This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft File: itYQrIti8qb8qCWJVdXxJJJ7OgA.mft (raw, json) Hash identifier: QLcwAMPGXhkFwdZLZauTlLzIFuWrWhFN+PBSSdUbjpY= Subject key identifier: BE:9C:35:7E:D6:E2:44:9A:37:A2:45:BF:54:A9:1C:98:AF:27:0F:98 Authority key identifier: 8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 Certificate issuer: /CN=A91BEE1D/serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft Manifest number: B9 Signing time: Sat 27 Dec 2025 04:53:58 +0000 Manifest this update: Sat 27 Dec 2025 04:53:57 +0000 Manifest next update: Sat 03 Jan 2026 04:53:57 +0000 Files and hashes: 1: itYQrIti8qb8qCWJVdXxJJJ7OgA.crl (hash: m6ETHCH78kFScdSLTu60SVRRQ76P9k1Hb5YeWzpZhPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 04:53:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Validity Not Before: Dec 27 04:53:57 2025 GMT Not After : Jan 3 04:53:57 2026 GMT Subject: CN=694f6666-2ddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:da:71:ab:98:46:57:28:71:b6:5d:68:21:04: 93:c7:24:2a:20:16:31:73:4b:03:f7:00:e8:1a:69: 7e:bb:87:9f:34:18:82:2c:d6:f9:8d:70:1a:a5:11: b4:78:e8:07:49:ba:23:f1:cb:19:5a:1c:d3:df:fc: e6:8b:6e:79:eb:2d:20:93:f6:0a:05:6c:c5:60:13: 11:07:f2:61:6c:28:52:a6:83:26:da:43:45:24:86: 21:ef:4b:bb:54:0f:43:f6:c5:0b:f6:2b:62:12:2a: f2:f6:45:65:03:8d:68:e7:8c:97:fc:58:95:00:d3: ad:31:b2:3b:49:7b:2a:67:aa:8f:f9:59:24:b3:2f: a7:dc:a1:7d:80:a3:ad:07:cb:b4:1c:19:de:62:b5: 05:1d:8d:16:fc:d3:33:d8:10:e8:b3:55:e8:69:91: dd:6b:71:a5:76:ff:8d:c8:08:ac:20:d8:94:4d:19: a6:16:08:a7:ed:11:e7:e6:77:b9:0f:50:69:fd:66: ab:c4:2d:ce:db:8f:d6:70:f4:d1:54:5c:47:2b:62: dd:77:b4:d4:61:97:6f:99:ac:a9:a2:82:99:8c:a4: 7a:7a:1a:6d:b8:a0:39:f6:81:0a:94:2d:bc:2b:70: 77:3c:0e:a0:e1:1e:57:bf:2c:3f:26:07:c4:95:44: 5a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9C:35:7E:D6:E2:44:9A:37:A2:45:BF:54:A9:1C:98:AF:27:0F:98 X509v3 Authority Key Identifier: keyid:8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:7a:cd:ec:50:a3:55:c3:8a:90:ab:a9:e6:b5:c7:c1:aa:39: 05:2a:64:88:52:18:af:17:29:3e:88:2f:09:7b:1c:30:42:8b: 73:b2:f2:b4:65:d1:43:0a:fe:72:58:8d:20:ad:bb:a6:d5:37: 79:b4:3b:b2:1a:e6:a7:14:89:21:35:92:51:c1:65:a5:e0:e3: 6b:5c:38:c3:01:a5:57:fc:b1:b9:f0:ee:34:18:57:ad:b2:ba: a7:e7:ca:77:72:a2:8c:ea:64:1f:57:4b:f2:cb:e6:3d:c8:60: 9b:1f:ef:70:11:e5:15:95:f1:a2:a2:66:02:f1:73:4d:73:eb: 31:50:dc:de:8e:1b:cf:e3:6f:cf:e9:87:60:c3:a3:94:24:df: c5:cb:58:15:7f:ff:d9:6d:0d:25:c0:63:0b:b4:7e:79:5f:2d: a1:3f:28:1c:0a:5a:3f:04:d3:8b:44:2d:61:aa:81:f5:1a:d7: 33:e3:bf:b1:21:82:77:72:11:69:59:3e:80:46:ac:c1:a1:42: 63:e6:69:7c:17:13:c3:50:58:9e:4b:c2:47:d0:86:3f:19:de: 12:70:ad:75:90:24:9b:37:35:80:52:fb:59:22:06:f1:d0:65: 3d:78:8f:35:7e:96:d2:f2:3d:b7:29:7f:4f:1c:05:73:af:fc: 57:30:cd:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVFMUQxMTAvBgNVBAUTKDhBRDYxMEFDOEI2MkYyQTZGQ0E4MjU4OTU1RDVGMTI0 OTI3QjNBMDAwHhcNMjUxMjI3MDQ1MzU3WhcNMjYwMTAzMDQ1MzU3WjAYMRYwFAYD VQQDDA02OTRmNjY2Ni0yZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdpxq5hGVyhxtl1oIQSTxyQqIBYxc0sD9wDoGml+u4efNBiCLNb5jXAapRG0 eOgHSboj8csZWhzT3/zmi2556y0gk/YKBWzFYBMRB/JhbChSpoMm2kNFJIYh70u7 VA9D9sUL9itiEiry9kVlA41o54yX/FiVANOtMbI7SXsqZ6qP+Vkksy+n3KF9gKOt B8u0HBneYrUFHY0W/NMz2BDos1XoaZHda3Gldv+NyAisINiUTRmmFgin7RHn5ne5 D1Bp/WarxC3O24/WcPTRVFxHK2Ldd7TUYZdvmaypooKZjKR6ehptuKA59oEKlC28 K3B3PA6g4R5Xvyw/JgfElURa9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6cNX7W 4kSaN6JFv1SpHJivJw+YMB8GA1UdIwQYMBaAFIrWEKyLYvKm/KgliVXV8SSSezoA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUUxRC85QURBREFERUM3 MEUxMUVGODA2N0M0NjZDNEY5QUUwMi9pdFlRckl0aThxYjhxQ1dKVmRYeEpKSjdP Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l0WVFySXRpOHFiOHFDV0pWZFh4SkpKN09nQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUUxRC85QURBREFERUM3MEUxMUVGODA2N0M0NjZDNEY5QUUwMi9pdFlRckl0aThx YjhxQ1dKVmRYeEpKSjdPZ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8es3sUKNVw4qQq6nmtcfBqjkFKmSIUhivFyk+iC8JexwwQotzsvK0 ZdFDCv5yWI0grbum1Td5tDuyGuanFIkhNZJRwWWl4ONrXDjDAaVX/LG58O40GFet srqn58p3cqKM6mQfV0vyy+Y9yGCbH+9wEeUVlfGiomYC8XNNc+sxUNzejhvP42/P 6Ydgw6OUJN/Fy1gVf//ZbQ0lwGMLtH55Xy2hPygcClo/BNOLRC1hqoH1Gtcz47+x IYJ3chFpWT6ARqzBoUJj5ml8FxPDUFieS8JH0IY/Gd4ScK11kCSbNzWAUvtZIgbx 0GU9eI81fpbS8j23KX9PHAVzr/xXMM2l -----END CERTIFICATE-----Generated at Sun Dec 28 22:12:31 2025 by rpki-client