This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: B0UbGlKtUyNs/1FNnuHU4rD9uPZDZ4Aiq8NLRmEugiU= Subject key identifier: 88:B8:97:F4:BA:48:00:DA:13:10:F0:D9:E3:96:E1:8E:49:DA:37:4B Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0B4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0B43 Signing time: Mon 22 Dec 2025 18:43:33 +0000 Manifest this update: Mon 22 Dec 2025 18:43:33 +0000 Manifest next update: Mon 29 Dec 2025 18:43:33 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: PfMimpTeTbX+VqqvTnf9+sR/+JAttSq0yCcDGqg3X3o=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: 7dou7EZJS0k+10u39gMW4DiImFVNtTINLLrPstsJeHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2891 (0xb4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: Dec 22 18:43:33 2025 GMT Not After : Dec 29 18:43:33 2025 GMT Subject: CN=69499155-dbd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c6:8a:02:68:b7:00:a5:17:6c:2f:4b:46:b8: 20:c6:77:89:a1:cd:d1:56:a0:1d:ab:1f:77:39:2b: 6d:72:4f:f9:62:9c:d7:5d:24:0b:ed:84:3f:5e:bf: e1:e8:e3:9f:95:cf:c4:e6:be:d9:4f:f5:cb:5a:eb: 58:08:5c:bd:7f:c2:f5:1f:6c:06:19:d0:3a:93:9b: 94:85:93:63:3f:64:ad:68:02:74:cb:30:1f:7c:b5: 29:eb:a1:16:43:30:8d:cd:80:83:45:78:45:7d:29: 25:d9:79:27:64:bc:bc:01:cd:a6:4e:af:bc:04:39: de:bc:5d:9b:70:5c:c9:80:ec:2f:31:dc:ca:49:51: 9a:c1:fe:6a:c9:53:43:af:9c:37:fa:f0:34:65:34: 5c:a0:33:74:1b:99:51:23:e7:a3:5a:31:25:c8:b9: a1:b2:14:74:83:d8:34:d9:87:66:b6:d5:54:73:56: 6a:15:62:16:fe:fa:d4:78:dd:c9:6e:9f:0f:2c:7c: 70:e2:52:ac:3f:8f:1f:f0:f6:ca:3c:41:5a:db:1e: 7c:c0:0e:63:ba:2a:79:1e:af:e0:1d:bb:79:a4:b5: 35:7d:1e:66:aa:a8:d9:82:1c:51:f9:fc:c1:3e:20: aa:2a:e5:97:c1:12:b7:9d:a5:c1:ae:69:44:e6:a6: 6f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B8:97:F4:BA:48:00:DA:13:10:F0:D9:E3:96:E1:8E:49:DA:37:4B X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:c3:4c:8c:14:eb:b8:c2:65:e7:fb:1f:58:31:82:0e:d6:26: 10:e1:f5:5d:7e:ff:82:d3:fc:aa:31:6d:22:40:1b:28:87:da: a1:c4:e8:36:8d:1f:7f:87:95:8e:75:1e:54:6f:d7:5b:49:bd: 4d:d6:c3:3d:59:9d:d0:99:f0:22:21:fd:22:44:88:98:84:4b: 0e:a6:a9:89:fd:cb:87:5d:57:e0:a7:68:22:b2:ab:fc:a8:9f: 70:0f:46:70:d4:80:34:70:5c:90:8d:4e:af:4e:54:bd:ac:ec: 5d:c7:7e:11:2e:1d:ae:05:01:c0:36:ce:67:89:ee:06:42:94: ad:a1:8c:aa:8a:70:33:c9:98:75:43:e7:54:bf:68:ad:a6:cd: 66:8f:93:a9:ec:76:8b:c5:a5:3a:fa:de:25:92:e6:2b:4f:a4: 64:f1:ed:49:e5:84:7c:29:d7:1b:ba:e6:b4:a2:72:95:80:e5: 78:74:65:e2:79:ab:23:3e:d4:77:96:bf:62:72:d1:36:7f:8c: e4:f1:e4:b1:49:f3:1f:6c:ea:40:3d:72:49:85:e4:75:3a:2e: 97:7a:ab:17:ad:0a:ee:fc:e6:2d:84:a8:6f:ca:9b:77:98:0b: 81:3d:f4:1c:22:6b:e9:21:14:03:0b:2d:f8:c2:8f:f2:97:1f: 4a:42:85:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjUxMjIyMTg0MzMzWhcNMjUxMjI5MTg0MzMzWjAYMRYwFAYD VQQDDA02OTQ5OTE1NS1kYmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmMaKAmi3AKUXbC9LRrggxneJoc3RVqAdqx93OSttck/5YpzXXSQL7YQ/Xr/h 6OOflc/E5r7ZT/XLWutYCFy9f8L1H2wGGdA6k5uUhZNjP2StaAJ0yzAffLUp66EW QzCNzYCDRXhFfSkl2XknZLy8Ac2mTq+8BDnevF2bcFzJgOwvMdzKSVGawf5qyVND r5w3+vA0ZTRcoDN0G5lRI+ejWjElyLmhshR0g9g02YdmttVUc1ZqFWIW/vrUeN3J bp8PLHxw4lKsP48f8PbKPEFa2x58wA5juip5Hq/gHbt5pLU1fR5mqqjZghxR+fzB PiCqKuWXwRK3naXBrmlE5qZvpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIi4l/S6 SADaExDw2eOW4Y5J2jdLMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSw0yMFOu4wmXn+x9YMYIO1iYQ4fVdfv+C0/yqMW0iQBsoh9qhxOg2 jR9/h5WOdR5Ub9dbSb1N1sM9WZ3QmfAiIf0iRIiYhEsOpqmJ/cuHXVfgp2gisqv8 qJ9wD0Zw1IA0cFyQjU6vTlS9rOxdx34RLh2uBQHANs5nie4GQpStoYyqinAzyZh1 Q+dUv2itps1mj5Op7HaLxaU6+t4lkuYrT6Rk8e1J5YR8Kdcbuua0onKVgOV4dGXi easjPtR3lr9ictE2f4zk8eSxSfMfbOpAPXJJheR1Oi6XeqsXrQru/OYthKhvypt3 mAuBPfQcImvpIRQDCy34wo/ylx9KQoWU -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:24 2025 by rpki-client