This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft File: md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft (raw, json) Hash identifier: 71yK6QO0gWcAwj/9jpYLaaql0PTdO1Ic5f25lLE0LLg= Subject key identifier: 33:46:EC:95:CE:7E:79:F1:EB:27:1C:73:40:B7:B8:33:BA:D0:ED:02 Authority key identifier: 99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D Certificate issuer: /CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Certificate serial: 17D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft Manifest number: 1C42 Signing time: Mon 22 Dec 2025 16:18:41 +0000 Manifest this update: Mon 22 Dec 2025 16:18:40 +0000 Manifest next update: Mon 29 Dec 2025 16:18:40 +0000 Files and hashes: 1: md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl (hash: aQzwdVZuTIV5wle2/Jrp8OyaC85R9k7rPX4hde62El0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:18:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6101 (0x17d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B08F7, serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Validity Not Before: Dec 22 16:18:40 2025 GMT Not After : Dec 29 16:18:40 2025 GMT Subject: CN=69496f60-83fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c0:73:94:2b:70:41:d3:cf:3c:a4:a0:73:9e: e2:dc:68:79:1a:13:a5:0c:11:67:89:e0:c6:b0:ad: b8:c4:60:49:10:43:5c:ff:e2:d5:be:f6:21:0f:27: e0:21:8f:99:41:f4:f8:44:75:31:75:22:e1:2f:77: d0:18:e6:ff:5e:e9:71:ec:84:44:99:cd:44:a0:74: 7e:29:d5:ab:d0:29:fc:57:57:a4:76:ff:df:2e:65: 76:be:c6:d2:3f:27:da:92:f8:4d:9f:42:e2:7b:cd: 5b:ea:ea:ae:4c:c5:ee:a2:ea:f5:92:2f:c1:8a:b4: 8a:67:51:88:5b:96:7b:e8:20:be:1c:b4:98:8d:0a: 57:51:59:c4:90:89:fc:a4:94:53:d1:72:51:6a:f9: 6c:94:2b:99:4f:7f:d6:f4:68:e4:93:3d:f8:c3:01: 4e:25:d9:d5:0e:8e:58:06:62:98:65:83:87:63:e9: e4:3d:54:6b:32:2a:df:46:67:f4:10:2a:4e:77:98: 29:6f:2f:e6:fe:91:48:01:04:d3:31:66:f2:80:95: b2:04:9f:17:a0:ea:ae:fe:8f:a7:39:b0:4e:fc:30: 60:0e:96:4a:bc:ee:23:a2:7d:a9:62:d7:d9:cb:99: 02:fb:35:fd:43:e9:4b:da:33:23:96:96:97:ff:92: da:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:46:EC:95:CE:7E:79:F1:EB:27:1C:73:40:B7:B8:33:BA:D0:ED:02 X509v3 Authority Key Identifier: keyid:99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:30:af:aa:86:b1:c0:38:af:61:e1:d3:73:26:f2:53:70:2c: 2f:14:bc:ff:a5:81:64:93:9d:9b:b4:a2:c1:ef:a5:e0:20:34: aa:f5:5b:16:60:69:bd:d3:37:fb:8a:bb:56:02:e4:f2:09:c4: 7e:da:59:e6:51:d7:74:a8:e1:46:27:49:8e:90:67:c3:2e:9e: bc:b7:c9:42:8a:ee:60:06:1e:01:35:83:0d:d4:90:4a:6c:1a: 69:f3:90:2a:0c:a7:23:46:7d:a9:cf:68:d9:37:c9:23:32:e6: b7:22:60:ad:8d:02:ab:f4:9b:c3:37:92:03:46:ea:6d:fe:00: f2:41:af:11:88:e3:52:bb:2e:95:46:be:ac:66:6e:73:b3:bf: 1c:fb:28:64:17:fb:34:5a:51:af:57:f2:97:af:c2:5b:f9:80: 98:63:3b:f2:2b:dd:a5:4a:86:72:00:bd:56:72:92:f4:1c:fb: f9:64:90:71:9a:55:bb:2b:9c:44:a3:ec:6a:09:34:f0:5d:81: 0c:56:a0:5b:2e:3d:16:0f:07:68:7e:25:32:f8:20:67:ef:7f: f4:76:38:92:b2:05:cd:c8:e8:c0:c6:34:47:51:2d:59:69:b2: f8:84:10:1f:dc:a1:aa:36:2d:da:4e:57:cc:6a:72:07:1d:18: 1d:04:89:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA4RjcxMTAvBgNVBAUTKDk5REUyQzM3RDFBNjJCQThCOTdCNUExQ0ZEMkNEMjk0 MEIwRDREMEQwHhcNMjUxMjIyMTYxODQwWhcNMjUxMjI5MTYxODQwWjAYMRYwFAYD VQQDDA02OTQ5NmY2MC04M2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMBzlCtwQdPPPKSgc57i3Gh5GhOlDBFnieDGsK24xGBJEENc/+LVvvYhDyfg IY+ZQfT4RHUxdSLhL3fQGOb/Xulx7IREmc1EoHR+KdWr0Cn8V1ekdv/fLmV2vsbS PyfakvhNn0Lie81b6uquTMXuour1ki/BirSKZ1GIW5Z76CC+HLSYjQpXUVnEkIn8 pJRT0XJRavlslCuZT3/W9Gjkkz34wwFOJdnVDo5YBmKYZYOHY+nkPVRrMirfRmf0 ECpOd5gpby/m/pFIAQTTMWbygJWyBJ8XoOqu/o+nObBO/DBgDpZKvO4jon2pYtfZ y5kC+zX9Q+lL2jMjlpaX/5LalQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNG7JXO fnnx6yccc0C3uDO60O0CMB8GA1UdIwQYMBaAFJneLDfRpiuouXtaHP0s0pQLDU0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDhGNy80NzE0MzgwQUQ1 OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2aTVlMW9jX1N6U2xBc05U UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kNHNOOUdtSzZpNWUxb2NfU3pTbEFzTlRRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2 aTVlMW9jX1N6U2xBc05UUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYMK+qhrHAOK9h4dNzJvJTcCwvFLz/pYFkk52btKLB76XgIDSq9VsW YGm90zf7irtWAuTyCcR+2lnmUdd0qOFGJ0mOkGfDLp68t8lCiu5gBh4BNYMN1JBK bBpp85AqDKcjRn2pz2jZN8kjMua3ImCtjQKr9JvDN5IDRupt/gDyQa8RiONSuy6V Rr6sZm5zs78c+yhkF/s0WlGvV/KXr8Jb+YCYYzvyK92lSoZyAL1WcpL0HPv5ZJBx mlW7K5xEo+xqCTTwXYEMVqBbLj0WDwdofiUy+CBn73/0djiSsgXNyOjAxjRHUS1Z abL4hBAf3KGqNi3aTlfManIHHRgdBImD -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:40 2025 by rpki-client