This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft File: s1py5W8JAsfhuNgSxdg2VBHdox0.mft (raw, json) Hash identifier: A3uaFhOQyb1Og1m2ehsu7CD8EFY6XvjPCr2hOohTMr0= Subject key identifier: 54:AE:EA:06:B9:D9:9F:3E:EA:27:D9:D5:B7:6D:CD:7A:8A:D2:2C:E6 Authority key identifier: B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D Certificate issuer: /CN=A9150B91/serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Certificate serial: 1534 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft Manifest number: 152A Signing time: Sat 20 Dec 2025 16:34:25 +0000 Manifest this update: Sat 20 Dec 2025 16:34:25 +0000 Manifest next update: Sat 27 Dec 2025 16:34:25 +0000 Files and hashes: 1: s1py5W8JAsfhuNgSxdg2VBHdox0.crl (hash: k9M02G3yPXTr9ppRDgyFttwV1uwv6jPP9kH+/vHyEBg=) 2: 4674A74E5DB211E8A30DF983C4F9AE02.roa (hash: N2bOeXWWMqXx3Cr2oJVAhS+4yD+JJsp3ikRjUaNFufQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5428 (0x1534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B91, serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Validity Not Before: Dec 20 16:34:25 2025 GMT Not After : Dec 27 16:34:25 2025 GMT Subject: CN=6946d011-08ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1c:7a:46:37:37:1e:27:93:10:ba:5c:e1:87: e2:e9:79:3b:8b:62:60:53:67:5b:b7:07:00:21:15: d6:54:77:ca:0d:a7:e2:f1:d4:ed:10:e1:d4:d8:9e: 75:e1:ac:dc:bf:8b:44:69:d5:5b:fe:41:53:21:28: 4e:65:67:c3:e2:06:fd:0f:4c:04:17:32:2e:f8:a7: 3e:ef:b7:20:26:77:1d:28:3e:c2:4e:e7:fd:e8:cb: 41:1f:4a:d5:eb:71:94:15:da:54:a9:4b:c0:c9:7b: 00:c5:eb:b9:26:04:a5:cb:9f:9d:ab:52:df:69:61: 88:5c:f1:e9:2c:b5:eb:61:5c:0a:a1:3e:e8:a8:86: f1:a6:d1:e3:cb:7e:5e:8e:34:6f:2b:d0:e2:5a:21: 40:aa:a9:05:26:7f:ab:68:39:a0:dc:16:3d:41:2f: c3:8a:62:55:2d:f1:ad:00:06:5c:5e:0e:62:59:b6: 78:0a:59:96:e1:4b:ff:e9:9e:ca:e6:d7:fb:f0:ff: 19:c6:9f:71:f0:9f:b9:5c:46:69:3e:c2:15:bf:64: ec:09:db:13:a4:5a:9c:53:fb:6c:50:e3:49:36:64: 14:81:03:75:b7:12:4e:90:61:75:7e:52:33:f9:9b: 51:e1:58:98:27:57:f7:e5:7f:78:8e:10:d0:8e:9d: 86:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:AE:EA:06:B9:D9:9F:3E:EA:27:D9:D5:B7:6D:CD:7A:8A:D2:2C:E6 X509v3 Authority Key Identifier: keyid:B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:50:70:93:11:aa:69:2b:4a:8c:08:b7:f4:4f:92:b9:e0:e3: 43:12:14:dc:74:a9:7c:37:e3:42:c5:ec:65:2b:21:c7:93:19: 80:15:5c:fc:5f:16:aa:c0:88:90:6d:ec:ee:63:46:b6:1f:0b: a7:15:42:c8:86:3c:b8:a6:e1:d8:32:c4:0c:ab:a3:a9:80:a4: b5:6d:5e:4f:4a:a2:5f:31:b3:a4:72:40:31:84:58:af:10:96: c6:87:9e:94:67:8e:43:09:1e:bc:68:be:ec:55:22:e3:69:de: ac:70:e4:16:c9:11:dd:f6:9d:76:23:f9:e9:32:12:f4:ba:55: ed:22:47:a1:d0:3b:b8:59:d5:b8:5d:5e:85:d8:73:75:e5:a7: 04:5f:6d:14:43:46:32:58:61:e9:d5:33:c8:96:9d:ba:96:8a: bf:f1:39:0d:49:d5:8f:a6:2b:44:3f:50:77:55:92:fb:6a:b4: 1e:3f:8e:20:19:87:ce:d2:6c:0f:10:93:f8:66:22:5e:d6:e0: fb:72:c0:a1:8b:ec:9b:25:da:f7:de:0e:d0:40:ef:bf:98:85: 8d:ab:90:62:b1:ee:73:f4:4c:e7:da:dc:27:3d:27:b5:42:da: 86:ca:65:97:c1:30:26:8a:b6:87:cf:c4:e8:e7:b5:78:6c:7f: 58:f8:0b:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCOTExMTAvBgNVBAUTKEIzNUE3MkU1NkYwOTAyQzdFMUI4RDgxMkM1RDgzNjU0 MTFEREEzMUQwHhcNMjUxMjIwMTYzNDI1WhcNMjUxMjI3MTYzNDI1WjAYMRYwFAYD VQQDDA02OTQ2ZDAxMS0wOGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhx6Rjc3HieTELpc4Yfi6Xk7i2JgU2dbtwcAIRXWVHfKDafi8dTtEOHU2J51 4azcv4tEadVb/kFTIShOZWfD4gb9D0wEFzIu+Kc+77cgJncdKD7CTuf96MtBH0rV 63GUFdpUqUvAyXsAxeu5JgSly5+dq1LfaWGIXPHpLLXrYVwKoT7oqIbxptHjy35e jjRvK9DiWiFAqqkFJn+raDmg3BY9QS/DimJVLfGtAAZcXg5iWbZ4ClmW4Uv/6Z7K 5tf78P8Zxp9x8J+5XEZpPsIVv2TsCdsTpFqcU/tsUONJNmQUgQN1txJOkGF1flIz +ZtR4ViYJ1f35X94jhDQjp2GJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSu6ga5 2Z8+6ifZ1bdtzXqK0izmMB8GA1UdIwQYMBaAFLNacuVvCQLH4bjYEsXYNlQR3aMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI5MS83NjMwNEE3ODVB OTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFzZmh1TmdTeGRnMlZCSGRv eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MxcHk1VzhKQXNmaHVOZ1N4ZGcyVkJIZG94MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI5MS83NjMwNEE3ODVBOTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFz Zmh1TmdTeGRnMlZCSGRveDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmUHCTEappK0qMCLf0T5K54ONDEhTcdKl8N+NCxexlKyHHkxmAFVz8 XxaqwIiQbezuY0a2HwunFULIhjy4puHYMsQMq6OpgKS1bV5PSqJfMbOkckAxhFiv EJbGh56UZ45DCR68aL7sVSLjad6scOQWyRHd9p12I/npMhL0ulXtIkeh0Du4WdW4 XV6F2HN15acEX20UQ0YyWGHp1TPIlp26loq/8TkNSdWPpitEP1B3VZL7arQeP44g GYfO0mwPEJP4ZiJe1uD7csChi+ybJdr33g7QQO+/mIWNq5Bise5z9Ezn2twnPSe1 QtqGymWXwTAmiraHz8To57V4bH9Y+Atj -----END CERTIFICATE-----Generated at Sun Dec 21 19:45:47 2025 by rpki-client