This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft File: 23LIuvHa9pOYGFLuAyIwMF7ICRA.mft (raw, json) Hash identifier: qq9ayn6hmmaPGC3jPAU1K+AnefaZ4UlcB0Y/rFz8cZI= Subject key identifier: 24:FB:8E:21:FB:2F:B0:AC:68:9E:95:A9:06:D7:98:BA:20:90:A3:72 Authority key identifier: DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10 Certificate issuer: /CN=A91B289C/serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910 Certificate serial: 0906 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft Manifest number: 08FE Signing time: Mon 22 Dec 2025 19:42:20 +0000 Manifest this update: Mon 22 Dec 2025 19:42:20 +0000 Manifest next update: Mon 29 Dec 2025 19:42:20 +0000 Files and hashes: 1: 23LIuvHa9pOYGFLuAyIwMF7ICRA.crl (hash: d1Kap+mSuBKPw2ByPujcMdnBFz0Q1lFzs4aZ64PBaes=) 2: E6F3687CBCE711EAACD6466CC4F9AE02.roa (hash: f4udCcisFsQWGXJxlj4yAW3MNSfW4g1HYUDDKGCbXqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2310 (0x906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B289C, serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910 Validity Not Before: Dec 22 19:42:20 2025 GMT Not After : Dec 29 19:42:20 2025 GMT Subject: CN=69499f1c-beca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:66:0a:4a:78:5d:f4:f9:b9:39:01:8f:fb:c8: 3d:a5:63:20:8e:3c:6e:7e:30:6d:71:37:3a:0b:5c: bd:6a:af:82:06:48:37:8b:90:f1:af:b1:c5:4f:d6: 21:57:e8:7c:d5:50:ea:1c:a5:46:c5:52:af:e4:d0: fb:63:eb:ce:0c:1a:45:21:b0:12:dd:ba:f7:8d:96: fc:08:60:0b:6e:e6:d8:63:e7:58:f0:af:a2:b7:f4: 67:58:73:0e:bd:d4:1c:a3:2a:29:13:b7:5c:5f:8a: b2:e4:04:c7:8d:b0:7f:c0:61:e0:51:2c:b0:cb:8f: 33:f5:94:7e:e9:2f:e0:14:9c:7c:62:cf:16:ec:3c: 18:38:09:b4:af:1f:0d:3e:5e:43:ff:49:fa:1e:55: 93:29:9b:4a:95:28:be:83:c3:97:c5:f7:83:75:ff: 38:72:0a:d2:94:28:1d:be:5a:c1:a3:5e:69:37:40: cc:d6:65:1c:88:5c:8e:d4:92:78:ab:e0:66:f8:90: dd:90:00:1f:7c:12:99:ce:40:9d:ff:9a:71:09:ee: 1f:7c:7c:5d:27:81:d1:ae:77:94:3e:f5:d1:09:09: 02:f6:d6:2a:18:aa:59:17:93:78:49:e0:56:f7:b9: cb:e0:2b:1b:b0:9c:00:55:04:88:e7:8d:49:15:cd: 1f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:FB:8E:21:FB:2F:B0:AC:68:9E:95:A9:06:D7:98:BA:20:90:A3:72 X509v3 Authority Key Identifier: keyid:DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:c5:8e:cb:46:97:a2:9e:f3:b6:fd:c6:eb:8e:8e:8a:97:8f: 2d:49:17:92:6d:87:c8:c6:7b:aa:b6:1d:ba:d8:3c:95:67:63: c7:92:bd:48:70:66:6d:0b:c3:bc:a1:26:5f:0e:c0:be:68:52: 47:9e:a3:b3:7f:f3:6d:e3:98:7a:94:e3:b7:80:08:2c:7b:5f: 84:43:fb:9c:7e:94:bb:2b:5a:7c:ca:12:94:d7:ff:08:2e:d3: f9:30:58:c4:9a:03:ca:bd:a2:2b:9d:3b:3d:fa:89:e1:5e:53: 08:c0:73:79:dc:d8:18:90:50:82:5b:26:ee:26:a3:d8:17:2c: 67:1d:8e:05:83:96:5f:49:36:a5:3f:f7:2b:02:fe:c1:fe:dd: 6f:a2:0e:09:59:82:8d:4c:8c:42:8d:bb:3d:10:46:08:cd:34: 59:9c:13:b6:37:c0:f9:4c:3d:f3:03:1b:41:58:b4:8f:09:33: 90:ac:a1:b0:89:72:fe:c0:73:2f:e9:19:2f:d1:b8:33:5a:f3: 1a:8b:dd:ca:45:e7:cb:59:4e:ac:ca:5f:78:f8:09:11:e3:36: 6c:af:9f:bd:6c:b8:4c:51:96:d4:6d:0b:91:7f:72:7f:23:c7: 45:a6:56:1c:8b:ee:cd:40:da:85:e7:7b:6d:40:9e:bc:17:54: 26:37:9c:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI4OUMxMTAvBgNVBAUTKERCNzJDOEJBRjFEQUY2OTM5ODE4NTJFRTAzMjIzMDMw NUVDODA5MTAwHhcNMjUxMjIyMTk0MjIwWhcNMjUxMjI5MTk0MjIwWjAYMRYwFAYD VQQDDA02OTQ5OWYxYy1iZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWYKSnhd9Pm5OQGP+8g9pWMgjjxufjBtcTc6C1y9aq+CBkg3i5Dxr7HFT9Yh V+h81VDqHKVGxVKv5ND7Y+vODBpFIbAS3br3jZb8CGALbubYY+dY8K+it/RnWHMO vdQcoyopE7dcX4qy5ATHjbB/wGHgUSywy48z9ZR+6S/gFJx8Ys8W7DwYOAm0rx8N Pl5D/0n6HlWTKZtKlSi+g8OXxfeDdf84cgrSlCgdvlrBo15pN0DM1mUciFyO1JJ4 q+Bm+JDdkAAffBKZzkCd/5pxCe4ffHxdJ4HRrneUPvXRCQkC9tYqGKpZF5N4SeBW 97nL4CsbsJwAVQSI541JFc0fpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCT7jiH7 L7CsaJ6VqQbXmLogkKNyMB8GA1UdIwQYMBaAFNtyyLrx2vaTmBhS7gMiMDBeyAkQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjg5Qy8zQUIxRTJEQ0JD RTcxMUVBQkU5NzJDNkNDNEY5QUUwMi8yM0xJdXZIYTlwT1lHRkx1QXlJd01GN0lD UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzTEl1dkhhOXBPWUdGTHVBeUl3TUY3SUNSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Mjg5Qy8zQUIxRTJEQ0JDRTcxMUVBQkU5NzJDNkNDNEY5QUUwMi8yM0xJdXZIYTlw T1lHRkx1QXlJd01GN0lDUkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/xY7LRpeinvO2/cbrjo6Kl48tSReSbYfIxnuqth262DyVZ2PHkr1I cGZtC8O8oSZfDsC+aFJHnqOzf/Nt45h6lOO3gAgse1+EQ/ucfpS7K1p8yhKU1/8I LtP5MFjEmgPKvaIrnTs9+onhXlMIwHN53NgYkFCCWybuJqPYFyxnHY4Fg5ZfSTal P/crAv7B/t1vog4JWYKNTIxCjbs9EEYIzTRZnBO2N8D5TD3zAxtBWLSPCTOQrKGw iXL+wHMv6Rkv0bgzWvMai93KRefLWU6syl94+AkR4zZsr5+9bLhMUZbUbQuRf3J/ I8dFplYci+7NQNqF53ttQJ68F1QmN5yD -----END CERTIFICATE-----Generated at Tue Dec 23 14:36:23 2025 by rpki-client