This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: cQAaTM92Sxk+yexN2fUlJaKm6sF1wT4YCF8OzgTZ6bw= Subject key identifier: 75:DE:FF:43:6B:10:65:8B:BE:74:54:8C:80:01:18:1F:42:E6:1E:C1 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 054C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0542 Signing time: Tue 18 Nov 2025 22:11:46 +0000 Manifest this update: Tue 18 Nov 2025 22:11:45 +0000 Manifest next update: Tue 25 Nov 2025 22:11:45 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: FqvUYzlhcegpcakmVcftapFtIBsbUpcCyyyBzdDLBPE=) 2: 5EAA75CC28E511F0BE4DF317C4F9AE02.roa (hash: aZ97R0qET0w8nFTTAAMLi629/SQxZPM4icyK4OVkGiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Nov 2025 22:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1356 (0x54c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Nov 18 22:11:45 2025 GMT Not After : Nov 25 22:11:45 2025 GMT Subject: CN=691cef22-43e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:00:74:93:08:a0:de:5b:fe:72:8a:07:0f:a1: dd:22:4b:46:de:73:0f:5a:44:e4:e2:33:e1:2e:31: c1:6a:f1:cd:58:f5:52:d0:5e:d7:38:49:2b:7d:7f: aa:5d:fa:98:a3:37:c9:90:3d:36:b5:38:74:b3:72: 98:7f:8c:98:58:16:15:2d:c4:e8:07:5e:d4:d6:15: 64:ef:f1:0f:5b:89:69:96:a2:09:f7:41:df:79:0f: 16:d9:d3:ba:b5:8b:ab:7e:64:1d:7b:43:2e:a5:ad: 1c:ec:4a:c3:fe:7f:d9:75:3b:9c:fa:09:a7:67:de: 4a:ab:fe:86:ab:aa:5f:29:3e:ff:66:52:2e:03:31: e1:c7:90:f3:e8:d0:bb:12:83:4c:c1:5d:5e:b2:94: 9a:82:19:af:d6:1b:8b:17:e1:2d:b5:1e:b9:e5:1b: bd:3a:85:04:46:86:05:31:59:47:7c:79:e4:63:0a: 10:fe:7b:f1:35:13:8a:96:02:6f:8f:46:71:40:76: 98:ad:d0:4f:c9:ce:c3:be:8b:07:7b:7f:c2:9c:42: f3:aa:98:46:4e:da:56:1b:79:c7:38:02:9f:83:b1: 4f:e6:aa:00:7f:d2:79:2b:29:6d:e2:a6:73:2b:6d: 14:1b:39:1b:1b:35:b6:62:14:dd:68:91:5e:aa:21: 51:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:DE:FF:43:6B:10:65:8B:BE:74:54:8C:80:01:18:1F:42:E6:1E:C1 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:2c:6e:ad:7d:58:fb:ff:55:bb:db:22:20:8c:7c:e5:0d:66: 4c:82:5f:90:2b:e1:72:a1:7f:fd:c0:ed:d3:1e:17:7c:bb:29: 26:77:49:ae:ef:20:89:f2:a5:aa:dc:fa:2b:80:8e:47:8e:9f: 3a:69:64:07:5f:61:c6:39:7d:7b:2e:70:81:39:50:d9:7f:25: 06:b6:10:9a:38:11:51:d3:67:7b:7e:d4:bb:8d:0f:2c:c9:cd: a0:62:de:b8:7d:6c:77:7d:04:9a:c6:cf:6b:0a:4c:9a:6c:a7: 13:8a:4e:59:85:54:e9:b6:5f:a8:9b:07:c2:38:09:56:9a:7c: 08:3a:ec:10:12:1e:e5:0e:5f:c6:a1:a6:b3:15:5a:07:00:d0: 4a:d4:8c:8a:25:c8:d8:75:dd:18:83:d9:70:96:11:98:7e:b2: af:c2:88:d9:7b:3f:43:73:de:05:b4:60:34:38:3d:62:1a:0c: 5d:2d:a5:83:49:7f:d9:1f:30:d4:57:e5:f3:cb:1d:b5:45:ce: 39:b5:33:ab:fb:44:0b:ed:c1:e7:e5:9c:bf:c6:d2:e8:c1:76: 06:d5:6f:90:42:b9:25:78:46:6d:5d:01:35:2a:82:96:be:21: 3d:e5:f1:85:b4:e7:7e:fb:3c:a4:3f:00:e9:72:15:d7:a6:af: ce:ec:5e:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjUxMTE4MjIxMTQ1WhcNMjUxMTI1MjIxMTQ1WjAYMRYwFAYD VQQDEw02OTFjZWYyMi00M2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AB0kwig3lv+cooHD6HdIktG3nMPWkTk4jPhLjHBavHNWPVS0F7XOEkrfX+q XfqYozfJkD02tTh0s3KYf4yYWBYVLcToB17U1hVk7/EPW4lplqIJ90HfeQ8W2dO6 tYurfmQde0Mupa0c7ErD/n/ZdTuc+gmnZ95Kq/6Gq6pfKT7/ZlIuAzHhx5Dz6NC7 EoNMwV1espSaghmv1huLF+EttR655Ru9OoUERoYFMVlHfHnkYwoQ/nvxNROKlgJv j0ZxQHaYrdBPyc7DvosHe3/CnELzqphGTtpWG3nHOAKfg7FP5qoAf9J5Kylt4qZz K20UGzkbGzW2YhTdaJFeqiFR1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXe/0Nr EGWLvnRUjIABGB9C5h7BMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqLG6tfVj7/1W72yIgjHzlDWZMgl+QK+FyoX/9wO3THhd8uykmd0mu 7yCJ8qWq3PorgI5Hjp86aWQHX2HGOX17LnCBOVDZfyUGthCaOBFR02d7ftS7jQ8s yc2gYt64fWx3fQSaxs9rCkyabKcTik5ZhVTptl+omwfCOAlWmnwIOuwQEh7lDl/G oaazFVoHANBK1IyKJcjYdd0Yg9lwlhGYfrKvwojZez9Dc94FtGA0OD1iGgxdLaWD SX/ZHzDUV+Xzyx21Rc45tTOr+0QL7cHn5Zy/xtLowXYG1W+QQrkleEZtXQE1KoKW viE95fGFtOd++zykPwDpchXXpq/O7F4M -----END CERTIFICATE-----Generated at Wed Nov 19 11:15:57 2025 by rpki-client