This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft File: N-A1JLWEfb6tAP43jEar0MpwRfg.mft (raw, json) Hash identifier: l8VlPtt2/5h9hDDYLqZTQiidOwOF7xxZrpCByp2S5nc= Subject key identifier: 94:13:9E:AC:DE:3B:0D:C8:46:18:24:A3:C4:12:52:F1:12:46:77:44 Authority key identifier: 37:E0:35:24:B5:84:7D:BE:AD:00:FE:37:8C:46:AB:D0:CA:70:45:F8 Certificate issuer: /CN=A91799A0/serialNumber=37E03524B5847DBEAD00FE378C46ABD0CA7045F8 Certificate serial: 041B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft Manifest number: 040B Signing time: Mon 22 Dec 2025 23:29:24 +0000 Manifest this update: Mon 22 Dec 2025 23:29:24 +0000 Manifest next update: Mon 29 Dec 2025 23:29:24 +0000 Files and hashes: 1: N-A1JLWEfb6tAP43jEar0MpwRfg.crl (hash: xCSvlE3cM/rBh+7F78X3pACg6Rzq5AT2H/MCbPBVJkg=) 2: B0A47CAE7DA711EFB7190E26C4F9AE02.roa (hash: sWYV6f6Mq/gOtK8jl6qm1FHDusM3lQd7MnyI98UBc+A=) 3: 99C173847DA711EFBC48DB25C4F9AE02.roa (hash: WOIniZiHfKK2LXS4UqzBre9hhY37jz+wS/A1b1+/uig=) 4: 46A569387DA911EFAC4E642AC4F9AE02.roa (hash: OW6cdcKORRWUDvnbMhKStDDiNQb7XK3dKBXO16VeQlo=) 5: F39CE41C7C3811EFBF44AF4FC4F9AE02.roa (hash: mzXsIviLzqNFssHWjKdPxrfrQjIOrQyDdrnRheg5sAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.crl rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1051 (0x41b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91799A0, serialNumber=37E03524B5847DBEAD00FE378C46ABD0CA7045F8 Validity Not Before: Dec 22 23:29:24 2025 GMT Not After : Dec 29 23:29:24 2025 GMT Subject: CN=6949d454-fff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:75:4b:30:80:da:bd:57:b6:a6:fd:e5:3f:e6: 13:49:5e:38:7e:d4:73:e2:e2:4f:a9:58:bb:50:9f: d7:0c:aa:e6:16:da:f5:d4:ab:e0:f6:f3:b1:1c:ae: 68:68:9b:5e:cf:26:65:f2:17:0c:1f:f9:83:c7:7f: c5:14:93:56:e0:68:9b:fe:7b:8c:8a:ba:40:11:6e: c9:81:b9:79:aa:3a:d4:86:36:a6:96:37:fd:49:bb: a3:01:8b:69:e2:31:e3:d3:3a:fc:13:e1:c6:8f:0a: ff:e3:a6:1e:dd:3a:19:e8:dc:73:00:c1:7f:d5:2e: 40:ef:65:6e:6d:f3:8d:54:cc:e0:97:cc:9e:d9:fb: 50:d3:f7:9e:36:cf:0e:c2:e3:95:e6:1a:fd:40:7e: 0d:8e:6a:50:bf:1a:2a:d9:ef:e9:a8:b1:a9:11:6b: 1d:06:1f:94:44:7d:1c:51:d0:a0:1d:b4:97:92:37: f4:c2:38:be:7b:4b:d1:e7:3a:cd:b2:ad:0b:45:d8: 8a:78:99:91:33:ca:f1:d6:b2:83:8c:d2:83:18:ee: f0:90:58:cf:b5:f9:c8:5d:74:da:c6:c7:7d:85:4a: 10:dc:8e:f4:f8:06:0a:70:c8:6a:0d:45:73:1d:ae: 8d:f6:de:50:80:06:9a:ac:5c:42:cc:a0:2d:3c:f1: c8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:13:9E:AC:DE:3B:0D:C8:46:18:24:A3:C4:12:52:F1:12:46:77:44 X509v3 Authority Key Identifier: keyid:37:E0:35:24:B5:84:7D:BE:AD:00:FE:37:8C:46:AB:D0:CA:70:45:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-A1JLWEfb6tAP43jEar0MpwRfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91799A0/40EDA11E9AE811EC974B491CC4F9AE02/N-A1JLWEfb6tAP43jEar0MpwRfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:f1:2e:38:be:22:8c:c4:86:7b:a1:e9:4c:99:e6:34:27:df: 94:9e:fb:12:d2:6a:0c:8a:fd:1f:dd:c0:58:e4:93:5d:1a:ff: 25:d1:6a:21:e5:e3:d2:bb:4b:7f:61:b3:9b:c1:b4:52:80:45: ea:ad:a3:86:57:f3:e9:02:9e:ad:ac:8a:61:a6:a4:85:b4:81: 7c:00:ea:26:3a:13:78:5f:7f:4b:c5:36:f7:87:30:3b:83:32: 90:29:be:4d:91:d7:59:3c:32:d4:72:66:11:72:c3:55:e5:f1: 7b:0a:fe:be:ff:0f:8c:8f:14:35:6f:b5:f5:a7:e4:67:ee:17: 53:8b:42:65:3a:67:5d:09:6d:b6:26:8f:3e:f5:cd:25:a5:35: 62:8c:6a:c6:c7:09:43:47:1e:22:70:84:82:46:be:a3:fb:ed: ee:47:71:d1:41:f7:eb:7b:e3:fa:04:43:ba:03:d3:b5:29:d6: 7b:eb:ff:d8:0e:86:14:0f:88:20:65:58:27:a1:f5:de:64:16: 6d:02:87:10:23:39:5c:56:0e:2d:c8:7e:f0:b6:13:42:70:f0: f8:4c:f3:03:81:81:85:71:0e:95:2f:15:96:e3:7f:20:84:c7: 45:8a:1e:2b:3f:a4:37:13:63:10:18:7f:e5:69:78:09:d1:80: f7:b3:df:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5QTAxMTAvBgNVBAUTKDM3RTAzNTI0QjU4NDdEQkVBRDAwRkUzNzhDNDZBQkQw Q0E3MDQ1RjgwHhcNMjUxMjIyMjMyOTI0WhcNMjUxMjI5MjMyOTI0WjAYMRYwFAYD VQQDDA02OTQ5ZDQ1NC1mZmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnVLMIDavVe2pv3lP+YTSV44ftRz4uJPqVi7UJ/XDKrmFtr11Kvg9vOxHK5o aJtezyZl8hcMH/mDx3/FFJNW4Gib/nuMirpAEW7Jgbl5qjrUhjamljf9SbujAYtp 4jHj0zr8E+HGjwr/46Ye3ToZ6NxzAMF/1S5A72VubfONVMzgl8ye2ftQ0/eeNs8O wuOV5hr9QH4NjmpQvxoq2e/pqLGpEWsdBh+URH0cUdCgHbSXkjf0wji+e0vR5zrN sq0LRdiKeJmRM8rx1rKDjNKDGO7wkFjPtfnIXXTaxsd9hUoQ3I70+AYKcMhqDUVz Ha6N9t5QgAaarFxCzKAtPPHI6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQTnqze Ow3IRhgko8QSUvESRndEMB8GA1UdIwQYMBaAFDfgNSS1hH2+rQD+N4xGq9DKcEX4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTlBMC80MEVEQTExRTlB RTgxMUVDOTc0QjQ5MUNDNEY5QUUwMi9OLUExSkxXRWZiNnRBUDQzakVhcjBNcHdS ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04tQTFKTFdFZmI2dEFQNDNqRWFyME1wd1JmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTlBMC80MEVEQTExRTlBRTgxMUVDOTc0QjQ5MUNDNEY5QUUwMi9OLUExSkxXRWZi NnRBUDQzakVhcjBNcHdSZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO8S44viKMxIZ7oelMmeY0J9+UnvsS0moMiv0f3cBY5JNdGv8l0Woh 5ePSu0t/YbObwbRSgEXqraOGV/PpAp6trIphpqSFtIF8AOomOhN4X39LxTb3hzA7 gzKQKb5NkddZPDLUcmYRcsNV5fF7Cv6+/w+MjxQ1b7X1p+Rn7hdTi0JlOmddCW22 Jo8+9c0lpTVijGrGxwlDRx4icISCRr6j++3uR3HRQffre+P6BEO6A9O1KdZ76//Y DoYUD4ggZVgnofXeZBZtAocQIzlcVg4tyH7wthNCcPD4TPMDgYGFcQ6VLxWW438g hMdFih4rP6Q3E2MQGH/laXgJ0YD3s98t -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:24 2025 by rpki-client