This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft File: M1KIaoOU86z15jXjxHVvTQpuRek.mft (raw, json) Hash identifier: ZmEB2mFg8/cHkZuzbf/7J+9zQyY4cob63V/Ar5NnIsA= Subject key identifier: 5C:39:13:88:1D:CA:28:1E:E7:8A:31:3B:C3:7E:FC:D1:DF:6A:80:53 Authority key identifier: 33:52:88:6A:83:94:F3:AC:F5:E6:35:E3:C4:75:6F:4D:0A:6E:45:E9 Certificate issuer: /CN=A91B5AD4/serialNumber=3352886A8394F3ACF5E635E3C4756F4D0A6E45E9 Certificate serial: 09F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft Manifest number: 09ED Signing time: Mon 22 Dec 2025 18:51:39 +0000 Manifest this update: Mon 22 Dec 2025 18:51:38 +0000 Manifest next update: Mon 29 Dec 2025 18:51:38 +0000 Files and hashes: 1: M1KIaoOU86z15jXjxHVvTQpuRek.crl (hash: rWErLn01vbPVdis6ewc1QZXY6Q+dXHJxyNnSumsHHxI=) 2: 67A60C64441E11EB861F005AC4F9AE02.roa (hash: JcavRD/UkGMKefo40xrhCPb2PgEwMsvZQrFanuv4C9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.crl rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2550 (0x9f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AD4, serialNumber=3352886A8394F3ACF5E635E3C4756F4D0A6E45E9 Validity Not Before: Dec 22 18:51:38 2025 GMT Not After : Dec 29 18:51:38 2025 GMT Subject: CN=6949933b-d087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1b:75:08:a1:ae:b0:82:13:3b:5d:b1:35:f2: 9a:9a:c2:8d:60:26:49:7f:c8:d9:6c:09:84:36:42: a3:aa:73:35:ce:93:8b:8a:c7:e0:44:2c:5a:cd:f9: 2c:ef:f5:0f:19:df:ba:fc:7b:79:b0:af:a6:6e:91: 87:4e:17:3a:ef:a3:ef:c6:66:58:ef:9e:27:a3:61: 73:c0:45:fa:94:ce:6c:7b:09:4f:e2:53:7c:f5:e1: 29:19:85:7c:b8:5c:c0:5f:da:59:0e:2f:3d:e0:15: ae:28:48:53:e5:76:50:c8:64:d4:61:8f:fb:0c:bf: 38:4d:46:d4:f6:62:e4:dd:2b:54:b1:08:77:bf:25: 5a:78:f7:56:4e:a8:a0:87:11:dc:91:01:93:c8:c6: 05:11:ce:2f:b3:6e:a8:17:68:a1:fa:ca:b4:e9:be: ad:04:56:7b:39:84:36:9b:b1:73:33:08:f2:77:eb: 0e:5b:a0:53:b2:57:3f:68:02:dd:60:4a:18:c1:68: 80:78:f6:75:fc:1c:97:51:1f:1a:fc:14:fb:d3:70: 1e:53:ac:b8:c5:fb:93:e4:6f:cb:dd:dd:d7:ea:93: 72:4e:9b:70:26:50:48:da:4e:69:06:0c:0a:b8:2f: 26:fc:97:2b:78:07:64:fb:1e:c0:02:fa:a9:68:bb: 93:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:39:13:88:1D:CA:28:1E:E7:8A:31:3B:C3:7E:FC:D1:DF:6A:80:53 X509v3 Authority Key Identifier: keyid:33:52:88:6A:83:94:F3:AC:F5:E6:35:E3:C4:75:6F:4D:0A:6E:45:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:07:d3:f3:53:ea:f9:2a:d5:be:02:35:0a:70:7f:c9:e2:36: 8d:52:65:bd:20:63:3f:bb:c4:87:01:a1:66:8f:95:79:30:c1: a1:db:16:04:c1:24:92:7d:77:fb:70:d0:d2:b3:5f:6a:70:cd: 53:77:7a:c2:10:78:ca:ad:1e:ef:9c:4d:cb:2e:a5:6f:8c:65: 5e:99:8f:61:be:ee:ba:07:1e:95:6b:3e:fe:75:ed:15:2a:11: bd:ff:02:b2:05:8d:aa:83:de:06:a8:34:61:92:09:be:71:2a: 1e:f5:b9:a3:03:bc:0e:9e:e5:56:4b:91:82:2f:6a:5a:02:82: 0d:9a:1e:6e:5b:0b:85:46:cc:53:44:cd:04:cc:52:29:f1:33: e7:32:2e:4c:44:36:31:92:6d:5f:31:28:3c:25:4a:a5:31:b1: a7:6a:29:96:61:42:2b:71:78:b7:fc:9c:a4:a0:c6:b9:1f:34: 4d:98:c8:5c:b8:2f:ba:47:95:83:87:f2:89:66:4e:e2:cb:3e: ca:20:d2:66:dd:61:0f:15:fd:c6:78:ba:6a:c4:73:aa:9c:cd: 06:21:56:bc:f9:93:4c:47:62:bd:29:23:d2:4b:eb:4e:0e:5a: 69:41:20:b1:f8:d6:6f:77:64:d6:6d:99:6d:89:62:9e:2d:af: 56:84:c4:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBRDQxMTAvBgNVBAUTKDMzNTI4ODZBODM5NEYzQUNGNUU2MzVFM0M0NzU2RjRE MEE2RTQ1RTkwHhcNMjUxMjIyMTg1MTM4WhcNMjUxMjI5MTg1MTM4WjAYMRYwFAYD VQQDDA02OTQ5OTMzYi1kMDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBt1CKGusIITO12xNfKamsKNYCZJf8jZbAmENkKjqnM1zpOLisfgRCxazfks 7/UPGd+6/Ht5sK+mbpGHThc676PvxmZY754no2FzwEX6lM5sewlP4lN89eEpGYV8 uFzAX9pZDi894BWuKEhT5XZQyGTUYY/7DL84TUbU9mLk3StUsQh3vyVaePdWTqig hxHckQGTyMYFEc4vs26oF2ih+sq06b6tBFZ7OYQ2m7FzMwjyd+sOW6BTslc/aALd YEoYwWiAePZ1/ByXUR8a/BT703AeU6y4xfuT5G/L3d3X6pNyTptwJlBI2k5pBgwK uC8m/JcreAdk+x7AAvqpaLuTmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFw5E4gd yige54oxO8N+/NHfaoBTMB8GA1UdIwQYMBaAFDNSiGqDlPOs9eY148R1b00KbkXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFENC8xMTIyNkI3RThG OEExMUVBOTgyOEM2NURDNEY5QUUwMi9NMUtJYW9PVTg2ejE1alhqeEhWdlRRcHVS ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00xS0lhb09VODZ6MTVqWGp4SFZ2VFFwdVJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFENC8xMTIyNkI3RThGOEExMUVBOTgyOEM2NURDNEY5QUUwMi9NMUtJYW9PVTg2 ejE1alhqeEhWdlRRcHVSZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjB9PzU+r5KtW+AjUKcH/J4jaNUmW9IGM/u8SHAaFmj5V5MMGh2xYE wSSSfXf7cNDSs19qcM1Td3rCEHjKrR7vnE3LLqVvjGVemY9hvu66Bx6Vaz7+de0V KhG9/wKyBY2qg94GqDRhkgm+cSoe9bmjA7wOnuVWS5GCL2paAoINmh5uWwuFRsxT RM0EzFIp8TPnMi5MRDYxkm1fMSg8JUqlMbGnaimWYUIrcXi3/JykoMa5HzRNmMhc uC+6R5WDh/KJZk7iyz7KINJm3WEPFf3GeLpqxHOqnM0GIVa8+ZNMR2K9KSPSS+tO DlppQSCx+NZvd2TWbZltiWKeLa9WhMQP -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:25 2025 by rpki-client