This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft File: 446z9aUQfjDwynHd6nWxcNCwMlY.mft (raw, json) Hash identifier: Io4amib4hxdBfe6lOkZveD1mUWLS0mi3dRXvhVVA59U= Subject key identifier: 08:EB:8D:73:C6:44:72:B6:05:18:23:D1:9D:DF:24:BC:9F:25:AA:1A Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft Manifest number: 0133 Signing time: Tue 23 Dec 2025 03:41:44 +0000 Manifest this update: Tue 23 Dec 2025 03:41:44 +0000 Manifest next update: Tue 30 Dec 2025 03:41:44 +0000 Files and hashes: 1: 446z9aUQfjDwynHd6nWxcNCwMlY.crl (hash: kpIqYx8UsNprnGbRKrhCumqUumZNeCU6oJ8XeftN278=) 2: B84D6D3AF81811EFACB5925BC4F9AE02.roa (hash: iSgwGcm13o9Rt6IYRC8gB+G1pN+vluWHVfp7WXbTVyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5560, serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Validity Not Before: Dec 23 03:41:44 2025 GMT Not After : Dec 30 03:41:44 2025 GMT Subject: CN=694a0f78-d5d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:51:1f:dd:c1:e2:42:ab:34:0a:a3:03:ee:75: 2f:2d:50:01:22:12:55:2f:59:ab:52:50:47:a5:19: e4:36:b9:f8:69:da:ca:35:bf:a3:5d:bc:37:21:81: 1e:7b:cb:01:f2:d4:61:df:13:cf:b8:e6:8c:94:4c: ac:d4:ca:a1:75:94:3a:26:d2:32:48:0f:93:0f:dd: a9:36:c3:b0:24:c2:d0:18:01:6b:61:90:e4:84:b1: d4:a0:49:a9:39:5c:27:f7:89:d0:8a:37:e6:e1:38: 8f:38:7d:ca:10:57:e0:d1:35:c0:02:ca:03:d0:5e: 94:88:1c:96:b8:e8:4c:94:1a:aa:89:be:12:25:c6: 0d:09:f9:65:e6:52:88:fa:d5:8d:e8:0b:f9:9b:46: a0:a8:cc:68:46:8d:0a:9a:fc:ef:4d:3f:71:d3:94: 95:75:ab:6e:0d:51:19:61:f9:75:2f:7f:32:04:50: c0:4a:51:bf:50:b4:2f:c2:1e:10:af:cd:12:bd:f1: 6d:a8:7a:1c:0a:da:34:aa:8e:9d:51:b5:03:33:f8: 4a:a0:f0:b5:f3:8a:e7:92:69:84:63:75:01:46:18: 8a:8d:69:14:d4:59:af:7e:a3:e0:77:01:cf:83:4c: 9c:87:00:19:58:fd:8e:4a:48:06:42:b4:e2:a3:d3: 0d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:EB:8D:73:C6:44:72:B6:05:18:23:D1:9D:DF:24:BC:9F:25:AA:1A X509v3 Authority Key Identifier: keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:64:73:44:9a:1a:26:90:b7:e1:a5:e8:e2:57:23:57:a0:d1: 95:64:69:a1:41:d4:b7:08:d5:82:1d:27:37:c3:f0:7b:6e:ce: d1:98:97:fa:a9:17:d2:db:d5:58:8e:23:25:11:08:ff:4f:96: e5:37:1e:93:0b:53:e9:0f:15:60:ff:64:e0:5e:d9:cc:02:07: 74:cb:0a:1e:89:2e:49:9a:82:94:4f:72:d2:cc:0c:de:ec:db: 9b:1b:76:6f:ee:f4:c6:8d:e9:9a:95:ad:81:b4:72:e4:23:bc: aa:cc:84:dd:5c:05:6f:39:6c:dc:2a:7c:8f:30:4c:0d:fc:2a: 90:12:9d:06:1b:0d:42:b2:dc:15:fd:b0:ed:d2:9f:95:02:39: 7d:23:9d:bc:8a:27:0e:81:69:df:3c:c3:81:a8:3d:fa:7c:5e: 8d:ea:e4:31:45:38:b8:81:76:04:67:4f:88:ac:ce:f1:f7:26: d7:92:b3:6b:0e:d7:80:f0:c9:e2:aa:60:7d:a0:1b:2a:f7:85: be:71:c8:c3:a8:42:cd:d9:92:99:ad:ad:03:49:fa:98:ad:47: 3f:1d:63:27:63:61:51:6a:c5:9a:fa:5b:61:3b:af:44:36:3e: f2:ca:70:57:6d:2e:9f:64:3a:ee:0e:b8:40:79:55:eb:ef:5c: 93:cb:01:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NjAxMTAvBgNVBAUTKEUzOEVCM0Y1QTUxMDdFMzBGMENBNzFEREVBNzVCMTcw RDBCMDMyNTYwHhcNMjUxMjIzMDM0MTQ0WhcNMjUxMjMwMDM0MTQ0WjAYMRYwFAYD VQQDDA02OTRhMGY3OC1kNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FEf3cHiQqs0CqMD7nUvLVABIhJVL1mrUlBHpRnkNrn4adrKNb+jXbw3IYEe e8sB8tRh3xPPuOaMlEys1MqhdZQ6JtIySA+TD92pNsOwJMLQGAFrYZDkhLHUoEmp OVwn94nQijfm4TiPOH3KEFfg0TXAAsoD0F6UiByWuOhMlBqqib4SJcYNCfll5lKI +tWN6Av5m0agqMxoRo0KmvzvTT9x05SVdatuDVEZYfl1L38yBFDASlG/ULQvwh4Q r80SvfFtqHocCto0qo6dUbUDM/hKoPC184rnkmmEY3UBRhiKjWkU1FmvfqPgdwHP g0ychwAZWP2OSkgGQrTio9MNDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjrjXPG RHK2BRgj0Z3fJLyfJaoaMB8GA1UdIwQYMBaAFOOOs/WlEH4w8Mpx3ep1sXDQsDJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU2MC80QzNENkJDMDIx NkYxMUVGQUY0NUVBMkRDNEY5QUUwMi80NDZ6OWFVUWZqRHd5bkhkNm5XeGNOQ3dN bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0Nno5YVVRZmpEd3luSGQ2bld4Y05Dd01sWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTU2MC80QzNENkJDMDIxNkYxMUVGQUY0NUVBMkRDNEY5QUUwMi80NDZ6OWFVUWZq RHd5bkhkNm5XeGNOQ3dNbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0ZHNEmhomkLfhpejiVyNXoNGVZGmhQdS3CNWCHSc3w/B7bs7RmJf6 qRfS29VYjiMlEQj/T5blNx6TC1PpDxVg/2TgXtnMAgd0ywoeiS5JmoKUT3LSzAze 7NubG3Zv7vTGjemala2BtHLkI7yqzITdXAVvOWzcKnyPMEwN/CqQEp0GGw1CstwV /bDt0p+VAjl9I528iicOgWnfPMOBqD36fF6N6uQxRTi4gXYEZ0+IrM7x9ybXkrNr DteA8MniqmB9oBsq94W+ccjDqELN2ZKZra0DSfqYrUc/HWMnY2FRasWa+lthO69E Nj7yynBXbS6fZDruDrhAeVXr71yTywGP -----END CERTIFICATE-----Generated at Wed Dec 24 02:19:53 2025 by rpki-client