This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft File: m_aWWObA_qLqCOOn_dKtysoTOUk.mft (raw, json) Hash identifier: rzYu4HaL74kKYV5XBaG/aC0yz2ox/6yg6BKXNNbVfaY= Subject key identifier: 23:66:55:CA:50:DD:C9:3E:12:B4:23:77:7E:0C:7E:69:04:35:1A:5F Authority key identifier: 9B:F6:96:58:E6:C0:FE:A2:EA:08:E3:A7:FD:D2:AD:CA:CA:13:39:49 Certificate issuer: /CN=A91CC28E/serialNumber=9BF69658E6C0FEA2EA08E3A7FDD2ADCACA133949 Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft Manifest number: 0237 Signing time: Tue 23 Dec 2025 00:57:47 +0000 Manifest this update: Tue 23 Dec 2025 00:57:46 +0000 Manifest next update: Tue 30 Dec 2025 00:57:46 +0000 Files and hashes: 1: m_aWWObA_qLqCOOn_dKtysoTOUk.crl (hash: naMuuHS+am5qfAHU9/GwHV2G4MiBhCAfKR7N8iMPff4=) 2: 73E253FC76D011EDBAECD665C4F9AE02.roa (hash: n/BMRPFUHjUzsfa0GoSirwLl0k+pEwLO2kUv8wHTWRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.crl rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC28E, serialNumber=9BF69658E6C0FEA2EA08E3A7FDD2ADCACA133949 Validity Not Before: Dec 23 00:57:46 2025 GMT Not After : Dec 30 00:57:46 2025 GMT Subject: CN=6949e90b-4385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ef:7c:99:a5:f5:22:ad:04:e4:eb:85:61:95: f6:01:8b:b8:82:ce:de:11:38:4b:89:ee:c1:af:04: 1f:09:fe:33:00:d6:2c:a1:22:b9:9d:53:3d:50:b1: 86:e2:f3:96:0a:23:d4:09:09:b3:8f:25:da:1c:2a: 74:79:07:ad:ca:c1:36:ca:9c:b7:ae:9a:c8:e5:7f: 5b:22:50:22:ba:40:64:e2:2f:cf:32:e9:15:e1:14: d3:0a:5c:d5:4b:f6:b7:14:89:36:a8:fc:36:a9:b8: 84:4a:71:50:7e:24:5f:8b:f4:e8:2f:b4:16:0d:a5: bf:27:5e:74:49:49:96:a4:1f:0a:47:5f:39:14:e5: 55:85:2e:ac:ab:7c:27:58:43:d4:d2:6b:f9:a7:1f: e8:c7:96:66:b1:cb:0a:45:b5:5a:33:0e:6c:64:a3: b8:c2:73:e9:e4:e9:aa:4a:8d:9d:0e:f2:6b:eb:4d: 7a:3e:a3:0e:2b:81:30:51:4a:b9:38:e1:4b:c4:74: e2:4a:7e:09:b5:08:e6:67:14:f3:8a:49:e4:a2:a8: 6c:38:32:92:a2:39:07:16:7b:96:73:71:d6:4d:4e: f9:bd:54:0e:4d:62:8e:b6:88:d5:62:55:5c:e9:ea: 51:e6:fb:52:f1:6a:26:3f:ec:5b:e5:8c:18:66:0a: e2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:66:55:CA:50:DD:C9:3E:12:B4:23:77:7E:0C:7E:69:04:35:1A:5F X509v3 Authority Key Identifier: keyid:9B:F6:96:58:E6:C0:FE:A2:EA:08:E3:A7:FD:D2:AD:CA:CA:13:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:0a:b0:94:58:bf:fb:e5:76:cb:6c:4b:4f:86:30:f7:02:ce: 78:8b:8a:ee:a1:31:e1:cf:e1:50:bf:97:24:f0:e4:23:6e:ff: 24:d9:e5:c3:73:c7:37:86:b5:94:fe:61:35:e7:24:ba:31:ad: 6c:93:a8:06:11:89:cb:61:9a:a2:29:6f:8a:93:ae:b5:e1:32: 12:58:8e:9e:37:63:f6:bb:b0:bb:da:1d:57:92:76:93:d8:44: 7c:e3:bd:06:0d:93:52:c9:39:b7:4c:db:a5:5a:eb:15:8a:e1: 56:2d:a1:4f:88:af:ee:ec:eb:0c:6d:2b:67:56:ca:20:5e:d1: 0e:95:93:9b:3e:ea:db:76:bf:8f:6e:94:b6:f5:8a:48:d4:00: 79:88:7c:ab:2d:54:2a:00:cb:0a:2d:b4:35:7b:58:c5:87:d4: 80:28:68:d3:24:44:c7:59:7a:08:b9:12:40:99:5e:7c:0c:e7: 54:da:e9:50:28:50:cf:90:0d:02:ef:ff:c3:da:ea:52:ff:46: d5:4e:fe:fd:cd:9a:59:04:fa:8d:6e:6f:2e:8a:55:3e:20:2e: 07:7f:cb:e1:d9:1e:7e:bc:84:34:42:8f:cc:ec:ab:75:74:ca: 2f:da:5c:b0:c1:9a:bc:c4:35:50:60:0d:8e:4f:c4:19:67:0d: bf:d3:99:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MyOEUxMTAvBgNVBAUTKDlCRjY5NjU4RTZDMEZFQTJFQTA4RTNBN0ZERDJBRENB Q0ExMzM5NDkwHhcNMjUxMjIzMDA1NzQ2WhcNMjUxMjMwMDA1NzQ2WjAYMRYwFAYD VQQDDA02OTQ5ZTkwYi00Mzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqe98maX1Iq0E5OuFYZX2AYu4gs7eEThLie7BrwQfCf4zANYsoSK5nVM9ULGG 4vOWCiPUCQmzjyXaHCp0eQetysE2ypy3rprI5X9bIlAiukBk4i/PMukV4RTTClzV S/a3FIk2qPw2qbiESnFQfiRfi/ToL7QWDaW/J150SUmWpB8KR185FOVVhS6sq3wn WEPU0mv5px/ox5ZmscsKRbVaMw5sZKO4wnPp5OmqSo2dDvJr6016PqMOK4EwUUq5 OOFLxHTiSn4JtQjmZxTziknkoqhsODKSojkHFnuWc3HWTU75vVQOTWKOtojVYlVc 6epR5vtS8WomP+xb5YwYZgriIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNmVcpQ 3ck+ErQjd34MfmkENRpfMB8GA1UdIwQYMBaAFJv2lljmwP6i6gjjp/3SrcrKEzlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzI4RS9CNUNBODk2ODc2 Q0QxMUVEOERDNjNBNjRDNEY5QUUwMi9tX2FXV09iQV9xTHFDT09uX2RLdHlzb1RP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21fYVdXT2JBX3FMcUNPT25fZEt0eXNvVE9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzI4RS9CNUNBODk2ODc2Q0QxMUVEOERDNjNBNjRDNEY5QUUwMi9tX2FXV09iQV9x THFDT09uX2RLdHlzb1RPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKCrCUWL/75XbLbEtPhjD3As54i4ruoTHhz+FQv5ck8OQjbv8k2eXD c8c3hrWU/mE15yS6Ma1sk6gGEYnLYZqiKW+Kk6614TISWI6eN2P2u7C72h1XknaT 2ER8470GDZNSyTm3TNulWusViuFWLaFPiK/u7OsMbStnVsogXtEOlZObPurbdr+P bpS29YpI1AB5iHyrLVQqAMsKLbQ1e1jFh9SAKGjTJETHWXoIuRJAmV58DOdU2ulQ KFDPkA0C7//D2upS/0bVTv79zZpZBPqNbm8uilU+IC4Hf8vh2R5+vIQ0Qo/M7Kt1 dMov2lywwZq8xDVQYA2OT8QZZw2/05n8 -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:49 2025 by rpki-client