This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft File: V02z1iXehCAuOsnBw9Wwd01reOM.mft (raw, json) Hash identifier: 2HFgQawte8aEhn+tksmbkphZloYmEY65EpUDEJDZ0hM= Subject key identifier: B7:88:35:3A:43:CE:A7:43:23:79:92:1F:5C:AC:DF:49:09:7E:BB:EE Authority key identifier: 57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 Certificate issuer: /CN=A91E33AA/serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft Manifest number: 5A Signing time: Fri 19 Dec 2025 06:09:17 +0000 Manifest this update: Fri 19 Dec 2025 06:09:16 +0000 Manifest next update: Fri 26 Dec 2025 06:09:16 +0000 Files and hashes: 1: V02z1iXehCAuOsnBw9Wwd01reOM.crl (hash: s+328liL5bsnUsQYQWDb3LGGra0rDeyyUwtUF8b/mns=) 2: A5E6E422A8E511F0A46A7729C4F9AE02.roa (hash: I9mTloe+CBVyT9j1b2vknypKCm7MYiUBGA2nLvqI+nE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33AA, serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Validity Not Before: Dec 19 06:09:16 2025 GMT Not After : Dec 26 06:09:16 2025 GMT Subject: CN=6944ec0c-6a7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:76:01:a7:e1:e3:61:4c:c1:d7:3d:82:16:f7: af:64:ab:64:44:c2:b7:28:00:fb:f8:df:cb:7e:11: 24:40:b5:c7:be:2a:8b:9e:4f:63:74:c7:4d:2f:09: 37:11:f7:0b:7a:3b:4e:eb:16:3a:f0:c1:d1:08:44: ca:b6:db:5a:b8:a0:9c:33:81:a3:c0:5c:80:01:a1: 1a:e7:da:44:a0:49:56:df:79:4c:ec:89:fe:ec:67: c2:26:fb:61:7a:95:da:e1:99:cd:93:72:93:a4:02: 4b:b3:a2:fb:5b:3e:e6:d8:39:89:4d:42:dd:bf:22: 3b:4b:ef:95:77:e2:07:42:9e:e1:06:90:cd:a1:93: c1:f8:a6:8a:d7:25:55:f5:c0:ee:37:41:9a:51:cc: 04:b9:98:f2:2a:e0:e4:86:60:d7:be:eb:08:2b:56: ce:ca:42:59:00:a0:a7:1b:a1:26:96:9d:af:d4:01: 64:c8:59:92:65:5c:8f:f7:c8:e4:43:2a:9a:56:47: 77:9c:3f:45:e9:f2:b1:ce:16:de:62:12:b5:fa:b2: af:a0:47:dd:c7:14:45:06:bc:2e:e7:0b:f1:4e:cc: 64:2e:fb:9a:61:af:79:d4:92:0d:56:e1:75:02:5b: 54:ea:24:cd:80:06:36:1a:11:4e:bb:8d:57:7d:0e: ed:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:88:35:3A:43:CE:A7:43:23:79:92:1F:5C:AC:DF:49:09:7E:BB:EE X509v3 Authority Key Identifier: keyid:57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:bf:b0:24:b1:93:78:57:56:36:ee:71:b2:f1:f2:f2:e1:dc: 0d:84:e1:9d:99:8c:23:e2:27:8e:d3:8f:bc:a6:42:e9:4b:fe: 5c:a5:37:3f:23:b4:78:2f:bc:3d:73:65:19:b8:82:7b:a2:0c: 2b:17:ce:e0:93:5d:12:85:1e:73:6c:6f:04:69:46:a7:60:d7: fc:e3:a8:e8:02:90:b0:ac:f1:f0:d7:4b:1b:0a:fe:bc:24:09: 79:21:b0:76:bf:be:8f:b8:ad:4c:fd:65:fa:e7:6f:b8:32:44: e8:22:54:db:44:80:5a:79:b7:b0:39:aa:6a:a5:25:ef:85:10: e6:75:9a:c4:a1:89:d1:41:54:44:a2:36:d2:20:7d:d3:44:2c: 25:eb:4a:f7:65:45:15:7d:5c:b0:81:15:87:f6:c7:13:f5:99: db:b8:c1:db:bb:96:5c:e4:f7:c4:a4:00:4e:69:b2:c1:8c:5b: f3:76:1f:bb:30:82:0c:c0:51:fb:80:73:51:20:f8:cd:a2:16: e0:e3:8c:d6:ad:74:b5:31:d2:3c:45:e2:3e:c1:a3:14:8d:df: 6e:a5:81:4f:03:06:af:2b:fa:7b:0f:db:3d:cb:0d:61:55:4a: ac:0d:5b:99:7e:be:dd:cb:a1:c6:6d:9d:92:ea:f5:c6:bb:57: eb:61:54:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzNBQTExMC8GA1UEBRMoNTc0REIzRDYyNURFODQyMDJFM0FDOUMxQzNENUIwNzc0 RDZCNzhFMzAeFw0yNTEyMTkwNjA5MTZaFw0yNTEyMjYwNjA5MTZaMBgxFjAUBgNV BAMMDTY5NDRlYzBjLTZhN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkdgGn4eNhTMHXPYIW969kq2REwrcoAPv438t+ESRAtce+KoueT2N0x00vCTcR 9wt6O07rFjrwwdEIRMq221q4oJwzgaPAXIABoRrn2kSgSVbfeUzsif7sZ8Im+2F6 ldrhmc2TcpOkAkuzovtbPubYOYlNQt2/IjtL75V34gdCnuEGkM2hk8H4porXJVX1 wO43QZpRzAS5mPIq4OSGYNe+6wgrVs7KQlkAoKcboSaWna/UAWTIWZJlXI/3yORD KppWR3ecP0Xp8rHOFt5iErX6sq+gR93HFEUGvC7nC/FOzGQu+5phr3nUkg1W4XUC W1TqJM2ABjYaEU67jVd9Du3bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUt4g1OkPO p0MjeZIfXKzfSQl+u+4wHwYDVR0jBBgwFoAUV02z1iXehCAuOsnBw9Wwd01reOMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzM0FBLzQ5QTFBODc4NTk2 NzExRjA4QzQwNzkyQ0M0RjlBRTAyL1YwMnoxaVhlaENBdU9zbkJ3OVd3ZDAxcmVP TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVjAyejFpWGVoQ0F1T3NuQnc5V3dkMDFyZU9NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz M0FBLzQ5QTFBODc4NTk2NzExRjA4QzQwNzkyQ0M0RjlBRTAyL1YwMnoxaVhlaENB dU9zbkJ3OVd3ZDAxcmVPTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANG/sCSxk3hXVjbucbLx8vLh3A2E4Z2ZjCPiJ47Tj7ymQulL/lylNz8j tHgvvD1zZRm4gnuiDCsXzuCTXRKFHnNsbwRpRqdg1/zjqOgCkLCs8fDXSxsK/rwk CXkhsHa/vo+4rUz9Zfrnb7gyROgiVNtEgFp5t7A5qmqlJe+FEOZ1msShidFBVESi NtIgfdNELCXrSvdlRRV9XLCBFYf2xxP1mdu4wdu7llzk98SkAE5pssGMW/N2H7sw ggzAUfuAc1Eg+M2iFuDjjNatdLUx0jxF4j7BoxSN326lgU8DBq8r+nsP2z3LDWFV SqwNW5l+vt3LocZtnZLq9ca7V+thVFo= -----END CERTIFICATE-----Generated at Fri Dec 19 16:25:14 2025 by rpki-client