This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.mft File: M5e4iQ4zfaCUjWl9QjDW_kYz0NA.mft (raw, json) Hash identifier: 8lo1KOkkc9poF26JXvrmYBfMAsV3dC8mashBtO/MALI= Subject key identifier: CE:99:83:9A:C8:73:CC:54:C7:31:C1:E8:08:82:C3:55:B5:23:08:66 Authority key identifier: 33:97:B8:89:0E:33:7D:A0:94:8D:69:7D:42:30:D6:FE:46:33:D0:D0 Certificate issuer: /CN=A91A4030/serialNumber=3397B8890E337DA0948D697D4230D6FE4633D0D0 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.mft Manifest number: 26 Signing time: Tue 23 Dec 2025 06:33:10 +0000 Manifest this update: Tue 23 Dec 2025 06:33:10 +0000 Manifest next update: Tue 30 Dec 2025 06:33:10 +0000 Files and hashes: 1: M5e4iQ4zfaCUjWl9QjDW_kYz0NA.crl (hash: gs7Y+CQg5f0BSn8WozoECFC6CnvSQqDFmgiDPPS9Uco=) 2: E56B8AFEAB1411F0B1936926C4F9AE02.roa (hash: kENvzHNKo6IjGoWcT7mvOgf2Y85E5p1Dl4B5gZlD2OE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.crl rsync://rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4030, serialNumber=3397B8890E337DA0948D697D4230D6FE4633D0D0 Validity Not Before: Dec 23 06:33:10 2025 GMT Not After : Dec 30 06:33:10 2025 GMT Subject: CN=694a37a6-94ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:61:32:65:2b:6e:2c:36:f4:35:cc:54:72:7c: e1:40:48:33:7c:f4:ab:44:cf:89:35:37:0b:8c:5f: b6:62:58:6d:d3:2b:5e:b3:b5:e0:56:bc:85:cf:de: d7:f7:d0:85:8d:69:a0:8b:f2:62:11:ab:0e:c9:48: f0:cd:09:7b:70:66:25:48:8e:5e:ed:be:f0:81:d7: 8a:ea:49:db:90:65:6d:9d:76:07:e7:72:dc:8e:3e: f5:5b:9e:64:38:43:7f:2b:06:f0:fc:49:3b:e5:3e: c5:5d:42:92:bf:08:4a:a0:62:3f:96:ac:4d:ba:ce: cd:1a:7e:49:94:a5:a3:b2:b9:34:5c:15:cc:72:4a: e2:b4:89:b9:dc:18:c9:7c:ab:37:bb:a4:b3:40:76: b5:cb:10:e3:c0:5d:0f:db:6c:d8:1f:14:7d:56:0e: 99:44:e2:dd:5d:2f:90:38:47:3a:4b:b7:71:5f:20: c2:1e:d1:0f:6c:61:75:91:e1:be:b7:d3:ac:a6:df: bc:84:e1:fd:d2:f5:d3:fc:47:e8:fd:50:fb:89:99: ce:9b:59:d3:25:fc:ce:1e:8d:d3:03:0d:ca:63:c1: 46:54:81:e9:cb:d3:57:eb:8d:95:54:a8:fb:42:4e: 2a:f7:78:24:e4:1a:3c:cf:96:f9:4b:3e:3c:da:eb: fe:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:99:83:9A:C8:73:CC:54:C7:31:C1:E8:08:82:C3:55:B5:23:08:66 X509v3 Authority Key Identifier: keyid:33:97:B8:89:0E:33:7D:A0:94:8D:69:7D:42:30:D6:FE:46:33:D0:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:da:9c:0d:41:e2:e4:54:b1:6d:09:26:8d:be:d1:1b:d0:ba: 57:83:d0:62:eb:3b:3a:91:5b:54:95:60:93:7e:3a:f5:9b:1c: da:f8:ee:a2:e3:0d:9d:00:2d:db:e5:1e:92:ba:49:5f:27:62: dc:2c:f2:7f:ae:e1:3b:2f:a8:26:2f:2c:20:53:86:2f:27:4f: 58:43:fc:fd:cc:7c:f8:46:90:37:06:fc:f0:89:7f:ad:4e:a4: 36:4f:3a:4d:4b:6f:eb:15:70:8f:4c:1d:30:bd:9e:80:78:52: 3d:0e:d4:66:d4:d3:35:d8:26:7c:2c:20:8d:3b:45:c5:3b:f5: 82:4e:01:60:cf:8d:c3:95:5a:b6:97:7e:b0:9a:1b:fb:dd:2d: d1:b3:32:72:4d:b4:0b:36:61:e2:50:52:47:bf:b5:10:0f:ba: ee:54:8d:e9:be:cb:a5:5c:f2:79:68:1d:c7:3c:24:fd:ff:4a: 11:47:da:24:ff:bc:03:b0:be:b3:2d:9e:31:55:8e:a0:e0:4e: 39:e4:84:c1:fe:99:43:6e:c4:96:60:3a:f9:94:78:d7:dd:ec: da:72:82:2f:c5:db:f4:79:a2:28:58:3f:eb:61:f9:d0:c8:93: 3b:b5:a8:28:ef:97:b4:7d:25:3a:39:c5:87:cd:dc:98:8c:3c: 15:89:41:b3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDAzMDExMC8GA1UEBRMoMzM5N0I4ODkwRTMzN0RBMDk0OEQ2OTdENDIzMEQ2RkU0 NjMzRDBEMDAeFw0yNTEyMjMwNjMzMTBaFw0yNTEyMzAwNjMzMTBaMBgxFjAUBgNV BAMMDTY5NGEzN2E2LTk0ZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiYTJlK24sNvQ1zFRyfOFASDN89KtEz4k1NwuMX7ZiWG3TK16zteBWvIXP3tf3 0IWNaaCL8mIRqw7JSPDNCXtwZiVIjl7tvvCB14rqSduQZW2ddgfnctyOPvVbnmQ4 Q38rBvD8STvlPsVdQpK/CEqgYj+WrE26zs0afkmUpaOyuTRcFcxySuK0ibncGMl8 qze7pLNAdrXLEOPAXQ/bbNgfFH1WDplE4t1dL5A4RzpLt3FfIMIe0Q9sYXWR4b63 06ym37yE4f3S9dP8R+j9UPuJmc6bWdMl/M4ejdMDDcpjwUZUgenL01frjZVUqPtC Tir3eCTkGjzPlvlLPjza6/65AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzpmDmshz zFTHMcHoCILDVbUjCGYwHwYDVR0jBBgwFoAUM5e4iQ4zfaCUjWl9QjDW/kYz0NAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0MDMwLzIwMDYzQzYwQUIx MzExRjA5NzZDOUIxRUM0RjlBRTAyL001ZTRpUTR6ZmFDVWpXbDlRakRXX2tZejBO QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTTVlNGlRNHpmYUNValdsOVFqRFdfa1l6ME5BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 MDMwLzIwMDYzQzYwQUIxMzExRjA5NzZDOUIxRUM0RjlBRTAyL001ZTRpUTR6ZmFD VWpXbDlRakRXX2tZejBOQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABXanA1B4uRUsW0JJo2+0RvQuleD0GLrOzqRW1SVYJN+OvWbHNr47qLj DZ0ALdvlHpK6SV8nYtws8n+u4TsvqCYvLCBThi8nT1hD/P3MfPhGkDcG/PCJf61O pDZPOk1Lb+sVcI9MHTC9noB4Uj0O1GbU0zXYJnwsII07RcU79YJOAWDPjcOVWraX frCaG/vdLdGzMnJNtAs2YeJQUke/tRAPuu5Ujem+y6Vc8nloHcc8JP3/ShFH2iT/ vAOwvrMtnjFVjqDgTjnkhMH+mUNuxJZgOvmUeNfd7Npygi/F2/R5oihYP+th+dDI kzu1qCjvl7R9JTo5xYfN3JiMPBWJQbM= -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:26 2025 by rpki-client