This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft File: tSlwZVVtKyKTSTXnUgcivVMz2k8.mft (raw, json) Hash identifier: byLvd5ycsvAOQmO2iyjyFjy4J3intCpk+KFh6JVRoPc= Subject key identifier: A6:B7:89:02:91:51:76:CB:A2:CC:64:85:E5:B8:EB:D4:5C:CE:25:5C Authority key identifier: B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F Certificate issuer: /CN=A91CD7A4/serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft Manifest number: 01CF Signing time: Sun 07 Dec 2025 01:22:06 +0000 Manifest this update: Sun 07 Dec 2025 01:22:06 +0000 Manifest next update: Sun 14 Dec 2025 01:22:06 +0000 Files and hashes: 1: tSlwZVVtKyKTSTXnUgcivVMz2k8.crl (hash: CEXIPPiSkBLF9SZ9iELFmsiuvu2dfvSM6yO2gp93MPU=) 2: 275245323AB511F0AE5E5919C4F9AE02.roa (hash: IHKKhIw85fk9s47CrpZDKzzYoR/RN4XUlJphLrYmJyk=) 3: AD47BEC4320611EE845F4A5AC4F9AE02.roa (hash: P7EwycxEH4BjaRzRhYFgj1fovDv1DxA8C+5endacXNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:22:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD7A4, serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Validity Not Before: Dec 7 01:22:06 2025 GMT Not After : Dec 14 01:22:06 2025 GMT Subject: CN=6934d6be-9df9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9a:91:e3:b7:e4:64:b8:f4:57:be:fc:0f:e6: 86:0c:6f:51:f3:4a:84:02:b8:1f:f1:3d:4a:f8:0f: 27:0b:54:55:a0:98:a2:ab:65:dd:82:79:68:89:da: d5:53:fe:d7:dd:83:50:71:05:49:bb:96:29:42:34: da:b3:62:b0:ec:68:14:a3:8f:af:b9:9b:ad:f9:c7: 5d:b6:e3:59:bc:38:8d:de:ef:6f:a0:6f:fe:21:a5: 0d:ed:c6:93:16:ea:89:7c:76:9c:67:f6:12:c1:d9: 98:da:d3:bb:6f:52:54:d3:3a:2e:2e:cc:ba:df:70: 89:bd:2e:ee:1c:4b:ca:4a:9d:8b:b2:e9:d0:9e:b8: aa:94:21:d4:7c:c4:94:96:d3:77:b7:9d:6c:e2:50: 56:88:ce:31:e5:2d:b1:dd:19:63:8a:47:12:ac:c5: 49:ba:e9:7e:b4:df:46:bc:5e:d2:9a:dc:44:5c:c4: 63:7a:da:51:c2:5a:44:49:83:60:a9:e5:5b:30:b6: 31:96:ba:07:f1:14:c2:e8:d4:86:ab:35:09:66:99: fd:42:a5:6c:8e:f4:4d:ee:c5:d9:e4:30:9e:ac:fa: 25:9a:60:34:2a:17:39:24:b6:5b:18:01:2f:4a:e6: dc:21:19:e5:d7:7a:10:c3:42:8b:76:b3:0c:ce:e5: ac:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B7:89:02:91:51:76:CB:A2:CC:64:85:E5:B8:EB:D4:5C:CE:25:5C X509v3 Authority Key Identifier: keyid:B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:b8:60:f8:fc:27:59:71:51:6a:ed:f4:c0:eb:bf:06:56:24: 8e:ed:fe:fc:54:29:d3:1b:ca:19:c2:e9:21:70:7d:43:92:99: c7:4b:4b:38:31:bf:5e:94:30:21:fd:e8:9d:72:83:01:68:55: fd:d4:ee:78:5a:b3:55:0f:2b:d6:f2:09:95:f8:4c:5b:b3:04: 25:0d:de:12:da:f9:79:73:27:62:93:96:f8:f6:3d:32:d2:6a: 25:98:9f:7c:d0:68:1a:f3:56:83:91:54:be:40:d6:f9:df:5c: 22:b0:74:73:f5:11:cb:2f:b3:d7:4e:da:2d:1b:53:b2:81:1f: 43:f1:46:8a:98:b9:39:7d:f4:a4:ba:9e:25:04:dc:04:de:0f: 3a:2d:dd:95:05:71:62:64:e2:d1:7e:72:2f:65:79:87:76:d4: 47:8c:3f:5f:ed:35:95:3a:ce:2a:4d:07:1d:1f:a1:38:8f:15: 87:57:68:dd:54:6d:3d:c7:a8:2d:81:3d:23:30:c5:34:96:38: e6:95:b6:17:4b:32:43:41:63:d9:0b:09:33:c3:23:ff:11:2d: 77:fb:f1:9f:b1:64:b8:e8:73:9d:24:5f:49:ee:b5:57:4d:87: a3:25:fa:58:06:18:3c:bb:5e:ff:93:2f:a9:d3:e7:78:ed:5c: 1a:89:d7:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q3QTQxMTAvBgNVBAUTKEI1Mjk3MDY1NTU2RDJCMjI5MzQ5MzVFNzUyMDcyMkJE NTMzM0RBNEYwHhcNMjUxMjA3MDEyMjA2WhcNMjUxMjE0MDEyMjA2WjAYMRYwFAYD VQQDEw02OTM0ZDZiZS05ZGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJqR47fkZLj0V778D+aGDG9R80qEArgf8T1K+A8nC1RVoJiiq2XdgnloidrV U/7X3YNQcQVJu5YpQjTas2Kw7GgUo4+vuZut+cddtuNZvDiN3u9voG/+IaUN7caT FuqJfHacZ/YSwdmY2tO7b1JU0zouLsy633CJvS7uHEvKSp2LsunQnriqlCHUfMSU ltN3t51s4lBWiM4x5S2x3RljikcSrMVJuul+tN9GvF7SmtxEXMRjetpRwlpESYNg qeVbMLYxlroH8RTC6NSGqzUJZpn9QqVsjvRN7sXZ5DCerPolmmA0Khc5JLZbGAEv SubcIRnl13oQw0KLdrMMzuWsVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKa3iQKR UXbLosxkheW469RcziVcMB8GA1UdIwQYMBaAFLUpcGVVbSsik0k151IHIr1TM9pP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDdBNC8zQ0M3MTk5NjEx ODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5S1RTVFhuVWdjaXZWTXoy azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RTbHdaVlZ0S3lLVFNUWG5VZ2NpdlZNejJrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDdBNC8zQ0M3MTk5NjExODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5 S1RTVFhuVWdjaXZWTXoyazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDuGD4/CdZcVFq7fTA678GViSO7f78VCnTG8oZwukhcH1DkpnHS0s4 Mb9elDAh/eidcoMBaFX91O54WrNVDyvW8gmV+ExbswQlDd4S2vl5cydik5b49j0y 0molmJ980Gga81aDkVS+QNb531wisHRz9RHLL7PXTtotG1OygR9D8UaKmLk5ffSk up4lBNwE3g86Ld2VBXFiZOLRfnIvZXmHdtRHjD9f7TWVOs4qTQcdH6E4jxWHV2jd VG09x6gtgT0jMMU0ljjmlbYXSzJDQWPZCwkzwyP/ES13+/GfsWS46HOdJF9J7rVX TYejJfpYBhg8u17/ky+p0+d47Vwaidfh -----END CERTIFICATE-----Generated at Mon Dec 8 05:59:44 2025 by rpki-client