This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: dKvuQzeOItL23dAtNPrfR2kcKUhikpTwbLiHjxWmzZs= Subject key identifier: 40:71:7F:94:81:B5:84:0C:77:A2:01:66:05:BE:F7:E4:94:D9:E0:F6 Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: AA Signing time: Tue 23 Dec 2025 05:12:28 +0000 Manifest this update: Tue 23 Dec 2025 05:12:27 +0000 Manifest next update: Tue 30 Dec 2025 05:12:27 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: i3Mve0+3c9yGZwYz3r6DI2FpswIJbLzhrZPdWJ2RM6A=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Dec 23 05:12:27 2025 GMT Not After : Dec 30 05:12:27 2025 GMT Subject: CN=694a24bb-f086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:46:43:a0:5e:ad:dd:41:3c:b5:fe:b6:4c:33: f9:2d:7d:07:8e:10:1e:fb:b5:c0:f3:de:da:cd:41: 84:ff:e8:1b:a9:01:76:13:77:c1:7b:ae:66:d5:e8: 76:98:2b:c3:fb:0e:76:f0:78:59:4d:a2:cb:95:28: 50:57:f0:4d:05:cc:cf:55:58:2e:f1:db:91:a4:37: e4:9b:26:9e:71:a9:eb:a1:86:d6:2d:65:f3:ed:40: b7:be:80:1a:3e:d4:3f:57:26:61:c2:01:c2:45:9e: 39:cd:cf:0b:d9:02:80:3c:ae:e5:b1:84:b4:bf:47: f6:82:2b:eb:34:31:cb:5a:1f:21:28:8e:02:99:42: ee:c6:f8:4c:29:a4:00:83:97:44:a6:69:f5:2d:10: ca:8a:a2:d8:e5:cf:9c:9f:73:59:b7:16:b8:80:79: cc:d6:b0:b1:3b:6e:7f:7f:15:ef:98:1d:70:7e:d5: 40:ac:89:e0:b9:8e:4f:82:28:73:75:8b:69:b3:b8: e8:14:ce:e1:ed:69:50:10:4d:75:2f:fb:e2:84:8c: 72:25:1c:91:09:de:4e:8c:55:2b:82:66:6c:0e:48: 9b:13:a2:4c:a4:de:71:96:7f:14:89:85:ad:0c:27: 74:11:b3:b0:7e:c4:5b:60:a9:31:8c:cc:45:69:98: 44:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:71:7F:94:81:B5:84:0C:77:A2:01:66:05:BE:F7:E4:94:D9:E0:F6 X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ba:fe:89:13:56:28:23:bf:4d:4b:d3:a4:33:69:81:87:42: 97:db:ae:9a:3f:8b:de:e7:54:c4:e6:b1:1b:a2:44:2d:ab:d4: 85:85:15:bd:95:59:3f:e9:ef:9d:4b:8f:4c:28:3e:fd:79:1e: aa:df:f0:71:04:82:a5:2b:b6:1e:ab:ce:f9:a4:ea:60:d5:f9: 35:1d:b5:7a:a3:c9:77:c8:f5:8c:40:6b:cd:fe:a8:21:6f:f8: 75:d6:5a:f2:eb:37:1f:bd:08:b8:12:50:f8:54:36:7f:d9:ec: 78:34:79:43:72:f2:39:d6:19:d3:77:44:86:65:44:3e:58:66: 50:77:80:ac:5c:4f:96:04:22:a5:11:70:5a:e6:08:bf:ba:a5: e2:2c:71:b7:5e:1a:3b:66:52:fa:79:cf:28:55:8d:4c:8c:fc: fa:e0:d8:f7:95:69:47:50:49:98:3b:12:99:96:63:72:fd:db: ce:f2:3f:4a:82:cc:bf:ee:e6:32:f4:58:0d:f4:07:d3:a2:4e: 3e:e6:6c:95:3b:f8:90:e2:45:5a:81:70:31:2f:16:d6:23:22: 54:64:a5:c7:a0:56:58:5d:b0:78:9d:f0:3a:98:95:97:30:d6: f4:4a:e4:87:05:9b:b1:5f:77:8b:31:43:f4:d1:7e:56:ca:38: 31:2f:1b:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUyMDgxMTAvBgNVBAUTKDY4QUQwRDA0NzBGNkFDNkYxOUM2NEVFRjQwOTRFRTBC QjU4NzFFREEwHhcNMjUxMjIzMDUxMjI3WhcNMjUxMjMwMDUxMjI3WjAYMRYwFAYD VQQDDA02OTRhMjRiYi1mMDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUZDoF6t3UE8tf62TDP5LX0HjhAe+7XA897azUGE/+gbqQF2E3fBe65m1eh2 mCvD+w528HhZTaLLlShQV/BNBczPVVgu8duRpDfkmyaecanroYbWLWXz7UC3voAa PtQ/VyZhwgHCRZ45zc8L2QKAPK7lsYS0v0f2givrNDHLWh8hKI4CmULuxvhMKaQA g5dEpmn1LRDKiqLY5c+cn3NZtxa4gHnM1rCxO25/fxXvmB1wftVArInguY5Pgihz dYtps7joFM7h7WlQEE11L/vihIxyJRyRCd5OjFUrgmZsDkibE6JMpN5xln8UiYWt DCd0EbOwfsRbYKkxjMxFaZhEVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBxf5SB tYQMd6IBZgW+9+SU2eD2MB8GA1UdIwQYMBaAFGitDQRw9qxvGcZO70CU7gu1hx7a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTIwOC85RTI4NTU3RUU0 RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9hSzBOQkhEMnJHOFp4azd2UUpUdUM3V0hI dG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTIwOC85RTI4NTU3RUU0RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9hSzBOQkhEMnJH OFp4azd2UUpUdUM3V0hIdG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQuv6JE1YoI79NS9OkM2mBh0KX266aP4ve51TE5rEbokQtq9SFhRW9 lVk/6e+dS49MKD79eR6q3/BxBIKlK7Yeq875pOpg1fk1HbV6o8l3yPWMQGvN/qgh b/h11lry6zcfvQi4ElD4VDZ/2ex4NHlDcvI51hnTd0SGZUQ+WGZQd4CsXE+WBCKl EXBa5gi/uqXiLHG3Xho7ZlL6ec8oVY1MjPz64Nj3lWlHUEmYOxKZlmNy/dvO8j9K gsy/7uYy9FgN9AfTok4+5myVO/iQ4kVagXAxLxbWIyJUZKXHoFZYXbB4nfA6mJWX MNb0SuSHBZuxX3eLMUP00X5WyjgxLxtG -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:05 2025 by rpki-client