This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: MVlsKHzssK5lYfn1Ao/ZU7G8bWjhOdiRUlb7leqherk= Subject key identifier: 18:A7:34:01:DB:F3:C6:7E:7B:07:F5:50:3D:75:E0:B1:7E:1D:9F:27 Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 0967 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 0960 Signing time: Mon 22 Dec 2025 19:30:44 +0000 Manifest this update: Mon 22 Dec 2025 19:30:43 +0000 Manifest next update: Mon 29 Dec 2025 19:30:43 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: SqCJXaOZrtNIHQ+F/TZ6sLfjpudiOLF9shnqyH0A4HU=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:30:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2407 (0x967) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Dec 22 19:30:43 2025 GMT Not After : Dec 29 19:30:43 2025 GMT Subject: CN=69499c63-b5b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:65:fb:50:87:79:17:ee:27:fe:ab:e3:8d:5e: 99:0d:e5:f3:2f:72:8a:9a:d9:a9:15:0b:49:1d:65: 88:d5:ee:f7:f1:1d:28:bd:58:86:c3:fd:97:f3:16: f7:6a:84:e3:8d:24:ca:72:d2:e4:b1:d3:be:e7:62: 27:3a:6d:58:4c:de:b4:45:3d:a7:8c:78:cd:3d:51: c1:82:ff:4e:0f:82:8f:fb:1e:9a:ad:4a:c5:f7:68: 0a:ee:8c:a7:4d:cb:eb:a4:56:66:9e:63:db:28:fc: 9d:b0:27:00:f1:ce:86:bd:e4:42:3f:23:a9:b0:eb: 51:e4:48:30:b3:2a:18:f6:c6:2f:bc:31:28:a5:4d: 21:be:ce:48:71:9d:4a:cf:9a:14:94:63:f7:99:31: 2f:dd:43:63:fa:9f:0d:59:41:ff:fc:67:67:31:ed: 03:9e:91:0a:9f:dd:0a:4e:74:2b:22:ff:63:83:8f: 74:55:3c:72:75:99:1a:d2:40:94:42:4c:7d:ec:02: 2f:9c:b4:e1:0b:14:b4:94:94:0d:7f:d9:75:0b:16: c0:a4:94:1f:4b:9d:83:31:e6:88:59:5f:e7:91:1f: 00:22:d6:68:6c:31:03:74:0e:55:7d:0b:0f:59:67: 9c:5c:63:9d:ec:86:5b:48:53:f5:11:fe:07:b7:a9: 53:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A7:34:01:DB:F3:C6:7E:7B:07:F5:50:3D:75:E0:B1:7E:1D:9F:27 X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f2:cd:8f:a0:c5:cb:82:b7:5f:20:b8:db:06:e7:1a:e0:43: b4:ef:84:34:a2:74:30:61:52:40:7d:89:9c:2d:74:42:d6:60: 58:6e:00:77:b9:59:98:b2:77:fb:a6:f8:36:b9:b9:a0:7f:fb: c6:a6:1f:53:3d:b7:2d:47:30:bc:52:41:27:24:6d:21:3a:06: f8:56:03:52:13:e4:3a:55:a3:cb:15:bd:52:df:49:6a:98:3c: bf:fd:78:2e:ce:24:05:cf:d7:b0:b2:b1:a9:cd:c8:09:e7:89: 8e:a0:8f:db:00:f9:9e:2c:f4:25:84:00:56:20:85:a4:7a:16: fb:28:bd:e0:0d:f8:e1:66:3d:cb:46:89:c5:c8:28:45:d8:b5: f9:a1:b6:30:09:12:6d:7f:42:61:86:6b:0e:73:f6:2e:c4:61: 46:cd:a4:26:ca:a7:07:5a:8f:c8:8f:95:71:46:31:cb:ca:aa: e5:e9:89:3c:6e:23:60:a9:7d:d1:a1:e5:43:a8:aa:d6:de:f3: f1:6b:11:47:e5:3f:b5:5c:c8:f1:18:a2:ce:d3:6d:7a:ed:50: c0:d3:52:33:26:b2:41:47:01:c1:38:df:85:8a:ae:01:9a:f4: 1b:1b:fe:e0:2a:cc:ab:88:5a:f2:34:c1:6f:6e:fa:31:12:c0: fe:b3:b6:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUxMjIyMTkzMDQzWhcNMjUxMjI5MTkzMDQzWjAYMRYwFAYD VQQDDA02OTQ5OWM2My1iNWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmX7UId5F+4n/qvjjV6ZDeXzL3KKmtmpFQtJHWWI1e738R0ovViGw/2X8xb3 aoTjjSTKctLksdO+52InOm1YTN60RT2njHjNPVHBgv9OD4KP+x6arUrF92gK7oyn TcvrpFZmnmPbKPydsCcA8c6GveRCPyOpsOtR5EgwsyoY9sYvvDEopU0hvs5IcZ1K z5oUlGP3mTEv3UNj+p8NWUH//GdnMe0DnpEKn90KTnQrIv9jg490VTxydZka0kCU Qkx97AIvnLThCxS0lJQNf9l1CxbApJQfS52DMeaIWV/nkR8AItZobDEDdA5VfQsP WWecXGOd7IZbSFP1Ef4Ht6lTyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBinNAHb 88Z+ewf1UD114LF+HZ8nMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA78s2PoMXLgrdfILjbBuca4EO074Q0onQwYVJAfYmcLXRC1mBYbgB3 uVmYsnf7pvg2ubmgf/vGph9TPbctRzC8UkEnJG0hOgb4VgNSE+Q6VaPLFb1S30lq mDy//XguziQFz9ewsrGpzcgJ54mOoI/bAPmeLPQlhABWIIWkehb7KL3gDfjhZj3L RonFyChF2LX5obYwCRJtf0JhhmsOc/YuxGFGzaQmyqcHWo/Ij5VxRjHLyqrl6Yk8 biNgqX3RoeVDqKrW3vPxaxFH5T+1XMjxGKLO02167VDA01IzJrJBRwHBON+Fiq4B mvQbG/7gKsyriFryNMFvbvoxEsD+s7Zc -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:50 2025 by rpki-client