This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: SqrtX+Ug2OJqGsLg7aRA+eBrnD8rYmGS2Aq/3h0PqbE= Subject key identifier: 47:5D:90:90:B7:33:99:6D:6D:F3:03:45:CF:E9:3C:BA:B9:1E:3A:44 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: E2 Signing time: Tue 23 Dec 2025 04:26:38 +0000 Manifest this update: Tue 23 Dec 2025 04:26:37 +0000 Manifest next update: Tue 30 Dec 2025 04:26:37 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: XxgGlQcVKOD3u469mh0z6Bcn/0dBP5wmXfe/6OhAgrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Dec 23 04:26:37 2025 GMT Not After : Dec 30 04:26:37 2025 GMT Subject: CN=694a19fe-aca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c4:25:79:f6:1d:6c:01:da:fa:5f:94:55:0c: 62:ca:d9:e4:a9:93:df:21:e3:f1:d1:af:b6:cc:50: dc:9a:1c:99:29:bf:6f:b7:b3:a8:78:68:fb:86:64: 7c:66:03:e8:02:c8:2b:6b:f6:24:48:43:83:e7:72: f3:1d:10:ea:96:b3:ae:4c:c4:60:fd:68:cc:e5:ae: da:c9:2d:52:10:c7:f3:e4:c8:e1:0b:81:98:7b:bc: 27:3c:b1:26:02:08:7a:e8:84:41:a5:54:88:a0:45: 2f:69:bb:1a:97:90:49:f9:91:1e:a8:00:b5:fb:21: 84:ea:59:c6:8b:6a:13:b6:83:4c:aa:c5:48:a0:22: f6:1c:cd:68:6b:4f:09:94:99:dc:72:34:a6:d6:1d: bc:e5:7b:1c:c9:38:5a:38:bd:63:8e:5c:24:d3:36: 11:9e:5e:0b:b0:73:7c:a8:50:b6:3c:98:50:49:ca: 4e:c8:23:9b:b0:cb:32:80:18:b3:31:b4:47:b0:84: cd:eb:74:63:a8:6f:ef:b4:63:e0:35:5e:33:f2:d7: 5f:24:27:9b:19:f2:6c:22:1a:2f:49:01:d7:0e:f7: 44:45:c6:0c:7f:8e:63:59:46:09:26:c1:70:78:2a: fd:bb:e3:8e:f1:4d:a4:f1:41:d6:2d:38:5d:77:c3: 49:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5D:90:90:B7:33:99:6D:6D:F3:03:45:CF:E9:3C:BA:B9:1E:3A:44 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ca:63:13:48:26:e7:42:7f:f7:fb:eb:6f:c7:7c:0c:d2:bf: 86:ca:e8:12:38:b5:49:c0:de:36:a1:3f:dc:e3:cf:60:c3:07: ce:dc:24:38:5d:09:9a:03:e4:ad:61:92:b9:67:49:17:8e:75: b1:34:c9:e3:87:47:a1:1f:93:bc:4a:24:db:5b:e4:f9:79:05: 19:d3:20:05:c0:08:a5:ce:9e:1f:25:32:ea:a7:a7:65:34:1a: d2:d4:09:bd:17:3f:10:cf:e9:e2:ce:a0:e1:57:c6:e9:9d:ff: 72:b1:e6:56:66:a8:b8:b7:22:4e:21:ce:9c:a5:e3:45:20:c4: 90:1c:e3:ac:f5:7d:ba:3f:1f:45:c2:82:7c:c5:1d:3a:24:d7: d2:09:6a:ee:03:38:fd:9e:88:ee:18:28:03:37:fa:0d:6d:b3: c1:f2:90:cf:d1:db:83:1e:78:01:8c:da:8e:cd:e1:bc:41:bd: 88:a1:42:4c:78:22:34:df:0b:68:c7:17:de:61:1b:b2:2c:2e: 88:b8:3c:96:d8:fa:68:2a:13:a5:95:53:da:03:f1:ee:da:c3: 7a:d5:f6:e1:f8:9f:24:d9:87:da:8c:34:63:9b:47:05:87:ec: 6b:80:23:5b:db:6a:bd:62:44:5a:d2:d3:ac:a5:a9:7c:95:b4: 51:67:c0:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDY4QjMyM0RBODRFMTIwNTQ2NkNFQjVBRkQ3RDYwNzcy Njc1QjA1MzEwHhcNMjUxMjIzMDQyNjM3WhcNMjUxMjMwMDQyNjM3WjAYMRYwFAYD VQQDDA02OTRhMTlmZS1hY2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcQlefYdbAHa+l+UVQxiytnkqZPfIePx0a+2zFDcmhyZKb9vt7OoeGj7hmR8 ZgPoAsgra/YkSEOD53LzHRDqlrOuTMRg/WjM5a7ayS1SEMfz5MjhC4GYe7wnPLEm Agh66IRBpVSIoEUvabsal5BJ+ZEeqAC1+yGE6lnGi2oTtoNMqsVIoCL2HM1oa08J lJnccjSm1h285XscyThaOL1jjlwk0zYRnl4LsHN8qFC2PJhQScpOyCObsMsygBiz MbRHsITN63RjqG/vtGPgNV4z8tdfJCebGfJsIhovSQHXDvdERcYMf45jWUYJJsFw eCr9u+OO8U2k8UHWLThdd8NJKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEddkJC3 M5ltbfMDRc/pPLq5HjpEMB8GA1UdIwQYMBaAFGizI9qE4SBUZs61r9fWB3JnWwUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi83NDFBMUUyQzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElGUm16cld2MTlZSGNtZGJC VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi83NDFBMUUyQzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElG Um16cld2MTlZSGNtZGJCVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApymMTSCbnQn/3++tvx3wM0r+GyugSOLVJwN42oT/c489gwwfO3CQ4 XQmaA+StYZK5Z0kXjnWxNMnjh0ehH5O8SiTbW+T5eQUZ0yAFwAilzp4fJTLqp6dl NBrS1Am9Fz8Qz+nizqDhV8bpnf9yseZWZqi4tyJOIc6cpeNFIMSQHOOs9X26Px9F woJ8xR06JNfSCWruAzj9nojuGCgDN/oNbbPB8pDP0duDHngBjNqOzeG8Qb2IoUJM eCI03wtoxxfeYRuyLC6IuDyW2PpoKhOllVPaA/Hu2sN61fbh+J8k2YfajDRjm0cF h+xrgCNb22q9YkRa0tOspal8lbRRZ8Dd -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:57 2025 by rpki-client