This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: 2//tbY2b0ZqJGKpblDCmdxBfouNgZoyqBhBEvfLBJgk= Subject key identifier: ED:AC:4E:E7:BC:68:1D:F7:65:D3:17:3C:9B:F8:DE:0B:BA:CF:5B:5A Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: F2 Signing time: Tue 23 Dec 2025 04:18:25 +0000 Manifest this update: Tue 23 Dec 2025 04:18:24 +0000 Manifest next update: Tue 30 Dec 2025 04:18:24 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: CxctI+PAGlyy9iVs3SghONwedUQoVQzQWI6v6dX7AXU=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: tqumfro95QWKEzub+U10L7d/fzctz6OjGxGeZOQWgb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:18:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Dec 23 04:18:24 2025 GMT Not After : Dec 30 04:18:24 2025 GMT Subject: CN=694a1811-0245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:08:76:11:14:4e:87:38:08:e3:6c:60:14:71: 44:8b:c9:64:0e:b0:5e:59:50:dc:c3:9a:c8:e6:8e: f6:b1:bd:fe:25:51:82:6c:2d:0d:aa:da:80:cf:d6: 7d:4f:ce:a8:88:87:2e:47:dd:60:3d:ca:33:8a:b5: 36:20:cd:44:e2:71:53:16:1b:ec:dc:72:cd:fc:03: 87:3b:82:a2:e7:ef:d6:3f:34:14:71:a8:4a:31:21: b7:1a:0f:a6:8e:af:74:5f:11:a8:70:aa:88:d0:2b: 6d:c2:88:dc:8a:9a:99:57:0b:10:2c:5d:89:b6:f9: 94:03:5b:d0:65:41:9f:f1:2d:c5:ad:66:88:20:42: 17:42:44:54:ef:21:14:18:b6:2f:6f:f6:1e:1f:b3: b8:75:b1:eb:89:d2:e9:d3:de:48:1e:a5:f7:3c:e8: d5:02:b0:e0:03:c1:09:8b:00:26:e3:2b:f9:d0:ae: f8:42:2b:d3:f4:8c:1b:8d:3b:06:7d:f4:4b:d9:05: a8:07:f2:b5:34:b1:ae:52:05:c1:47:d3:0b:f8:8b: 82:1c:19:5f:e3:4f:d1:79:44:8a:95:29:f5:28:ac: 2f:5e:73:17:40:27:90:88:5e:44:1b:6b:1a:4a:fd: 44:3c:fa:72:31:bf:a9:0f:10:35:05:3c:02:b0:7a: fe:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:AC:4E:E7:BC:68:1D:F7:65:D3:17:3C:9B:F8:DE:0B:BA:CF:5B:5A X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:bc:5f:86:95:1b:c5:57:8f:ff:41:1a:26:ae:0b:3b:e4:50: 1f:b0:fd:49:a3:ee:7b:0d:9c:8c:97:a8:f4:87:27:89:77:e9: 34:33:4e:16:48:a6:22:f4:ad:05:39:d1:f1:a4:a6:c7:d7:05: 43:7c:cb:d2:ef:a1:e8:82:17:2b:91:4d:95:79:76:88:55:5c: eb:98:66:57:56:a8:39:1e:66:cc:22:34:e3:c9:6a:bf:ac:91: cd:e7:5b:48:b2:32:ef:39:9a:d5:11:92:4b:99:da:e7:02:2f: 0e:67:29:41:0f:0b:21:9d:cd:c0:f6:56:ae:9d:aa:01:d7:9d: 93:b6:3c:b1:56:fc:94:07:9c:49:38:f3:59:d2:16:35:7b:5d: bf:ed:63:96:bb:81:6c:4c:af:e4:b8:bc:3d:83:b7:43:33:22: 50:6d:8a:7f:42:7e:56:2c:f9:30:00:5a:0c:87:e5:82:67:69: 47:25:fa:cd:b9:24:18:8c:05:98:23:5a:de:19:9d:ba:a1:77: 8d:65:71:bd:d4:ab:09:42:f6:ed:d7:5c:1b:4a:51:48:bc:0e: bb:e9:46:a4:6a:33:9f:14:99:03:f4:91:b8:19:7c:18:1d:92: 81:d6:d0:88:32:2d:76:68:e3:1f:e5:9e:0a:57:01:c4:68:b3: 4c:ae:7c:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjUxMjIzMDQxODI0WhcNMjUxMjMwMDQxODI0WjAYMRYwFAYD VQQDDA02OTRhMTgxMS0wMjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wh2ERROhzgI42xgFHFEi8lkDrBeWVDcw5rI5o72sb3+JVGCbC0NqtqAz9Z9 T86oiIcuR91gPcozirU2IM1E4nFTFhvs3HLN/AOHO4Ki5+/WPzQUcahKMSG3Gg+m jq90XxGocKqI0CttwojcipqZVwsQLF2JtvmUA1vQZUGf8S3FrWaIIEIXQkRU7yEU GLYvb/YeH7O4dbHridLp095IHqX3POjVArDgA8EJiwAm4yv50K74QivT9IwbjTsG ffRL2QWoB/K1NLGuUgXBR9ML+IuCHBlf40/ReUSKlSn1KKwvXnMXQCeQiF5EG2sa Sv1EPPpyMb+pDxA1BTwCsHr+bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2sTue8 aB33ZdMXPJv43gu6z1taMB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrvF+GlRvFV4//QRomrgs75FAfsP1Jo+57DZyMl6j0hyeJd+k0M04W SKYi9K0FOdHxpKbH1wVDfMvS76HoghcrkU2VeXaIVVzrmGZXVqg5HmbMIjTjyWq/ rJHN51tIsjLvOZrVEZJLmdrnAi8OZylBDwshnc3A9launaoB152TtjyxVvyUB5xJ OPNZ0hY1e12/7WOWu4FsTK/kuLw9g7dDMyJQbYp/Qn5WLPkwAFoMh+WCZ2lHJfrN uSQYjAWYI1reGZ26oXeNZXG91KsJQvbt11wbSlFIvA676UakajOfFJkD9JG4GXwY HZKB1tCIMi12aOMf5Z4KVwHEaLNMrnxj -----END CERTIFICATE-----Generated at Wed Dec 24 22:57:54 2025 by rpki-client