This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: V3qXGiJns3G+QjjOZn0G1Wfn+gzFxXaf6uXRSnZlf7M= Subject key identifier: 98:AA:73:A9:94:A2:13:A0:E5:16:B6:B6:C9:1D:61:BD:AD:A5:BA:96 Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 0253 Signing time: Tue 23 Dec 2025 00:43:37 +0000 Manifest this update: Tue 23 Dec 2025 00:43:36 +0000 Manifest next update: Tue 30 Dec 2025 00:43:36 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: dyEBQVvOlNEnq4Xrnzr8qmSekGnbxBFsRMqtY9Xr/SU=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: ih5APdD+Nurby0NtdsRTrQ51xACa7dPtth9SlQyC+ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:43:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0, serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Dec 23 00:43:36 2025 GMT Not After : Dec 30 00:43:36 2025 GMT Subject: CN=6949e5b9-150f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:38:f5:38:e1:e8:34:40:65:5d:f8:30:99:5d: 37:fe:b5:87:dc:28:3a:08:f3:92:8f:3a:d3:38:e2: 40:9a:22:b4:59:26:df:fc:58:f5:9b:28:b4:14:53: 75:9a:4d:3d:83:2f:61:79:f9:c0:0f:cd:0e:07:b7: ce:e6:01:a5:11:aa:52:14:63:89:a2:51:8d:c1:1e: de:85:76:db:67:fd:99:1f:29:df:ae:33:79:f6:dc: 38:aa:de:2e:c9:9a:3b:0e:1f:f2:ec:c3:e3:ec:35: 11:d1:04:29:f8:d7:c2:91:03:ad:8a:de:d5:5b:05: 42:db:bd:b8:f6:99:e1:52:5a:9c:39:b5:af:7d:90: a2:2b:a3:ea:d9:ee:07:3b:1d:a6:19:35:18:6d:4e: 51:9c:1b:39:e4:a6:ad:df:c5:df:ae:ef:a3:b1:57: 43:a2:03:79:2b:16:33:3e:89:40:60:eb:cf:ed:36: 54:5a:9c:14:8e:dd:2a:8c:23:19:fd:2f:85:db:30: 41:fa:32:08:f5:a4:ef:43:4b:d2:b1:2f:a5:67:42: a0:9a:2e:bf:17:c6:f9:7b:7b:0d:0a:3c:1c:4f:eb: c9:6f:a3:1f:52:de:37:d8:a8:22:32:2b:37:1f:e3: e6:d4:9d:b6:f8:ab:6e:08:f6:c7:8d:c9:08:df:5f: 33:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AA:73:A9:94:A2:13:A0:E5:16:B6:B6:C9:1D:61:BD:AD:A5:BA:96 X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:13:f6:88:5c:f0:9b:1e:9e:33:27:0f:5e:8f:c5:f9:5c:50: 15:11:91:db:85:45:d8:a3:d0:8c:0f:ab:1f:fa:54:b3:4c:53: cf:2c:e2:e9:8a:b4:a1:ff:ea:8a:31:7e:24:ef:a9:dd:23:6c: 15:f5:d3:ee:e8:ef:7b:dc:8b:56:02:f5:3b:f9:e4:ba:a2:dc: a4:de:a5:cd:bc:eb:79:cb:0c:5b:40:d8:64:ac:ea:a1:fc:d7: 48:68:26:e9:14:7f:1b:e8:ca:47:37:31:fd:f7:d3:83:01:ce: 24:9d:8b:28:48:7e:f5:e3:99:d3:a7:83:d3:0e:e5:4e:00:f0: 66:dd:c9:76:b9:4d:50:10:f5:7c:c7:9f:f6:95:34:fd:4a:2b: 63:80:22:af:a6:a1:c5:04:91:98:68:97:9e:22:9c:97:6b:06: 40:16:49:9b:90:66:49:81:1b:f5:50:eb:bd:26:da:bb:ef:f0: 22:a1:98:21:ba:ed:f2:a2:a1:e1:76:2f:b6:51:58:ee:b1:48: 36:92:4b:b5:83:bf:4b:4d:ba:fc:26:f6:31:29:24:2f:54:8b: 13:60:b7:8f:75:e2:5e:1f:a2:e3:50:79:71:b1:e5:1d:f0:32: 7f:cb:ce:0c:e3:d4:58:84:71:23:97:83:24:8f:0c:a9:c0:dc: 6c:43:01:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjUxMjIzMDA0MzM2WhcNMjUxMjMwMDA0MzM2WjAYMRYwFAYD VQQDDA02OTQ5ZTViOS0xNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjj1OOHoNEBlXfgwmV03/rWH3Cg6CPOSjzrTOOJAmiK0WSbf/Fj1myi0FFN1 mk09gy9hefnAD80OB7fO5gGlEapSFGOJolGNwR7ehXbbZ/2ZHynfrjN59tw4qt4u yZo7Dh/y7MPj7DUR0QQp+NfCkQOtit7VWwVC27249pnhUlqcObWvfZCiK6Pq2e4H Ox2mGTUYbU5RnBs55Kat38Xfru+jsVdDogN5KxYzPolAYOvP7TZUWpwUjt0qjCMZ /S+F2zBB+jII9aTvQ0vSsS+lZ0Kgmi6/F8b5e3sNCjwcT+vJb6MfUt432KgiMis3 H+Pm1J22+KtuCPbHjckI318zzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiqc6mU ohOg5Ra2tskdYb2tpbqWMB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZE/aIXPCbHp4zJw9ej8X5XFAVEZHbhUXYo9CMD6sf+lSzTFPPLOLp irSh/+qKMX4k76ndI2wV9dPu6O973ItWAvU7+eS6otyk3qXNvOt5ywxbQNhkrOqh /NdIaCbpFH8b6MpHNzH999ODAc4knYsoSH7145nTp4PTDuVOAPBm3cl2uU1QEPV8 x5/2lTT9SitjgCKvpqHFBJGYaJeeIpyXawZAFkmbkGZJgRv1UOu9Jtq77/AioZgh uu3yoqHhdi+2UVjusUg2kku1g79LTbr8JvYxKSQvVIsTYLePdeJeH6LjUHlxseUd 8DJ/y84M49RYhHEjl4MkjwypwNxsQwFV -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:34 2025 by rpki-client