This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: 2DpcIwbxydfYyYS6qR+2964i6eHJ5myj7BN0GLWYpZ4= Subject key identifier: DE:11:BF:40:A7:C9:52:6B:C1:9F:55:58:0D:60:B8:38:6A:DD:14:67 Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0BEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0BDE Signing time: Mon 08 Dec 2025 18:18:33 +0000 Manifest this update: Mon 08 Dec 2025 18:18:32 +0000 Manifest next update: Mon 15 Dec 2025 18:18:32 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: qLmOSbnlnQgY4xG6YzUUMJEZGHvyZV08Qe1FGbG7UPg=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: mo/NLmT3qTw906fWZIYD+HCMnaLWUZhtdPeHn3oqJ6A=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: vucacXYSTLw3pjicQM0MXD2U1//BsbEO3gpX4wVcXB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 18:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3052 (0xbec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Dec 8 18:18:32 2025 GMT Not After : Dec 15 18:18:32 2025 GMT Subject: CN=69371678-c54e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:25:24:8c:42:f5:0f:1d:62:c1:ce:63:6c:20: 0e:67:90:6f:0f:6c:fa:76:6f:64:ec:fb:45:08:6f: f5:64:ad:25:90:97:b2:b4:7c:8c:79:69:92:b4:f1: 9d:f6:af:02:52:8c:7f:1b:be:04:ec:a0:5b:1e:df: cb:f1:17:51:70:bf:e3:8a:c9:b2:3a:58:f5:8b:30: ae:be:be:9b:ff:4c:3c:76:96:19:42:90:4f:ed:81: 60:f5:54:e1:31:d6:a4:a7:06:20:b0:a2:60:d3:37: 21:3a:66:dc:5f:f6:55:15:ed:d9:f7:7d:88:51:f3: 1b:b6:a1:1b:7c:2e:43:db:14:b0:5e:a9:f6:0e:3a: 62:af:e2:aa:69:35:6a:e4:1a:62:d0:e4:e6:bd:e0: df:9f:f0:16:34:cb:02:36:9d:52:26:76:89:db:ba: e3:de:60:ee:49:1c:1d:e0:1e:a5:8b:98:e4:98:8e: 0b:a9:f1:a3:11:25:fd:b3:1a:3a:75:11:69:dd:7e: 3b:33:a8:a8:10:16:27:e5:55:b5:5f:c4:0c:e4:c2: 5a:41:57:da:f3:47:51:c9:16:9d:7f:57:df:8d:31: 29:80:c0:8a:51:77:e9:e1:59:23:84:9a:b2:24:2e: 74:b8:f3:10:9f:4e:42:0f:90:c4:42:9c:e1:2f:0c: db:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:11:BF:40:A7:C9:52:6B:C1:9F:55:58:0D:60:B8:38:6A:DD:14:67 X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:b8:9d:3c:ce:29:b7:4c:65:f1:07:f4:92:98:3b:4c:c6:1a: 39:2a:20:36:10:af:0f:3c:a3:3b:31:dc:b7:51:b9:af:e6:ed: 07:12:5e:70:13:9d:59:11:8e:de:23:c7:e6:f7:ed:b0:6b:66: 21:00:f0:7e:6b:e1:e2:ca:9c:de:f0:3e:cb:49:cb:ea:b2:6a: 50:d2:7c:c9:01:56:7d:5d:d5:3b:ac:4a:ea:be:c3:b0:4c:79: ff:7b:f4:6b:da:95:ac:0b:07:70:26:e8:84:3b:66:42:f1:e7: ba:a8:3e:50:24:a3:96:1d:eb:1a:c3:f4:89:07:b1:87:be:24: 1f:ad:87:e3:b2:16:fd:55:2d:3a:a0:7d:e5:a4:71:d8:de:de: af:b8:f6:31:8b:09:0a:75:24:c8:91:37:7e:46:e7:14:6d:d8: 2e:be:09:4f:90:4f:02:3e:8f:35:13:ba:30:c3:76:ee:0f:c6: cf:41:1d:77:ac:00:d4:6e:e7:f0:43:ae:fc:78:1c:1b:6e:fb: a0:ea:b2:3f:d1:6e:6e:07:0b:49:11:84:6d:2c:83:b5:d9:82: e2:dd:f4:93:13:d1:99:ad:45:1a:8b:dc:a1:83:d5:f4:9d:a1: c9:15:a9:0d:72:e8:11:d4:3f:1a:97:7f:d0:9c:d5:40:35:67: c6:d9:80:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjUxMjA4MTgxODMyWhcNMjUxMjE1MTgxODMyWjAYMRYwFAYD VQQDEw02OTM3MTY3OC1jNTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCUkjEL1Dx1iwc5jbCAOZ5BvD2z6dm9k7PtFCG/1ZK0lkJeytHyMeWmStPGd 9q8CUox/G74E7KBbHt/L8RdRcL/jismyOlj1izCuvr6b/0w8dpYZQpBP7YFg9VTh MdakpwYgsKJg0zchOmbcX/ZVFe3Z932IUfMbtqEbfC5D2xSwXqn2Djpir+KqaTVq 5Bpi0OTmveDfn/AWNMsCNp1SJnaJ27rj3mDuSRwd4B6li5jkmI4LqfGjESX9sxo6 dRFp3X47M6ioEBYn5VW1X8QM5MJaQVfa80dRyRadf1ffjTEpgMCKUXfp4VkjhJqy JC50uPMQn05CD5DEQpzhLwzbzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4Rv0Cn yVJrwZ9VWA1guDhq3RRnMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbuJ08zim3TGXxB/SSmDtMxho5KiA2EK8PPKM7Mdy3Ubmv5u0HEl5w E51ZEY7eI8fm9+2wa2YhAPB+a+Hiypze8D7LScvqsmpQ0nzJAVZ9XdU7rErqvsOw THn/e/Rr2pWsCwdwJuiEO2ZC8ee6qD5QJKOWHesaw/SJB7GHviQfrYfjshb9VS06 oH3lpHHY3t6vuPYxiwkKdSTIkTd+RucUbdguvglPkE8CPo81E7oww3buD8bPQR13 rADUbufwQ678eBwbbvug6rI/0W5uBwtJEYRtLIO12YLi3fSTE9GZrUUai9yhg9X0 naHJFakNcugR1D8al3/QnNVANWfG2YD1 -----END CERTIFICATE-----Generated at Wed Dec 10 10:08:34 2025 by rpki-client