This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft File: SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json) Hash identifier: k2OEdlyfguLkLgo1OQIbte2wtGBG3Ht8L7L8HecvWPw= Subject key identifier: 4E:2E:32:F7:43:AF:14:BC:B6:D1:15:F6:74:13:2F:57:FC:3C:A2:91 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 0882 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft Manifest number: 0850 Signing time: Wed 10 Dec 2025 19:42:37 +0000 Manifest this update: Wed 10 Dec 2025 19:42:36 +0000 Manifest next update: Wed 17 Dec 2025 19:42:36 +0000 Files and hashes: 1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: h7KIzAMuYedELa8wQoxWz3MUlpTmjDeC3OnXyJo/YHY=) 2: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: 1QBFWULUSDuABI4M5A9+pwghN2xnBCwM1ByVsOf4OoA=) 3: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: tNP9+2nzm8wftPIS9csYEXaUq+mqRmQ5CYwfV6WquDE=) 4: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: 6ixsZ+U2NSefvVb36mPlfQcQ8GQSyjxzHzBxsc46ols=) 5: 67FF0960076911EF8569F157C4F9AE02.roa (hash: QiY4AYjpAOfJUKdo2bWSjao/45XX+9doU5egkrwqJ78=) 6: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: StO4PQ6ffihfvooMv19fGDjAg2vQbPTwXqeeTRzTihQ=) 7: 42CC52ECC68111EFAE49FF5FC4F9AE02.roa (hash: jw0xm0XxEdyeTKSbIjmLJq8kg/lPA+5yh93w4gEj5Qo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 19:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2178 (0x882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Dec 10 19:42:36 2025 GMT Not After : Dec 17 19:42:36 2025 GMT Subject: CN=6939cd2d-cf7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8a:bd:4b:8e:ca:29:23:13:5b:db:03:ac:ef: 8f:38:d6:af:a5:d6:6f:24:1a:45:e8:f7:08:21:1d: 80:7c:18:96:8e:71:cf:6d:3f:30:bb:8e:c7:25:61: ca:22:b3:94:9a:44:7c:53:ca:67:d7:f7:30:b3:b5: ec:1c:0e:aa:60:26:16:eb:60:71:59:5b:74:84:7d: 71:81:aa:7d:ad:4e:95:5e:5a:b5:0f:bd:da:91:58: 4b:e9:3f:8b:42:73:b9:d1:89:ce:ac:f9:f6:18:1d: fb:78:d5:a6:27:45:ad:43:cd:99:27:2d:79:7e:e7: 7c:f1:c7:7d:fe:65:1f:2a:74:51:6c:69:7e:f9:cb: 67:fc:33:be:d4:7c:18:06:1a:51:c1:0b:fe:88:54: 0b:a0:ee:7a:81:62:48:61:9b:60:d8:70:61:0b:cf: b8:3e:30:91:aa:05:28:ca:1e:4d:50:15:bc:29:ff: c9:05:12:90:4c:a4:90:d9:5b:36:a2:88:42:db:f3: 5b:3f:61:07:97:b2:2c:b9:0e:28:f0:d3:c5:a9:94: a2:2b:4f:57:a7:c8:2c:d5:0e:d0:bc:af:05:c8:16: 5d:f4:30:a4:81:37:55:ea:3f:34:50:88:5e:6a:ec: e3:47:8f:fb:26:2b:03:0b:ee:00:1c:04:e2:51:02: 3e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2E:32:F7:43:AF:14:BC:B6:D1:15:F6:74:13:2F:57:FC:3C:A2:91 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:de:0c:9d:37:a9:24:e9:6f:6e:9e:dd:eb:24:95:79:76:3f: 7c:7c:82:4d:97:38:83:d1:3a:a0:a3:61:e2:12:7a:1f:1f:64: 1a:66:5d:78:f1:47:8a:26:4d:9d:81:14:8b:e1:d2:06:f4:c3: 70:dd:37:aa:23:95:98:9f:90:4d:32:3d:63:d5:a4:52:9b:eb: c5:ce:ed:9c:f9:6c:d8:60:f4:79:e4:18:54:3a:cd:89:94:89: d1:a1:c9:3d:2f:38:15:e2:a4:8f:36:e0:6b:c1:76:5f:5d:23: 59:37:3a:8a:f4:6e:77:7c:50:12:83:4e:43:ec:01:4a:22:de: 29:86:ad:a0:c7:af:68:de:1f:0d:0b:1b:1d:8c:47:6e:83:95: eb:75:1a:0e:b5:65:5f:0b:24:7b:01:93:19:69:34:cc:ab:33: 5a:0c:14:57:57:ba:14:05:82:a0:55:d5:1a:90:60:5c:41:ab: 9e:a0:64:ba:6f:23:18:fd:91:60:f3:f6:57:a1:2b:a9:d0:0e: 68:e1:92:43:8a:9c:4d:1c:f0:20:55:b3:ea:2b:c2:87:34:27: 4a:6b:f8:1b:b7:05:e9:10:a5:97:90:ac:51:d9:f3:f1:0a:5f: 7a:a8:34:35:c9:5b:fb:25:fa:b3:15:ce:63:6c:75:43:ce:9b: 8f:70:5b:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjUxMjEwMTk0MjM2WhcNMjUxMjE3MTk0MjM2WjAYMRYwFAYD VQQDEw02OTM5Y2QyZC1jZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoq9S47KKSMTW9sDrO+PONavpdZvJBpF6PcIIR2AfBiWjnHPbT8wu47HJWHK IrOUmkR8U8pn1/cws7XsHA6qYCYW62BxWVt0hH1xgap9rU6VXlq1D73akVhL6T+L QnO50YnOrPn2GB37eNWmJ0WtQ82ZJy15fud88cd9/mUfKnRRbGl++ctn/DO+1HwY BhpRwQv+iFQLoO56gWJIYZtg2HBhC8+4PjCRqgUoyh5NUBW8Kf/JBRKQTKSQ2Vs2 oohC2/NbP2EHl7IsuQ4o8NPFqZSiK09Xp8gs1Q7QvK8FyBZd9DCkgTdV6j80UIhe auzjR4/7JisDC+4AHATiUQI+uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4uMvdD rxS8ttEV9nQTL1f8PKKRMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEwQS9FMzQwMjA0Q0YxODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9y Y0tNMFJnRk92MERseWVfblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl3gydN6kk6W9unt3rJJV5dj98fIJNlziD0Tqgo2HiEnofH2QaZl14 8UeKJk2dgRSL4dIG9MNw3TeqI5WYn5BNMj1j1aRSm+vFzu2c+WzYYPR55BhUOs2J lInRock9LzgV4qSPNuBrwXZfXSNZNzqK9G53fFASg05D7AFKIt4phq2gx69o3h8N CxsdjEdug5XrdRoOtWVfCyR7AZMZaTTMqzNaDBRXV7oUBYKgVdUakGBcQaueoGS6 byMY/ZFg8/ZXoSup0A5o4ZJDipxNHPAgVbPqK8KHNCdKa/gbtwXpEKWXkKxR2fPx Cl96qDQ1yVv7JfqzFc5jbHVDzpuPcFt7 -----END CERTIFICATE-----Generated at Thu Dec 11 15:24:12 2025 by rpki-client