This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft File: 089k1dsXYfy2pVLwaAkTMMW19Ts.mft (raw, json) Hash identifier: jmQcQSc5pQM7pz5Wf8VEI21cZac4jmMhltKHDME60Tc= Subject key identifier: 9D:2C:90:30:D2:79:DD:C2:A9:BF:21:C9:BC:98:D1:35:CF:1B:E3:F4 Authority key identifier: D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B Certificate issuer: /CN=A91A25DF/serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft Manifest number: 4C Signing time: Wed 03 Dec 2025 05:31:18 +0000 Manifest this update: Wed 03 Dec 2025 05:31:17 +0000 Manifest next update: Wed 10 Dec 2025 05:31:17 +0000 Files and hashes: 1: 089k1dsXYfy2pVLwaAkTMMW19Ts.crl (hash: v0vpLVPveF7LS1nbmSb7ipRjA4xqwlpi0YPjX7aLzOY=) 2: C54DD1F45EDA11F0A5EAB579C4F9AE02.roa (hash: yvTiS/oFSBojbCtB284WFEZBM+3n1uqQBo+L9aW7vLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Validity Not Before: Dec 3 05:31:17 2025 GMT Not After : Dec 10 05:31:17 2025 GMT Subject: CN=692fcb26-8718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cf:72:d4:9b:1d:8d:52:0e:74:d3:de:b8:cb: 24:ad:9a:f3:f0:4e:25:47:2a:3f:42:67:f0:7a:6d: f1:c3:b2:29:a0:14:f3:dd:7d:74:c3:16:8b:70:95: f1:1f:59:68:88:4a:d6:50:4e:63:3d:70:96:41:57: 94:e6:7d:5b:66:51:53:0f:1b:90:23:f6:ac:e3:a9: 00:fa:0f:1e:12:cf:64:c5:64:5f:a8:e9:80:be:e1: 98:20:21:48:d6:16:77:02:a8:d3:93:5f:c3:44:0e: d3:ec:90:59:a4:c6:b9:d6:fa:59:a7:a8:7e:e5:1e: a1:d2:be:37:f7:6b:31:52:a5:3d:cd:7a:f7:6e:08: db:4e:c9:08:cd:3b:f6:30:99:61:12:c4:f0:7e:4f: 3a:c3:53:03:a6:1b:4d:12:ce:34:19:d7:c3:d4:15: 67:c7:59:fa:de:de:60:81:83:75:3f:bd:8c:3b:ec: ab:6f:7e:39:28:90:e0:4d:64:15:a2:1e:b5:67:fa: 2c:f8:24:a2:ae:00:aa:0e:1e:91:7f:93:2b:f8:bb: 5f:74:01:b7:34:13:e9:64:09:c0:84:2c:e0:80:bb: b3:2d:9e:7d:e5:23:9d:52:e8:b3:dd:ba:c4:c1:78: 58:74:46:9f:bf:90:7f:a2:91:a4:2b:3e:8e:47:16: a3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:2C:90:30:D2:79:DD:C2:A9:BF:21:C9:BC:98:D1:35:CF:1B:E3:F4 X509v3 Authority Key Identifier: keyid:D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:34:4f:32:da:76:7b:bd:a8:27:93:53:8e:8a:38:69:9b:60: a4:ed:2e:83:4e:96:fe:dc:74:ef:8c:36:16:32:ca:bf:cb:d5: 6b:e1:e3:45:6a:91:14:ed:a3:c4:d3:80:26:dd:cd:6f:d0:d8: 10:0c:03:63:ce:82:02:de:ce:bc:1c:4f:58:6d:8b:8a:e8:51: 6e:4b:af:9b:06:59:59:4f:ca:56:e7:6f:d1:e0:9f:05:ca:1e: 2b:0a:04:1e:2a:10:e8:01:1c:b8:71:15:1e:0c:23:98:65:57: 2b:99:3b:0b:df:a1:52:9f:47:38:35:25:4b:09:63:f0:ee:13: 65:89:18:87:08:6a:8d:f8:73:d6:fd:8a:53:ec:81:45:f8:e1: 18:3d:58:71:8b:20:6c:ee:74:82:03:e1:20:c3:01:48:a5:dc: b1:bb:92:2b:b5:34:6f:29:58:09:6a:0e:6e:e4:25:3b:5f:0a: a5:bb:bf:13:f3:7c:5a:da:21:5c:c2:cd:d3:f8:7a:ae:a8:98: 20:fc:e7:9d:df:a1:86:33:97:54:6a:0c:38:f5:7b:22:da:0a: 45:e8:01:d6:36:7e:04:31:f5:2c:cf:eb:1c:58:bc:63:b3:bf: d4:a5:bb:aa:5b:2d:a0:17:12:f9:80:fc:7c:c5:0e:d4:cd:d2: 4b:21:cc:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoRDNDRjY0RDVEQjE3NjFGQ0I2QTU1MkYwNjgwOTEzMzBD NUI1RjUzQjAeFw0yNTEyMDMwNTMxMTdaFw0yNTEyMTAwNTMxMTdaMBgxFjAUBgNV BAMTDTY5MmZjYjI2LTg3MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBz3LUmx2NUg500964yyStmvPwTiVHKj9CZ/B6bfHDsimgFPPdfXTDFotwlfEf WWiIStZQTmM9cJZBV5TmfVtmUVMPG5Aj9qzjqQD6Dx4Sz2TFZF+o6YC+4ZggIUjW FncCqNOTX8NEDtPskFmkxrnW+lmnqH7lHqHSvjf3azFSpT3NevduCNtOyQjNO/Yw mWESxPB+TzrDUwOmG00SzjQZ18PUFWfHWfre3mCBg3U/vYw77KtvfjkokOBNZBWi HrVn+iz4JKKuAKoOHpF/kyv4u190Abc0E+lkCcCELOCAu7Mtnn3lI51S6LPdusTB eFh0Rp+/kH+ikaQrPo5HFqOPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnSyQMNJ5 3cKpvyHJvJjRNc8b4/QwHwYDVR0jBBgwFoAU089k1dsXYfy2pVLwaAkTMMW19Tsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0U2MTI0MDgyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5MnBWTHdhQWtUTU1XMTlU cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDg5azFkc1hZZnkycFZMd2FBa1RNTVcxOVRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0U2MTI0MDgyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5 MnBWTHdhQWtUTU1XMTlUcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAI0TzLadnu9qCeTU46KOGmbYKTtLoNOlv7cdO+MNhYyyr/L1Wvh40Vq kRTto8TTgCbdzW/Q2BAMA2POggLezrwcT1hti4roUW5Lr5sGWVlPylbnb9HgnwXK HisKBB4qEOgBHLhxFR4MI5hlVyuZOwvfoVKfRzg1JUsJY/DuE2WJGIcIao34c9b9 ilPsgUX44Rg9WHGLIGzudIID4SDDAUil3LG7kiu1NG8pWAlqDm7kJTtfCqW7vxPz fFraIVzCzdP4eq6omCD8553foYYzl1RqDDj1eyLaCkXoAdY2fgQx9SzP6xxYvGOz v9Slu6pbLaAXEvmA/HzFDtTN0kshzAc= -----END CERTIFICATE-----Generated at Wed Dec 3 14:14:25 2025 by rpki-client