This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: A4241GwtU1yP6qRjMn1nW7wsYynj117Stsu0wwytB+s= Subject key identifier: 55:FE:AA:D7:BB:17:E1:EA:DD:AC:16:49:37:0D:59:10:0E:61:B8:1D Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 0832 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 082C Signing time: Mon 22 Dec 2025 20:11:03 +0000 Manifest this update: Mon 22 Dec 2025 20:11:03 +0000 Manifest next update: Mon 29 Dec 2025 20:11:03 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: sa9Ik6N6lMOj3Zt+uD43dL8kXJGflafYxiGvPNmIfT4=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: 9LJKIwXdcyYkVupcdiZ+JpUY7SOiyN67bapZPwlLn04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:11:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Dec 22 20:11:03 2025 GMT Not After : Dec 29 20:11:03 2025 GMT Subject: CN=6949a5d7-3591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:c1:f3:09:42:4e:ca:36:e0:b0:34:af:78: 13:b7:9a:b3:5f:54:d9:b8:7b:65:6c:77:f9:00:aa: 37:52:3e:c6:30:e9:10:d9:2f:f6:69:50:a4:93:96: ce:18:8c:b5:d2:b2:8e:fe:c5:d4:b6:f0:20:52:84: c3:cb:f6:12:5f:6c:bd:eb:b6:4e:c9:12:b7:a8:cc: a2:88:78:7f:0d:4a:ad:01:3a:5e:40:cd:b1:3b:79: db:57:4e:17:69:2b:fd:3e:58:59:0e:bc:9e:5f:6d: 3a:4b:c5:9d:38:c2:f9:42:4c:db:11:31:78:6e:4e: e0:a2:50:bf:fb:42:18:ae:d4:0a:42:41:7d:4c:c2: 0f:23:de:a1:0e:e0:9d:45:6e:ac:52:5a:64:fa:6b: b8:dc:6f:ea:d3:5f:c2:d8:ec:53:52:53:89:09:0e: 62:22:35:87:fe:68:31:01:cd:a2:a5:23:85:4d:8c: db:10:9d:fb:43:0a:ea:c6:32:46:e5:ae:89:54:a6: d4:b9:e0:3b:30:d5:7c:2b:3b:c3:9e:b4:a8:6b:40: 10:05:0b:f3:2a:b6:2f:39:53:96:c3:25:14:84:17: c9:46:2a:1e:e4:53:41:ec:03:f9:74:47:95:09:33: c9:22:48:9e:1f:9f:d0:6a:60:44:32:7b:2e:a4:5d: 1b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:FE:AA:D7:BB:17:E1:EA:DD:AC:16:49:37:0D:59:10:0E:61:B8:1D X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:fc:45:3c:0b:ff:88:ad:99:a9:45:36:ba:24:29:0c:44:98: 36:a5:6f:4a:1f:8b:98:f2:4f:d7:c2:35:ce:27:32:ad:88:d4: 6c:ef:3f:04:62:ca:61:e8:ad:d4:31:02:6f:30:bc:63:51:69: 22:4a:7c:5e:93:ba:38:f0:0c:be:37:15:d9:4a:47:69:77:b0: 5b:1a:47:4b:da:be:76:18:88:e6:c3:e9:bb:08:bc:fe:04:eb: 8c:db:39:bd:25:d1:75:95:2b:10:39:dd:39:b9:5b:5c:82:96: 9e:be:dd:e1:8d:2a:c7:eb:12:0c:68:83:52:9a:0b:c4:5a:25: 2c:50:93:4f:83:e6:b9:60:32:46:c4:f5:90:c7:28:c7:89:66: 24:6d:74:ec:a6:64:53:4d:db:1c:13:2f:51:fa:da:59:24:5c: e3:f4:d4:40:31:a4:e0:dd:21:e0:62:e1:fb:c5:bf:80:72:7b: ef:79:42:af:e4:46:a9:02:2a:8b:7b:c9:55:0f:bd:fa:2c:03: 89:fb:ab:66:53:34:36:a3:09:74:0e:54:f9:d8:5f:fa:41:9e: 9b:53:86:b8:39:36:bd:53:2d:6e:af:a5:a7:8c:85:47:e2:21: 2c:8c:ec:89:e5:86:6a:08:47:48:88:71:8c:0e:27:62:70:34: 64:15:9c:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjUxMjIyMjAxMTAzWhcNMjUxMjI5MjAxMTAzWjAYMRYwFAYD VQQDDA02OTQ5YTVkNy0zNTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGXB8wlCTso24LA0r3gTt5qzX1TZuHtlbHf5AKo3Uj7GMOkQ2S/2aVCkk5bO GIy10rKO/sXUtvAgUoTDy/YSX2y967ZOyRK3qMyiiHh/DUqtATpeQM2xO3nbV04X aSv9PlhZDryeX206S8WdOML5QkzbETF4bk7golC/+0IYrtQKQkF9TMIPI96hDuCd RW6sUlpk+mu43G/q01/C2OxTUlOJCQ5iIjWH/mgxAc2ipSOFTYzbEJ37QwrqxjJG 5a6JVKbUueA7MNV8KzvDnrSoa0AQBQvzKrYvOVOWwyUUhBfJRioe5FNB7AP5dEeV CTPJIkieH5/QamBEMnsupF0bfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFX+qte7 F+Hq3awWSTcNWRAOYbgdMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2/EU8C/+IrZmpRTa6JCkMRJg2pW9KH4uY8k/XwjXOJzKtiNRs7z8E Ysph6K3UMQJvMLxjUWkiSnxek7o48Ay+NxXZSkdpd7BbGkdL2r52GIjmw+m7CLz+ BOuM2zm9JdF1lSsQOd05uVtcgpaevt3hjSrH6xIMaINSmgvEWiUsUJNPg+a5YDJG xPWQxyjHiWYkbXTspmRTTdscEy9R+tpZJFzj9NRAMaTg3SHgYuH7xb+AcnvveUKv 5EapAiqLe8lVD736LAOJ+6tmUzQ2owl0DlT52F/6QZ6bU4a4OTa9Uy1ur6WnjIVH 4iEsjOyJ5YZqCEdIiHGMDidicDRkFZwM -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:44 2025 by rpki-client