This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft File: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft (raw, json) Hash identifier: oqa8ffN+c9SIWjq4DFElulg+ON0X3fV0msZ22zJtUHk= Subject key identifier: B2:8E:3E:19:8B:62:F2:86:B1:D7:D5:06:EE:C0:98:F6:DE:CE:F5:AE Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 08D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft Manifest number: 08BC Signing time: Sun 30 Nov 2025 17:31:31 +0000 Manifest this update: Sun 30 Nov 2025 17:31:30 +0000 Manifest next update: Sun 07 Dec 2025 17:31:30 +0000 Files and hashes: 1: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl (hash: jg+l7Iub7Obkt8BHYHJxsMQIwtc82gNYUYvBviHJOa4=) 2: 18B1B5361CE611EBB543881CC4F9AE02.roa (hash: qnuam7WR9nNoSALeN6aIELormJYa9PcytIxvW+OP1aE=) 3: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (hash: /kIJQGWq5uSGzv2Hlgx55daJuqaTWlcXb9ZHCo//sns=) 4: D385E420314711EBA579873DC4F9AE02.roa (hash: o1Hw/spcKOOb0VVRRR+YO5Yydeov4PBZjAAS3/6uAVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2259 (0x8d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6, serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Nov 30 17:31:30 2025 GMT Not After : Dec 7 17:31:30 2025 GMT Subject: CN=692c7f72-fe77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4e:71:4b:c7:d1:69:7e:d2:2b:20:ed:5c:e5: 9b:09:18:a7:3f:d7:55:d4:ee:17:ba:3a:3a:27:f0: d0:ff:b4:dd:9d:fa:49:60:63:30:b0:fc:31:b0:b4: 15:7e:a5:ff:6a:d3:26:51:8a:76:58:f8:fa:62:b7: 11:06:45:07:13:17:7d:1e:4d:8e:cb:64:4e:13:a9: 85:4e:39:0c:f6:9a:04:1f:6a:1c:99:7a:1f:fd:2e: 97:d2:86:17:30:8c:e4:fb:73:8f:f1:ce:56:67:da: bf:8b:5e:2c:18:6c:e8:30:37:61:0a:2b:db:e3:8c: bc:b8:a6:8f:3b:56:96:12:b1:18:9f:1b:94:68:e1: 66:95:c4:6a:71:8e:3b:af:b5:78:99:0c:1a:ab:c3: 85:f5:c7:a9:5d:3a:23:29:49:d5:20:0c:ed:32:9a: c0:2e:92:56:4e:c4:51:ae:1b:12:e0:e0:b1:94:8d: c0:32:22:ac:13:a5:de:33:71:0e:3f:bc:55:61:de: 22:64:c5:64:f4:94:63:f9:db:2f:74:a3:8f:2c:9a: 87:d0:53:97:d9:83:8f:05:3a:c7:94:a0:a6:41:d1: 3b:06:3c:df:2c:32:22:e7:21:9c:51:21:c8:99:2c: be:92:6a:81:21:9d:ed:7a:a9:71:3b:09:52:12:5c: 9b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8E:3E:19:8B:62:F2:86:B1:D7:D5:06:EE:C0:98:F6:DE:CE:F5:AE X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:4b:e2:3d:35:52:5d:00:54:a5:a6:99:77:ea:12:20:e9:42: 2f:21:c0:d9:1c:f4:04:61:52:15:55:6a:bb:9a:70:bf:9d:6e: 34:13:7b:c6:2d:bb:22:34:ce:d3:a3:7a:0e:2a:3e:27:20:14: 51:47:24:ff:79:50:7b:73:34:c9:43:48:cd:33:a6:6e:28:8d: 92:bd:32:64:08:05:91:5e:99:64:41:de:3c:8b:fd:0f:a6:15: 34:36:dd:13:a7:8b:71:56:68:6f:2a:54:58:86:e7:06:20:a4: a7:87:5b:66:e8:cf:31:b9:24:1d:29:02:0f:b9:a9:7f:36:67: 97:e1:81:85:d3:59:38:a7:40:b0:8d:d7:28:aa:53:20:89:bc: 05:bc:81:81:29:e1:b3:0b:fe:c3:6c:bb:14:42:55:94:f4:0a: 4a:60:78:46:e8:c5:e8:8d:9b:24:68:95:8a:36:b1:25:2f:9c: b6:b5:93:a9:d9:07:5b:91:db:fe:c4:bb:92:68:2d:2b:62:03: af:ad:ee:72:18:e0:3e:9e:4e:03:64:35:4c:31:e0:1d:e9:ec: 88:63:3f:b5:14:17:66:bf:3b:2f:69:73:77:12:28:68:4d:45: 18:f6:ac:2b:b8:d9:01:cc:27:1c:13:38:bb:48:ac:07:76:ce: 75:e1:e0:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjUxMTMwMTczMTMwWhcNMjUxMjA3MTczMTMwWjAYMRYwFAYD VQQDEw02OTJjN2Y3Mi1mZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuk5xS8fRaX7SKyDtXOWbCRinP9dV1O4Xujo6J/DQ/7TdnfpJYGMwsPwxsLQV fqX/atMmUYp2WPj6YrcRBkUHExd9Hk2Oy2ROE6mFTjkM9poEH2ocmXof/S6X0oYX MIzk+3OP8c5WZ9q/i14sGGzoMDdhCivb44y8uKaPO1aWErEYnxuUaOFmlcRqcY47 r7V4mQwaq8OF9cepXTojKUnVIAztMprALpJWTsRRrhsS4OCxlI3AMiKsE6XeM3EO P7xVYd4iZMVk9JRj+dsvdKOPLJqH0FOX2YOPBTrHlKCmQdE7BjzfLDIi5yGcUSHI mSy+kmqBIZ3teqlxOwlSElybSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKOPhmL YvKGsdfVBu7AmPbezvWuMB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTlBNi9FNEVEQUMxOENCMUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhU bENlUnBpMUhYc190ZkFQMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFS+I9NVJdAFSlppl36hIg6UIvIcDZHPQEYVIVVWq7mnC/nW40E3vG LbsiNM7To3oOKj4nIBRRRyT/eVB7czTJQ0jNM6ZuKI2SvTJkCAWRXplkQd48i/0P phU0Nt0Tp4txVmhvKlRYhucGIKSnh1tm6M8xuSQdKQIPual/NmeX4YGF01k4p0Cw jdcoqlMgibwFvIGBKeGzC/7DbLsUQlWU9ApKYHhG6MXojZskaJWKNrElL5y2tZOp 2Qdbkdv+xLuSaC0rYgOvre5yGOA+nk4DZDVMMeAd6eyIYz+1FBdmvzsvaXN3Eiho TUUY9qwruNkBzCccEzi7SKwHds514eD7 -----END CERTIFICATE-----Generated at Sun Nov 30 18:51:41 2025 by rpki-client