This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft File: IAAAWsWhdEBL07_CmUMyPpYGJbk.mft (raw, json) Hash identifier: 04R5qu5NjcEbh+2Y5rXGceX1Vl01QZU8Y3tEw/GklNM= Subject key identifier: 43:89:C5:99:02:F6:79:D1:77:C1:7B:C0:18:21:1D:58:89:C0:D9:F5 Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 Certificate issuer: /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Certificate serial: 03B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft Manifest number: 03AC Signing time: Mon 22 Dec 2025 23:44:39 +0000 Manifest this update: Mon 22 Dec 2025 23:44:39 +0000 Manifest next update: Mon 29 Dec 2025 23:44:39 +0000 Files and hashes: 1: IAAAWsWhdEBL07_CmUMyPpYGJbk.crl (hash: a2E0L+zQ9f1yfx7b1mKVIVVkL3MeoBOTaEjcTYbSV4M=) 2: 09E46A74C07F11ECB0707F18C4F9AE02.roa (hash: eJqOfUXf9pyBvXqljah+FkA7bab4t5X+jzwwp1GzOds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA590, serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Validity Not Before: Dec 22 23:44:39 2025 GMT Not After : Dec 29 23:44:39 2025 GMT Subject: CN=6949d7e7-7a19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:77:58:08:f5:e2:0c:51:75:92:f8:ad:44:82: 4a:ce:06:da:1b:b5:de:3d:38:42:7b:3e:b0:43:60: 13:ef:80:5e:09:cf:0b:43:bd:f8:d9:1e:80:e2:8d: 7a:41:90:44:18:aa:4b:01:a5:73:7c:88:39:5a:7e: d6:d1:31:40:a0:6a:f3:64:c2:6c:41:04:a8:fe:76: bd:a0:73:68:2d:be:d3:2e:2e:34:b1:f6:d6:fa:7b: 5c:8d:e6:73:07:0f:80:53:43:46:33:4f:66:9a:af: f4:a6:ee:22:67:87:d8:cd:b0:ce:3d:c7:83:c9:a4: 4c:16:d7:f2:40:36:38:88:12:57:98:c2:cd:e4:ea: 8f:c3:d5:ca:6c:9a:4e:1a:56:6c:2b:33:c2:aa:b7: 87:60:66:dc:54:16:f5:f3:3b:2c:8f:67:5b:ba:45: 6f:3b:a8:54:e6:48:89:65:c6:38:9f:cb:bf:57:f3: ba:0d:ef:48:f2:f7:fa:62:a7:b7:39:07:50:9c:cf: 4d:14:8d:3f:a1:42:a6:d9:e5:44:ea:01:76:af:ea: 4a:6b:b4:20:d3:c8:07:94:d6:14:75:c7:1d:2b:89: a4:f1:81:60:75:e2:86:ed:35:90:2d:cc:a3:67:b4: ad:b8:c8:a3:a0:52:0e:59:ae:6f:e8:56:70:f4:69: 58:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:89:C5:99:02:F6:79:D1:77:C1:7B:C0:18:21:1D:58:89:C0:D9:F5 X509v3 Authority Key Identifier: keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:4b:ce:5f:ea:8b:d9:e4:3a:35:c8:0f:83:0d:67:44:51:a8: 82:0e:30:1a:f8:56:97:7f:7c:92:27:e0:33:af:f0:98:82:50: 9f:da:1e:96:16:d1:9b:f8:5f:2f:55:f7:10:1f:18:23:74:3c: 67:d0:c8:bd:aa:0b:55:6b:15:ec:aa:21:f0:4c:4c:51:3a:6b: 00:40:fc:57:ba:70:f5:8a:d8:fe:3b:75:b9:59:b5:66:91:34: 48:fe:d8:26:20:ea:31:d1:9b:8c:e3:1e:7b:ab:84:69:d2:f4: ea:98:00:37:b4:85:39:f0:d8:61:b6:da:2e:4a:19:38:c1:fa: fb:24:0d:a5:a5:56:9b:7c:5e:7e:8f:cc:50:8e:d3:b4:94:e6: 12:69:88:1b:90:a2:2f:02:3a:1b:ba:a1:a6:bc:b0:76:0b:a9: 3b:48:a5:99:ed:06:cd:af:99:ea:58:72:83:d0:4d:06:22:f4: 0e:a7:a7:5c:46:88:76:55:c8:86:34:c6:dc:15:7f:7d:7c:90: 70:ef:94:2c:29:5d:cb:8f:2f:52:5f:09:a1:a8:be:59:89:2f: 39:1f:1a:34:29:42:b2:d3:6e:66:42:3c:a8:68:1e:f1:2e:cc: aa:75:7b:e5:a3:dc:99:7a:7a:9f:e0:60:38:ea:27:84:2e:82: 9e:37:62:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OTAxMTAvBgNVBAUTKDIwMDAwMDVBQzVBMTc0NDA0QkQzQkZDMjk5NDMzMjNF OTYwNjI1QjkwHhcNMjUxMjIyMjM0NDM5WhcNMjUxMjI5MjM0NDM5WjAYMRYwFAYD VQQDDA02OTQ5ZDdlNy03YTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXdYCPXiDFF1kvitRIJKzgbaG7XePThCez6wQ2AT74BeCc8LQ7342R6A4o16 QZBEGKpLAaVzfIg5Wn7W0TFAoGrzZMJsQQSo/na9oHNoLb7TLi40sfbW+ntcjeZz Bw+AU0NGM09mmq/0pu4iZ4fYzbDOPceDyaRMFtfyQDY4iBJXmMLN5OqPw9XKbJpO GlZsKzPCqreHYGbcVBb18zssj2dbukVvO6hU5kiJZcY4n8u/V/O6De9I8vf6Yqe3 OQdQnM9NFI0/oUKm2eVE6gF2r+pKa7Qg08gHlNYUdccdK4mk8YFgdeKG7TWQLcyj Z7StuMijoFIOWa5v6FZw9GlYtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOJxZkC 9nnRd8F7wBghHViJwNn1MB8GA1UdIwQYMBaAFCAAAFrFoXRAS9O/wplDMj6WBiW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5MC85NTEwRTg2QUMw N0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRFQkwwN19DbVVNeVBwWUdK YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBQUFXc1doZEVCTDA3X0NtVU15UHBZR0piay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTU5MC85NTEwRTg2QUMwN0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRF QkwwN19DbVVNeVBwWUdKYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClS85f6ovZ5Do1yA+DDWdEUaiCDjAa+FaXf3ySJ+Azr/CYglCf2h6W FtGb+F8vVfcQHxgjdDxn0Mi9qgtVaxXsqiHwTExROmsAQPxXunD1itj+O3W5WbVm kTRI/tgmIOox0ZuM4x57q4Rp0vTqmAA3tIU58NhhttouShk4wfr7JA2lpVabfF5+ j8xQjtO0lOYSaYgbkKIvAjobuqGmvLB2C6k7SKWZ7QbNr5nqWHKD0E0GIvQOp6dc Roh2VciGNMbcFX99fJBw75QsKV3Ljy9SXwmhqL5ZiS85Hxo0KUKy025mQjyoaB7x LsyqdXvlo9yZenqf4GA46ieELoKeN2KV -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:39 2025 by rpki-client