:51:c6:17:da:c8:78:4d:00:6e:57:56:bd:1c: 91:ab:3c:56:2d:07:9c:dd:f6:1e:2d:9f:f8:3d:80: 47:df:a9:6d:42:31:e1:6d:fe:fe:24:91:3e:10:5c: 1e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:2E:6A:9B:80:A1:3A:01:2C:E5:A8:21:1A:80:35:73:A0:B6:44:1B X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1a:30:7a:07:e8:4e:fb:03:49:e5:34:0f:f0:3b:21:c0:8f: 71:08:87:da:8d:8e:ba:b6:b3:95:f6:94:75:96:b5:38:7b:93: 7c:e6:15:04:4a:c3:09:87:64:65:0c:ba:62:97:5c:17:c8:af: fe:4a:c9:d6:06:81:93:1f:14:1f:c9:be:59:c5:63:db:0c:55: ca:b1:a0:4f:86:8a:a7:08:64:b5:9e:a9:46:c4:7d:6f:95:74: 27:1c:01:b6:c3:fe:17:28:ba:a1:a2:ac:22:7b:80:dc:af:29: c7:5c:60:6c:26:8e:c1:bd:43:66:82:df:fe:d1:31:1e:5e:e4: 4d:d1:60:98:4b:16:e0:f6:3d:00:70:92:3d:02:dc:8d:7a:8a: b6:f4:1f:ad:95:ca:88:27:d0:bb:77:6e:94:99:aa:8c:be:2f: 98:75:c7:b1:2d:1b:10:79:ce:f2:bf:84:58:63:38:4f:3e:d6: 4a:48:e9:c8:c7:07:14:fe:ed:5d:64:f0:c8:66:a6:db:67:b2: 84:e1:bb:e9:b1:96:bd:de:01:47:4e:62:9a:dd:ff:0e:1e:ef: 2e:c7:37:cf:0f:1d:61:06:4e:b0:f6:a1:69:76:dd:66:41:19: f0:76:88:f1:58:b3:2b:b4:c9:98:7e:08:db:a5:9f:7f:db:3e: b4:a7:61:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoRDQyNTZFREMyQkMxMUM4NDVEQjUwN0I3QzBBODkzNTQ0 NjJFQjYzRDAeFw0yNTEyMDMwNTI3MTdaFw0yNTEyMTAwNTI3MTdaMBgxFjAUBgNV BAMTDTY5MmZjYTM2LWM4MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDldkgSXW5aN4DXpPZmiaSbnJfQcTIq8LhMDe24XC+w/aEWOhmRWTFyXxqLccB1 XTIF9xBq/5eEeL/kA4JbreZU0SvlW/asuykwBJthqNRcCFK2BmLOoAPUQkiiujYz lnu5KOHsDbtBmiI8q7uCO6uKyiKOlgU2V5bEE+xgrk4aVujcNA5/t6Pa45ZCbQhz lHKTB/QeNDhIqEBCt18TRssDkHg+XTtE4+docRZXOXKf8lDGaJow7cc0XWiA4Kam jhOSm/pwmhTzQwKpju/qyZOmW71uUcYX2sh4TQBuV1a9HJGrPFYtB5zd9h4tn/g9 gEffqW1CMeFt/v4kkT4QXB7DAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBS5qm4Ch OgEs5aghGoA1c6C2RBswHwYDVR0jBBgwFoAU1CVu3CvBHIRdtQe3wKiTVEYutj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0M1NTk0MjRBNTcx QTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMUNWdTNDdkJISVJkdFFlM3dLaVRWRVl1dGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0M1NTk0MjRBNTcxQTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElS ZHRRZTN3S2lUVkVZdXRqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACsaMHoH6E77A0nlNA/wOyHAj3EIh9qNjrq2s5X2lHWWtTh7k3zmFQRK wwmHZGUMumKXXBfIr/5KydYGgZMfFB/JvlnFY9sMVcqxoE+GiqcIZLWeqUbEfW+V dCccAbbD/hcouqGirCJ7gNyvKcdcYGwmjsG9Q2aC3/7RMR5e5E3RYJhLFuD2PQBw kj0C3I16irb0H62Vyogn0Lt3bpSZqoy+L5h1x7EtGxB5zvK/hFhjOE8+1kpI6cjH BxT+7V1k8MhmpttnsoThu+mxlr3eAUdOYprd/w4e7y7HN88PHWEGTrD2oWl23WZB GfB2iPFYsyu0yZh+CNuln3/bPrSnYdc= -----END CERTIFICATE-----Generated at Wed Dec 3 16:37:35 2025 by rpki-client