This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft File: Swkt8QQoD0W8PyeW9AHMK0xhROk.mft (raw, json) Hash identifier: gqXTJS6x/0XEa6eUPe9SSQIvMEUT+DI2pyz+2w4HCFI= Subject key identifier: E9:82:5F:B9:2A:7C:08:A7:ED:8E:6B:88:01:FB:69:B0:3F:6F:ED:72 Authority key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 Certificate issuer: /CN=A91C8307/serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft Manifest number: C0 Signing time: Tue 23 Dec 2025 04:55:18 +0000 Manifest this update: Tue 23 Dec 2025 04:55:17 +0000 Manifest next update: Tue 30 Dec 2025 04:55:17 +0000 Files and hashes: 1: Swkt8QQoD0W8PyeW9AHMK0xhROk.crl (hash: KkNuit2gwhnMn2bT3sa8YCAnrcdASFT8rTpgXL9IRGY=) 2: E5FC085A843011F0971BDC44C4F9AE02.roa (hash: TmQjJA9MkbzXubDuYe9ot48CH91CXeYRqJHt5RQNZcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Validity Not Before: Dec 23 04:55:17 2025 GMT Not After : Dec 30 04:55:17 2025 GMT Subject: CN=694a20b6-a74d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9b:c6:63:96:08:2e:d0:c5:79:4c:be:64:08: 6f:fe:96:cf:67:ab:5b:ed:40:d2:b1:65:d0:23:79: 24:c9:d9:8b:51:67:0d:97:d2:0f:a9:d2:34:df:c6: 47:97:59:d5:96:da:38:3f:5e:88:98:95:c6:8b:44: f8:36:30:c1:da:d9:55:d2:55:00:c9:3d:2c:a3:0f: 84:c5:38:94:c8:25:9b:dd:bb:52:5a:da:64:9b:2f: 91:b7:0d:1e:1f:af:39:cf:cf:20:ec:3b:cd:23:7a: d1:fb:7f:4a:b9:bb:71:df:7c:d3:84:0e:17:b8:1d: 6d:d8:14:1b:8d:23:aa:8e:35:fa:6a:75:7f:7e:e2: 73:96:7a:f6:0c:2e:90:82:e2:f8:ba:a9:ac:83:07: 70:f8:13:0b:87:7b:5d:fa:45:e9:5d:55:90:8e:e4: 2a:e4:3b:0b:b5:50:03:af:14:f3:17:d8:7b:33:04: ce:cb:40:cd:07:46:0d:ac:19:0b:95:47:65:da:a3: 44:9b:e0:85:fa:bd:48:5b:bc:ac:13:2e:98:04:b6: 6f:46:75:75:e7:23:4b:d9:e9:8e:77:9b:f5:6a:ab: d9:2b:e5:93:6d:35:62:52:45:d2:30:5d:08:56:00: 7f:b5:7d:6e:5b:22:97:1c:6c:8a:82:a8:7f:1a:75: 52:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:82:5F:B9:2A:7C:08:A7:ED:8E:6B:88:01:FB:69:B0:3F:6F:ED:72 X509v3 Authority Key Identifier: keyid:4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:e8:ca:32:02:c4:16:dc:d6:ee:ec:ff:fb:05:70:94:64:e4: 77:3f:45:b5:d6:04:5c:e9:e6:4e:b7:44:7e:3d:8a:b1:9b:d8: d2:f0:c1:0b:79:da:eb:12:dd:2d:fc:40:9f:90:2a:df:c7:d4: c8:74:cd:b5:56:56:88:4e:cf:4c:3c:34:65:10:ff:78:ee:73: 0e:d2:4a:ce:2c:c0:8b:a6:53:d4:99:ee:db:29:c8:69:8c:44: 00:b9:be:e8:af:d3:ff:0b:23:16:9c:7a:0c:8f:b8:67:b0:9c: 42:cf:5c:1b:1b:17:c6:6e:40:19:1e:8d:e8:dd:71:bf:9f:3c: e5:60:a2:2d:08:82:99:77:e0:7d:09:1d:e3:2a:f0:9b:aa:00: 55:e8:70:71:a3:97:05:53:2e:c1:c6:ea:6d:0a:68:b9:85:a4: 97:d0:87:9a:47:07:53:ee:9b:1e:2d:81:e5:d8:51:82:f6:3b: 6c:69:c3:6f:0a:69:c6:1e:38:ce:5e:3f:6a:92:4d:c3:ad:9b: 71:a6:bf:09:3f:fc:c4:2a:23:c8:96:d8:eb:d7:71:f8:06:e1: 55:2c:b2:ae:ea:14:51:7f:a8:11:0e:f3:00:de:f1:dc:0d:88: d9:5c:ec:45:f2:93:37:d8:95:d6:c2:61:91:2c:e5:ba:c9:3b: da:a0:ec:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDRCMDkyREYxMDQyODBGNDVCQzNGMjc5NkY0MDFDQzJC NEM2MTQ0RTkwHhcNMjUxMjIzMDQ1NTE3WhcNMjUxMjMwMDQ1NTE3WjAYMRYwFAYD VQQDDA02OTRhMjBiNi1hNzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5vGY5YILtDFeUy+ZAhv/pbPZ6tb7UDSsWXQI3kkydmLUWcNl9IPqdI038ZH l1nVlto4P16ImJXGi0T4NjDB2tlV0lUAyT0sow+ExTiUyCWb3btSWtpkmy+Rtw0e H685z88g7DvNI3rR+39Kubtx33zThA4XuB1t2BQbjSOqjjX6anV/fuJzlnr2DC6Q guL4uqmsgwdw+BMLh3td+kXpXVWQjuQq5DsLtVADrxTzF9h7MwTOy0DNB0YNrBkL lUdl2qNEm+CF+r1IW7ysEy6YBLZvRnV15yNL2emOd5v1aqvZK+WTbTViUkXSMF0I VgB/tX1uWyKXHGyKgqh/GnVShQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmCX7kq fAin7Y5riAH7abA/b+1yMB8GA1UdIwQYMBaAFEsJLfEEKA9FvD8nlvQBzCtMYUTp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8yQkM5MjQ1MEJF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9Td2t0OFFRb0QwVzhQeWVXOUFITUsweGhS T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N3a3Q4UVFvRDBXOFB5ZVc5QUhNSzB4aFJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8yQkM5MjQ1MEJFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9Td2t0OFFRb0Qw VzhQeWVXOUFITUsweGhST2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA26MoyAsQW3Nbu7P/7BXCUZOR3P0W11gRc6eZOt0R+PYqxm9jS8MEL edrrEt0t/ECfkCrfx9TIdM21VlaITs9MPDRlEP947nMO0krOLMCLplPUme7bKchp jEQAub7or9P/CyMWnHoMj7hnsJxCz1wbGxfGbkAZHo3o3XG/nzzlYKItCIKZd+B9 CR3jKvCbqgBV6HBxo5cFUy7BxuptCmi5haSX0IeaRwdT7pseLYHl2FGC9jtsacNv CmnGHjjOXj9qkk3DrZtxpr8JP/zEKiPIltjr13H4BuFVLLKu6hRRf6gRDvMA3vHc DYjZXOxF8pM32JXWwmGRLOW6yTvaoOzV -----END CERTIFICATE-----Generated at Wed Dec 24 00:15:17 2025 by rpki-client