This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: PDH9fGNT2XRukCHfrvdah0asZZB7P5n0isrU3QRzAEs= Subject key identifier: E4:78:D2:94:CD:76:B4:41:FB:C9:90:01:62:A0:47:53:68:D7:43:8B Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: D9 Signing time: Sun 07 Dec 2025 03:53:36 +0000 Manifest this update: Sun 07 Dec 2025 03:53:35 +0000 Manifest next update: Sun 14 Dec 2025 03:53:35 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: 5/LiTjjqLYYhDaURzWMfw5fYCi2C67quWDdksfwmkmQ=) 2: B2D0D768766011F08F4AF05AC4F9AE02.roa (hash: 9nhYmTgkqcOjR0NO2+wz26tomnd/zZ4DybayX4g1JJs=) 3: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: Z/zZPYkWKXvraJfJSL/aeXz0Ni43Av6pEICr2Ba1ixA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 03:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Dec 7 03:53:35 2025 GMT Not After : Dec 14 03:53:35 2025 GMT Subject: CN=6934fa40-135f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d8:c9:3e:39:87:0a:7f:fb:fe:99:69:67:9a: 75:11:8a:b2:b4:64:55:9c:ec:7d:d6:76:4d:50:09: 80:69:1b:b2:fa:03:91:1c:db:0c:c7:6c:69:14:6a: d6:0b:3d:cf:24:64:66:63:3a:a9:3a:1d:e6:2a:76: 06:1f:c0:07:ba:34:62:05:a4:e3:d6:47:39:91:33: 96:85:52:08:18:c1:a3:7a:d0:96:ff:05:9b:7c:ac: dd:bd:af:3c:ad:9a:b5:69:d1:3a:09:28:0d:b3:88: 04:6f:18:39:1a:24:10:4c:a9:98:00:ec:bb:be:ba: 70:fa:d1:9a:d5:63:fe:6c:54:88:c7:ee:c3:25:83: 88:9f:59:59:30:58:2f:8f:f5:6c:27:d5:69:25:ab: 8e:06:ad:20:b0:7c:b6:81:f3:96:61:51:f3:42:c5: 47:09:81:29:97:8a:0b:4e:fe:13:dd:ce:aa:26:4b: 7a:a9:1f:2b:5b:cc:17:91:48:2d:ed:e5:24:3e:c8: 1d:80:22:0a:97:5b:52:4c:0c:61:68:55:d4:9a:c9: c6:f9:f5:b4:4f:ba:ee:88:9a:72:c0:8d:0a:f6:a5: ed:ba:f5:a0:9f:c6:91:03:5a:40:bf:59:57:b5:f2: 66:69:c1:09:4d:25:5e:7d:d3:11:41:04:7d:ba:80: 1f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:78:D2:94:CD:76:B4:41:FB:C9:90:01:62:A0:47:53:68:D7:43:8B X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:cd:40:82:5a:0b:43:75:bb:74:1d:99:30:d9:43:18:30:0d: 45:a9:00:24:57:7e:44:26:15:5d:c5:20:6c:ea:88:86:e5:6e: 28:31:48:75:b5:83:4f:7b:bf:91:09:b4:20:73:ed:21:28:88: ee:5a:87:b1:99:1f:1b:89:39:15:5c:c2:49:33:b6:b6:e6:f9: 51:aa:fa:f8:fd:70:2b:9a:06:73:46:cd:53:78:e8:d3:fb:cf: 6e:12:07:3d:50:de:5f:cc:26:aa:85:aa:5f:61:24:d4:7f:dd: ae:1c:4e:ed:5d:b8:4e:af:42:90:2f:e1:f2:fc:71:19:25:14: 26:27:3e:ac:02:f2:f3:01:95:7d:27:01:d9:5f:d1:1f:85:95: 87:d5:62:63:8f:3a:e8:c3:8f:40:8f:28:af:bc:c3:cf:27:c2: aa:75:db:d7:67:07:3e:1d:3a:ee:83:09:7c:db:93:92:d3:3a: bd:0e:c6:8d:24:a4:87:39:e2:ea:7b:1d:83:8b:d7:f5:19:73: 14:1f:44:cb:77:36:2b:53:04:67:5a:97:82:81:13:88:55:22: 5e:5d:f6:0d:5a:e4:3c:e3:00:18:b9:41:5f:b5:96:10:f0:41: 0a:f4:72:55:2c:40:5d:38:56:70:ec:14:5d:d3:f3:68:c6:8d: 0b:98:63:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFEQUYxMTAvBgNVBAUTKDY4QzJCNTg4RDE2ODVBNTg3NDJEOEEyRTE4ODg2NURC MzExMDNDRjcwHhcNMjUxMjA3MDM1MzM1WhcNMjUxMjE0MDM1MzM1WjAYMRYwFAYD VQQDEw02OTM0ZmE0MC0xMzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9jJPjmHCn/7/plpZ5p1EYqytGRVnOx91nZNUAmAaRuy+gORHNsMx2xpFGrW Cz3PJGRmYzqpOh3mKnYGH8AHujRiBaTj1kc5kTOWhVIIGMGjetCW/wWbfKzdva88 rZq1adE6CSgNs4gEbxg5GiQQTKmYAOy7vrpw+tGa1WP+bFSIx+7DJYOIn1lZMFgv j/VsJ9VpJauOBq0gsHy2gfOWYVHzQsVHCYEpl4oLTv4T3c6qJkt6qR8rW8wXkUgt 7eUkPsgdgCIKl1tSTAxhaFXUmsnG+fW0T7ruiJpywI0K9qXtuvWgn8aRA1pAv1lX tfJmacEJTSVefdMRQQR9uoAfgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOR40pTN drRB+8mQAWKgR1No10OLMB8GA1UdIwQYMBaAFGjCtYjRaFpYdC2KLhiIZdsxEDz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQURBRi84NzE1OUM5NjhD RjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1dsaDBMWW91R0lobDJ6RVFQ UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QURBRi84NzE1OUM5NjhDRjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1ds aDBMWW91R0lobDJ6RVFQUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvzUCCWgtDdbt0HZkw2UMYMA1FqQAkV35EJhVdxSBs6oiG5W4oMUh1 tYNPe7+RCbQgc+0hKIjuWoexmR8biTkVXMJJM7a25vlRqvr4/XArmgZzRs1TeOjT +89uEgc9UN5fzCaqhapfYSTUf92uHE7tXbhOr0KQL+Hy/HEZJRQmJz6sAvLzAZV9 JwHZX9EfhZWH1WJjjzrow49AjyivvMPPJ8KqddvXZwc+HTrugwl825OS0zq9DsaN JKSHOeLqex2Di9f1GXMUH0TLdzYrUwRnWpeCgROIVSJeXfYNWuQ84wAYuUFftZYQ 8EEK9HJVLEBdOFZw7BRd0/Noxo0LmGM6 -----END CERTIFICATE-----Generated at Mon Dec 8 06:02:07 2025 by rpki-client