This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft File: itYQrIti8qb8qCWJVdXxJJJ7OgA.mft (raw, json) Hash identifier: y5B7FVA230Ux6W1GdynIv/+FG+oJp/4+ijYDpWEVzV8= Subject key identifier: 5B:D6:9F:92:3A:88:E8:F8:E0:72:DD:00:3F:E2:03:7C:3A:DC:F7:C7 Authority key identifier: 8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 Certificate issuer: /CN=A91BEE1D/serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft Manifest number: B5 Signing time: Fri 19 Dec 2025 05:08:01 +0000 Manifest this update: Fri 19 Dec 2025 05:08:00 +0000 Manifest next update: Fri 26 Dec 2025 05:08:00 +0000 Files and hashes: 1: itYQrIti8qb8qCWJVdXxJJJ7OgA.crl (hash: uSTiIA49/5Tr/QsIk+P+XHbdEgoly9zmSiWU7GTgJBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Validity Not Before: Dec 19 05:08:00 2025 GMT Not After : Dec 26 05:08:00 2025 GMT Subject: CN=6944ddb1-b1b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:4a:e2:d0:70:9f:d9:65:19:b6:fb:21:1f:84: db:d2:ea:38:28:87:37:7a:76:5b:ff:79:c1:d0:17: 59:59:79:78:94:0b:93:18:2c:03:f7:5c:6c:0e:7b: ad:f4:4d:26:e3:73:70:43:c9:51:96:c2:a4:9e:3f: be:d7:34:99:96:df:6d:f6:b5:74:89:d6:a9:23:f8: a0:eb:13:98:ed:5e:45:ea:b0:26:f7:89:c9:11:51: af:28:45:08:79:e4:c1:bc:3f:84:d3:34:3b:12:fb: dc:7d:69:40:03:48:da:b6:b2:48:66:23:ab:73:ba: 3e:94:eb:7e:92:55:a8:de:61:bf:cf:51:06:78:10: ff:a7:0e:6a:80:9b:bd:98:47:07:5b:2f:f4:c2:70: a5:39:1a:1a:20:61:ac:20:08:d9:ce:e2:dd:92:d7: 78:ec:32:cd:ab:9b:75:12:4e:84:e8:46:67:fd:83: 28:6a:3d:88:43:ce:e0:b0:cc:b8:15:69:1b:a4:7b: 6b:11:ea:cc:7c:17:9a:15:7f:97:5e:d3:61:1e:f4: a0:f0:fe:eb:7e:44:3b:fb:ab:c7:ed:a6:a4:58:ec: d8:33:be:96:b8:1b:2c:88:ba:d4:1d:4a:93:e8:22: 97:a2:cf:69:f7:f6:8c:c4:71:5f:ed:be:cf:9d:cc: 1d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D6:9F:92:3A:88:E8:F8:E0:72:DD:00:3F:E2:03:7C:3A:DC:F7:C7 X509v3 Authority Key Identifier: keyid:8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:c9:f9:e2:82:29:ea:7a:93:44:5a:c6:cd:05:ff:99:2d:5f: 76:01:57:bc:a5:9b:3b:47:59:60:13:87:d5:d2:cb:ab:cd:6d: 7c:bd:9c:83:98:f1:bf:d3:48:33:b3:59:e6:b5:97:8f:0b:eb: b6:d1:22:37:e5:cb:3a:4d:9f:80:b5:c3:37:d0:de:ec:29:29: 48:74:41:f4:c2:3d:cd:b7:22:f4:86:b7:f4:8c:0c:b2:08:dc: 27:cf:55:8c:6c:20:4f:be:d2:e9:d4:03:61:7b:57:fc:75:71: 27:d0:43:51:db:80:fc:03:31:11:aa:27:dc:0a:36:1f:34:02: f4:8f:66:56:b4:ab:36:3f:8b:53:8a:11:e0:ed:2b:4d:c8:8e: 89:a3:92:92:65:2c:23:91:18:40:40:ef:6e:92:6f:f8:95:5f: 82:26:c4:71:9c:ce:a1:52:03:05:70:96:22:de:88:6f:5d:15: 93:4d:f4:8f:e3:43:21:3a:e5:7a:05:74:4a:f9:10:79:e8:86: 4d:3e:b9:4b:eb:17:9b:e7:18:cf:58:42:88:21:26:4c:d6:c8: 72:25:d6:ca:bc:81:37:63:54:9c:ca:e3:b7:f1:93:8b:ea:25: bb:78:22:6a:1e:08:8c:e9:6f:cd:f7:09:f7:2f:33:f0:dc:1c: 22:2e:b1:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVFMUQxMTAvBgNVBAUTKDhBRDYxMEFDOEI2MkYyQTZGQ0E4MjU4OTU1RDVGMTI0 OTI3QjNBMDAwHhcNMjUxMjE5MDUwODAwWhcNMjUxMjI2MDUwODAwWjAYMRYwFAYD VQQDDA02OTQ0ZGRiMS1iMWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0ri0HCf2WUZtvshH4Tb0uo4KIc3enZb/3nB0BdZWXl4lAuTGCwD91xsDnut 9E0m43NwQ8lRlsKknj++1zSZlt9t9rV0idapI/ig6xOY7V5F6rAm94nJEVGvKEUI eeTBvD+E0zQ7EvvcfWlAA0jatrJIZiOrc7o+lOt+klWo3mG/z1EGeBD/pw5qgJu9 mEcHWy/0wnClORoaIGGsIAjZzuLdktd47DLNq5t1Ek6E6EZn/YMoaj2IQ87gsMy4 FWkbpHtrEerMfBeaFX+XXtNhHvSg8P7rfkQ7+6vH7aakWOzYM76WuBssiLrUHUqT 6CKXos9p9/aMxHFf7b7PncwdTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvWn5I6 iOj44HLdAD/iA3w63PfHMB8GA1UdIwQYMBaAFIrWEKyLYvKm/KgliVXV8SSSezoA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUUxRC85QURBREFERUM3 MEUxMUVGODA2N0M0NjZDNEY5QUUwMi9pdFlRckl0aThxYjhxQ1dKVmRYeEpKSjdP Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l0WVFySXRpOHFiOHFDV0pWZFh4SkpKN09nQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUUxRC85QURBREFERUM3MEUxMUVGODA2N0M0NjZDNEY5QUUwMi9pdFlRckl0aThx YjhxQ1dKVmRYeEpKSjdPZ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6yfniginqepNEWsbNBf+ZLV92AVe8pZs7R1lgE4fV0surzW18vZyD mPG/00gzs1nmtZePC+u20SI35cs6TZ+AtcM30N7sKSlIdEH0wj3NtyL0hrf0jAyy CNwnz1WMbCBPvtLp1ANhe1f8dXEn0ENR24D8AzERqifcCjYfNAL0j2ZWtKs2P4tT ihHg7StNyI6Jo5KSZSwjkRhAQO9ukm/4lV+CJsRxnM6hUgMFcJYi3ohvXRWTTfSP 40MhOuV6BXRK+RB56IZNPrlL6xeb5xjPWEKIISZM1shyJdbKvIE3Y1ScyuO38ZOL 6iW7eCJqHgiM6W/N9wn3LzPw3BwiLrGu -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:42 2025 by rpki-client