This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft File: IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft (raw, json) Hash identifier: cdLVBBaQO1B8nLkgeolnj6yjV0hIUgvoIqzxTGp6Usg= Subject key identifier: F6:A8:08:19:0D:55:E7:80:56:87:55:19:1D:90:64:69:D3:ED:7C:4F Authority key identifier: 22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 Certificate issuer: /CN=A91CFFCB/serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft Manifest number: 5E Signing time: Wed 03 Dec 2025 05:19:55 +0000 Manifest this update: Wed 03 Dec 2025 05:19:54 +0000 Manifest next update: Wed 10 Dec 2025 05:19:54 +0000 Files and hashes: 1: IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl (hash: UgTEh9pGN06uRqcR4P/XbQNpqNWNKTkYrtsxWFfEUwY=) 2: BAEA3A3C497B11F096DCA14EC4F9AE02.roa (hash: NGudT5ffYxQaLDuPITb3DSyOtSWSbubIZoe2i4vUMeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:19:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Validity Not Before: Dec 3 05:19:54 2025 GMT Not After : Dec 10 05:19:54 2025 GMT Subject: CN=692fc87b-909e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:81:87:44:4c:93:9b:8d:66:56:34:ce:f1:ce: 49:c4:7e:2e:c4:f7:7d:e9:fc:d7:fd:b5:21:bd:1a: 39:0b:a2:a9:dd:3a:47:60:0e:52:b3:82:bb:aa:ca: ff:29:4b:76:2b:7f:ae:75:d9:9a:63:85:b6:0c:c4: 61:80:01:21:a3:99:12:18:94:28:02:09:bf:ee:b9: 12:fc:bd:87:7d:aa:00:1d:57:b0:78:20:33:99:db: b9:07:f2:89:aa:e3:75:5c:43:e8:f4:da:7c:af:3a: 81:65:97:0f:9f:fc:0c:08:db:ea:c0:60:e8:fa:55: f9:dd:8a:d7:61:ab:b4:79:40:4d:18:5f:94:39:ac: 59:35:0e:d0:b3:79:53:01:ae:21:55:62:d4:e2:d0: 02:85:8e:ed:9c:32:ce:bf:d0:0d:ee:da:00:0f:ef: 5a:58:cd:b6:ea:ba:96:af:e3:39:a4:d0:53:d5:cd: 36:b0:b3:88:bc:d6:16:0f:2a:9d:11:83:76:47:b9: 4a:a2:4f:c7:82:51:54:95:83:09:90:33:cf:d7:ee: 17:12:af:13:ec:43:53:e8:b2:7c:4e:23:3c:4e:ae: 9a:c9:3f:4c:e0:c9:08:1d:b3:27:d8:da:9b:cf:cf: d0:fb:d1:9b:69:25:38:b7:ce:8d:ed:e6:7b:58:2f: 28:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A8:08:19:0D:55:E7:80:56:87:55:19:1D:90:64:69:D3:ED:7C:4F X509v3 Authority Key Identifier: keyid:22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:32:8e:78:43:fd:93:4f:95:98:a7:6c:79:ce:61:06:44:f3: 1c:09:46:36:36:b1:51:70:59:3c:78:c9:ad:93:74:fc:bf:a3: ca:49:81:95:51:b7:39:f5:12:cd:51:a5:86:c0:4b:a9:a0:4f: a0:dc:89:f9:7d:32:98:2a:8f:15:e7:62:0c:61:ba:56:b5:73: e6:fa:95:c9:43:9b:02:25:e8:fd:7a:f5:82:43:51:19:8f:ea: 4e:a1:0d:f0:e5:c4:ba:9f:32:e3:04:4a:4a:a1:a8:50:67:4c: c6:6f:f2:cc:6c:3c:12:25:f2:30:d3:fc:e3:ff:52:83:61:b3: 43:e3:21:50:9a:44:97:1d:b2:ce:b8:26:43:20:02:94:c6:db: 0b:12:17:25:a4:17:28:c8:f3:c3:ec:c0:4f:5a:6b:6d:95:02: c5:18:4a:62:3a:56:fe:f1:30:de:69:c2:c9:f6:04:62:dd:61: 32:ce:d4:d6:d3:6a:6d:24:2d:ec:9a:be:33:73:13:1c:e5:68: 55:fa:70:75:1a:78:44:ae:ac:5d:17:ff:5c:a1:e9:10:4a:29: 00:96:ed:35:4d:12:ac:e7:c3:39:47:62:a3:bf:16:b9:0b:75: ff:17:4c:ae:e4:8a:ee:6a:dc:a4:c7:04:e2:e7:60:57:f7:53: ae:8e:7a:b3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkZDQjExMC8GA1UEBRMoMjIyNDI5NDQxNkI4NDY1NzA2NTU0QjUyQ0JDNTZGNDQ5 QkM0NkM4OTAeFw0yNTEyMDMwNTE5NTRaFw0yNTEyMTAwNTE5NTRaMBgxFjAUBgNV BAMTDTY5MmZjODdiLTkwOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxgYdETJObjWZWNM7xzknEfi7E933p/Nf9tSG9GjkLoqndOkdgDlKzgruqyv8p S3Yrf6512ZpjhbYMxGGAASGjmRIYlCgCCb/uuRL8vYd9qgAdV7B4IDOZ27kH8omq 43VcQ+j02nyvOoFllw+f/AwI2+rAYOj6Vfnditdhq7R5QE0YX5Q5rFk1DtCzeVMB riFVYtTi0AKFju2cMs6/0A3u2gAP71pYzbbqupav4zmk0FPVzTaws4i81hYPKp0R g3ZHuUqiT8eCUVSVgwmQM8/X7hcSrxPsQ1PosnxOIzxOrprJP0zgyQgdsyfY2pvP z9D70ZtpJTi3zo3t5ntYLyiTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9qgIGQ1V 54BWh1UZHZBkadPtfE8wHwYDVR0jBBgwFoAUIiQpRBa4RlcGVUtSy8VvRJvEbIkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRkNCL0VEMEYxMUY0NDIw NTExRjBCRjdBODcxMUM0RjlBRTAyL0lpUXBSQmE0UmxjR1ZVdFN5OFZ2Ukp2RWJJ ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWlRcFJCYTRSbGNHVlV0U3k4VnZSSnZFYklrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG RkNCL0VEMEYxMUY0NDIwNTExRjBCRjdBODcxMUM0RjlBRTAyL0lpUXBSQmE0Umxj R1ZVdFN5OFZ2Ukp2RWJJay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMQyjnhD/ZNPlZinbHnOYQZE8xwJRjY2sVFwWTx4ya2TdPy/o8pJgZVR tzn1Es1RpYbAS6mgT6Dcifl9MpgqjxXnYgxhula1c+b6lclDmwIl6P169YJDURmP 6k6hDfDlxLqfMuMESkqhqFBnTMZv8sxsPBIl8jDT/OP/UoNhs0PjIVCaRJcdss64 JkMgApTG2wsSFyWkFyjI88PswE9aa22VAsUYSmI6Vv7xMN5pwsn2BGLdYTLO1NbT am0kLeyavjNzExzlaFX6cHUaeESurF0X/1yh6RBKKQCW7TVNEqznwzlHYqO/FrkL df8XTK7kiu5q3KTHBOLnYFf3U66OerM= -----END CERTIFICATE-----Generated at Wed Dec 3 14:48:48 2025 by rpki-client