This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft File: aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft (raw, json) Hash identifier: mkdWqErJWa+dcNEkiANmjH7HYV4mKOH7HMLfuyoHGqM= Subject key identifier: AF:E7:57:41:D6:14:2F:D5:67:B6:8B:60:55:CA:D6:A0:DA:76:09:E7 Authority key identifier: 68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A Certificate issuer: /CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Certificate serial: 0434 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft Manifest number: 042D Signing time: Thu 18 Dec 2025 23:40:12 +0000 Manifest this update: Thu 18 Dec 2025 23:40:12 +0000 Manifest next update: Thu 25 Dec 2025 23:40:12 +0000 Files and hashes: 1: aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl (hash: VCjrdepNI5ond7w5YIujikXJpFNpGzhEadkdB3aM9JI=) 2: 97E8ACD68E6611EC9EBE626FC4F9AE02.roa (hash: 3IMIlDIIJ2OW6DDbM2+fc2GlxtLv0j04UxGtHanf/68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91289A2, serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Validity Not Before: Dec 18 23:40:12 2025 GMT Not After : Dec 25 23:40:12 2025 GMT Subject: CN=694490dc-ac08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b9:fa:66:de:14:6b:8e:31:4b:9f:97:75:ff: e2:f5:da:f7:73:8f:eb:c2:95:b0:ad:d9:cd:c9:56: 6f:99:b4:ae:a8:dc:3c:80:27:e0:12:d2:d5:ce:03: 55:61:e2:22:f9:7e:66:ec:5b:37:cc:00:10:45:27: 51:43:c7:23:6d:31:98:6c:65:85:52:3f:fb:59:db: 01:90:a0:ce:96:b4:84:01:f9:a6:e8:1f:dc:06:9e: 59:f0:01:4e:8a:cd:95:7d:92:a7:4b:ad:61:dc:53: c6:c1:6c:f8:8f:0d:a4:ab:f0:2f:31:5d:ab:56:35: 86:6e:ac:4d:fc:72:66:a9:86:2c:80:ee:65:4f:53: f1:cd:86:21:5c:76:ad:fd:dc:2b:9d:a0:6b:17:b8: 9b:6a:a4:0a:f7:9a:62:72:7a:41:48:e9:64:29:4e: c3:bc:6e:46:ef:47:50:54:a8:b8:73:9d:03:e8:67: 49:e0:61:6a:a2:6b:8b:6f:13:a7:6e:e8:2a:24:8b: 3b:e5:5f:c7:7c:e9:91:1b:a8:b0:c3:55:35:46:85: a7:6d:41:f9:58:d2:6b:44:30:1b:35:dd:f4:ac:4e: 84:20:7c:fb:ce:de:56:87:af:5a:86:5a:a3:e8:49: a9:f4:47:55:66:64:3e:55:35:f1:33:8c:4f:d8:6d: 8c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E7:57:41:D6:14:2F:D5:67:B6:8B:60:55:CA:D6:A0:DA:76:09:E7 X509v3 Authority Key Identifier: keyid:68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:a8:45:77:4d:0a:e7:dc:97:c2:ad:b0:f0:3f:ac:90:9e:52: b8:b4:2b:ce:8e:89:a6:5e:1e:a2:b0:88:18:9f:9e:d5:2c:b1: fd:73:c0:c1:1a:c9:51:70:0e:dc:46:dd:f2:a1:f3:34:5a:c2: c3:b2:7c:10:80:f4:23:75:4d:b7:42:1b:38:70:75:53:93:3b: 82:56:90:4a:79:25:ae:71:b2:d8:36:1d:76:3e:73:d9:27:fd: 0d:06:7d:32:a4:dc:03:15:f3:b9:2e:51:d7:d9:f8:87:46:56: 86:79:fa:cc:cf:37:ef:ae:e6:36:fb:48:48:d7:15:92:5d:47: ba:05:98:fb:57:a8:95:c2:25:5f:6f:91:68:dd:7b:4a:8c:82: b4:31:d9:57:c0:77:a6:04:f8:9d:b6:11:0a:94:02:fe:8c:d0: f5:be:93:f9:35:d7:18:cb:a1:a4:7b:25:59:4c:7f:be:1d:37: 75:4a:3f:98:2a:28:ba:a2:1a:0d:cf:d9:0c:32:a2:f0:1f:11: 47:af:bc:a3:70:75:43:0e:b1:58:a8:c4:a1:a9:74:8e:f1:fa: 2e:8b:03:f5:8f:4e:19:0c:de:dd:1b:5e:ab:7c:89:95:73:23: ef:19:0f:a9:3f:1a:57:78:4a:a0:aa:d3:a6:06:3f:c2:8f:61: 8d:4a:74:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5QTIxMTAvBgNVBAUTKDY4MTQwQzE1ODI1RUQ1MEEwMzc4MTA1MkFEREUyRUNB MUE2RkVBM0EwHhcNMjUxMjE4MjM0MDEyWhcNMjUxMjI1MjM0MDEyWjAYMRYwFAYD VQQDDA02OTQ0OTBkYy1hYzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrn6Zt4Ua44xS5+Xdf/i9dr3c4/rwpWwrdnNyVZvmbSuqNw8gCfgEtLVzgNV YeIi+X5m7Fs3zAAQRSdRQ8cjbTGYbGWFUj/7WdsBkKDOlrSEAfmm6B/cBp5Z8AFO is2VfZKnS61h3FPGwWz4jw2kq/AvMV2rVjWGbqxN/HJmqYYsgO5lT1PxzYYhXHat /dwrnaBrF7ibaqQK95picnpBSOlkKU7DvG5G70dQVKi4c50D6GdJ4GFqomuLbxOn bugqJIs75V/HfOmRG6iww1U1RoWnbUH5WNJrRDAbNd30rE6EIHz7zt5Wh69ahlqj 6Emp9EdVZmQ+VTXxM4xP2G2M9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/nV0HW FC/VZ7aLYFXK1qDadgnnMB8GA1UdIwQYMBaAFGgUDBWCXtUKA3gQUq3eLsoab+o6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODlBMi9GQjUyRjY0RThF NjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFRb0RlQkJTcmQ0dXlocHY2 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUU1GWUplMVFvRGVCQlNyZDR1eWhwdjZqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODlBMi9GQjUyRjY0RThFNjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFR b0RlQkJTcmQ0dXlocHY2am8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUqEV3TQrn3JfCrbDwP6yQnlK4tCvOjommXh6isIgYn57VLLH9c8DB GslRcA7cRt3yofM0WsLDsnwQgPQjdU23Qhs4cHVTkzuCVpBKeSWucbLYNh12PnPZ J/0NBn0ypNwDFfO5LlHX2fiHRlaGefrMzzfvruY2+0hI1xWSXUe6BZj7V6iVwiVf b5Fo3XtKjIK0MdlXwHemBPidthEKlAL+jND1vpP5NdcYy6GkeyVZTH++HTd1Sj+Y Kii6ohoNz9kMMqLwHxFHr7yjcHVDDrFYqMShqXSO8fouiwP1j04ZDN7dG16rfImV cyPvGQ+pPxpXeEqgqtOmBj/Cj2GNSnSt -----END CERTIFICATE-----Generated at Sat Dec 20 10:33:59 2025 by rpki-client