This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft File: cwYbqQQBgewK602PbgA_g4_JxI8.mft (raw, json) Hash identifier: jKYWtprJ2zhqbrJ0rP4aHBbOgPE5WGClH0nIOtd7JXY= Subject key identifier: 86:0A:A6:77:2C:2B:42:D3:E4:16:12:13:2F:5A:12:CA:40:4C:A2:5B Authority key identifier: 73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F Certificate issuer: /CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft Manifest number: 014C Signing time: Tue 23 Dec 2025 03:16:15 +0000 Manifest this update: Tue 23 Dec 2025 03:16:15 +0000 Manifest next update: Tue 30 Dec 2025 03:16:15 +0000 Files and hashes: 1: cwYbqQQBgewK602PbgA_g4_JxI8.crl (hash: 0UJo3HqNtUC6gzzn1R86iUmCs/ELCdgKucmBxIuvecQ=) 2: 7D2E766CE5AF11EE9A0A642FC4F9AE02.roa (hash: Fb0vXPsGENJ9HpaLetk+Rjo+o9pYvcloVY8N7cgyCIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Validity Not Before: Dec 23 03:16:15 2025 GMT Not After : Dec 30 03:16:15 2025 GMT Subject: CN=694a097f-4e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a2:63:a9:c0:00:a8:d5:fa:5c:86:eb:90:8f: a7:8f:a4:28:44:58:5d:e3:6e:d0:22:bb:d2:20:f4: e1:ab:ce:57:b5:b6:9e:89:c2:be:78:1b:9e:f4:af: d7:94:37:5a:16:4f:ca:d1:0e:80:ba:92:70:ae:38: d2:b8:07:2f:40:9c:53:f4:38:e9:5c:37:5b:54:d1: a6:a0:93:53:d5:c6:98:28:36:eb:18:e9:fa:f3:ec: 04:a7:7e:f8:c0:af:e1:18:39:24:33:66:49:37:e9: da:d8:c7:16:72:53:c6:dc:fa:29:7e:19:17:8e:83: 52:99:37:8c:a0:88:8b:42:c2:67:4d:7a:8a:21:60: 31:6c:3f:74:be:84:83:5b:7d:2a:bf:7d:aa:fd:1c: 9b:7d:06:aa:ea:fe:b0:4f:e3:ef:e9:37:3e:94:18: 16:61:5d:59:cd:90:3d:49:49:13:aa:57:0c:f9:c1: 50:c9:2e:f9:89:e3:9e:54:6e:70:16:e2:32:73:f7: 32:7a:11:2f:95:68:8b:1f:ac:b7:c2:2c:9e:a6:31: 04:05:a9:e7:c0:02:8f:23:e1:22:7f:1d:04:0d:6f: 3e:9d:de:ec:cd:d3:66:7e:46:45:78:aa:e8:7d:bc: d7:4b:99:f9:82:1d:0b:7a:cf:dd:17:c5:02:22:75: d6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:0A:A6:77:2C:2B:42:D3:E4:16:12:13:2F:5A:12:CA:40:4C:A2:5B X509v3 Authority Key Identifier: keyid:73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:b9:23:f1:e5:d3:c4:47:c0:a8:2f:a8:a5:f3:68:91:53:f9: 44:ce:fb:c1:f4:80:c5:90:4c:7e:09:82:26:cf:43:a1:3f:58: b1:0b:e0:33:a8:45:62:93:bb:65:57:f4:73:60:fd:48:14:67: 0f:ee:51:33:d1:64:8f:07:55:39:e0:9a:eb:8c:60:71:2d:cf: 17:6e:9b:6d:1c:b5:8c:74:12:a5:db:13:71:ed:3c:2f:20:05: 8d:6c:60:00:cf:37:26:e8:84:1f:23:c0:c6:8b:7b:a4:3d:17: 85:08:0d:c6:6f:14:23:e3:1e:29:58:3e:8b:ff:66:2a:71:9a: 8e:19:83:1b:bf:e5:fc:82:a0:61:23:6f:35:1a:fe:05:10:87: 9c:6c:70:e4:69:8c:a4:c2:b3:65:e9:01:c4:dc:3c:9a:f2:81: c9:70:47:99:17:6b:eb:bc:16:5b:43:ca:a8:3c:38:25:47:ef: 86:71:b5:51:1d:e2:7c:86:c7:c7:b2:a7:1c:47:53:3d:13:48: 68:a8:a5:93:af:cd:cb:58:7e:1b:dc:dc:fb:b0:aa:6b:2b:e7: eb:b2:3d:4d:f6:48:1c:12:a1:ed:66:4c:4e:a2:d6:2b:a0:c8: 52:16:27:1f:46:cc:ea:c1:19:96:f4:8a:8a:54:c4:f9:be:13: 5c:19:af:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKDczMDYxQkE5MDQwMTgxRUMwQUVCNEQ4RjZFMDAzRjgz OEZDOUM0OEYwHhcNMjUxMjIzMDMxNjE1WhcNMjUxMjMwMDMxNjE1WjAYMRYwFAYD VQQDDA02OTRhMDk3Zi00ZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2KJjqcAAqNX6XIbrkI+nj6QoRFhd427QIrvSIPThq85XtbaeicK+eBue9K/X lDdaFk/K0Q6AupJwrjjSuAcvQJxT9DjpXDdbVNGmoJNT1caYKDbrGOn68+wEp374 wK/hGDkkM2ZJN+na2McWclPG3PopfhkXjoNSmTeMoIiLQsJnTXqKIWAxbD90voSD W30qv32q/RybfQaq6v6wT+Pv6Tc+lBgWYV1ZzZA9SUkTqlcM+cFQyS75ieOeVG5w FuIyc/cyehEvlWiLH6y3wiyepjEEBannwAKPI+Eifx0EDW8+nd7szdNmfkZFeKro fbzXS5n5gh0Les/dF8UCInXWqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYKpncs K0LT5BYSEy9aEspATKJbMB8GA1UdIwQYMBaAFHMGG6kEAYHsCutNj24AP4OPycSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9ENEYzREI5RUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdld0s2MDJQYmdBX2c0X0p4 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N3WWJxUVFCZ2V3SzYwMlBiZ0FfZzRfSnhJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9ENEYzREI5RUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdl d0s2MDJQYmdBX2c0X0p4STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpuSPx5dPER8CoL6il82iRU/lEzvvB9IDFkEx+CYImz0OhP1ixC+Az qEVik7tlV/RzYP1IFGcP7lEz0WSPB1U54JrrjGBxLc8XbpttHLWMdBKl2xNx7Twv IAWNbGAAzzcm6IQfI8DGi3ukPReFCA3GbxQj4x4pWD6L/2YqcZqOGYMbv+X8gqBh I281Gv4FEIecbHDkaYykwrNl6QHE3Dya8oHJcEeZF2vrvBZbQ8qoPDglR++GcbVR HeJ8hsfHsqccR1M9E0hoqKWTr83LWH4b3Nz7sKprK+frsj1N9kgcEqHtZkxOotYr oMhSFicfRszqwRmW9IqKVMT5vhNcGa8u -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:07 2025 by rpki-client