This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: HE9poUqrwnXpJ3x5J5qg8bZkstoY2+bDZt3BIVdmHS8= Subject key identifier: 9C:10:C5:89:D3:FA:81:30:0E:54:23:1E:AA:06:50:8B:5C:F8:8D:B3 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 36DD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 36DB Signing time: Sat 06 Dec 2025 14:30:42 +0000 Manifest this update: Sat 06 Dec 2025 14:30:42 +0000 Manifest next update: Sat 13 Dec 2025 14:30:42 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: Nn7kpIO3+y1/oxniXz2e3N5jVCeRkVL+886ZRvDiOBM=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: N2bskfxMFTrCp2qSWTYeMDSrONrPAtxZB594KPwftq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14045 (0x36dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Dec 6 14:30:42 2025 GMT Not After : Dec 13 14:30:42 2025 GMT Subject: CN=69343e12-92e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a1:8e:d3:69:3f:78:08:01:0a:f4:89:9c:23: 0f:75:e3:2a:69:c9:44:a1:91:da:73:22:37:c9:06: 8e:3b:68:38:a6:1b:6a:37:dd:b9:6b:5b:79:40:c1: d5:de:c4:3b:68:fb:f0:49:3d:a5:54:06:26:5a:37: 56:19:3c:9d:1d:91:58:b3:7c:29:06:40:70:d5:63: 0a:41:7d:4c:e5:6b:c1:32:13:f9:b4:d2:d6:8e:2e: be:8a:5a:fe:7d:d5:92:57:85:06:1c:0e:c4:8f:11: d2:1c:21:8e:24:7f:fe:38:e0:92:f6:97:00:f0:5c: 45:0d:45:1c:bf:ad:b2:76:d6:5f:eb:3c:d7:0e:7e: 84:59:11:b8:49:76:c5:16:23:73:d8:9e:af:69:fd: 4f:b7:32:01:4e:7e:ae:00:52:62:9e:1f:0c:a8:02: ea:e0:1b:d4:dc:27:c4:19:f3:d0:3a:6b:41:50:9f: 54:91:9e:15:bb:7a:19:13:3a:c6:f2:e9:1b:15:3c: b4:6b:f2:58:8d:16:07:bd:3a:a9:85:59:ef:20:e7: 03:59:6c:81:d5:e4:b1:51:4f:da:90:73:7e:fd:9e: bb:e7:2b:4e:14:8b:c7:7e:3a:d3:ab:2c:6a:85:8a: 19:d1:bf:36:dc:3c:5e:57:de:f9:a2:98:d0:83:9a: 6e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:10:C5:89:D3:FA:81:30:0E:54:23:1E:AA:06:50:8B:5C:F8:8D:B3 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:6b:53:73:c3:9c:63:4d:a2:88:be:01:07:f7:98:01:50:e6: 14:03:d5:cd:3b:54:10:8b:bc:71:9c:1c:65:71:90:01:a1:61: 7c:72:d9:3a:bb:d4:9e:1b:60:03:cf:49:6b:eb:01:be:95:0c: b1:b8:c2:97:1e:2d:c2:ae:79:fd:3f:28:02:6a:d4:7b:35:f3: 13:34:41:40:cb:39:82:19:a5:13:37:d0:ca:66:e0:10:de:f5: 9e:e2:d2:ea:5b:ef:79:6a:56:55:92:79:1a:b3:92:c6:92:85: fa:56:12:4f:14:41:4b:06:be:17:5d:1b:98:b6:e8:8a:26:dd: 3d:6b:6d:42:b3:15:92:f3:56:a4:4e:23:b8:56:c7:f2:53:93: cc:d8:f6:0a:8f:e8:41:18:85:b1:3f:ae:00:30:47:d3:ec:87: d1:ef:9b:ba:a7:56:a4:9a:26:eb:a9:75:ab:c7:da:07:31:c5: b3:48:6f:cf:d6:5c:2b:e5:eb:7a:62:40:9a:f7:af:6f:ef:c8: b7:36:c9:14:76:79:ee:a6:b3:b4:6a:b1:61:d6:6d:fe:09:f6: c5:b2:fc:be:2e:6a:87:79:7f:3d:11:fe:39:57:5f:7e:4d:df: 0d:21:9e:e8:29:2b:77:a7:ea:19:75:16:74:ee:97:07:d1:15: 08:22:72:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUxMjA2MTQzMDQyWhcNMjUxMjEzMTQzMDQyWjAYMRYwFAYD VQQDEw02OTM0M2UxMi05MmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6GO02k/eAgBCvSJnCMPdeMqaclEoZHacyI3yQaOO2g4phtqN925a1t5QMHV 3sQ7aPvwST2lVAYmWjdWGTydHZFYs3wpBkBw1WMKQX1M5WvBMhP5tNLWji6+ilr+ fdWSV4UGHA7EjxHSHCGOJH/+OOCS9pcA8FxFDUUcv62ydtZf6zzXDn6EWRG4SXbF FiNz2J6vaf1PtzIBTn6uAFJinh8MqALq4BvU3CfEGfPQOmtBUJ9UkZ4Vu3oZEzrG 8ukbFTy0a/JYjRYHvTqphVnvIOcDWWyB1eSxUU/akHN+/Z675ytOFIvHfjrTqyxq hYoZ0b823DxeV975opjQg5puaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwQxYnT +oEwDlQjHqoGUItc+I2zMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwa1Nzw5xjTaKIvgEH95gBUOYUA9XNO1QQi7xxnBxlcZABoWF8ctk6 u9SeG2ADz0lr6wG+lQyxuMKXHi3Crnn9PygCatR7NfMTNEFAyzmCGaUTN9DKZuAQ 3vWe4tLqW+95alZVknkas5LGkoX6VhJPFEFLBr4XXRuYtuiKJt09a21CsxWS81ak TiO4VsfyU5PM2PYKj+hBGIWxP64AMEfT7IfR75u6p1akmibrqXWrx9oHMcWzSG/P 1lwr5et6YkCa969v78i3NskUdnnuprO0arFh1m3+CfbFsvy+LmqHeX89Ef45V19+ Td8NIZ7oKSt3p+oZdRZ07pcH0RUIInJk -----END CERTIFICATE-----Generated at Sat Dec 6 20:03:00 2025 by rpki-client