This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft File: caPb4vD_0LEHymtXE7Fcl6jj4dE.mft (raw, json) Hash identifier: pLa29jnCXXFQLu8P8pVm/UnWc0CydFcKyaw+j8A2PoM= Subject key identifier: 08:4C:86:D8:8E:A7:14:6C:66:51:28:D0:09:88:26:0A:91:CB:AD:07 Authority key identifier: 71:A3:DB:E2:F0:FF:D0:B1:07:CA:6B:57:13:B1:5C:97:A8:E3:E1:D1 Certificate issuer: /CN=A91EEE79/serialNumber=71A3DBE2F0FFD0B107CA6B5713B15C97A8E3E1D1 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft Manifest number: 05 Signing time: Fri 21 Nov 2025 05:58:40 +0000 Manifest this update: Fri 21 Nov 2025 05:58:40 +0000 Manifest next update: Fri 28 Nov 2025 05:58:40 +0000 Files and hashes: 1: caPb4vD_0LEHymtXE7Fcl6jj4dE.crl (hash: UEGsdEFtGazT1KNeRP1l363/RjWda2EvcOP5QCAYhO8=) 2: 078123C8C45711F09E1B7D38C4F9AE02.roa (hash: er6jr1FS0D2/9mznlhepy8rxBzQvc9rNYi9PUnbvOIQ=) 3: 07EF6C98C45711F0A1027D38C4F9AE02.roa (hash: O7z3m4YVM0wU21WTponLx+IqwFDb7IX9H8f56v/43dA=) 4: 0853E998C45711F080167D38C4F9AE02.roa (hash: UXfllLAn2oYs6QDv0DiGrvQ4onowkRfHyI9wXDB3nXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.crl rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Nov 2025 05:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE79, serialNumber=71A3DBE2F0FFD0B107CA6B5713B15C97A8E3E1D1 Validity Not Before: Nov 21 05:58:40 2025 GMT Not After : Nov 28 05:58:40 2025 GMT Subject: CN=691fff90-4311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:25:0d:ce:24:22:03:53:46:54:1d:77:5f:8d: ef:ba:10:0c:8a:10:c8:0f:eb:40:ff:c6:6e:48:19: 74:95:6c:86:c2:41:3f:ca:cf:bf:ad:77:00:2c:e5: 86:da:46:2b:57:fd:27:bf:4f:b9:7c:50:ff:13:e8: 98:ac:38:3a:df:c2:1a:cb:71:01:b1:7d:69:29:80: 9f:77:56:78:3e:d5:23:e4:7d:55:25:f8:94:9e:1a: e4:72:9b:de:c4:5e:56:48:ca:df:66:57:a2:bc:d9: c5:bb:d8:53:80:88:20:61:1b:24:9c:88:f2:34:f3: ec:13:b0:2b:02:36:51:b9:51:c5:d2:29:e4:b6:ad: 28:f8:67:5f:13:6c:5a:66:55:13:f2:84:7c:69:32: 04:30:ad:7d:7e:54:5e:23:72:84:3b:9b:fa:41:a4: 2b:ae:65:b0:76:ec:a1:f9:b7:79:8c:72:7f:23:53: ed:45:45:c9:15:00:11:38:1b:6e:f6:20:65:54:ec: 34:50:f5:89:77:d0:52:18:83:e9:ab:f6:c7:7b:51: b2:6c:6c:41:47:8d:bb:28:88:7d:de:6f:78:0d:24: 4c:20:71:3c:51:5c:ac:8a:70:f5:0e:63:46:6a:f5: ec:5d:75:52:85:30:b1:4b:f6:11:05:7e:c4:8e:1a: 3d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:4C:86:D8:8E:A7:14:6C:66:51:28:D0:09:88:26:0A:91:CB:AD:07 X509v3 Authority Key Identifier: keyid:71:A3:DB:E2:F0:FF:D0:B1:07:CA:6B:57:13:B1:5C:97:A8:E3:E1:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:12:37:ed:86:89:d9:c0:8e:0b:62:54:44:da:bd:1e:b7:58: 2a:a8:ef:25:5e:55:72:e2:37:a6:6c:27:56:3c:e6:82:59:4d: 2f:bb:81:93:fb:35:f1:fa:bc:4b:a7:50:4b:4a:b2:08:cc:e3: 59:ad:3c:b5:05:03:ff:54:07:9c:31:39:4c:65:2b:18:18:4c: 70:73:5b:00:2d:72:ec:0d:67:4b:81:55:2b:b8:c4:d8:37:53: 62:3c:0c:50:1d:d8:50:b4:e0:d8:35:a4:83:ce:77:41:b2:b1: b2:5e:11:5f:30:bc:5e:f0:9f:df:08:f4:90:bf:fb:94:38:71: 61:74:3b:f5:87:dd:90:59:57:d5:e7:4b:28:f2:67:73:a9:42: 59:32:fb:51:dc:01:a0:87:0b:cd:b7:76:b8:84:8b:e8:e2:6c: f3:cb:b6:c3:9a:da:0a:d9:3e:c9:fe:1d:ea:cb:d0:a9:c1:0c: c6:9d:36:9e:90:d8:ae:19:b5:70:45:9c:8d:0a:4a:f3:cd:b4: ef:8d:ef:cf:e7:56:a2:fd:10:c0:08:e7:93:f9:a7:f0:40:c6: 76:e8:93:48:99:f8:b0:2f:d0:3f:9d:d2:f6:aa:5d:f9:20:54: d2:31:25:55:9f:a9:9c:98:e0:cd:c4:1e:49:ed:30:ff:37:9d: 69:5c:d9:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RUU3OTExMC8GA1UEBRMoNzFBM0RCRTJGMEZGRDBCMTA3Q0E2QjU3MTNCMTVDOTdB OEUzRTFEMTAeFw0yNTExMjEwNTU4NDBaFw0yNTExMjgwNTU4NDBaMBgxFjAUBgNV BAMTDTY5MWZmZjkwLTQzMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9JQ3OJCIDU0ZUHXdfje+6EAyKEMgP60D/xm5IGXSVbIbCQT/Kz7+tdwAs5Yba RitX/Se/T7l8UP8T6JisODrfwhrLcQGxfWkpgJ93Vng+1SPkfVUl+JSeGuRym97E XlZIyt9mV6K82cW72FOAiCBhGySciPI08+wTsCsCNlG5UcXSKeS2rSj4Z18TbFpm VRPyhHxpMgQwrX1+VF4jcoQ7m/pBpCuuZbB27KH5t3mMcn8jU+1FRckVABE4G272 IGVU7DRQ9Yl30FIYg+mr9sd7UbJsbEFHjbsoiH3eb3gNJEwgcTxRXKyKcPUOY0Zq 9exddVKFMLFL9hEFfsSOGj2xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCEyG2I6n FGxmUSjQCYgmCpHLrQcwHwYDVR0jBBgwFoAUcaPb4vD/0LEHymtXE7Fcl6jj4dEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFRTc5Lzk1MUUyOEY4QzQ1 NjExRjA4RTUzOTIwQkM0RjlBRTAyL2NhUGI0dkRfMExFSHltdFhFN0ZjbDZqajRk RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2FQYjR2RF8wTEVIeW10WEU3RmNsNmpqNGRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF RTc5Lzk1MUUyOEY4QzQ1NjExRjA4RTUzOTIwQkM0RjlBRTAyL2NhUGI0dkRfMExF SHltdFhFN0ZjbDZqajRkRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEsSN+2GidnAjgtiVETavR63WCqo7yVeVXLiN6ZsJ1Y85oJZTS+7gZP7 NfH6vEunUEtKsgjM41mtPLUFA/9UB5wxOUxlKxgYTHBzWwAtcuwNZ0uBVSu4xNg3 U2I8DFAd2FC04Ng1pIPOd0GysbJeEV8wvF7wn98I9JC/+5Q4cWF0O/WH3ZBZV9Xn SyjyZ3OpQlky+1HcAaCHC823driEi+jibPPLtsOa2grZPsn+HerL0KnBDMadNp6Q 2K4ZtXBFnI0KSvPNtO+N78/nVqL9EMAI55P5p/BAxnbok0iZ+LAv0D+d0vaqXfkg VNIxJVWfqZyY4M3EHkntMP83nWlc2W0= -----END CERTIFICATE-----Generated at Sat Nov 22 21:37:03 2025 by rpki-client