This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: K1CnGul7490HNJBUmowJEQrAaN8IrzvJUK99XAoV9hY= Subject key identifier: 5E:EE:EC:FA:D7:A1:83:B2:AE:05:2B:F0:6A:09:A1:92:1E:91:16:CB Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 0574 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 0572 Signing time: Tue 02 Dec 2025 22:15:15 +0000 Manifest this update: Tue 02 Dec 2025 22:15:15 +0000 Manifest next update: Tue 09 Dec 2025 22:15:15 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: n1nZ2Y314rhTRnjo368Sry16IWVv68DFiFB54c242ZQ=) 2: 9CD333C6B92B11F09402D810C4F9AE02.roa (hash: V3sarL+FrCY0k0yCUIbon3gPbo07HsyruaUuXsvwjyw=) 3: C6212596B5FF11F0A3F6A41AC4F9AE02.roa (hash: dLroQstuUWWHmwVK5ZuVa5vVeBr08ixLMCdD4jTJFpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 22:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1396 (0x574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Dec 2 22:15:15 2025 GMT Not After : Dec 9 22:15:15 2025 GMT Subject: CN=692f64f3-9c01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c6:c7:c2:0c:dc:de:39:eb:b5:71:e7:04:09: 56:15:56:a2:ef:f6:21:1b:a9:7d:e1:3b:0a:a1:d2: 7c:61:15:7a:9a:0d:e5:39:55:b9:61:12:30:8a:fb: e2:1e:5a:70:87:e0:95:7c:52:18:d4:89:0d:8e:d8: f9:ff:94:d8:79:57:6e:78:9e:d5:86:78:28:bb:da: 53:c2:ab:82:e5:56:2a:f9:46:75:d4:35:4c:4d:24: 17:8b:2c:8f:a3:d6:ac:cb:68:d0:22:1d:29:eb:df: 9b:04:c1:aa:e7:c8:f8:60:a6:f0:32:cb:0a:bf:e7: 78:87:14:21:ad:ed:9b:e7:5b:b7:5a:1a:ab:fe:72: bb:cb:0f:ee:8d:d1:fd:02:ec:40:be:5b:a8:5e:ae: 3e:dc:2b:78:e9:42:c4:71:1d:62:0d:0e:5a:4b:18: f0:d1:1b:66:ef:d5:d2:c6:83:10:40:48:5e:0f:e0: bf:47:4f:27:56:04:22:e3:be:e2:b8:e7:f6:ee:b3: d5:d5:d8:ab:d3:59:26:df:ff:0f:83:a6:c8:26:35: 6c:d2:91:98:57:dc:6f:29:61:2c:7f:92:a7:5b:4f: f8:ad:d8:b0:bc:5c:25:bd:a9:ea:aa:cc:08:3e:89: 14:40:cb:de:59:01:ee:23:98:09:b5:a9:44:b3:97: 58:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EE:EC:FA:D7:A1:83:B2:AE:05:2B:F0:6A:09:A1:92:1E:91:16:CB X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:ad:fd:2a:31:4b:66:7d:f6:e3:e4:29:33:34:af:71:60:a3: 97:a2:37:d5:03:21:4d:45:e3:2a:cb:9e:ec:9f:2b:86:37:a8: 81:21:db:c9:47:ab:2e:06:d2:e1:7d:3a:db:13:d6:c6:a6:b6: ce:58:aa:bb:f4:2a:42:43:d1:a7:9b:5e:14:5d:52:9b:e8:70: 16:99:9a:19:d5:c5:d0:c6:f3:dc:c2:2f:c6:f5:08:3b:45:a1: ca:8d:4a:58:90:94:d1:bd:15:8c:e9:8c:10:ac:b7:c2:58:c9: 69:dd:d0:00:a7:c8:a6:87:cc:a5:4c:c8:ac:2e:81:c8:45:55: ef:ff:9c:bd:07:f1:40:ff:b1:27:66:22:45:92:85:a0:c9:40: 33:00:85:68:3d:e6:6f:24:c1:d3:fe:f6:a5:a3:e7:3a:30:f1: 5b:25:b3:b9:d0:af:b8:e2:91:b5:33:52:3a:33:ca:72:de:3f: d5:62:b9:08:f6:22:b2:8d:19:e8:74:dc:ce:32:2c:23:84:41: 5d:56:2a:1c:be:e6:9d:d0:b9:22:4d:c3:ea:ab:23:66:2d:53: a3:19:69:99:e7:b6:03:45:e6:fe:2b:44:38:27:88:03:b9:ad: 23:be:f7:b1:a3:5b:f4:5b:14:10:86:f2:3d:fa:e1:a7:3b:99: d1:08:18:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjUxMjAyMjIxNTE1WhcNMjUxMjA5MjIxNTE1WjAYMRYwFAYD VQQDEw02OTJmNjRmMy05YzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsbHwgzc3jnrtXHnBAlWFVai7/YhG6l94TsKodJ8YRV6mg3lOVW5YRIwivvi Hlpwh+CVfFIY1IkNjtj5/5TYeVdueJ7Vhngou9pTwquC5VYq+UZ11DVMTSQXiyyP o9asy2jQIh0p69+bBMGq58j4YKbwMssKv+d4hxQhre2b51u3Whqr/nK7yw/ujdH9 AuxAvluoXq4+3Ct46ULEcR1iDQ5aSxjw0Rtm79XSxoMQQEheD+C/R08nVgQi477i uOf27rPV1dir01km3/8Pg6bIJjVs0pGYV9xvKWEsf5KnW0/4rdiwvFwlvanqqswI PokUQMveWQHuI5gJtalEs5dYqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7u7PrX oYOyrgUr8GoJoZIekRbLMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4rf0qMUtmffbj5CkzNK9xYKOXojfVAyFNReMqy57snyuGN6iBIdvJ R6suBtLhfTrbE9bGprbOWKq79CpCQ9Gnm14UXVKb6HAWmZoZ1cXQxvPcwi/G9Qg7 RaHKjUpYkJTRvRWM6YwQrLfCWMlp3dAAp8imh8ylTMisLoHIRVXv/5y9B/FA/7En ZiJFkoWgyUAzAIVoPeZvJMHT/valo+c6MPFbJbO50K+44pG1M1I6M8py3j/VYrkI 9iKyjRnodNzOMiwjhEFdViocvuad0LkiTcPqqyNmLVOjGWmZ57YDReb+K0Q4J4gD ua0jvvexo1v0WxQQhvI9+uGnO5nRCBjJ -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:33 2025 by rpki-client