This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json) Hash identifier: +GX+L8eJYOhV6o0s4do5jYT2ZH/JbCqvx8TSvKkgH/A= Subject key identifier: B9:87:E0:0B:7C:EB:DA:90:4F:17:4F:C9:0B:3D:50:87:D6:58:2A:44 Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Certificate serial: 34EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft Manifest number: 34EC Signing time: Wed 24 Dec 2025 15:10:11 +0000 Manifest this update: Wed 24 Dec 2025 15:10:11 +0000 Manifest next update: Wed 31 Dec 2025 15:10:11 +0000 Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: L79dTzUvzkk5laCdto8zBEaUnbDYYvdPbrhh4xir3ro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13548 (0x34ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD73B, serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Validity Not Before: Dec 24 15:10:11 2025 GMT Not After : Dec 31 15:10:11 2025 GMT Subject: CN=694c0253-efc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:30:44:23:4c:35:e4:98:c0:f7:2f:5b:b0:08: 17:98:1a:26:23:1d:d4:3b:7f:92:e2:06:08:6f:ea: ae:1c:a0:34:88:4a:2b:16:27:e0:40:64:5e:72:82: b7:5e:01:af:99:6e:90:26:fd:a5:73:35:8d:45:0a: 40:d1:e6:94:eb:dd:ac:09:d3:f8:15:30:8e:2d:77: 88:40:52:c7:92:2f:ee:44:e3:43:32:b8:a8:07:78: 8a:e9:fd:81:24:4b:2d:9a:aa:9c:d1:39:27:2c:3f: 29:a4:44:3f:f4:5e:a0:d4:c6:0d:9b:1f:68:7b:78: 67:93:e8:19:45:4c:3e:af:7f:15:96:33:09:46:82: cb:a9:bd:df:8f:9f:10:c3:f8:56:0e:19:40:0d:ea: b0:17:d3:12:fa:cd:18:e1:82:58:2c:b4:77:8c:81: 72:18:ab:31:ee:f4:18:21:54:db:9b:30:de:10:a3: 60:2b:f4:bf:08:ef:4c:e0:a1:9b:13:62:2c:06:76: 14:fb:a2:e5:7a:07:e4:4f:8d:ef:6d:d9:75:81:47: b4:d3:78:80:73:cb:b8:70:64:70:e0:b7:ae:25:9a: e8:f6:67:d2:3a:8d:19:37:33:61:67:19:84:dc:3c: d9:88:c8:fb:b0:37:75:87:af:fc:2c:43:ab:f7:72: 10:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:87:E0:0B:7C:EB:DA:90:4F:17:4F:C9:0B:3D:50:87:D6:58:2A:44 X509v3 Authority Key Identifier: keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:d6:cb:a8:48:50:ea:22:0d:1e:8f:e1:d2:66:c2:47:ac:8e: e8:25:dc:a1:df:77:e9:ca:60:72:7c:bf:d4:76:49:b2:7f:60: bd:33:c0:d9:6d:46:9e:71:f2:e2:78:56:96:cb:fd:fe:ca:22: b3:88:e5:16:4c:dd:4c:51:a8:60:cf:75:ea:06:a7:14:7b:7b: 9b:81:ec:af:29:51:73:94:84:2e:14:29:ba:4f:be:67:2e:6c: a6:7e:10:a6:d2:97:dd:a2:db:b7:42:35:82:de:2b:ad:14:db: cf:82:60:07:03:63:8c:d3:f6:52:63:5c:bf:0b:70:6d:24:fc: 91:c0:cb:79:e4:fd:67:6b:12:dd:53:8d:6c:7d:c7:97:54:5d: f7:32:b5:63:c5:d9:9e:c0:64:c2:ee:e1:0c:98:06:e6:7e:b4: 38:16:e9:c7:0e:8f:0f:3f:13:41:8a:12:f0:a7:7a:39:26:56: 2f:a2:19:b4:b1:50:80:c7:b3:f2:5e:e0:73:8f:78:61:74:b9: 52:c5:80:d1:e4:9f:f9:93:33:b3:90:a2:a9:2a:43:73:c0:a9: 1b:7e:13:96:91:bf:8f:64:a1:cf:0f:f6:26:3d:6d:1f:a1:75: 66:e7:0e:55:1e:cb:cb:ed:6e:4c:ff:24:40:93:0e:14:1a:2b: a9:0b:5e:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ3M0IxMTAvBgNVBAUTKDQ0NDg0QzlGM0E3M0Y3MTk1NzJCOEJDOEExQTFGRDlF NTlGQTg0RjYwHhcNMjUxMjI0MTUxMDExWhcNMjUxMjMxMTUxMDExWjAYMRYwFAYD VQQDDA02OTRjMDI1My1lZmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zBEI0w15JjA9y9bsAgXmBomIx3UO3+S4gYIb+quHKA0iEorFifgQGRecoK3 XgGvmW6QJv2lczWNRQpA0eaU692sCdP4FTCOLXeIQFLHki/uRONDMrioB3iK6f2B JEstmqqc0TknLD8ppEQ/9F6g1MYNmx9oe3hnk+gZRUw+r38VljMJRoLLqb3fj58Q w/hWDhlADeqwF9MS+s0Y4YJYLLR3jIFyGKsx7vQYIVTbmzDeEKNgK/S/CO9M4KGb E2IsBnYU+6LlegfkT43vbdl1gUe003iAc8u4cGRw4LeuJZro9mfSOo0ZNzNhZxmE 3DzZiMj7sDd1h6/8LEOr93IQswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmH4At8 69qQTxdPyQs9UIfWWCpEMB8GA1UdIwQYMBaAFERITJ86c/cZVyuLyKGh/Z5Z+oT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDczQi8yNkJERjMyQzFE QUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4bFhLNHZJb2FIOW5sbjZo UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFaE1uenB6OXhsWEs0dklvYUg5bmxuNmhQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDczQi8yNkJERjMyQzFEQUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4 bFhLNHZJb2FIOW5sbjZoUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ1suoSFDqIg0ej+HSZsJHrI7oJdyh33fpymByfL/Udkmyf2C9M8DZ bUaecfLieFaWy/3+yiKziOUWTN1MUahgz3XqBqcUe3ubgeyvKVFzlIQuFCm6T75n LmymfhCm0pfdotu3QjWC3iutFNvPgmAHA2OM0/ZSY1y/C3BtJPyRwMt55P1naxLd U41sfceXVF33MrVjxdmewGTC7uEMmAbmfrQ4FunHDo8PPxNBihLwp3o5JlYvohm0 sVCAx7PyXuBzj3hhdLlSxYDR5J/5kzOzkKKpKkNzwKkbfhOWkb+PZKHPD/YmPW0f oXVm5w5VHsvL7W5M/yRAkw4UGiupC16D -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:05 2025 by rpki-client