This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: /lAt0Xx7OhiA9ysiy1064XWBwB52fGoE0Cb9x26zGQ4= Subject key identifier: F7:44:D3:87:EA:23:4A:FC:51:76:09:A4:47:1C:64:37:EC:D1:70:E6 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 3522 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 3502 Signing time: Sat 22 Nov 2025 14:18:30 +0000 Manifest this update: Sat 22 Nov 2025 14:18:30 +0000 Manifest next update: Sat 29 Nov 2025 14:18:30 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: 1/gp3z+MO9DWUWLtgcM59kb3N0XB9zLDS5M7kC38OUU=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: 5TYvs++Mvewysf2Y0/6vpFA2+467A8J4q0CP6JqLCQs=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: aPLpTjVx3H8dG+sQrN1VcBaFu+dKTfAESi5mspAt7yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Nov 2025 14:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13602 (0x3522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Nov 22 14:18:30 2025 GMT Not After : Nov 29 14:18:30 2025 GMT Subject: CN=6921c636-3c3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e4:1d:5f:ac:7f:34:61:b1:28:a6:79:f4:e1: 27:b0:79:80:b1:9f:fa:e7:ea:26:36:d9:0f:59:3d: 0e:4b:fc:e1:fe:a9:a8:8f:a5:5d:7c:5c:e6:3a:a6: 75:a8:4c:88:5e:45:fd:e6:53:99:71:96:8f:15:f9: 37:58:3c:8e:f8:fb:73:d3:0f:87:be:af:b0:a5:1d: 14:7e:49:b6:c4:28:78:da:54:0c:97:8c:b7:c7:00: c1:a2:b4:64:9d:66:7c:69:26:a8:83:71:fc:59:f5: a6:37:2f:a2:2c:c5:8d:6f:66:a6:48:e9:72:64:bd: f9:9e:59:f3:2d:9f:b2:e1:02:42:00:22:38:2d:ff: 04:b2:9c:31:b2:65:7d:b4:d1:79:6d:45:ed:da:59: b8:ef:50:b6:9c:03:67:ed:90:55:db:19:9b:c2:44: 35:6b:1c:cd:ca:1b:04:cd:59:0a:a6:85:b1:94:7d: 5e:ec:54:0d:48:47:3d:d3:08:c9:81:6d:e8:82:5b: 8b:38:e4:87:26:49:2c:f9:f9:a4:63:29:e9:16:31: 3e:4f:ab:70:72:4e:bc:d4:c4:11:15:07:19:2c:35: 64:06:29:74:b1:81:b9:77:f4:23:95:c3:46:fd:04: 90:ab:1c:7a:8f:a0:1b:89:54:90:4c:6e:de:a5:37: 59:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:44:D3:87:EA:23:4A:FC:51:76:09:A4:47:1C:64:37:EC:D1:70:E6 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:4d:2e:58:fb:5e:55:5a:17:b9:5d:92:44:80:4a:7d:12:3c: f4:da:e8:49:8e:4a:50:87:68:72:e5:c2:af:94:d8:a3:c1:d3: 2d:84:d5:c8:e0:60:eb:8a:05:53:3b:18:fc:22:b5:5f:d8:e3: c8:e6:5a:c9:22:da:f6:eb:3e:fd:d4:b3:6e:ab:5c:93:91:16: 8d:c3:09:08:50:e7:63:25:6c:02:49:ad:bc:9f:26:b7:70:e0: 1d:ec:cd:3b:ca:58:75:7b:46:f1:a3:ae:00:fe:80:ad:68:e7: de:5f:1d:b3:b0:e3:a1:3d:33:79:7e:53:b0:f6:00:80:8c:cb: 19:e8:6f:62:b1:36:94:9c:b9:71:5d:af:f2:d0:a2:f7:1d:e7: ba:1c:39:f2:07:73:3b:53:66:16:5b:0b:ab:04:66:c0:ca:d6: 25:3e:9d:d0:24:c6:16:4f:de:2e:11:37:8e:13:4d:ed:a3:ef: 62:94:de:81:08:37:94:a1:1c:96:88:f6:79:0e:00:aa:67:f8: 2c:48:28:db:88:75:fa:df:ce:7e:87:48:f3:cf:91:66:71:0f: a7:7d:ef:68:1a:88:f1:63:7b:96:91:fa:d3:f5:da:29:37:6a: b6:32:18:8d:89:9a:ff:6a:c2:51:c3:df:5e:bb:2a:bc:96:af: 46:4d:8a:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUxMTIyMTQxODMwWhcNMjUxMTI5MTQxODMwWjAYMRYwFAYD VQQDEw02OTIxYzYzNi0zYzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+QdX6x/NGGxKKZ59OEnsHmAsZ/65+omNtkPWT0OS/zh/qmoj6VdfFzmOqZ1 qEyIXkX95lOZcZaPFfk3WDyO+Ptz0w+Hvq+wpR0Ufkm2xCh42lQMl4y3xwDBorRk nWZ8aSaog3H8WfWmNy+iLMWNb2amSOlyZL35nlnzLZ+y4QJCACI4Lf8EspwxsmV9 tNF5bUXt2lm471C2nANn7ZBV2xmbwkQ1axzNyhsEzVkKpoWxlH1e7FQNSEc90wjJ gW3ogluLOOSHJkks+fmkYynpFjE+T6twck681MQRFQcZLDVkBil0sYG5d/QjlcNG /QSQqxx6j6AbiVSQTG7epTdZCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdE04fq I0r8UXYJpEccZDfs0XDmMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgTS5Y+15VWhe5XZJEgEp9Ejz02uhJjkpQh2hy5cKvlNijwdMthNXI 4GDrigVTOxj8IrVf2OPI5lrJItr26z791LNuq1yTkRaNwwkIUOdjJWwCSa28nya3 cOAd7M07ylh1e0bxo64A/oCtaOfeXx2zsOOhPTN5flOw9gCAjMsZ6G9isTaUnLlx Xa/y0KL3Hee6HDnyB3M7U2YWWwurBGbAytYlPp3QJMYWT94uETeOE03to+9ilN6B CDeUoRyWiPZ5DgCqZ/gsSCjbiHX6385+h0jzz5FmcQ+nfe9oGojxY3uWkfrT9dop N2q2MhiNiZr/asJRw99euyq8lq9GTYpG -----END CERTIFICATE-----Generated at Sat Nov 22 21:55:48 2025 by rpki-client