This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft File: i6wN0-SRhYlP2uKChO3IBHILRhQ.mft (raw, json) Hash identifier: /1JMI4Jtgv/pgEAbiRHFrUhCo0/7CSuNkkHqXaO1Y+s= Subject key identifier: 69:7C:C0:4A:E3:B6:59:F0:75:75:C6:BE:E3:73:60:56:B0:CF:24:46 Authority key identifier: 8B:AC:0D:D3:E4:91:85:89:4F:DA:E2:82:84:ED:C8:04:72:0B:46:14 Certificate issuer: /CN=A91EBFAE/serialNumber=8BAC0DD3E49185894FDAE28284EDC804720B4614 Certificate serial: 34F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft Manifest number: 34F3 Signing time: Fri 26 Dec 2025 14:30:45 +0000 Manifest this update: Fri 26 Dec 2025 14:30:44 +0000 Manifest next update: Fri 02 Jan 2026 14:30:44 +0000 Files and hashes: 1: i6wN0-SRhYlP2uKChO3IBHILRhQ.crl (hash: 8jKgMPTExAWJsC58C4Of9Jrouuur2HzW9aHDpZ13Z4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 14:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13555 (0x34f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=8BAC0DD3E49185894FDAE28284EDC804720B4614 Validity Not Before: Dec 26 14:30:44 2025 GMT Not After : Jan 2 14:30:44 2026 GMT Subject: CN=694e9c15-51e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:39:be:99:47:b5:c8:40:c7:81:a0:a1:92:47: 3a:a1:33:00:04:e3:11:6c:cf:93:ba:17:bf:6a:e1: 98:8e:ef:18:13:49:6c:96:f9:bb:5e:f1:b0:f1:7e: 4a:67:8c:1b:0d:7d:36:f5:25:00:37:cb:c7:41:36: e4:54:03:1d:10:05:3b:7d:9b:3e:76:43:24:c9:ce: 5b:af:a3:64:8e:53:23:18:a5:43:46:d8:3b:94:d4: 8d:9c:24:4e:a4:1a:ae:2b:6c:56:2c:fc:5b:b9:b8: f0:26:8b:1c:69:45:87:86:19:ac:be:bc:96:28:eb: 1c:36:a3:83:70:c9:0b:24:4e:f1:4e:a2:77:f2:45: 35:00:d2:ee:31:14:2d:d2:a4:14:13:cd:08:cf:d2: a6:e8:93:05:8f:09:0a:da:ad:0a:a3:cd:f0:d6:7f: 8b:56:33:9a:a0:59:ae:9d:fa:aa:83:b8:24:74:a4: bf:51:04:10:bb:d6:b6:34:8b:e6:da:11:e2:a1:19: 2a:4b:0b:4e:45:c1:41:ff:81:bb:f3:b4:a0:55:62: e6:5b:da:ee:93:f2:25:79:91:77:e2:ab:c4:40:d7: af:06:92:17:fb:cc:ae:a0:a7:9a:fe:4f:0f:75:36: f3:2c:09:0f:61:fb:21:fd:be:1f:97:dc:5c:a6:9b: 95:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:7C:C0:4A:E3:B6:59:F0:75:75:C6:BE:E3:73:60:56:B0:CF:24:46 X509v3 Authority Key Identifier: keyid:8B:AC:0D:D3:E4:91:85:89:4F:DA:E2:82:84:ED:C8:04:72:0B:46:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:1a:ab:8c:34:29:7b:b7:9a:2b:3f:98:e7:ae:65:07:2c:17: 24:69:03:77:c9:3b:f5:54:1d:e2:44:4f:dd:2d:15:ca:cf:4a: 0c:7a:dd:5a:24:c8:81:7b:cd:df:3d:e6:08:7f:a4:d6:d2:4e: 19:fa:37:df:34:ec:3b:9d:de:04:38:25:e1:4a:9e:b8:15:fa: 4e:a9:ea:4c:1f:56:52:a2:80:fc:44:96:65:2e:a7:78:86:77: b3:11:4c:4b:2e:97:c8:d2:cb:bd:c1:7e:83:c1:7d:3d:e2:cc: 83:ea:a3:95:04:0b:eb:59:33:e0:69:0a:8f:aa:c8:6e:1c:27: 66:59:eb:df:49:c3:40:35:a4:95:5f:34:0e:2a:94:04:dd:3f: d4:39:04:33:73:12:ad:f1:25:e6:2a:da:d3:a5:64:69:d7:3c: 56:58:04:46:0b:79:29:a0:33:5a:d2:12:32:18:5a:6e:d4:53: 43:d3:ca:c9:03:71:c7:3d:c0:c3:03:73:8f:91:e2:b6:0f:38: 75:85:b2:96:22:ad:a6:26:09:f5:31:b8:66:f0:62:2f:74:36: d3:86:c0:07:cd:ef:06:df:cb:0a:11:40:1a:88:7a:65:6c:a5: b9:71:94:5e:63:b3:13:b6:8b:7d:8d:80:af:71:f3:bd:29:f9: 6b:7b:2b:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKDhCQUMwREQzRTQ5MTg1ODk0RkRBRTI4Mjg0RURDODA0 NzIwQjQ2MTQwHhcNMjUxMjI2MTQzMDQ0WhcNMjYwMTAyMTQzMDQ0WjAYMRYwFAYD VQQDDA02OTRlOWMxNS01MWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jm+mUe1yEDHgaChkkc6oTMABOMRbM+Tuhe/auGYju8YE0lslvm7XvGw8X5K Z4wbDX029SUAN8vHQTbkVAMdEAU7fZs+dkMkyc5br6NkjlMjGKVDRtg7lNSNnCRO pBquK2xWLPxbubjwJoscaUWHhhmsvryWKOscNqODcMkLJE7xTqJ38kU1ANLuMRQt 0qQUE80Iz9Km6JMFjwkK2q0Ko83w1n+LVjOaoFmunfqqg7gkdKS/UQQQu9a2NIvm 2hHioRkqSwtORcFB/4G787SgVWLmW9ruk/IleZF34qvEQNevBpIX+8yuoKea/k8P dTbzLAkPYfsh/b4fl9xcppuVEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGl8wErj tlnwdXXGvuNzYFawzyRGMB8GA1UdIwQYMBaAFIusDdPkkYWJT9rigoTtyARyC0YU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS8xNjhGRkQ2QzFE OEExMUUyOTBEMERFRTMwOEIwMkNEMi9pNndOMC1TUmhZbFAydUtDaE8zSUJISUxS aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2d04wLVNSaFlsUDJ1S0NoTzNJQkhJTFJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS8xNjhGRkQ2QzFEOEExMUUyOTBEMERFRTMwOEIwMkNEMi9pNndOMC1TUmhZ bFAydUtDaE8zSUJISUxSaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSGquMNCl7t5orP5jnrmUHLBckaQN3yTv1VB3iRE/dLRXKz0oMet1a JMiBe83fPeYIf6TW0k4Z+jffNOw7nd4EOCXhSp64FfpOqepMH1ZSooD8RJZlLqd4 hnezEUxLLpfI0su9wX6DwX094syD6qOVBAvrWTPgaQqPqshuHCdmWevfScNANaSV XzQOKpQE3T/UOQQzcxKt8SXmKtrTpWRp1zxWWARGC3kpoDNa0hIyGFpu1FND08rJ A3HHPcDDA3OPkeK2Dzh1hbKWIq2mJgn1Mbhm8GIvdDbThsAHze8G38sKEUAaiHpl bKW5cZReY7MTtot9jYCvcfO9KflreyuU -----END CERTIFICATE-----Generated at Sat Dec 27 00:48:00 2025 by rpki-client