This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: 0bR6/uiy7iDRjG5mO/vI5ZPRPWt6+iGFBxGjBm2C/HY= Subject key identifier: FA:CB:4C:06:F7:CE:C8:6E:4A:10:5B:02:42:9C:EA:80:50:65:D8:6B Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: 0170 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: 016D Signing time: Fri 19 Dec 2025 03:05:21 +0000 Manifest this update: Fri 19 Dec 2025 03:05:21 +0000 Manifest next update: Fri 26 Dec 2025 03:05:21 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: Vt8mNTrF+MEYBhE2T207IzUfzMUtq6BVZO8LfuQp2Nk=) 2: 24DD519CEEA311EFA5EDDD76C4F9AE02.roa (hash: rRDvrlPYTiklnnMokp9hSZMDep3YQlLeE2vCJYFlOfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444, serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Validity Not Before: Dec 19 03:05:21 2025 GMT Not After : Dec 26 03:05:21 2025 GMT Subject: CN=6944c0f1-53bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:72:21:99:93:1c:34:c9:7c:f5:e1:2b:84:bd: a3:c0:83:3a:88:9e:13:b7:db:da:7d:b7:3a:75:1a: 5f:6f:0f:ea:26:a3:e9:53:a9:c7:ee:11:e3:d7:32: b4:49:57:9d:63:85:af:0f:42:a8:d4:f9:98:17:a1: 57:f5:07:59:eb:f5:1d:0b:af:d9:a7:74:cb:84:ac: 86:9b:57:34:e5:e0:fc:78:0f:04:9a:cf:23:00:83: 82:5d:4e:96:fc:90:14:f4:68:42:24:54:d5:7e:d3: 79:8b:73:3b:09:a5:10:54:43:eb:be:c2:d1:b8:50: f2:47:ff:14:de:d8:0a:3c:38:b1:ff:0b:18:a4:8a: 5a:df:2a:a8:96:da:eb:10:b8:e4:d1:36:ea:e4:7f: cf:e7:ab:b2:b7:3b:44:96:50:d0:b9:b0:76:38:d5: 9f:9f:b9:a5:2e:35:06:a6:e9:c3:5d:8a:dc:a4:9e: 69:1b:3f:a9:b2:03:e3:ec:84:74:5a:a8:8b:83:14: ec:f5:2a:6b:d7:d5:b2:5e:13:67:76:bb:03:71:21: 02:f1:8b:5d:a3:5b:92:66:09:96:34:a4:34:95:b4: 22:32:a3:bf:67:eb:91:78:7e:c5:35:16:9d:e9:5d: 96:76:d8:82:29:9a:8b:1c:87:1d:9c:b5:6a:ca:36: e4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:CB:4C:06:F7:CE:C8:6E:4A:10:5B:02:42:9C:EA:80:50:65:D8:6B X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:d5:3c:07:0c:72:2c:48:16:a7:a2:e0:d8:9b:90:77:0a:39: e6:ba:4b:57:3d:9b:94:dd:f3:a0:d8:cf:fd:8f:2d:fc:6c:c5: 2f:c2:40:79:16:64:93:c1:85:0c:5e:c1:b1:45:cc:57:65:ae: f1:8e:b6:8f:cb:e5:a3:9e:7b:c7:74:c3:c9:c3:23:c6:6d:49: bc:d3:0f:32:a6:8c:64:91:c2:2e:4f:75:5a:e2:7e:89:47:a7: 3b:07:a8:b8:05:9a:6a:a2:d7:67:8f:54:b4:cb:3a:e4:db:33: f2:60:5c:97:96:d8:49:5b:2c:cc:63:42:8d:9c:83:be:a0:9e: c8:88:1f:8e:c5:66:63:e1:70:63:58:3b:3c:8a:b7:92:c4:0c: 4b:81:80:4e:1c:86:43:f5:51:80:9e:a4:52:50:98:48:7c:9d: c9:13:23:04:f4:09:16:ea:5e:3f:b7:8b:74:3a:a5:c7:bb:19: f2:cb:73:fd:70:90:c1:39:a8:0d:b7:12:ce:c4:14:a2:f2:78: 1d:8b:d6:cf:c1:9d:7d:1a:cd:0d:38:92:fd:cb:08:c7:5a:6b: a1:6e:5b:2f:6d:52:58:26:27:f0:d3:a1:69:2b:78:11:7d:38: 2e:68:49:53:4b:52:31:0a:54:61:39:f7:cb:bf:79:9a:67:c5: 89:b6:03:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0NDQxMTAvBgNVBAUTKDczMUU1N0IwREZERUE3OTFCQTRENUQ3MTk3MkRBODEw NURDOTNFOEIwHhcNMjUxMjE5MDMwNTIxWhcNMjUxMjI2MDMwNTIxWjAYMRYwFAYD VQQDDA02OTQ0YzBmMS01M2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk3IhmZMcNMl89eErhL2jwIM6iJ4Tt9vafbc6dRpfbw/qJqPpU6nH7hHj1zK0 SVedY4WvD0Ko1PmYF6FX9QdZ6/UdC6/Zp3TLhKyGm1c05eD8eA8Ems8jAIOCXU6W /JAU9GhCJFTVftN5i3M7CaUQVEPrvsLRuFDyR/8U3tgKPDix/wsYpIpa3yqoltrr ELjk0Tbq5H/P56uytztEllDQubB2ONWfn7mlLjUGpunDXYrcpJ5pGz+psgPj7IR0 WqiLgxTs9Spr19WyXhNndrsDcSEC8Ytdo1uSZgmWNKQ0lbQiMqO/Z+uReH7FNRad 6V2WdtiCKZqLHIcdnLVqyjbkKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrLTAb3 zshuShBbAkKc6oBQZdhrMB8GA1UdIwQYMBaAFHMeV7Df3qeRuk1dcZctqBBdyT6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ0NC84RENFMjc0QUIx MUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1RzZUVjF4bHkyb0VGM0pQ b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTQ0NC84RENFMjc0QUIxMUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1 RzZUVjF4bHkyb0VGM0pQb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDN1TwHDHIsSBanouDYm5B3CjnmuktXPZuU3fOg2M/9jy38bMUvwkB5 FmSTwYUMXsGxRcxXZa7xjraPy+WjnnvHdMPJwyPGbUm80w8ypoxkkcIuT3Va4n6J R6c7B6i4BZpqotdnj1S0yzrk2zPyYFyXlthJWyzMY0KNnIO+oJ7IiB+OxWZj4XBj WDs8ireSxAxLgYBOHIZD9VGAnqRSUJhIfJ3JEyME9AkW6l4/t4t0OqXHuxnyy3P9 cJDBOagNtxLOxBSi8ngdi9bPwZ19Gs0NOJL9ywjHWmuhblsvbVJYJifw06FpK3gR fTguaElTS1IxClRhOffLv3maZ8WJtgPZ -----END CERTIFICATE-----Generated at Sat Dec 20 15:20:43 2025 by rpki-client