This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: D73xrpZzB+R11K6eoyXaclFjFjbNXLNkav03xg58v0g= Subject key identifier: 27:8F:3F:4B:3E:27:23:58:6F:DA:08:1A:34:01:C7:AC:B4:8B:8F:29 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 0247 Signing time: Tue 23 Dec 2025 00:49:41 +0000 Manifest this update: Tue 23 Dec 2025 00:49:40 +0000 Manifest next update: Tue 30 Dec 2025 00:49:40 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: WFiOm/qievnHc7r3TqrOCo3PlK7jxAeTwM+FIbh/VIM=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: tX50rThQWeAbKIESIwrC0zdSKgD+i4OgX2qNIGi6fqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Dec 23 00:49:40 2025 GMT Not After : Dec 30 00:49:40 2025 GMT Subject: CN=6949e725-7b57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:59:44:b3:fd:38:df:a8:50:0a:a7:b7:0f:d2: 40:d7:5f:c3:93:26:38:cb:c0:b7:fb:40:f5:e4:e3: 1d:75:aa:bd:74:a9:dc:21:f2:69:e5:a7:51:73:39: 41:05:c4:32:e5:ee:5e:53:ed:e0:56:4a:94:aa:aa: c5:2e:38:f9:83:6c:81:40:8c:1c:15:32:e2:cd:cc: b9:b8:2f:f4:51:98:5a:29:8c:24:c1:87:b6:d1:86: 50:57:4f:21:dc:73:80:66:c1:18:55:6d:9d:92:c4: 6e:bd:b6:d4:cc:c0:b7:38:40:e7:23:f3:61:ee:af: 67:2e:50:3e:6e:e8:bf:e3:68:d8:e0:5c:d3:ca:5e: 6d:11:99:ad:e8:e3:bb:b4:89:03:b7:e7:51:04:c5: be:08:61:93:76:59:c6:6a:f3:cb:f6:5e:3f:f3:91: af:62:44:1e:bc:9a:43:0b:3b:7f:6f:c4:5c:8c:8f: e6:89:ca:16:a7:7a:04:dc:aa:4b:45:5a:bc:bc:de: 60:78:d7:dc:7f:09:7f:e0:51:b5:d0:e1:2a:17:f7: e8:a8:1e:04:3b:b3:59:23:38:17:a6:05:fb:69:29: 13:64:71:ed:a2:d0:c8:01:59:d1:02:54:70:58:1d: 85:21:05:ae:87:74:49:ae:32:36:48:71:4d:e4:5e: d2:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:8F:3F:4B:3E:27:23:58:6F:DA:08:1A:34:01:C7:AC:B4:8B:8F:29 X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:52:11:a3:58:ca:45:13:f8:d5:da:9c:5c:d0:5a:fc:b3:bf: a6:7c:8d:e2:f8:ff:92:51:b9:cf:e5:11:cb:59:fe:50:a5:79: 3f:18:28:8e:37:8e:b1:d8:e9:aa:e6:61:11:39:ac:52:c3:89: 42:28:60:9a:ec:28:53:6c:8f:3f:c6:b3:ef:d7:79:12:68:ce: 4a:f1:75:b2:c9:42:d9:7d:c6:12:b7:a4:8f:1a:da:d6:b1:17: ef:5c:8f:0d:03:30:02:8f:b0:74:64:e2:ac:5b:4d:8a:27:11: af:5f:2f:ad:00:dc:48:2c:f7:d7:ce:e3:6f:48:6f:30:7b:35: 0d:2d:1d:f0:d0:78:84:b8:48:01:80:51:70:bf:71:5e:37:b7: c2:4e:c9:6f:96:d1:46:02:ab:a9:a8:50:57:71:30:1a:52:33: a3:a9:21:13:fe:e0:37:6d:ff:5f:ad:b6:4d:9f:46:28:7a:07: 06:51:10:9f:da:03:30:58:ca:4c:2e:96:cb:f0:c8:99:9d:d4: ec:c1:c9:5e:26:19:fc:75:93:ad:ff:db:41:a0:7f:b3:21:bf: f1:5e:54:d9:96:4b:9b:e3:62:98:86:6e:cd:be:81:18:30:25: e1:39:4a:56:c1:b7:35:cf:39:fc:e2:38:ea:ff:f0:72:a6:67: 30:5a:87:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjUxMjIzMDA0OTQwWhcNMjUxMjMwMDA0OTQwWjAYMRYwFAYD VQQDDA02OTQ5ZTcyNS03YjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsllEs/0436hQCqe3D9JA11/DkyY4y8C3+0D15OMddaq9dKncIfJp5adRczlB BcQy5e5eU+3gVkqUqqrFLjj5g2yBQIwcFTLizcy5uC/0UZhaKYwkwYe20YZQV08h 3HOAZsEYVW2dksRuvbbUzMC3OEDnI/Nh7q9nLlA+bui/42jY4FzTyl5tEZmt6OO7 tIkDt+dRBMW+CGGTdlnGavPL9l4/85GvYkQevJpDCzt/b8RcjI/micoWp3oE3KpL RVq8vN5geNfcfwl/4FG10OEqF/foqB4EO7NZIzgXpgX7aSkTZHHtotDIAVnRAlRw WB2FIQWuh3RJrjI2SHFN5F7S+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCePP0s+ JyNYb9oIGjQBx6y0i48pMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0UhGjWMpFE/jV2pxc0Fr8s7+mfI3i+P+SUbnP5RHLWf5QpXk/GCiO N46x2Omq5mEROaxSw4lCKGCa7ChTbI8/xrPv13kSaM5K8XWyyULZfcYSt6SPGtrW sRfvXI8NAzACj7B0ZOKsW02KJxGvXy+tANxILPfXzuNvSG8wezUNLR3w0HiEuEgB gFFwv3FeN7fCTslvltFGAqupqFBXcTAaUjOjqSET/uA3bf9frbZNn0YoegcGURCf 2gMwWMpMLpbL8MiZndTswcleJhn8dZOt/9tBoH+zIb/xXlTZlkub42KYhm7NvoEY MCXhOUpWwbc1zzn84jjq//BypmcwWoc7 -----END CERTIFICATE-----Generated at Tue Dec 23 05:01:55 2025 by rpki-client