This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: 5qG4lDF/v+AeGS2fY7TzkGLoPb9QKij2rvBksumboh0= Subject key identifier: 5A:17:9B:A6:85:59:5B:1A:87:A2:99:39:ED:A6:0E:95:F5:3A:6F:D9 Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 0189 Signing time: Tue 23 Dec 2025 02:39:45 +0000 Manifest this update: Tue 23 Dec 2025 02:39:44 +0000 Manifest next update: Tue 30 Dec 2025 02:39:44 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: HNVe9s+UDnSK6Gb1csfic1rmUNf/sbjNIFndYRc8qOY=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: a2/vehSWDoff6mLTg7VEADcM0ey8iDfcQQZxJYEqkDM=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: GATUqbNDhKaVb/i1ZjCIO1rgwevFVCyWk8Ts83izVL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Dec 23 02:39:44 2025 GMT Not After : Dec 30 02:39:44 2025 GMT Subject: CN=694a00f1-482a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:64:29:79:ac:d4:8d:fa:78:43:5e:74:3f:0a: 0c:94:b3:95:a8:61:c4:c9:19:00:b3:35:04:eb:aa: 60:1a:2c:c0:d2:a6:91:01:90:65:02:6b:3b:33:a2: ea:4c:56:e7:9b:db:84:57:2a:fe:0e:0d:25:c1:98: 5c:65:64:9b:57:12:53:17:e3:5b:6b:05:43:77:fa: 9b:0f:15:e2:c7:9f:51:90:46:21:2c:ed:d1:e7:28: 6b:de:42:5a:76:42:ab:bc:c5:e5:54:d0:0c:85:6e: 27:d2:4a:7a:20:ed:9e:c4:dd:82:d3:fd:3b:e1:2c: 35:64:ee:3e:b5:09:33:d7:ae:73:3d:94:02:b2:26: b4:64:6c:bb:f5:64:ff:fd:9b:cf:b4:85:be:66:55: 7a:fd:c1:cc:22:f0:b0:6a:5a:7c:27:e5:b8:ba:69: 44:a9:f8:5d:4b:42:00:8b:31:00:fc:4c:ba:f7:5b: 4d:bf:86:f3:6e:8d:56:b4:cb:0c:68:99:8d:40:05: 2e:64:8d:f8:32:51:fc:e3:ac:6c:c5:ac:0f:41:3d: 97:06:d6:11:f6:b3:52:dc:03:34:c6:3d:7f:aa:7e: 20:62:76:41:10:79:6d:ef:1d:46:bc:d0:d0:6b:25: 11:dc:ab:a5:40:d4:c9:52:90:2d:7e:31:29:54:ec: 85:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:17:9B:A6:85:59:5B:1A:87:A2:99:39:ED:A6:0E:95:F5:3A:6F:D9 X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e0:3a:24:a7:f3:bd:2a:f7:f0:11:f6:1e:cb:b8:8b:f5:a8: b0:22:b5:f1:71:1d:43:1f:00:e8:a0:58:19:76:74:93:54:bd: bc:09:af:a7:e0:a6:e2:99:c4:63:c3:55:15:39:2f:cc:e6:63: 15:1d:28:0b:9a:50:b8:4f:52:2a:75:d1:98:aa:41:28:24:77: ab:9d:5d:6f:d9:16:11:31:d2:0f:8f:de:45:7c:e2:0a:93:e1: c7:7a:c8:62:79:50:0e:e6:15:60:1b:6d:47:64:ac:d7:97:37: 26:b2:fb:23:cc:43:63:4b:af:84:f8:3f:52:40:af:ae:88:c7: b7:78:ef:d6:48:f1:4b:98:37:c7:08:81:a0:0c:8d:98:52:de: 5b:2f:eb:b7:2e:de:84:68:a8:12:a1:bb:33:ce:10:f6:72:84: d0:b2:39:65:5f:bd:00:0b:c5:c2:0a:64:36:22:06:4e:74:01: 84:cd:e3:6f:28:35:bb:75:56:de:04:c2:79:24:c8:fd:43:38: 20:4b:b9:42:99:72:2f:ab:2c:75:88:98:ff:1f:ab:86:23:15: d2:28:fa:f0:c0:a8:98:16:c4:5b:18:2f:22:4c:f8:76:01:56: c4:1b:93:e1:f5:1a:fb:03:aa:fa:81:84:11:4d:4b:99:9b:b6: 36:77:63:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjUxMjIzMDIzOTQ0WhcNMjUxMjMwMDIzOTQ0WjAYMRYwFAYD VQQDDA02OTRhMDBmMS00ODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2QpeazUjfp4Q150PwoMlLOVqGHEyRkAszUE66pgGizA0qaRAZBlAms7M6Lq TFbnm9uEVyr+Dg0lwZhcZWSbVxJTF+NbawVDd/qbDxXix59RkEYhLO3R5yhr3kJa dkKrvMXlVNAMhW4n0kp6IO2exN2C0/074Sw1ZO4+tQkz165zPZQCsia0ZGy79WT/ /ZvPtIW+ZlV6/cHMIvCwalp8J+W4umlEqfhdS0IAizEA/Ey691tNv4bzbo1WtMsM aJmNQAUuZI34MlH846xsxawPQT2XBtYR9rNS3AM0xj1/qn4gYnZBEHlt7x1GvNDQ ayUR3KulQNTJUpAtfjEpVOyF9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFoXm6aF WVsah6KZOe2mDpX1Om/ZMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR4Dokp/O9KvfwEfYey7iL9aiwIrXxcR1DHwDooFgZdnSTVL28Ca+n 4KbimcRjw1UVOS/M5mMVHSgLmlC4T1IqddGYqkEoJHernV1v2RYRMdIPj95FfOIK k+HHeshieVAO5hVgG21HZKzXlzcmsvsjzENjS6+E+D9SQK+uiMe3eO/WSPFLmDfH CIGgDI2YUt5bL+u3Lt6EaKgSobszzhD2coTQsjllX70AC8XCCmQ2IgZOdAGEzeNv KDW7dVbeBMJ5JMj9QzggS7lCmXIvqyx1iJj/H6uGIxXSKPrwwKiYFsRbGC8iTPh2 AVbEG5Ph9Rr7A6r6gYQRTUuZm7Y2d2NS -----END CERTIFICATE-----Generated at Tue Dec 23 11:20:45 2025 by rpki-client