This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft File: SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft (raw, json) Hash identifier: bvagt9v3gMuAQ1/SQqAxKO6TS0hb6In9LknhmziajBs= Subject key identifier: 4F:6B:9F:21:A4:4A:C9:A9:27:C0:09:D8:7B:6F:67:6D:19:88:3A:A7 Authority key identifier: 4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 Certificate issuer: /CN=A91CF364/serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Certificate serial: 099C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft Manifest number: 0995 Signing time: Mon 22 Dec 2025 19:25:38 +0000 Manifest this update: Mon 22 Dec 2025 19:25:38 +0000 Manifest next update: Mon 29 Dec 2025 19:25:38 +0000 Files and hashes: 1: SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl (hash: 5yMI25ih/sHDErwvDntavDRoyXxqXyJz8/pfhllJ6Ng=) 2: 1DEAACDA9F8511EABAA10F3BC4F9AE02.roa (hash: SCNejdxnpcaaKKmMwjhiNM0xWAEADnWJttQDspq42Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:25:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2460 (0x99c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF364, serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Validity Not Before: Dec 22 19:25:38 2025 GMT Not After : Dec 29 19:25:38 2025 GMT Subject: CN=69499b32-2189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5c:2a:18:7b:f2:b4:2e:28:63:ae:c7:5d:f5: ed:d0:6f:97:68:6a:43:ef:1e:35:d5:8a:71:f1:31: 4c:73:b5:81:e2:9e:97:c8:33:f5:ba:02:20:60:59: 43:94:c0:9c:e5:b8:30:45:0a:85:ae:cb:b6:65:5c: 40:ae:cd:d6:00:19:c7:fc:6a:85:07:c1:51:49:c1: b5:a5:f8:ac:1f:9c:f6:5c:ed:9f:82:78:9d:04:be: e4:ee:5d:5b:9e:10:6d:f8:dc:d5:7a:db:6a:ac:62: 3f:32:5f:50:4a:6f:99:99:ad:2d:69:df:ce:05:76: 2f:e0:7b:69:c1:92:f7:a4:6a:53:6c:1e:d2:49:fe: 3a:88:a8:1f:c4:55:f2:56:7f:d8:b6:86:94:d0:f6: 3a:9c:04:2d:a7:d7:f7:c7:ad:77:2e:0e:e8:83:a2: 1b:2d:67:f1:51:fe:b2:55:5c:6b:7a:80:78:ce:5e: ab:21:e5:c3:eb:e0:72:01:a5:84:82:b0:a9:7d:4b: 78:4b:4e:5c:f0:04:3f:8c:a3:b8:33:ac:45:fe:df: ae:92:0e:a1:6b:90:cf:e1:3c:99:6c:ca:47:7d:a6: 1e:63:8b:92:65:fa:26:93:99:86:5f:fb:8a:e7:40: b5:25:37:61:44:1b:fc:a8:83:85:19:ce:e2:03:4f: 51:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6B:9F:21:A4:4A:C9:A9:27:C0:09:D8:7B:6F:67:6D:19:88:3A:A7 X509v3 Authority Key Identifier: keyid:4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:2d:59:1a:a6:74:96:4c:8c:76:8d:83:66:b0:22:65:7b:97: 96:69:63:eb:9e:1e:6c:95:16:1d:58:81:af:2d:0d:5e:88:5c: d6:08:76:69:8b:d0:4f:c4:63:4c:ac:a6:28:8c:a7:ea:1f:9f: 33:a3:11:c8:cb:f2:2b:d3:c3:d8:7b:6a:92:2a:20:c6:83:09: 70:1f:22:68:1a:ca:d4:fe:6a:67:95:52:0c:83:0d:1f:4b:65: f2:94:b8:21:4e:14:4a:20:40:54:4c:3f:45:d8:40:28:29:18: bd:17:94:c4:5f:15:ff:88:99:a7:27:11:39:0c:61:2e:ad:6e: f9:e7:6d:59:8f:fb:8d:ea:89:a4:63:72:00:67:55:fe:79:82: c3:f7:67:65:5d:64:33:01:12:6d:38:49:87:25:3a:93:23:86: a4:74:f3:be:4c:33:0b:bd:8f:68:13:a5:51:ec:a0:d0:74:0a: da:f5:58:ee:cf:f7:98:10:cc:e0:69:8c:f8:b1:f4:37:ff:3b: 76:07:64:71:2c:38:cf:93:50:1a:06:7f:b7:01:37:74:47:b4: 05:37:5f:e2:99:ce:68:5c:ce:53:45:40:00:62:74:05:a3:e2: 60:40:e6:ca:6e:28:f7:25:39:bd:23:e2:94:82:c4:09:96:ae: ed:de:35:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YzNjQxMTAvBgNVBAUTKDRBNzNCMTZEMkVFOUU5Q0Q0QzNGQzBCRDYxMDkxQzQ4 OTA1M0Q0MzYwHhcNMjUxMjIyMTkyNTM4WhcNMjUxMjI5MTkyNTM4WjAYMRYwFAYD VQQDDA02OTQ5OWIzMi0yMTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFwqGHvytC4oY67HXfXt0G+XaGpD7x411Ypx8TFMc7WB4p6XyDP1ugIgYFlD lMCc5bgwRQqFrsu2ZVxArs3WABnH/GqFB8FRScG1pfisH5z2XO2fgnidBL7k7l1b nhBt+NzVettqrGI/Ml9QSm+Zma0tad/OBXYv4HtpwZL3pGpTbB7SSf46iKgfxFXy Vn/YtoaU0PY6nAQtp9f3x613Lg7og6IbLWfxUf6yVVxreoB4zl6rIeXD6+ByAaWE grCpfUt4S05c8AQ/jKO4M6xF/t+ukg6ha5DP4TyZbMpHfaYeY4uSZfomk5mGX/uK 50C1JTdhRBv8qIOFGc7iA09R+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9rnyGk SsmpJ8AJ2HtvZ20ZiDqnMB8GA1UdIwQYMBaAFEpzsW0u6enNTD/AvWEJHEiQU9Q2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjM2NC83MTZBNTlBQzlG ODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZjMU1QOEM5WVFrY1NKQlQx RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NuT3hiUzdwNmMxTVA4QzlZUWtjU0pCVDFEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjM2NC83MTZBNTlBQzlGODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZj MU1QOEM5WVFrY1NKQlQxRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlLVkapnSWTIx2jYNmsCJle5eWaWPrnh5slRYdWIGvLQ1eiFzWCHZp i9BPxGNMrKYojKfqH58zoxHIy/Ir08PYe2qSKiDGgwlwHyJoGsrU/mpnlVIMgw0f S2XylLghThRKIEBUTD9F2EAoKRi9F5TEXxX/iJmnJxE5DGEurW75521Zj/uN6omk Y3IAZ1X+eYLD92dlXWQzARJtOEmHJTqTI4akdPO+TDMLvY9oE6VR7KDQdAra9Vju z/eYEMzgaYz4sfQ3/zt2B2RxLDjPk1AaBn+3ATd0R7QFN1/imc5oXM5TRUAAYnQF o+JgQObKbij3JTm9I+KUgsQJlq7t3jV0 -----END CERTIFICATE-----Generated at Tue Dec 23 14:36:52 2025 by rpki-client