This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft File: iPsdIcuIPJfCmst31NaIhLOnpgg.mft (raw, json) Hash identifier: vlGr/HEVBXcI43kKGDpQc8HeIYdNRxclSOCidYBY4oY= Subject key identifier: 87:8A:45:65:B9:AB:E4:24:62:13:06:3A:11:58:3B:73:FA:E0:23:0E Authority key identifier: 88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 Certificate issuer: /CN=A91B6A04/serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft Manifest number: 06 Signing time: Wed 03 Dec 2025 06:15:11 +0000 Manifest this update: Wed 03 Dec 2025 06:15:10 +0000 Manifest next update: Wed 10 Dec 2025 06:15:10 +0000 Files and hashes: 1: iPsdIcuIPJfCmst31NaIhLOnpgg.crl (hash: IxSgZuU2r9RQPjl/8x7K3AAn1KyPX1aErif2ZxT6JiM=) 2: 8D7D3942C9AE11F0A867D348C4F9AE02.roa (hash: f6LJ1o+/HlkVTaZ1lRAj/+eYOJXKRmJ8r7oZSOqaeL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6A04, serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Validity Not Before: Dec 3 06:15:10 2025 GMT Not After : Dec 10 06:15:10 2025 GMT Subject: CN=692fd56e-378c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c2:06:8d:4d:8b:ae:51:3d:77:30:1f:08:68: 15:da:e4:57:3f:9e:48:82:e4:a3:93:dd:0f:ea:b0: cd:7c:cc:80:bf:40:e5:58:ff:a0:45:02:de:8d:cd: ba:26:20:d2:da:0b:0b:20:7c:fe:a6:81:67:49:69: b8:b8:48:2a:09:e6:e8:86:e1:25:d1:59:25:dd:90: 8c:ec:10:ae:f5:b8:29:7f:3c:98:d0:9d:63:4d:89: 5a:bb:49:9b:1b:d5:46:37:66:00:04:9c:46:0b:06: c5:df:a5:61:05:40:20:e4:e1:6f:83:14:b8:38:9a: a4:91:c2:0a:c8:e6:63:3d:a2:72:0b:58:50:9b:56: 40:d8:ad:66:49:91:8b:da:e7:9f:c2:71:dc:f2:bd: a0:23:92:7b:99:ae:9d:ca:ae:a6:27:1d:0a:da:9f: f4:8f:db:3e:d9:a7:69:4d:c6:ae:1a:97:47:33:52: ca:e5:54:bc:80:e6:1d:c3:fd:cd:bd:0c:c3:f8:03: 7e:69:96:23:ab:5a:98:a7:4c:52:04:58:af:70:59: e6:ca:94:d9:0d:4e:b2:61:1b:03:50:e8:99:2e:24: 3f:92:04:9f:97:ef:ab:03:6c:f4:90:3d:f7:b4:24: 2c:3e:48:4f:b5:3f:7d:38:46:f3:d2:67:97:ed:5a: e3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8A:45:65:B9:AB:E4:24:62:13:06:3A:11:58:3B:73:FA:E0:23:0E X509v3 Authority Key Identifier: keyid:88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:24:eb:50:a0:80:5a:67:df:e5:21:7a:60:be:1e:4b:c5:0c: 36:eb:42:0d:6a:f8:56:0c:03:59:ed:81:ad:61:81:07:01:63: 01:69:18:25:24:f7:7a:28:9e:01:72:87:ff:2b:d3:b1:54:10: 03:f5:7e:1c:7b:d3:07:7c:35:7d:c8:31:c7:57:76:15:f0:a6: 3d:30:32:1a:71:34:c8:4f:44:78:86:5f:16:d1:65:dd:bd:9a: f1:ce:d8:ec:cb:5d:06:fb:0e:6e:d0:c3:eb:9a:bb:63:c9:28: 7a:5b:c9:ae:9d:f3:8d:9f:78:88:94:89:28:6c:da:81:50:a1: c0:b1:58:62:bc:1c:3b:b9:4e:c4:68:44:75:13:c9:63:48:70: bf:6a:a7:92:9c:1e:cc:33:1f:3e:6f:1e:de:8b:2f:e4:e0:ec: 00:00:cc:3f:22:22:34:41:e4:e1:ce:18:4f:e7:e8:ef:7b:2d: d4:73:1d:cd:8a:23:3c:6c:c0:a2:63:60:f5:a3:8b:93:ff:2e: 55:a3:0e:cf:23:fd:33:aa:8e:cd:0b:29:4e:1d:36:26:82:87: ea:1e:17:79:79:a2:7b:f3:0f:b7:5c:bf:e8:dd:e4:1f:0c:85: b5:ee:fd:3a:f5:22:96:aa:d3:fa:1a:2a:5b:45:7b:70:e3:bf: be:b6:80:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkEwNDExMC8GA1UEBRMoODhGQjFEMjFDQjg4M0M5N0MyOUFDQjc3RDRENjg4ODRC M0E3QTYwODAeFw0yNTEyMDMwNjE1MTBaFw0yNTEyMTAwNjE1MTBaMBgxFjAUBgNV BAMTDTY5MmZkNTZlLTM3OGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgwgaNTYuuUT13MB8IaBXa5Fc/nkiC5KOT3Q/qsM18zIC/QOVY/6BFAt6Nzbom INLaCwsgfP6mgWdJabi4SCoJ5uiG4SXRWSXdkIzsEK71uCl/PJjQnWNNiVq7SZsb 1UY3ZgAEnEYLBsXfpWEFQCDk4W+DFLg4mqSRwgrI5mM9onILWFCbVkDYrWZJkYva 55/CcdzyvaAjknuZrp3KrqYnHQran/SP2z7Zp2lNxq4al0czUsrlVLyA5h3D/c29 DMP4A35pliOrWpinTFIEWK9wWebKlNkNTrJhGwNQ6JkuJD+SBJ+X76sDbPSQPfe0 JCw+SE+1P304RvPSZ5ftWuOxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUh4pFZbmr 5CRiEwY6EVg7c/rgIw4wHwYDVR0jBBgwFoAUiPsdIcuIPJfCmst31NaIhLOnpggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QTA0LzI1QzUyNzdFQzlB RTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpmQ21zdDMxTmFJaExPbnBn Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaVBzZEljdUlQSmZDbXN0MzFOYUloTE9ucGdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 QTA0LzI1QzUyNzdFQzlBRTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpm Q21zdDMxTmFJaExPbnBnZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI0k61CggFpn3+UhemC+HkvFDDbrQg1q+FYMA1ntga1hgQcBYwFpGCUk 93oongFyh/8r07FUEAP1fhx70wd8NX3IMcdXdhXwpj0wMhpxNMhPRHiGXxbRZd29 mvHO2OzLXQb7Dm7Qw+uau2PJKHpbya6d842feIiUiShs2oFQocCxWGK8HDu5TsRo RHUTyWNIcL9qp5KcHswzHz5vHt6LL+Tg7AAAzD8iIjRB5OHOGE/n6O97LdRzHc2K IzxswKJjYPWji5P/LlWjDs8j/TOqjs0LKU4dNiaCh+oeF3l5onvzD7dcv+jd5B8M hbXu/Tr1Ipaq0/oaKltFe3Djv762gEY= -----END CERTIFICATE-----Generated at Wed Dec 3 14:54:08 2025 by rpki-client