This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft File: n095sMMg0u--SKvL-paoRdZHlu8.mft (raw, json) Hash identifier: GJcyL/6ENBAFfVJUOubj6s6cR9hWlH0ia9jZS+UbkZs= Subject key identifier: 16:D7:ED:02:BC:1F:BC:E2:6B:74:D4:7C:67:CA:0F:CD:FF:72:27:68 Authority key identifier: 9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF Certificate issuer: /CN=A91A78A7/serialNumber=9F4F79B0C320D2EFBE48ABCBFA96A845D64796EF Certificate serial: 0230 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft Manifest number: 0230 Signing time: Tue 02 Dec 2025 23:59:21 +0000 Manifest this update: Tue 02 Dec 2025 23:59:20 +0000 Manifest next update: Tue 09 Dec 2025 23:59:20 +0000 Files and hashes: 1: n095sMMg0u--SKvL-paoRdZHlu8.crl (hash: edwUR7/p+xT670gDlmvtqauDQSfxJ1iCFjyM/8GCtBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.crl rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 23:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=9F4F79B0C320D2EFBE48ABCBFA96A845D64796EF Validity Not Before: Dec 2 23:59:20 2025 GMT Not After : Dec 9 23:59:20 2025 GMT Subject: CN=692f7d59-3481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b8:92:0d:0c:aa:46:d4:a2:da:0d:7c:21:6f: 15:0c:16:b0:c3:90:a5:33:0d:8b:62:c2:7b:be:0b: ef:7a:15:85:1f:7e:88:1d:4a:b3:9b:68:d2:9f:8f: 9f:71:8f:7f:b8:1b:7d:31:12:59:e5:58:a5:24:2a: 0e:78:dc:0b:a7:3e:6b:72:ad:c9:ba:e9:44:b9:2f: 9f:ac:6b:68:ec:7d:68:1c:b3:2f:36:48:9c:c6:0f: ad:36:1f:03:d1:62:d3:9a:c0:ca:6f:46:1b:cf:8a: 37:4d:4b:a2:71:b4:ee:1b:64:c2:65:32:fa:c3:d5: e1:45:38:93:a9:a3:e2:5e:19:e3:71:5d:fb:2f:80: 4e:10:40:25:64:68:6b:91:3a:4e:85:68:69:e7:48: 7d:f2:52:10:4e:01:d0:c8:a4:87:87:35:74:8a:4b: d5:a7:6f:89:ae:3b:94:c9:60:39:fe:8f:07:02:37: e0:51:eb:92:68:81:c0:9a:22:57:43:66:9b:e2:fc: 32:52:55:4c:93:f9:3f:eb:5d:33:9e:d9:bd:08:40: dd:d9:8e:85:0c:2d:67:a9:3d:71:e9:7c:6b:de:44: cd:83:bc:b7:7e:5e:4b:5e:fb:e6:31:01:d2:c1:81: 70:a9:5f:da:a8:35:91:ff:4b:9b:63:96:aa:56:66: 3c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D7:ED:02:BC:1F:BC:E2:6B:74:D4:7C:67:CA:0F:CD:FF:72:27:68 X509v3 Authority Key Identifier: keyid:9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:15:fb:de:6a:fe:97:a7:6e:ae:ff:ef:ea:30:2a:2a:6f:79: 20:1d:29:37:dd:70:79:46:8c:94:dc:76:f8:03:70:3d:ac:8e: 30:ca:87:03:c9:1d:b0:ec:ba:d7:eb:25:af:82:19:4c:16:57: ea:ec:72:4a:d2:96:af:68:6b:c2:bb:4d:bd:f4:b1:c0:28:2d: f7:ad:06:71:3d:b2:a3:ef:d9:f5:d4:37:f0:7b:ca:e7:e4:96: 05:54:56:b7:ad:f4:1f:55:8a:9d:6e:8c:aa:fc:e4:c7:f8:98: 0f:d2:c1:3f:b7:63:17:e7:48:ee:a5:c0:ae:91:9e:f5:b3:e1: d6:f1:22:c9:42:90:7d:6a:8f:5e:27:62:5a:03:d8:14:01:07: a2:13:c0:8e:1d:5c:7a:bb:c4:ce:5d:29:45:c1:35:66:46:55: c9:c7:43:5b:9b:d3:94:64:c0:89:29:e0:b4:8d:f0:8d:91:0f: 3b:2d:d6:ae:65:de:1d:ce:4d:21:67:ce:df:cc:f8:d8:26:9f: b9:1a:fe:1d:15:ff:87:6a:a0:9a:85:7a:34:0d:e8:fb:9e:17: 69:35:dd:55:bf:19:db:a5:a1:2f:21:83:88:18:17:93:bc:8c: bc:6c:94:88:73:68:01:b4:b7:e1:65:a7:8c:67:ff:49:4c:41: af:31:13:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDlGNEY3OUIwQzMyMEQyRUZCRTQ4QUJDQkZBOTZBODQ1 RDY0Nzk2RUYwHhcNMjUxMjAyMjM1OTIwWhcNMjUxMjA5MjM1OTIwWjAYMRYwFAYD VQQDEw02OTJmN2Q1OS0zNDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuriSDQyqRtSi2g18IW8VDBaww5ClMw2LYsJ7vgvvehWFH36IHUqzm2jSn4+f cY9/uBt9MRJZ5VilJCoOeNwLpz5rcq3JuulEuS+frGto7H1oHLMvNkicxg+tNh8D 0WLTmsDKb0Ybz4o3TUuicbTuG2TCZTL6w9XhRTiTqaPiXhnjcV37L4BOEEAlZGhr kTpOhWhp50h98lIQTgHQyKSHhzV0ikvVp2+JrjuUyWA5/o8HAjfgUeuSaIHAmiJX Q2ab4vwyUlVMk/k/610zntm9CEDd2Y6FDC1nqT1x6Xxr3kTNg7y3fl5LXvvmMQHS wYFwqV/aqDWR/0ubY5aqVmY86QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbX7QK8 H7zia3TUfGfKD83/cidoMB8GA1UdIwQYMBaAFJ9PebDDINLvvkiry/qWqEXWR5bv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy81MEQ2MUJCNjcx M0QxMUVEOUZERjNEMTJDNEY5QUUwMi9uMDk1c01NZzB1LS1TS3ZMLXBhb1JkWkhs dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL24wOTVzTU1nMHUtLVNLdkwtcGFvUmRaSGx1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy81MEQ2MUJCNjcxM0QxMUVEOUZERjNEMTJDNEY5QUUwMi9uMDk1c01NZzB1 LS1TS3ZMLXBhb1JkWkhsdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIFfveav6Xp26u/+/qMCoqb3kgHSk33XB5RoyU3Hb4A3A9rI4wyocD yR2w7LrX6yWvghlMFlfq7HJK0pavaGvCu0299LHAKC33rQZxPbKj79n11Dfwe8rn 5JYFVFa3rfQfVYqdboyq/OTH+JgP0sE/t2MX50jupcCukZ71s+HW8SLJQpB9ao9e J2JaA9gUAQeiE8COHVx6u8TOXSlFwTVmRlXJx0Nbm9OUZMCJKeC0jfCNkQ87Ldau Zd4dzk0hZ87fzPjYJp+5Gv4dFf+HaqCahXo0Dej7nhdpNd1VvxnbpaEvIYOIGBeT vIy8bJSIc2gBtLfhZaeMZ/9JTEGvMRMW -----END CERTIFICATE-----Generated at Wed Dec 3 14:14:36 2025 by rpki-client