This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft File: mWsZb8o8chhx7p4UE5Mri1DtCas.mft (raw, json) Hash identifier: 97zJj3CqeI6ozH7nShxRAjF1cqNcX2B9j4U54KzU3io= Subject key identifier: 71:AA:DC:7B:E7:66:CB:9A:11:F8:61:92:1A:BD:14:83:D9:7F:4C:64 Authority key identifier: 99:6B:19:6F:CA:3C:72:18:71:EE:9E:14:13:93:2B:8B:50:ED:09:AB Certificate issuer: /CN=A91164D3/serialNumber=996B196FCA3C721871EE9E1413932B8B50ED09AB Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft Manifest number: 0117 Signing time: Tue 23 Dec 2025 03:48:59 +0000 Manifest this update: Tue 23 Dec 2025 03:48:59 +0000 Manifest next update: Tue 30 Dec 2025 03:48:59 +0000 Files and hashes: 1: mWsZb8o8chhx7p4UE5Mri1DtCas.crl (hash: y5NB9CSsGX77ePvhk6QI6KbbgNSgDdA5HipwyIG7wUk=) 2: 934F8250338A11EFB9C7A738C4F9AE02.roa (hash: FWDEQfcrySfMIWIlPkoTcMajRo2lEM/ZyKql4949RJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.crl rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91164D3, serialNumber=996B196FCA3C721871EE9E1413932B8B50ED09AB Validity Not Before: Dec 23 03:48:59 2025 GMT Not After : Dec 30 03:48:59 2025 GMT Subject: CN=694a112b-ccec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:52:12:02:c7:2f:b2:40:9a:36:30:0f:4a:90: 5b:e5:a5:63:26:cd:44:d6:7e:f3:40:aa:f5:db:c0: 2f:6c:15:0b:ba:b3:9e:89:c3:f7:12:c4:c4:a6:64: cf:46:5c:0c:88:85:61:55:06:5e:f7:fd:89:e3:e9: 3f:fe:03:05:e8:9f:1b:d8:da:66:a2:fb:3c:a0:1a: 7d:a1:23:51:52:6e:ec:a2:52:5e:bb:41:7e:04:1d: 09:77:b6:d7:3d:10:a8:ab:ab:2c:5c:05:11:76:a5: f6:04:5c:4f:9c:e7:72:69:20:40:c3:1b:56:68:44: 7f:ca:1e:41:64:49:1e:57:e8:12:04:01:69:98:b6: c2:af:f7:30:cf:c7:8d:33:9b:ab:d6:34:88:9d:50: e9:68:b9:b6:d2:69:df:97:0d:5a:ac:c3:11:e6:2a: 65:28:0f:40:60:a4:50:91:2e:cb:e9:a5:f1:b0:5d: 83:6b:19:7a:a2:ba:17:a5:4b:7e:22:10:6a:cf:65: ea:bf:18:54:e7:f1:c5:86:c8:62:2d:e6:51:b7:df: d9:c5:d1:ab:89:7f:de:78:c3:df:b2:cd:61:36:c9: 45:c1:38:24:0c:ba:d0:60:a6:47:7b:de:31:42:0d: be:28:33:82:98:45:78:3c:8e:24:c8:ca:6b:7f:18: c7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:AA:DC:7B:E7:66:CB:9A:11:F8:61:92:1A:BD:14:83:D9:7F:4C:64 X509v3 Authority Key Identifier: keyid:99:6B:19:6F:CA:3C:72:18:71:EE:9E:14:13:93:2B:8B:50:ED:09:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:b3:28:38:26:6f:8f:01:88:13:20:0c:70:a8:ea:b4:2b:f1: 3f:fd:ee:b9:9d:2b:96:f5:ba:45:8a:b8:4a:c2:cf:6c:6c:2d: 02:b5:b0:03:1c:86:2d:ef:bd:85:18:e1:93:5e:1c:d7:de:10: 29:0e:b2:56:ff:11:5b:1c:78:98:c2:8e:b9:7f:17:18:73:3e: 34:ee:a1:06:a6:b5:ff:b7:61:a0:a5:b0:49:e7:47:86:6b:9a: 11:4e:21:01:28:45:01:a0:96:06:18:ce:28:68:6f:41:34:86: 33:5d:3c:14:ef:5f:a4:c1:fe:ec:88:4d:f9:d8:31:c4:2a:37: 68:e1:0d:06:b7:7f:5c:e7:b0:aa:0d:cc:6a:f0:ae:2c:cd:42: 05:d3:a7:98:71:d8:b8:60:ae:4d:4d:03:6c:7e:1e:ad:9a:12: 47:de:27:bd:58:eb:a6:a2:2d:48:14:55:d0:3c:0d:ad:e3:da: a6:f8:fc:2e:7b:24:ab:51:2a:45:8f:a7:24:c9:d7:ee:95:55: 66:a0:b9:21:bc:6f:ea:9b:cf:ae:c4:66:ca:87:20:24:b2:56: 60:5c:62:d5:bc:1b:ba:e6:02:ba:43:44:7a:17:3a:1b:99:14: c4:a2:47:de:0d:0b:ef:3b:c3:ff:8a:69:b9:4d:bd:f2:db:ab: 7b:f2:8c:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0RDMxMTAvBgNVBAUTKDk5NkIxOTZGQ0EzQzcyMTg3MUVFOUUxNDEzOTMyQjhC NTBFRDA5QUIwHhcNMjUxMjIzMDM0ODU5WhcNMjUxMjMwMDM0ODU5WjAYMRYwFAYD VQQDDA02OTRhMTEyYi1jY2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFISAscvskCaNjAPSpBb5aVjJs1E1n7zQKr128AvbBULurOeicP3EsTEpmTP RlwMiIVhVQZe9/2J4+k//gMF6J8b2Npmovs8oBp9oSNRUm7solJeu0F+BB0Jd7bX PRCoq6ssXAURdqX2BFxPnOdyaSBAwxtWaER/yh5BZEkeV+gSBAFpmLbCr/cwz8eN M5ur1jSInVDpaLm20mnflw1arMMR5iplKA9AYKRQkS7L6aXxsF2Daxl6oroXpUt+ IhBqz2XqvxhU5/HFhshiLeZRt9/ZxdGriX/eeMPfss1hNslFwTgkDLrQYKZHe94x Qg2+KDOCmEV4PI4kyMprfxjHPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGq3Hvn ZsuaEfhhkhq9FIPZf0xkMB8GA1UdIwQYMBaAFJlrGW/KPHIYce6eFBOTK4tQ7Qmr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjREMy8xNTUwNDhFQTMz ODkxMUVGOTlGRDFDMjdDNEY5QUUwMi9tV3NaYjhvOGNoaHg3cDRVRTVNcmkxRHRD YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Xc1piOG84Y2hoeDdwNFVFNU1yaTFEdENhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjREMy8xNTUwNDhFQTMzODkxMUVGOTlGRDFDMjdDNEY5QUUwMi9tV3NaYjhvOGNo aHg3cDRVRTVNcmkxRHRDYXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9syg4Jm+PAYgTIAxwqOq0K/E//e65nSuW9bpFirhKws9sbC0CtbAD HIYt772FGOGTXhzX3hApDrJW/xFbHHiYwo65fxcYcz407qEGprX/t2GgpbBJ50eG a5oRTiEBKEUBoJYGGM4oaG9BNIYzXTwU71+kwf7siE352DHEKjdo4Q0Gt39c57Cq Dcxq8K4szUIF06eYcdi4YK5NTQNsfh6tmhJH3ie9WOumoi1IFFXQPA2t49qm+Pwu eySrUSpFj6ckydfulVVmoLkhvG/qm8+uxGbKhyAkslZgXGLVvBu65gK6Q0R6Fzob mRTEokfeDQvvO8P/imm5Tb3y26t78owh -----END CERTIFICATE-----Generated at Tue Dec 23 18:11:26 2025 by rpki-client