This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft File: iH554lttHTfvHzG8WgIy-OdlFUU.mft (raw, json) Hash identifier: nUJufhjneMgH75LnIWw1LyZ0ff/a4pKZ1c6pinZnWM0= Subject key identifier: 06:ED:AF:1B:86:DD:14:E0:0E:DD:D6:CD:DE:CA:B4:B6:DA:2F:A2:60 Authority key identifier: 88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 Certificate issuer: /CN=A91D9F5A/serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft Manifest number: 082C Signing time: Sat 06 Dec 2025 20:13:36 +0000 Manifest this update: Sat 06 Dec 2025 20:13:35 +0000 Manifest next update: Sat 13 Dec 2025 20:13:35 +0000 Files and hashes: 1: iH554lttHTfvHzG8WgIy-OdlFUU.crl (hash: 5J4VvSdwrPw8YiI3dqBAA4nV5qqxSW4LZS/W4S5uK38=) 2: CF6A89D86B3D11F0A0837D7FC4F9AE02.roa (hash: O05NjBwYNNvXC8JoMWk3EyZg7iktCjusVDBEEW7nGKc=) 3: CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa (hash: cqaNGUAp+AM9Nk5TWMcE/5SRJKY4Makpxzc5uTKkH7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Validity Not Before: Dec 6 20:13:35 2025 GMT Not After : Dec 13 20:13:35 2025 GMT Subject: CN=69348e6f-0de3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d8:0f:13:70:a8:96:75:16:1e:90:2e:4e:24: d0:07:25:a0:f4:04:65:4a:88:0e:3d:b4:96:bb:36: 0a:1e:10:ff:7b:b0:62:37:23:ea:39:98:91:8a:54: ac:81:05:4c:8b:49:7a:5b:c2:35:15:43:30:8a:75: 62:4a:0d:ca:72:68:ed:c2:3b:34:d6:ee:74:7c:f4: 69:46:8b:05:23:2b:26:3e:c1:08:f8:65:3a:12:e9: c5:be:ff:ec:3b:66:e6:70:4c:a9:0c:b1:a2:5d:d5: 85:01:b7:2d:51:a7:ae:7f:4b:bb:4c:31:92:9a:b3: 66:73:11:a4:da:1c:15:af:4b:ee:06:41:7f:a8:3c: b5:00:6a:c8:61:48:8e:0c:d7:48:10:61:3d:6f:cd: 60:ea:50:a0:ae:1f:c1:37:70:48:f9:73:0d:a9:0b: 60:06:13:19:73:c0:1e:14:10:9a:95:7e:04:bb:2e: 1e:37:62:a4:fc:27:26:c1:ee:97:3d:9d:41:a0:9d: ad:46:d7:1c:27:b6:da:ae:cf:99:9a:cd:ab:be:13: 18:c8:33:f1:5c:8c:28:ad:1c:cc:7b:66:ff:2e:a4: 0e:48:20:a9:a9:be:1f:4c:77:11:f6:b4:b4:9d:59: 5f:fe:e1:e6:a1:2b:98:d6:61:2b:c2:67:e4:09:92: 36:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:ED:AF:1B:86:DD:14:E0:0E:DD:D6:CD:DE:CA:B4:B6:DA:2F:A2:60 X509v3 Authority Key Identifier: keyid:88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:4b:79:3a:16:eb:5a:23:5c:44:c4:ec:c7:5e:b7:a1:11:8a: 1a:8c:36:d8:6a:a7:52:e6:74:c1:4e:3c:a3:d4:f7:dc:80:d6: ff:88:b6:b1:71:11:19:5c:80:66:dd:34:fe:db:80:fe:89:85: 54:f5:ea:0f:19:c7:0f:99:6e:4f:ce:f0:86:89:7e:fc:ac:50: 8e:ae:3d:92:ea:f7:78:82:a4:94:12:62:69:c8:07:ce:30:cf: f6:17:60:b8:6a:2e:a3:fc:8d:27:5a:87:1f:83:19:07:de:2e: c2:d8:fd:46:d0:1c:fa:0c:39:09:9f:a4:3b:0c:6b:11:eb:df: 12:ef:f4:a8:9e:15:cd:5c:2b:d0:c0:0a:21:23:f5:a0:b7:f7: 82:a0:04:01:5e:46:51:41:d9:6e:12:9a:e8:b5:cc:37:08:76: 2f:ff:1a:45:be:98:02:bb:ae:f1:79:3c:c2:52:31:7f:e7:12: ff:86:8a:f7:3b:ec:ee:5e:be:cf:7e:5f:96:b0:28:bb:e5:cc: f6:3c:42:42:fa:ec:23:5d:a3:a6:fe:21:a5:7a:7d:67:c3:74: a5:69:a0:3a:e3:33:d0:46:fb:0b:7a:bf:2b:2a:7f:27:3f:99: 35:86:a0:bb:a0:d8:d3:da:bc:e3:c1:21:11:9a:77:ea:eb:76: 71:36:6a:88 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUY1QTExMC8GA1UEBRMoODg3RTc5RTI1QjZEMUQzN0VGMUYzMUJDNUEwMjMyRjhF NzY1MTU0NTAeFw0yNTEyMDYyMDEzMzVaFw0yNTEyMTMyMDEzMzVaMBgxFjAUBgNV BAMTDTY5MzQ4ZTZmLTBkZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF2A8TcKiWdRYekC5OJNAHJaD0BGVKiA49tJa7NgoeEP97sGI3I+o5mJGKVKyB BUyLSXpbwjUVQzCKdWJKDcpyaO3COzTW7nR89GlGiwUjKyY+wQj4ZToS6cW+/+w7 ZuZwTKkMsaJd1YUBty1Rp65/S7tMMZKas2ZzEaTaHBWvS+4GQX+oPLUAashhSI4M 10gQYT1vzWDqUKCuH8E3cEj5cw2pC2AGExlzwB4UEJqVfgS7Lh43YqT8JybB7pc9 nUGgna1G1xwnttquz5mazau+ExjIM/FcjCitHMx7Zv8upA5IIKmpvh9MdxH2tLSd WV/+4eahK5jWYSvCZ+QJkjZbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBu2vG4bd FOAO3dbN3sq0ttovomAwHwYDVR0jBBgwFoAUiH554lttHTfvHzG8WgIy+OdlFUUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5RjVBLzA4OThCMjNBMTFC QTExRUJCQzFBNTg0Q0M0RjlBRTAyL2lINTU0bHR0SFRmdkh6RzhXZ0l5LU9kbEZV VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUg1NTRsdHRIVGZ2SHpHOFdnSXktT2RsRlVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 RjVBLzA4OThCMjNBMTFCQTExRUJCQzFBNTg0Q0M0RjlBRTAyL2lINTU0bHR0SFRm dkh6RzhXZ0l5LU9kbEZVVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF9LeToW61ojXETE7Mdet6ERihqMNthqp1LmdMFOPKPU99yA1v+ItrFx ERlcgGbdNP7bgP6JhVT16g8Zxw+Zbk/O8IaJfvysUI6uPZLq93iCpJQSYmnIB84w z/YXYLhqLqP8jSdahx+DGQfeLsLY/UbQHPoMOQmfpDsMaxHr3xLv9KieFc1cK9DA CiEj9aC394KgBAFeRlFB2W4Smui1zDcIdi//GkW+mAK7rvF5PMJSMX/nEv+Givc7 7O5evs9+X5awKLvlzPY8QkL67CNdo6b+IaV6fWfDdKVpoDrjM9BG+wt6vysqfyc/ mTWGoLug2NPavOPBIRGad+rrdnE2aog= -----END CERTIFICATE-----Generated at Mon Dec 8 05:58:08 2025 by rpki-client