This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: 4mZnp9pyPNdxP3m2xgfhiQXG1T/u9ocDAE2/EzNnq2g= Subject key identifier: CC:0D:95:25:2E:14:30:F4:4E:C7:0D:04:3F:43:34:F1:5C:5C:0E:03 Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: 58 Signing time: Wed 03 Dec 2025 05:25:10 +0000 Manifest this update: Wed 03 Dec 2025 05:25:10 +0000 Manifest next update: Wed 10 Dec 2025 05:25:10 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: YVk4FtWY2m+XIVWIZ0QMOS2zzzv5Kmn91tO6aRKNPDw=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: 6vL95HASIeMq5sE95QjJyODMvxYaOtsSaHmjFpdm+bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Dec 3 05:25:10 2025 GMT Not After : Dec 10 05:25:10 2025 GMT Subject: CN=692fc9b6-afca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cc:01:36:bb:79:bd:c4:59:17:3c:af:e9:4a: f6:32:b5:cf:18:74:aa:01:37:aa:94:59:ef:03:3d: 00:8b:92:19:e1:89:9f:04:9c:c8:af:cf:29:33:18: 65:1a:11:82:b2:42:a2:33:78:7e:34:d7:28:f2:a2: c0:e0:9e:29:91:3e:4b:b2:f0:aa:77:25:fd:09:92: 2c:5e:07:31:15:76:01:f0:99:a1:b3:63:3a:e9:26: 6b:6b:4f:a7:2b:74:ee:a2:ee:a3:f9:71:31:00:df: 7b:66:c2:e2:b0:b3:0b:d6:ef:01:d5:a1:e2:3c:79: 25:07:fa:ea:32:7d:2d:4d:88:bf:2c:9d:77:bf:99: 83:10:08:99:90:87:2a:66:2f:77:7a:e0:e0:13:8e: 62:19:6f:76:9c:bd:39:7f:8e:1d:9b:7c:c6:32:5c: 3b:99:4b:6c:1c:94:35:e5:41:af:8c:69:95:8a:8a: 1c:6b:ad:ae:6d:79:93:c7:bb:5d:bb:ac:a5:7d:23: 24:1f:ab:8e:64:46:b7:6e:b6:c9:50:89:0b:ac:79: 37:6b:99:f6:de:8e:5e:72:5f:a6:d2:65:95:a0:a0: 4d:25:98:5f:aa:fd:1d:f5:80:54:12:7f:69:be:6f: 78:10:c8:bb:0d:13:f2:0e:e2:f0:fe:e0:39:cf:81: 01:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0D:95:25:2E:14:30:F4:4E:C7:0D:04:3F:43:34:F1:5C:5C:0E:03 X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:5a:20:a4:87:86:a0:ba:35:a8:b9:28:ef:5c:cb:4f:df:45: e7:61:60:06:69:b5:c7:04:3d:f4:67:1b:a7:a0:2f:7b:85:1a: d5:7d:d6:b0:7d:be:da:a6:a2:8d:ca:55:33:e3:4e:f7:57:36: f6:bd:ac:07:7c:22:e3:2c:65:d4:a2:96:c6:70:88:a5:ab:b9: 07:89:aa:6c:d8:78:56:16:61:8b:d1:9b:85:ff:58:73:ff:ea: 75:d5:26:ab:6b:fc:02:3b:74:27:08:33:26:cb:e7:99:a3:74: e7:64:eb:35:f5:ae:e8:84:33:d9:d7:28:7f:e4:74:fb:67:5b: 68:c4:65:9e:0c:a3:ad:6f:54:9b:5f:4f:f1:71:d5:49:96:99: 58:09:e9:15:eb:17:5e:3d:67:6a:1f:4e:73:6f:7b:2a:a6:9d: 9f:72:10:b4:bd:57:54:19:23:ba:18:08:8d:00:88:ce:54:73: 4d:78:e6:85:22:7f:ba:b4:14:00:67:c5:60:65:36:55:93:16: 38:4e:f4:c9:f6:0e:15:e1:74:84:c2:cb:98:73:a8:0b:15:44: 60:89:3c:9f:05:02:cd:ca:dc:62:1c:e9:3f:b3:fe:c7:a2:cc: b9:81:1f:6b:c6:04:f0:a5:fb:71:f1:00:f5:dc:32:63:52:ea: 68:19:72:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoNzIwQUE2NkYzNkMxNDYwQUQ0QkMzQUM2OTJGOTY1Qjcx NzRBNThFMDAeFw0yNTEyMDMwNTI1MTBaFw0yNTEyMTAwNTI1MTBaMBgxFjAUBgNV BAMTDTY5MmZjOWI2LWFmY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8zAE2u3m9xFkXPK/pSvYytc8YdKoBN6qUWe8DPQCLkhnhiZ8EnMivzykzGGUa EYKyQqIzeH401yjyosDgnimRPkuy8Kp3Jf0JkixeBzEVdgHwmaGzYzrpJmtrT6cr dO6i7qP5cTEA33tmwuKwswvW7wHVoeI8eSUH+uoyfS1NiL8snXe/mYMQCJmQhypm L3d64OATjmIZb3acvTl/jh2bfMYyXDuZS2wclDXlQa+MaZWKihxrra5teZPHu127 rKV9IyQfq45kRrdutslQiQuseTdrmfbejl5yX6bSZZWgoE0lmF+q/R31gFQSf2m+ b3gQyLsNE/IO4vD+4DnPgQGXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzA2VJS4U MPROxw0EP0M08VxcDgMwHwYDVR0jBBgwFoAUcgqmbzbBRgrUvDrGkvlltxdKWOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzM2NDBDQjk0NTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY2dxbWJ6YkJSZ3JVdkRyR2t2bGx0eGRLV09BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzM2NDBDQjk0NTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdy VXZEckdrdmxsdHhkS1dPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJlaIKSHhqC6Nai5KO9cy0/fRedhYAZptccEPfRnG6egL3uFGtV91rB9 vtqmoo3KVTPjTvdXNva9rAd8IuMsZdSilsZwiKWruQeJqmzYeFYWYYvRm4X/WHP/ 6nXVJqtr/AI7dCcIMybL55mjdOdk6zX1ruiEM9nXKH/kdPtnW2jEZZ4Mo61vVJtf T/Fx1UmWmVgJ6RXrF149Z2ofTnNveyqmnZ9yELS9V1QZI7oYCI0AiM5Uc0145oUi f7q0FABnxWBlNlWTFjhO9Mn2DhXhdITCy5hzqAsVRGCJPJ8FAs3K3GIc6T+z/sei zLmBH2vGBPCl+3HxAPXcMmNS6mgZcho= -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:46 2025 by rpki-client