This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: XpeeGDYGTt89pul5ZO+kZMQ9vtNRB9jfN2PMfXIL028= Subject key identifier: CF:43:7D:81:CE:C3:C5:9A:E6:CB:AB:53:45:26:24:B7:D4:34:23:39 Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0BF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0BE5 Signing time: Mon 22 Dec 2025 18:24:48 +0000 Manifest this update: Mon 22 Dec 2025 18:24:48 +0000 Manifest next update: Mon 29 Dec 2025 18:24:48 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: LY7F+OnLN0bz7XrFj0SP7ngz4bXVet+tU9bg4/TT7aM=) 2: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: vucacXYSTLw3pjicQM0MXD2U1//BsbEO3gpX4wVcXB8=) 3: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: mo/NLmT3qTw906fWZIYD+HCMnaLWUZhtdPeHn3oqJ6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3059 (0xbf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Dec 22 18:24:48 2025 GMT Not After : Dec 29 18:24:48 2025 GMT Subject: CN=69498cf0-bc32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bb:81:9f:36:46:2a:1d:17:45:da:9e:4b:3b: 4d:fd:07:cd:dc:38:08:9d:66:dd:d6:31:6e:e9:f3: 4b:d2:5d:60:ba:95:6b:f7:d7:c0:c3:f9:c5:80:bc: f0:e9:b7:c9:aa:a2:15:00:39:b9:ea:16:ae:2c:57: e5:7c:18:59:28:db:de:10:0f:22:9b:6b:9c:0c:21: cc:8d:25:4f:9d:f9:92:86:1f:07:91:e2:a8:0a:2f: 87:6a:0d:9c:09:d2:3a:50:8f:47:24:f4:e3:f2:96: 34:ce:6a:5d:cf:7b:7b:04:16:77:b9:96:a3:c9:b7: 08:bb:f5:20:f5:e5:3f:b0:35:b5:13:ab:ad:09:91: 7f:67:7a:32:fc:48:56:08:4e:a1:6c:3d:12:ff:15: 8b:90:60:a3:ab:c0:f1:42:29:88:06:c5:f2:e9:07: a3:98:1b:81:ee:c4:7c:5a:be:14:7d:a3:e1:f8:77: 5e:b7:c0:4d:6f:d7:d5:d7:98:71:e5:ba:48:59:43: 55:ea:64:7a:b4:7c:11:86:66:a6:ee:f2:13:0e:0a: 1b:c1:94:28:e6:b9:44:5a:90:30:20:6d:07:0d:06: a8:b4:f6:b9:01:49:4e:b8:0b:4f:38:2e:d9:61:82: 42:de:82:03:ba:3f:6f:89:30:44:a6:af:7e:de:3b: 83:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:43:7D:81:CE:C3:C5:9A:E6:CB:AB:53:45:26:24:B7:D4:34:23:39 X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b2:9f:70:c8:e8:01:48:e5:3d:36:a7:60:3e:ed:7d:d6:b7: 6a:23:49:b2:0e:14:d9:8c:3b:6f:ac:0e:3f:c8:ef:23:01:79: 49:da:47:07:8b:06:4f:5e:0e:c7:44:37:ab:ca:b5:b9:5b:8b: 7b:e3:f2:21:2a:a3:e3:90:bb:ba:7d:3e:db:50:14:ec:b6:4d: 55:74:14:8c:60:c5:6d:2a:65:75:f8:d8:4b:31:3e:94:67:8c: 0b:d1:72:40:6a:2f:55:11:cc:6f:61:08:03:1c:4c:be:f9:7e: 40:0f:03:23:96:4d:dd:3c:1e:3c:b9:e8:1b:d7:52:20:a5:5a: 4e:ca:57:f7:2f:66:2c:8a:eb:e3:f2:dd:53:6f:8f:e5:23:62: ad:2c:e7:ab:2d:3f:cd:08:dc:e0:0d:70:cf:6c:ef:36:b6:47: 7f:e3:4d:ff:f2:d6:41:6e:8d:46:7c:09:52:54:dc:ee:77:68: 23:d4:f4:87:31:eb:99:88:57:1f:af:b3:8c:1f:8b:12:c9:04: 11:25:4d:36:78:47:79:52:8d:0c:a3:75:0f:7d:bd:61:9a:1b: c4:f7:6e:28:ba:e9:bb:17:e4:80:fb:e1:1e:1a:34:a4:c8:42: 43:74:0c:f7:c0:f0:d2:70:1e:57:a0:2b:29:13:72:34:1a:04: fb:7b:9e:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjUxMjIyMTgyNDQ4WhcNMjUxMjI5MTgyNDQ4WjAYMRYwFAYD VQQDDA02OTQ5OGNmMC1iYzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLuBnzZGKh0XRdqeSztN/QfN3DgInWbd1jFu6fNL0l1gupVr99fAw/nFgLzw 6bfJqqIVADm56hauLFflfBhZKNveEA8im2ucDCHMjSVPnfmShh8HkeKoCi+Hag2c CdI6UI9HJPTj8pY0zmpdz3t7BBZ3uZajybcIu/Ug9eU/sDW1E6utCZF/Z3oy/EhW CE6hbD0S/xWLkGCjq8DxQimIBsXy6QejmBuB7sR8Wr4UfaPh+Hdet8BNb9fV15hx 5bpIWUNV6mR6tHwRhmam7vITDgobwZQo5rlEWpAwIG0HDQaotPa5AUlOuAtPOC7Z YYJC3oIDuj9viTBEpq9+3juDoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9DfYHO w8Wa5surU0UmJLfUNCM5MB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNsp9wyOgBSOU9NqdgPu191rdqI0myDhTZjDtvrA4/yO8jAXlJ2kcH iwZPXg7HRDeryrW5W4t74/IhKqPjkLu6fT7bUBTstk1VdBSMYMVtKmV1+NhLMT6U Z4wL0XJAai9VEcxvYQgDHEy++X5ADwMjlk3dPB48uegb11IgpVpOylf3L2Ysiuvj 8t1Tb4/lI2KtLOerLT/NCNzgDXDPbO82tkd/403/8tZBbo1GfAlSVNzud2gj1PSH MeuZiFcfr7OMH4sSyQQRJU02eEd5Uo0Mo3UPfb1hmhvE924ouum7F+SA++EeGjSk yEJDdAz3wPDScB5XoCspE3I0GgT7e55v -----END CERTIFICATE-----Generated at Wed Dec 24 02:18:48 2025 by rpki-client