This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: Ny8TrPRAT3SQf89BYCw0V7Z5sXqW/XD2nWRU562CvnE= Subject key identifier: 3E:3E:34:52:DD:77:85:6A:25:E2:A2:2F:90:7D:64:87:BB:66:B0:6F Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 0A39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 0A22 Signing time: Mon 22 Dec 2025 19:13:11 +0000 Manifest this update: Mon 22 Dec 2025 19:13:10 +0000 Manifest next update: Mon 29 Dec 2025 19:13:10 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: GqyMAMR3bKH5yQY9h2wuVpxGQwl2aBXEQiRtJBLGLjs=) 2: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: 9Z+s94Y5T1K7IVPTPlx/BgDTI68R9a8i/jpS5x1Nr4c=) 3: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: Jhv7IIpmMM0oZ7iAKkds1Qiv2p8w6iMgKtc0KDhD18s=) 4: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: WlJN5u1oi9WPrD229vbsWsLGL/hLS+xCYNJ5+hmxu8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2617 (0xa39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Dec 22 19:13:10 2025 GMT Not After : Dec 29 19:13:10 2025 GMT Subject: CN=69499847-a41f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5f:2a:47:2d:59:cd:4f:b2:6a:39:c4:11:f8: 43:49:aa:dd:fb:a9:a1:e0:31:4c:7f:31:01:a0:ca: 93:a1:41:61:15:84:d7:4c:fd:6b:db:88:30:42:7c: af:f7:86:f5:26:68:57:35:3f:4e:cf:d5:3a:81:e7: a4:5b:22:4b:cd:98:c0:ad:53:41:93:f3:80:20:2a: 18:d6:45:03:e6:f2:03:67:73:12:f5:d6:76:53:35: 81:54:b3:5a:2e:01:11:64:16:7e:85:eb:a3:05:18: 78:1f:c0:f3:48:4f:94:85:4c:0a:ca:de:8b:07:eb: d0:67:90:08:e7:45:0c:0f:67:f6:cd:9e:fe:b8:da: 78:74:85:99:66:c1:b6:28:8b:0b:1a:05:cb:f1:66: 7a:1f:a0:45:3e:49:f7:bd:b0:e9:0d:61:f5:95:f6: 1a:67:98:2b:57:bd:c9:62:f1:ae:91:23:c0:73:51: ec:af:cb:28:61:f2:fe:91:bc:65:db:d1:8b:57:f4: 74:9a:90:ac:8a:7d:fd:36:f0:41:56:48:37:13:8c: 03:2c:49:45:1d:78:09:9b:89:9e:ef:3f:ca:83:ab: bb:6c:ac:23:3c:8d:1c:d2:e3:4e:fc:92:35:3d:91: e9:55:7e:3d:09:db:b8:dc:d9:33:df:7d:f4:6c:1e: be:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3E:34:52:DD:77:85:6A:25:E2:A2:2F:90:7D:64:87:BB:66:B0:6F X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:58:86:f1:79:2e:e5:66:e4:f2:01:c4:b3:a9:45:de:36:ef: 7f:03:c4:f8:80:13:3c:d0:98:f5:ae:0e:d7:91:63:fa:a0:3f: 49:70:44:26:fe:1e:aa:d2:3f:8b:89:1e:fd:6e:dc:6b:53:c4: 7f:60:ae:d5:1b:23:6a:fc:be:7d:42:e1:cd:21:16:ce:57:54: bb:d4:4d:35:97:e3:38:15:61:a9:71:55:ef:6c:51:f0:38:64: 9a:7f:94:0e:7e:f5:49:96:3c:1a:14:32:08:7e:91:40:8e:a8: 94:0f:8c:c9:08:66:57:67:52:b4:2e:3f:50:e9:e5:10:e6:71: 41:97:43:57:e8:a9:23:8b:b7:f3:76:23:40:3f:80:c1:9f:bc: c6:ab:49:e8:e9:e0:f6:60:85:03:42:a1:00:87:4d:a6:cb:fb: 7f:01:ed:fc:ee:6d:8f:e5:28:91:d4:67:b0:05:db:90:f5:fc: f9:c2:b5:91:ac:4b:8f:fe:26:e3:13:97:61:c5:24:6f:60:9d: 35:48:15:7c:56:4c:ad:4d:ba:ce:45:ae:16:71:36:42:07:04: 59:40:69:16:ee:f0:31:cb:bc:d7:ef:a9:92:66:48:b3:a5:9f: a0:6d:d3:d8:a6:1b:ef:a9:ab:a0:6e:e6:27:ed:50:5a:2a:1e: 6d:32:ea:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUxMjIyMTkxMzEwWhcNMjUxMjI5MTkxMzEwWjAYMRYwFAYD VQQDDA02OTQ5OTg0Ny1hNDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsF8qRy1ZzU+yajnEEfhDSard+6mh4DFMfzEBoMqToUFhFYTXTP1r24gwQnyv 94b1JmhXNT9Oz9U6geekWyJLzZjArVNBk/OAICoY1kUD5vIDZ3MS9dZ2UzWBVLNa LgERZBZ+heujBRh4H8DzSE+UhUwKyt6LB+vQZ5AI50UMD2f2zZ7+uNp4dIWZZsG2 KIsLGgXL8WZ6H6BFPkn3vbDpDWH1lfYaZ5grV73JYvGukSPAc1Hsr8soYfL+kbxl 29GLV/R0mpCsin39NvBBVkg3E4wDLElFHXgJm4me7z/Kg6u7bKwjPI0c0uNO/JI1 PZHpVX49Cdu43Nkz3330bB6+awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4+NFLd d4VqJeKiL5B9ZIe7ZrBvMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJWIbxeS7lZuTyAcSzqUXeNu9/A8T4gBM80Jj1rg7XkWP6oD9JcEQm /h6q0j+LiR79btxrU8R/YK7VGyNq/L59QuHNIRbOV1S71E01l+M4FWGpcVXvbFHw OGSaf5QOfvVJljwaFDIIfpFAjqiUD4zJCGZXZ1K0Lj9Q6eUQ5nFBl0NX6Kkji7fz diNAP4DBn7zGq0no6eD2YIUDQqEAh02my/t/Ae387m2P5SiR1GewBduQ9fz5wrWR rEuP/ibjE5dhxSRvYJ01SBV8VkytTbrORa4WcTZCBwRZQGkW7vAxy7zX76mSZkiz pZ+gbdPYphvvqaugbuYn7VBaKh5tMuo4 -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:19 2025 by rpki-client