This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft File: s0it0HgdstIdxNM510-HoDk4ycc.mft (raw, json) Hash identifier: fD91/mjI120D4YgZcjr8/+/Rpska/fwkTupo4DYOEwU= Subject key identifier: 95:F3:B5:8F:4E:BE:39:9D:98:D8:F3:05:66:9E:C3:C9:89:56:F4:FB Authority key identifier: B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 Certificate issuer: /CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Certificate serial: 0250 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft Manifest number: 024A Signing time: Tue 23 Dec 2025 00:48:59 +0000 Manifest this update: Tue 23 Dec 2025 00:48:59 +0000 Manifest next update: Tue 30 Dec 2025 00:48:59 +0000 Files and hashes: 1: s0it0HgdstIdxNM510-HoDk4ycc.crl (hash: YZyGJAGHubs9l7qRE/M3Kx4YZi8VVvz8+Miyy0SB4uA=) 2: 945D844463E311EDAD1B0B3FC4F9AE02.roa (hash: N+dN6EXW9kLpuaXIDcRP+SypH2TkoWeKEFt5XA9cnJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C44, serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Validity Not Before: Dec 23 00:48:59 2025 GMT Not After : Dec 30 00:48:59 2025 GMT Subject: CN=6949e6fb-ccae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:5b:47:cb:9e:bb:32:66:6c:d3:c1:43:ff:fa: c2:35:f6:97:a8:8e:28:3d:51:01:e6:10:d3:f1:02: 8d:36:63:5e:a5:79:d0:57:d4:b0:98:4e:cd:70:cc: 09:0b:5a:c2:b2:75:54:c9:cb:23:84:3e:c6:8c:1c: cf:1b:b0:97:7d:1c:31:20:fa:9f:ab:da:34:85:f9: 7c:72:05:27:33:44:7e:51:b5:f5:ae:40:9f:c8:86: 10:c3:d0:68:71:64:57:3c:ae:9a:d5:a3:99:89:c6: 04:fd:67:d7:8f:6d:19:54:35:3e:22:02:b0:8a:e0: 6c:be:b6:0e:0a:8e:f2:1b:d8:85:25:6b:03:39:3c: 3c:66:52:cc:20:ed:1f:89:53:3e:b0:a9:95:1f:73: fb:3f:c3:c4:e0:a2:fe:1d:67:93:64:3e:59:55:6f: 33:a6:8d:a1:f6:1d:8b:48:f5:2c:89:d4:a3:16:f9: 18:65:98:e4:a2:7c:0b:c2:10:d6:e0:29:a2:da:9a: 03:90:8d:4a:70:0a:b3:81:df:db:1f:a0:21:d0:d0: d5:2f:d5:73:00:ee:33:84:56:89:69:60:12:c9:3c: db:d1:4a:35:9c:61:78:f3:19:aa:f5:b6:7e:f4:c2: 2e:da:c3:2c:53:30:e7:96:5e:00:d7:95:9d:0a:d3: 5e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F3:B5:8F:4E:BE:39:9D:98:D8:F3:05:66:9E:C3:C9:89:56:F4:FB X509v3 Authority Key Identifier: keyid:B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:f4:6b:e9:b4:c0:61:44:d7:ba:01:20:26:2f:a6:d4:85:bc: ea:6f:8c:6b:cd:ba:01:7b:29:eb:0e:e4:3f:a2:da:2e:aa:9b: c2:51:3a:9e:a5:8d:4a:53:a2:7d:08:8c:47:6e:41:39:a5:2b: 59:d2:54:c7:db:73:be:59:af:dc:76:7b:64:d4:7b:21:c7:af: 5a:3f:26:f5:45:cc:cb:ee:a8:99:b1:59:78:b5:98:27:2d:da: b5:46:01:44:7a:5b:be:c1:c2:fd:c1:c2:43:da:e8:75:c2:b4: 4d:09:b9:04:1c:5f:cb:2d:55:41:5f:d3:01:81:22:95:3e:a6: 8d:30:2d:e7:f9:7f:e3:91:2c:9d:f3:2a:01:13:67:21:ba:fa: 25:02:53:86:42:bf:e2:c6:6f:29:92:e6:63:35:66:b0:31:94: 02:05:ec:46:ef:a3:ce:91:e5:96:71:ea:c0:bc:5f:24:d6:ad: 5b:8c:0a:1c:cb:1b:5b:04:69:47:0e:48:94:2f:e6:91:5a:c9: 75:60:d9:37:c7:1c:bc:e3:b8:f1:98:d5:f9:05:35:28:68:3f: 37:60:2c:0b:76:c1:70:c5:9b:2e:b3:aa:82:5d:94:3d:70:19: 9a:69:c4:76:b3:67:43:e7:25:93:6d:cc:ff:e6:ac:24:78:33: e9:00:c0:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDNDQxMTAvBgNVBAUTKEIzNDhBREQwNzgxREIyRDIxREM0RDMzOUQ3NEY4N0Ew MzkzOEM5QzcwHhcNMjUxMjIzMDA0ODU5WhcNMjUxMjMwMDA0ODU5WjAYMRYwFAYD VQQDDA02OTQ5ZTZmYi1jY2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkltHy567MmZs08FD//rCNfaXqI4oPVEB5hDT8QKNNmNepXnQV9SwmE7NcMwJ C1rCsnVUycsjhD7GjBzPG7CXfRwxIPqfq9o0hfl8cgUnM0R+UbX1rkCfyIYQw9Bo cWRXPK6a1aOZicYE/WfXj20ZVDU+IgKwiuBsvrYOCo7yG9iFJWsDOTw8ZlLMIO0f iVM+sKmVH3P7P8PE4KL+HWeTZD5ZVW8zpo2h9h2LSPUsidSjFvkYZZjkonwLwhDW 4Cmi2poDkI1KcAqzgd/bH6Ah0NDVL9VzAO4zhFaJaWASyTzb0Uo1nGF48xmq9bZ+ 9MIu2sMsUzDnll4A15WdCtNelwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXztY9O vjmdmNjzBWaew8mJVvT7MB8GA1UdIwQYMBaAFLNIrdB4HbLSHcTTOddPh6A5OMnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0M0NC9ENTMzQTdCNDYz REUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0SWR4Tk01MTAtSG9EazR5 Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MwaXQwSGdkc3RJZHhOTTUxMC1Ib0RrNHljYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0M0NC9ENTMzQTdCNDYzREUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0 SWR4Tk01MTAtSG9EazR5Y2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT9GvptMBhRNe6ASAmL6bUhbzqb4xrzboBeynrDuQ/otouqpvCUTqe pY1KU6J9CIxHbkE5pStZ0lTH23O+Wa/cdntk1Hshx69aPyb1RczL7qiZsVl4tZgn Ldq1RgFEelu+wcL9wcJD2uh1wrRNCbkEHF/LLVVBX9MBgSKVPqaNMC3n+X/jkSyd 8yoBE2chuvolAlOGQr/ixm8pkuZjNWawMZQCBexG76POkeWWcerAvF8k1q1bjAoc yxtbBGlHDkiUL+aRWsl1YNk3xxy847jxmNX5BTUoaD83YCwLdsFwxZsus6qCXZQ9 cBmaacR2s2dD5yWTbcz/5qwkeDPpAMBM -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:12 2025 by rpki-client