This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft File: i0b6Eepu4jUJnkhDPIJJehl7nXw.mft (raw, json) Hash identifier: nqMxTzzUwM7XpFxLXtf9nzFumdYa9xesJ+S++UNmWsU= Subject key identifier: 79:5E:43:6B:40:5B:BD:26:47:02:27:34:37:20:50:3C:B8:D2:BC:1F Authority key identifier: 8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C Certificate issuer: /CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Certificate serial: 027B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft Manifest number: 0271 Signing time: Tue 23 Dec 2025 00:36:33 +0000 Manifest this update: Tue 23 Dec 2025 00:36:32 +0000 Manifest next update: Tue 30 Dec 2025 00:36:32 +0000 Files and hashes: 1: i0b6Eepu4jUJnkhDPIJJehl7nXw.crl (hash: XcHOqBf7xBJFOOHkXGgjfmJ4zfZUW6ubzMFlemWxcQI=) 2: 0BF33B7C3A1B11EDAE662B14C4F9AE02.roa (hash: U57sQE5yclVx7OH+nAtAbjTBaki6Yvzg4fauYYq6XuI=) 3: 0B3B85D63A1B11EDAE662B14C4F9AE02.roa (hash: NR8OS1L1YDEOVGgB6cb2fttAqoXgsKVRMpQfg5GvzjQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB03A, serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Validity Not Before: Dec 23 00:36:32 2025 GMT Not After : Dec 30 00:36:32 2025 GMT Subject: CN=6949e411-f7c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:58:5a:a2:c0:69:95:fb:27:29:68:0a:05:55: a3:e5:b8:35:3a:33:8b:cd:01:d3:28:2c:a2:30:83: 6a:8e:cf:a2:ab:dc:77:b0:29:61:07:41:11:3f:ae: bc:93:5a:6e:c2:4c:29:04:29:e6:46:fa:9d:d0:ef: 45:e6:25:7f:e3:fc:e5:42:44:b4:85:ed:33:69:4a: c2:8d:42:74:20:46:d8:d1:83:6f:1b:12:74:f6:31: 0a:e1:b2:ae:16:6e:a8:91:48:50:2c:ff:de:4d:4d: 87:a1:ac:09:0b:5c:1a:60:b9:df:b0:b3:e0:fc:e5: c4:49:38:03:ce:56:96:6e:32:f1:2d:e1:5b:b5:22: cb:64:30:91:22:78:c8:d9:d4:12:31:3f:40:f1:9c: 35:00:80:06:a5:ce:d0:21:c4:6a:9e:9c:aa:4d:e6: 8b:95:a7:eb:5c:cf:cb:54:75:22:b0:5a:f3:92:f0: b3:69:02:cf:be:cb:c8:42:3b:0e:8a:96:c0:12:94: 35:b8:7f:b3:f3:72:96:48:06:76:45:6f:a8:b6:c9: 5a:95:8d:1b:69:08:ad:6d:ad:12:d1:0d:14:49:a1: 5c:01:ca:d2:3a:73:d2:5d:1b:f7:81:cc:ae:19:fb: 25:cd:b0:66:8b:f3:9b:fe:03:5a:b5:78:58:43:1e: 83:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5E:43:6B:40:5B:BD:26:47:02:27:34:37:20:50:3C:B8:D2:BC:1F X509v3 Authority Key Identifier: keyid:8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:bd:f1:a9:48:28:6b:56:5d:3b:e3:7d:f9:e2:49:1f:01:71: 70:91:cf:05:f9:a1:39:aa:6d:2d:dd:cd:d8:e4:81:1d:1a:02: b0:e2:77:96:aa:c4:eb:30:e1:1a:2a:3b:cf:b0:57:7d:ff:85: 5c:e2:90:78:9e:ab:76:f1:8b:56:64:90:c2:c3:5e:5b:54:69: 67:ef:88:a8:2b:9c:be:c0:b0:c9:39:8d:da:3d:91:72:42:c0: 59:db:5f:fc:c3:1a:e8:a5:e8:49:d9:8e:ec:d1:aa:be:ce:f5: 83:b3:17:ee:f6:a8:9f:c5:11:74:7d:fb:d9:ae:07:30:96:9b: 31:c3:9b:47:21:f9:26:0a:86:ec:a3:50:c9:85:7a:06:73:fd: 08:a0:40:39:e6:90:87:63:75:a7:fd:28:b8:e6:30:89:42:49: 2c:eb:ee:a0:13:79:81:17:18:9a:4d:fc:00:ec:f0:e7:b3:ea: 4a:aa:06:b3:d9:1f:3f:f4:da:45:9b:3e:d3:f0:96:6b:bf:fc: 9f:ca:00:87:0b:f3:73:10:93:92:88:b4:84:bb:f2:93:6f:5d: 71:6b:15:94:7e:55:9d:0f:12:d2:fd:4a:93:69:db:a5:38:42: e0:8e:63:42:53:74:ca:0b:4e:f4:a4:13:b7:b4:3e:3c:91:cc: 2f:b7:b9:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwM0ExMTAvBgNVBAUTKDhCNDZGQTExRUE2RUUyMzUwOTlFNDg0MzNDODI0OTdB MTk3QjlEN0MwHhcNMjUxMjIzMDAzNjMyWhcNMjUxMjMwMDAzNjMyWjAYMRYwFAYD VQQDDA02OTQ5ZTQxMS1mN2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjlhaosBplfsnKWgKBVWj5bg1OjOLzQHTKCyiMINqjs+iq9x3sClhB0ERP668 k1puwkwpBCnmRvqd0O9F5iV/4/zlQkS0he0zaUrCjUJ0IEbY0YNvGxJ09jEK4bKu Fm6okUhQLP/eTU2HoawJC1waYLnfsLPg/OXESTgDzlaWbjLxLeFbtSLLZDCRInjI 2dQSMT9A8Zw1AIAGpc7QIcRqnpyqTeaLlafrXM/LVHUisFrzkvCzaQLPvsvIQjsO ipbAEpQ1uH+z83KWSAZ2RW+otslalY0baQitba0S0Q0USaFcAcrSOnPSXRv3gcyu GfslzbBmi/Ob/gNatXhYQx6D7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHleQ2tA W70mRwInNDcgUDy40rwfMB8GA1UdIwQYMBaAFItG+hHqbuI1CZ5IQzyCSXoZe518 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjAzQS9ERkM2OEQ2NDNB MTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRqVUpua2hEUElKSmVobDdu WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kwYjZFZXB1NGpVSm5raERQSUpKZWhsN25Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjAzQS9ERkM2OEQ2NDNBMTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRq VUpua2hEUElKSmVobDduWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvvfGpSChrVl0743354kkfAXFwkc8F+aE5qm0t3c3Y5IEdGgKw4neW qsTrMOEaKjvPsFd9/4Vc4pB4nqt28YtWZJDCw15bVGln74ioK5y+wLDJOY3aPZFy QsBZ21/8wxropehJ2Y7s0aq+zvWDsxfu9qifxRF0ffvZrgcwlpsxw5tHIfkmCobs o1DJhXoGc/0IoEA55pCHY3Wn/Si45jCJQkks6+6gE3mBFxiaTfwA7PDns+pKqgaz 2R8/9NpFmz7T8JZrv/yfygCHC/NzEJOSiLSEu/KTb11xaxWUflWdDxLS/UqTadul OELgjmNCU3TKC070pBO3tD48kcwvt7lY -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:39 2025 by rpki-client