This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft File: l85Wj2RoJWRz-Es4s84D6jVJ64k.mft (raw, json) Hash identifier: q+zz0u7D/FE+1VhATJCVrXG5iXNL9RfiW7K2KFGoUyI= Subject key identifier: 76:CB:F5:0B:D1:F3:DD:0A:87:83:15:79:5A:AF:3A:D7:51:A8:DB:B3 Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft Manifest number: 01D3 Signing time: Wed 03 Dec 2025 01:25:11 +0000 Manifest this update: Wed 03 Dec 2025 01:25:11 +0000 Manifest next update: Wed 10 Dec 2025 01:25:11 +0000 Files and hashes: 1: l85Wj2RoJWRz-Es4s84D6jVJ64k.crl (hash: feFZ3e0CbZF9uLlPqXhjqa+BwbK17QRwsCyAZ/T1o18=) 2: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (hash: r5pIAbK8kOI15XkP+OMpWTYz9FMauuzr/FnyF6gxDgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 01:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC, serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Validity Not Before: Dec 3 01:25:11 2025 GMT Not After : Dec 10 01:25:11 2025 GMT Subject: CN=692f9177-92e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f8:b2:f6:a9:e4:da:26:6c:f5:80:64:0f:eb: 84:bf:8a:79:a7:2a:ec:ca:aa:d8:bd:69:bf:ff:56: 4e:f7:9b:ac:66:2e:35:28:8f:1c:d6:ba:e7:84:50: 65:81:94:8d:c7:62:80:cb:9e:61:e1:91:ee:49:a0: 58:a0:7c:e1:42:d4:9e:7a:08:7e:ac:98:fe:51:b7: 03:b8:da:39:c2:17:27:bf:c7:3a:01:1a:f1:8c:df: a6:5e:b0:94:0c:cb:50:9f:86:c8:a9:9b:c6:f7:8f: b2:14:ff:c4:15:f3:4d:38:6f:dc:ea:51:29:4e:b3: 52:01:11:b6:34:bc:24:98:ee:31:a4:1c:4c:a5:8e: 46:5d:fa:0f:97:16:4d:18:05:c1:a3:07:42:fb:c2: d5:62:8a:38:47:f4:50:fa:98:7e:c8:88:52:2e:01: a4:3b:f9:49:4b:5d:0c:1b:6c:23:96:58:eb:4b:b4: bb:c0:c1:2a:86:91:f7:dc:d3:07:c3:a4:87:b4:5f: 22:84:d4:dc:2a:e5:47:74:a6:b2:2e:2c:fb:e7:6a: 01:2f:e5:af:6b:16:d4:dc:39:a2:93:48:27:19:72: 61:2b:6b:3d:3a:1c:c7:00:56:f7:93:74:6a:f6:5f: d6:6b:4a:24:4b:cc:a3:0f:b6:2a:95:8a:ac:26:b0: f6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:CB:F5:0B:D1:F3:DD:0A:87:83:15:79:5A:AF:3A:D7:51:A8:DB:B3 X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:66:ec:0c:34:9f:7e:71:e9:90:be:d8:ef:f9:84:ed:62:84: 72:b1:e7:d4:97:36:18:b2:98:f0:4c:f1:a7:37:54:35:2b:e4: 36:53:5e:2a:ab:2d:78:1c:13:83:ff:e7:d0:50:36:29:37:50: 3d:7b:90:2e:fe:86:f7:bd:2d:a4:1f:eb:ef:45:ce:c5:3d:88: a3:9b:2c:05:a0:7b:5c:da:51:73:64:ae:aa:fb:50:07:26:3e: 8f:30:f8:b4:a0:b1:fc:5f:66:c2:cb:29:76:8d:fb:4f:3c:a6: 5f:b0:17:ea:27:c7:3a:89:a7:1c:39:16:85:9b:64:9b:0a:19: 8b:d2:d6:89:94:d4:c0:1a:5e:6e:f4:7a:6b:08:04:40:d8:63: ab:e0:99:63:62:18:fa:1b:43:db:ce:0d:87:f1:93:da:1f:c2: eb:b8:a5:65:3e:0a:86:07:f8:23:be:11:32:29:a9:e4:ef:92: 22:8d:02:5a:d7:7f:42:3b:58:29:b0:ef:34:ed:1f:c8:3a:04: ba:d5:4b:d4:28:83:7a:b2:e2:55:20:b5:22:a8:8a:74:2b:ff: 52:49:dc:78:45:32:b2:24:96:65:8b:90:fb:a0:2a:be:fc:9f: 39:fe:c7:89:41:e2:de:be:cf:84:1d:a3:60:62:7d:bc:aa:e7: d6:58:ae:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBQkMxMTAvBgNVBAUTKDk3Q0U1NjhGNjQ2ODI1NjQ3M0Y4NEIzOEIzQ0UwM0VB MzU0OUVCODkwHhcNMjUxMjAzMDEyNTExWhcNMjUxMjEwMDEyNTExWjAYMRYwFAYD VQQDEw02OTJmOTE3Ny05MmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfiy9qnk2iZs9YBkD+uEv4p5pyrsyqrYvWm//1ZO95usZi41KI8c1rrnhFBl gZSNx2KAy55h4ZHuSaBYoHzhQtSeegh+rJj+UbcDuNo5whcnv8c6ARrxjN+mXrCU DMtQn4bIqZvG94+yFP/EFfNNOG/c6lEpTrNSARG2NLwkmO4xpBxMpY5GXfoPlxZN GAXBowdC+8LVYoo4R/RQ+ph+yIhSLgGkO/lJS10MG2wjlljrS7S7wMEqhpH33NMH w6SHtF8ihNTcKuVHdKayLiz752oBL+WvaxbU3Dmik0gnGXJhK2s9OhzHAFb3k3Rq 9l/Wa0okS8yjD7YqlYqsJrD2tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbL9QvR 890Kh4MVeVqvOtdRqNuzMB8GA1UdIwQYMBaAFJfOVo9kaCVkc/hLOLPOA+o1SeuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0FCQy9DNTUxNjQxMjA1 QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pXUnotRXM0czg0RDZqVko2 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0FCQy9DNTUxNjQxMjA1QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pX UnotRXM0czg0RDZqVko2NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDZuwMNJ9+cemQvtjv+YTtYoRysefUlzYYspjwTPGnN1Q1K+Q2U14q qy14HBOD/+fQUDYpN1A9e5Au/ob3vS2kH+vvRc7FPYijmywFoHtc2lFzZK6q+1AH Jj6PMPi0oLH8X2bCyyl2jftPPKZfsBfqJ8c6iaccORaFm2SbChmL0taJlNTAGl5u 9HprCARA2GOr4JljYhj6G0Pbzg2H8ZPaH8LruKVlPgqGB/gjvhEyKank75IijQJa 139CO1gpsO807R/IOgS61UvUKIN6suJVILUiqIp0K/9SSdx4RTKyJJZli5D7oCq+ /J85/seJQeLevs+EHaNgYn28qufWWK5q -----END CERTIFICATE-----Generated at Wed Dec 3 14:14:35 2025 by rpki-client