This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft File: IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft (raw, json) Hash identifier: 4bjocBUJLhmJ3N1mB8pfw4mSlfFYr6uzPGClopofybg= Subject key identifier: DA:F8:62:BB:F3:BF:F3:D7:92:85:7C:FD:B2:4B:4F:63:9D:C8:4E:DC Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft Manifest number: CB Signing time: Wed 03 Dec 2025 04:09:26 +0000 Manifest this update: Wed 03 Dec 2025 04:09:25 +0000 Manifest next update: Wed 10 Dec 2025 04:09:25 +0000 Files and hashes: 1: IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl (hash: Jk+8Xf8gR6yxXzOYHL41ik5gGDueeTPzHNfRtTooNMw=) 2: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (hash: /L7H1H9bfON5bqOj4q1pWVjciM/BYtStadHGVAVA9LE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: Dec 3 04:09:25 2025 GMT Not After : Dec 10 04:09:25 2025 GMT Subject: CN=692fb7f6-5cff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:20:0b:c5:e5:37:5e:d3:bb:56:39:79:18:94: 27:ed:64:2d:ea:a3:dd:d7:81:32:02:2a:de:f8:5a: 58:c4:76:2e:45:3b:cb:87:39:f7:99:d7:4c:e4:13: 64:12:e2:8f:db:80:cb:34:24:7e:8d:ba:64:ac:87: 64:9c:18:99:de:dc:06:d4:f0:7a:19:25:73:f5:63: 23:ff:53:c0:9a:05:41:18:71:c7:42:df:23:aa:7c: 94:1e:42:7f:29:91:97:a4:82:0f:c9:c1:8f:61:d5: bb:05:20:c4:3c:32:a4:68:1a:90:e0:85:33:c0:94: 39:27:61:2c:f0:ed:ac:f3:e2:4a:52:58:ac:43:9a: 34:b2:8a:c4:f1:06:de:da:7a:be:15:fb:36:7f:56: 0d:ea:21:52:07:fb:a5:d5:2b:35:9d:8c:04:70:b9: 12:88:49:1e:4e:2f:9f:eb:a4:cd:10:07:7d:b6:ed: bf:02:37:fd:71:4c:93:76:7e:a6:f7:4c:b4:0f:11: 23:19:e4:58:68:23:94:e5:aa:81:23:af:c9:d7:75: f4:4d:60:36:d4:3e:ad:1f:58:fe:4c:f6:99:f4:ee: 46:77:fe:c2:d5:f2:a7:8d:bb:6f:f6:03:6a:50:e8: e8:55:0d:84:6b:76:3d:b0:e4:9d:6d:9c:3f:6e:4b: b0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F8:62:BB:F3:BF:F3:D7:92:85:7C:FD:B2:4B:4F:63:9D:C8:4E:DC X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:f9:52:81:11:e3:f1:01:77:7c:8e:50:88:05:3e:6e:f5:5e: d3:1d:a0:bc:e4:5b:02:3b:82:f5:53:56:31:64:22:a7:69:d9: 73:d7:44:8d:bf:01:c2:58:a6:ab:68:ad:17:8e:0e:b0:4e:fc: 64:7f:fa:02:6c:a7:9a:49:bb:a9:ff:2f:a5:7e:3a:6e:5e:ca: 2f:ea:48:f2:75:c3:37:be:b5:6b:e5:67:e5:a5:2f:a6:88:1c: 13:0e:86:97:03:e6:35:97:47:71:30:b5:44:0a:a2:32:50:37: c7:53:fb:1f:2b:95:66:01:9e:74:a6:32:12:79:10:44:fb:4e: 7c:20:4c:39:01:87:18:18:05:75:26:a4:74:11:6b:21:96:00: 2a:f2:dc:bd:92:d2:a3:4f:55:c3:62:53:35:e8:46:48:dd:ad: 93:c4:1b:94:7c:d2:b8:77:41:e0:fc:2f:5a:a8:75:e0:a3:34: 1b:d4:2c:01:b6:b1:4b:a1:aa:18:8c:cf:91:b3:b6:a9:0c:a8: 5f:9d:ab:01:fa:c0:25:6c:83:8a:a1:6c:a5:fd:7e:6d:37:65: fd:08:da:95:57:3c:0d:cb:c4:db:37:3b:fd:81:1d:99:05:25: 30:d5:88:56:a4:f9:44:36:a2:6c:e5:62:dc:86:25:35:16:20: ba:9d:cc:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0MDkxMTAvBgNVBAUTKDIxNjRERDU5QTYxNUQ1RjJFMzM5M0U3MjA5OEE3M0FE ODY4RTc4REEwHhcNMjUxMjAzMDQwOTI1WhcNMjUxMjEwMDQwOTI1WjAYMRYwFAYD VQQDEw02OTJmYjdmNi01Y2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviALxeU3XtO7Vjl5GJQn7WQt6qPd14EyAire+FpYxHYuRTvLhzn3mddM5BNk EuKP24DLNCR+jbpkrIdknBiZ3twG1PB6GSVz9WMj/1PAmgVBGHHHQt8jqnyUHkJ/ KZGXpIIPycGPYdW7BSDEPDKkaBqQ4IUzwJQ5J2Es8O2s8+JKUlisQ5o0sorE8Qbe 2nq+Ffs2f1YN6iFSB/ul1Ss1nYwEcLkSiEkeTi+f66TNEAd9tu2/Ajf9cUyTdn6m 90y0DxEjGeRYaCOU5aqBI6/J13X0TWA21D6tH1j+TPaZ9O5Gd/7C1fKnjbtv9gNq UOjoVQ2Ea3Y9sOSdbZw/bkuwiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNr4Yrvz v/PXkoV8/bJLT2OdyE7cMB8GA1UdIwQYMBaAFCFk3VmmFdXy4zk+cgmKc62Gjnja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS9GOTQ0RTNDQzlD QUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFmTGpPVDV5Q1lwenJZYU9l Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS9GOTQ0RTNDQzlDQUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFm TGpPVDV5Q1lwenJZYU9lTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz+VKBEePxAXd8jlCIBT5u9V7THaC85FsCO4L1U1YxZCKnadlz10SN vwHCWKaraK0Xjg6wTvxkf/oCbKeaSbup/y+lfjpuXsov6kjydcM3vrVr5WflpS+m iBwTDoaXA+Y1l0dxMLVECqIyUDfHU/sfK5VmAZ50pjISeRBE+058IEw5AYcYGAV1 JqR0EWshlgAq8ty9ktKjT1XDYlM16EZI3a2TxBuUfNK4d0Hg/C9aqHXgozQb1CwB trFLoaoYjM+Rs7apDKhfnasB+sAlbIOKoWyl/X5tN2X9CNqVVzwNy8TbNzv9gR2Z BSUw1YhWpPlENqJs5WLchiU1FiC6ncz0 -----END CERTIFICATE-----Generated at Wed Dec 3 14:14:38 2025 by rpki-client