This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: kRKGYsU3wbTqia86VL3XFiCjgNuhKESEaGBkiNAG97w= Subject key identifier: C4:D4:D9:46:DA:61:ED:C8:9D:B2:30:3E:E0:5E:EA:1A:B2:D3:4B:57 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 0559 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 054E Signing time: Mon 08 Dec 2025 22:02:13 +0000 Manifest this update: Mon 08 Dec 2025 22:02:13 +0000 Manifest next update: Mon 15 Dec 2025 22:02:13 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: dVuqv+CdZvL5ejpVBAxLIX9TtyijXv+k16kQPzcyqw8=) 2: 5EAA75CC28E511F0BE4DF317C4F9AE02.roa (hash: UPMPKRsc2hV5JHHuE9pFh4JOQF+bzX7eP0KzlGdFT7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 22:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1369 (0x559) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Dec 8 22:02:13 2025 GMT Not After : Dec 15 22:02:13 2025 GMT Subject: CN=69374ae5-9b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2d:ae:a1:f3:17:af:fa:1b:7e:5e:41:43:c7: 70:f8:c4:bd:98:82:8d:c1:77:65:a0:18:9e:c3:4c: 10:be:2b:99:66:40:98:63:4f:ae:e4:55:a3:84:06: e1:87:75:8e:7c:ff:09:37:8e:6e:ed:cc:44:f1:e4: fa:36:2e:21:26:93:05:27:c8:0f:57:fb:91:b4:7c: 5a:b7:f0:c7:3a:fa:1a:db:e8:ed:46:61:a6:ef:2b: 0f:50:60:c3:d8:0e:0e:ab:ff:9d:12:45:e2:5e:bf: a1:37:42:de:ad:c1:bf:17:c3:82:d6:9a:8b:78:43: 2a:c3:77:e5:f4:6b:45:62:54:ce:da:73:50:3f:9b: 43:ce:b3:36:7b:f5:f3:d8:2e:7c:93:c8:43:81:e3: ed:7d:62:89:bc:4d:3d:c7:b3:95:df:f2:ca:9d:7f: d9:c7:a1:98:39:06:19:a0:e4:e1:e2:24:10:47:f8: e8:35:7c:0d:8c:dd:6a:47:d4:25:81:c6:51:6d:e5: 82:2b:15:bf:4e:bb:f1:95:22:3a:7d:d9:3d:bd:6b: 6a:0d:c0:e7:fd:b8:15:33:8f:8c:17:2c:11:13:53: 60:fc:b5:fd:29:2f:5f:33:74:ce:17:74:99:d7:cd: 10:50:9a:dd:f0:17:bd:e9:e8:f0:c9:1f:c8:90:e2: a0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D4:D9:46:DA:61:ED:C8:9D:B2:30:3E:E0:5E:EA:1A:B2:D3:4B:57 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:16:a6:92:ca:db:88:13:01:0f:ef:0b:60:e2:9d:b2:39:a5: a8:13:c6:a4:0b:69:d3:f7:74:2c:d3:f8:92:9c:f7:4c:d2:f8: 63:77:55:e8:b4:61:74:34:91:7b:9a:95:1a:e3:32:69:59:33: 8a:e7:0a:09:aa:9e:7c:7a:e6:77:2f:75:62:71:f1:51:6e:e3: 28:4a:35:3f:fc:25:47:54:7a:ca:0a:e6:c7:b4:f4:a1:5a:8e: f6:b9:18:ef:e1:bd:72:70:7d:c7:c0:4b:a5:7e:61:bd:32:d2: 8c:41:cb:c1:dd:fe:40:5a:f2:59:77:e4:63:98:4e:1e:48:e2: 1d:19:55:73:04:86:23:1c:ad:e8:fe:a0:09:b9:98:41:a5:b7: 5b:e7:9d:1e:c4:66:05:67:22:5c:d9:de:45:db:74:d8:82:52: 29:40:99:5b:80:3b:f6:85:c0:e4:41:83:ba:ab:64:67:27:a6: 78:b4:d9:9e:ba:80:b1:91:89:da:82:d4:59:76:eb:89:a4:75: 97:2f:a2:01:44:58:e6:e7:31:eb:a6:f0:f0:75:2b:79:8f:d5: 1b:21:fc:9d:70:fc:3a:cf:fb:2e:70:33:00:93:b9:f2:c0:7f: ab:70:07:0a:64:df:b6:dc:45:06:ca:99:8b:96:00:aa:ea:43: b4:d8:6d:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjUxMjA4MjIwMjEzWhcNMjUxMjE1MjIwMjEzWjAYMRYwFAYD VQQDEw02OTM3NGFlNS05YjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuS2uofMXr/obfl5BQ8dw+MS9mIKNwXdloBiew0wQviuZZkCYY0+u5FWjhAbh h3WOfP8JN45u7cxE8eT6Ni4hJpMFJ8gPV/uRtHxat/DHOvoa2+jtRmGm7ysPUGDD 2A4Oq/+dEkXiXr+hN0LercG/F8OC1pqLeEMqw3fl9GtFYlTO2nNQP5tDzrM2e/Xz 2C58k8hDgePtfWKJvE09x7OV3/LKnX/Zx6GYOQYZoOTh4iQQR/joNXwNjN1qR9Ql gcZRbeWCKxW/TrvxlSI6fdk9vWtqDcDn/bgVM4+MFywRE1Ng/LX9KS9fM3TOF3SZ 180QUJrd8Be96ejwyR/IkOKg3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTU2Uba Ye3InbIwPuBe6hqy00tXMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSFqaSytuIEwEP7wtg4p2yOaWoE8akC2nT93Qs0/iSnPdM0vhjd1Xo tGF0NJF7mpUa4zJpWTOK5woJqp58euZ3L3VicfFRbuMoSjU//CVHVHrKCubHtPSh Wo72uRjv4b1ycH3HwEulfmG9MtKMQcvB3f5AWvJZd+RjmE4eSOIdGVVzBIYjHK3o /qAJuZhBpbdb550exGYFZyJc2d5F23TYglIpQJlbgDv2hcDkQYO6q2RnJ6Z4tNme uoCxkYnagtRZduuJpHWXL6IBRFjm5zHrpvDwdSt5j9UbIfydcPw6z/sucDMAk7ny wH+rcAcKZN+23EUGypmLlgCq6kO02G2F -----END CERTIFICATE-----Generated at Wed Dec 10 14:21:12 2025 by rpki-client