This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft File: RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft (raw, json) Hash identifier: RhpW4PwloLb/7PROKRBvKxOMqQLez5fw0d0rwE8pFZc= Subject key identifier: 5F:BC:89:F5:0C:F5:B7:51:70:63:CC:66:7B:B3:95:8E:CB:40:A9:08 Authority key identifier: 44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 Certificate issuer: /CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft Manifest number: E8 Signing time: Tue 23 Dec 2025 04:23:26 +0000 Manifest this update: Tue 23 Dec 2025 04:23:26 +0000 Manifest next update: Tue 30 Dec 2025 04:23:26 +0000 Files and hashes: 1: RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl (hash: kJjvXYR+a0LK01LnMZZkHOjCD6vDpD7DHFqN1sLq4hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:23:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91807BB, serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Validity Not Before: Dec 23 04:23:26 2025 GMT Not After : Dec 30 04:23:26 2025 GMT Subject: CN=694a193e-a415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:13:3b:71:55:8a:6e:47:55:0f:97:0e:1c:fb: 66:30:2e:13:50:51:55:7e:0d:2a:f9:c6:2b:cd:81: cc:43:b1:7c:fe:0a:78:5c:ca:00:a0:fd:f0:f1:74: 73:54:24:28:b1:fc:12:1a:ca:a6:80:52:ca:32:4c: a0:15:c3:2f:36:1b:78:fa:4c:a7:6c:62:6e:42:70: 2e:f9:de:b6:0b:d0:ff:47:3f:54:e6:8b:58:c8:58: 61:63:f2:8c:fb:d2:bc:c8:24:bd:39:ae:66:e9:8e: be:38:26:4b:cb:b7:8f:af:3c:f1:84:ff:5a:8f:91: a0:4b:5d:90:77:ad:06:9c:21:f4:9e:13:7a:52:6b: da:70:e9:f1:7d:2a:c5:82:80:c1:b6:30:98:0f:bd: 45:70:d0:ee:b0:c3:c1:b4:8f:01:00:c3:f7:0e:16: 3f:33:51:4b:e0:75:b3:fb:7a:4c:62:f6:9c:14:54: de:0c:98:32:ac:53:de:d6:19:08:18:af:33:d7:99: 82:b7:89:08:61:b7:20:4d:c2:f9:87:63:78:0f:ff: 60:de:fb:83:6e:6d:66:5d:7b:15:ea:12:5d:fa:84: 2e:fc:d1:3b:19:c1:72:b2:77:22:9f:bf:9d:de:9a: 7c:9a:1d:25:d2:b3:86:e9:46:28:f6:e9:0e:1c:f9: e0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:BC:89:F5:0C:F5:B7:51:70:63:CC:66:7B:B3:95:8E:CB:40:A9:08 X509v3 Authority Key Identifier: keyid:44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:bd:ff:12:89:95:d3:17:0e:14:2d:2b:7e:6b:9d:a7:37:2b: 56:e1:62:04:2c:a9:96:67:dc:cf:b8:01:07:3a:72:b6:72:62: 16:e9:f3:18:f7:d1:50:76:04:82:6a:81:7b:f3:66:17:c5:23: ec:e5:24:22:7e:dc:e1:a2:48:19:00:c8:e7:da:6e:b5:6d:ae: 1a:61:ee:18:6f:fe:4c:3c:6b:a2:a6:c0:2e:17:84:dc:45:a6: e7:85:00:3c:2a:31:e7:a7:88:8a:45:37:bf:77:2d:22:72:6a: b4:d4:f4:b9:09:d3:8b:a7:91:e4:08:4b:93:8a:70:c6:bc:6e: 7d:a7:50:d0:0b:2a:d4:c3:34:14:2f:2e:e0:2a:bf:90:e7:32: 91:81:da:18:1c:c5:4d:1a:78:16:bf:09:f0:1e:b2:18:be:a9: 7d:6b:bd:67:c5:44:bd:bc:d6:f2:b3:d4:55:5e:b8:bd:df:f6: 40:01:9c:24:7c:9b:fe:e0:97:9e:c3:53:e7:14:a7:f9:af:89: f8:19:39:b1:eb:a1:cf:52:54:5f:c7:73:b1:dd:03:03:bf:1c: b1:ab:01:87:28:7f:07:cc:48:96:f6:07:72:51:38:f5:29:57: 13:54:54:1f:86:1c:2a:e1:12:b2:f6:49:5d:d7:48:ef:64:f7: 61:41:0f:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA3QkIxMTAvBgNVBAUTKDQ0RjlDNERBNDdFNjM3MUZEMUM5RjlGOEU1NjREMTgw M0EwRjMyODcwHhcNMjUxMjIzMDQyMzI2WhcNMjUxMjMwMDQyMzI2WjAYMRYwFAYD VQQDDA02OTRhMTkzZS1hNDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshM7cVWKbkdVD5cOHPtmMC4TUFFVfg0q+cYrzYHMQ7F8/gp4XMoAoP3w8XRz VCQosfwSGsqmgFLKMkygFcMvNht4+kynbGJuQnAu+d62C9D/Rz9U5otYyFhhY/KM +9K8yCS9Oa5m6Y6+OCZLy7ePrzzxhP9aj5GgS12Qd60GnCH0nhN6UmvacOnxfSrF goDBtjCYD71FcNDusMPBtI8BAMP3DhY/M1FL4HWz+3pMYvacFFTeDJgyrFPe1hkI GK8z15mCt4kIYbcgTcL5h2N4D/9g3vuDbm1mXXsV6hJd+oQu/NE7GcFysncin7+d 3pp8mh0l0rOG6UYo9ukOHPngfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+8ifUM 9bdRcGPMZnuzlY7LQKkIMB8GA1UdIwQYMBaAFET5xNpH5jcf0cn5+OVk0YA6DzKH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDdCQi8wQUU0ODI5MDdD QjMxMUVGOTZDOUYyNTBDNEY5QUUwMi9SUG5FMmtmbU54X1J5Zm40NVdUUmdEb1BN b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JQbkUya2ZtTnhfUnlmbjQ1V1RSZ0RvUE1vYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDdCQi8wQUU0ODI5MDdDQjMxMUVGOTZDOUYyNTBDNEY5QUUwMi9SUG5FMmtmbU54 X1J5Zm40NVdUUmdEb1BNb2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhvf8SiZXTFw4ULSt+a52nNytW4WIELKmWZ9zPuAEHOnK2cmIW6fMY 99FQdgSCaoF782YXxSPs5SQiftzhokgZAMjn2m61ba4aYe4Yb/5MPGuipsAuF4Tc RabnhQA8KjHnp4iKRTe/dy0icmq01PS5CdOLp5HkCEuTinDGvG59p1DQCyrUwzQU Ly7gKr+Q5zKRgdoYHMVNGngWvwnwHrIYvql9a71nxUS9vNbys9RVXri93/ZAAZwk fJv+4Jeew1PnFKf5r4n4GTmx66HPUlRfx3Ox3QMDvxyxqwGHKH8HzEiW9gdyUTj1 KVcTVFQfhhwq4RKy9kld10jvZPdhQQ+y -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:43 2025 by rpki-client