This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: L1+PxPNXgkoQ8WIi/uCt53V1Tk3B94k/8C0x3+SO6rI= Subject key identifier: 01:1C:3E:4F:77:65:4C:44:B8:EB:55:D7:A2:83:4F:14:5B:6D:F5:EB Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 22B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 226C Signing time: Mon 22 Dec 2025 15:41:56 +0000 Manifest this update: Mon 22 Dec 2025 15:41:55 +0000 Manifest next update: Mon 29 Dec 2025 15:41:55 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: 4AA7BZAsho49G0KNjNwTLsZUEuFerGhbShSsood0YLA=) 2: F4B9363CD97C11F0998DA3C49DD3641D.roa (hash: iKaGp6aMywsrc3+QJBPct8yxTotntICq1up42PPmt6M=) 3: 05302944D38811F096791A31C4F9AE02.roa (hash: 87Kz6rOL3NCK+78LHKYv5w0lk7VawQEMiErvRzb+ilE=) 4: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: KNbruYSf1caR+avFgp2kJOhFS2xDq+YQHk8sfsca8TA=) 5: 08C1C86EC44811F0A783F54FC4F9AE02.roa (hash: LQee+XhKOJkAia9gXyqy0jgcw8paskB+oVbYCpcaQvU=) 6: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: yWabycL0fNoBRknav9eJgJDTlAAj5pKSPiafY7/LIVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8883 (0x22b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Dec 22 15:41:55 2025 GMT Not After : Dec 29 15:41:55 2025 GMT Subject: CN=694966c4-eaba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ac:ab:d9:1d:29:8b:9d:5a:24:71:bc:09:06: 47:67:74:82:9d:83:1b:e8:fb:91:7d:6e:e7:38:c0: d2:b7:fd:3a:de:a8:52:39:4b:e2:ab:09:e6:7e:3a: be:4a:4d:e4:ed:c4:48:c0:44:96:56:79:52:cb:d4: 87:26:f8:6f:ec:6c:1e:70:c7:4e:84:b6:1b:4f:64: aa:0a:8b:57:c8:57:ed:42:dd:d3:38:ee:4a:79:93: 63:14:07:da:71:c4:4d:88:68:5e:3f:49:a3:72:ad: f3:8c:13:61:2e:c0:ee:65:26:57:03:c8:ad:9c:10: 06:85:46:57:8b:a6:27:62:99:42:72:7a:8c:30:78: 72:05:20:83:4e:a0:5e:ac:09:7f:23:c7:32:26:d0: 0d:5d:30:0b:88:97:81:f2:ab:1c:d0:b6:ef:7a:4f: 74:1f:38:f4:3d:8f:02:de:a3:46:e0:d2:1a:0a:52: c7:5d:90:d7:66:92:46:5f:64:81:33:2e:ae:01:4a: 4e:82:0e:0f:04:29:5e:e1:5c:7a:2c:1e:13:23:8c: 9b:9e:9e:77:b2:83:04:a4:a4:48:c5:f9:6e:f7:ec: 09:58:04:d6:d8:1d:ed:d8:05:f9:44:f3:f3:db:bd: 22:2c:4a:b8:02:9f:37:51:ad:da:9c:46:86:89:87: 51:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:1C:3E:4F:77:65:4C:44:B8:EB:55:D7:A2:83:4F:14:5B:6D:F5:EB X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:92:ca:7b:de:ed:43:b7:f0:d8:ac:d4:10:5e:74:af:76:5d: ad:55:b7:09:7b:dd:0d:b0:7a:40:32:83:a2:f3:8d:82:5c:fe: ec:26:0b:ee:01:96:7a:db:f7:1b:a5:70:e1:42:a0:dd:ee:f3: bd:d7:00:f5:75:7c:2d:7c:fb:62:9a:76:bf:52:56:b9:a7:11: 2d:58:7b:49:b0:25:c3:07:50:c0:32:70:78:57:0f:2f:b3:42: 89:29:88:70:c5:6f:7c:d9:7b:35:63:2c:8f:15:2e:a4:b0:53: 9a:b3:9d:9a:d4:b0:aa:b8:18:97:58:2f:dd:1e:4b:9d:86:94: 00:63:25:e7:7a:83:a5:e6:e0:51:c1:14:78:6c:e5:f3:96:70: c8:57:03:14:c8:c6:5d:05:94:fd:be:51:ba:13:29:d8:f0:60: 05:70:7e:d6:98:c9:db:70:d4:38:8a:fb:cd:f6:8a:54:ae:bd: 38:1d:a4:ef:bd:35:15:08:38:2e:43:07:f0:9e:ce:da:ce:1c: 08:53:d5:2b:af:78:bb:2e:7e:7f:63:9e:66:f8:b5:1f:f7:ad: a7:18:81:d0:3a:6b:1e:3b:6e:83:e3:a1:38:56:b8:b1:b3:30: 80:31:50:f0:f7:1a:f0:99:15:b4:63:70:ef:32:42:4c:d5:9d: f3:fc:9e:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUxMjIyMTU0MTU1WhcNMjUxMjI5MTU0MTU1WjAYMRYwFAYD VQQDDA02OTQ5NjZjNC1lYWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqyr2R0pi51aJHG8CQZHZ3SCnYMb6PuRfW7nOMDSt/063qhSOUviqwnmfjq+ Sk3k7cRIwESWVnlSy9SHJvhv7GwecMdOhLYbT2SqCotXyFftQt3TOO5KeZNjFAfa ccRNiGheP0mjcq3zjBNhLsDuZSZXA8itnBAGhUZXi6YnYplCcnqMMHhyBSCDTqBe rAl/I8cyJtANXTALiJeB8qsc0Lbvek90Hzj0PY8C3qNG4NIaClLHXZDXZpJGX2SB My6uAUpOgg4PBCle4Vx6LB4TI4ybnp53soMEpKRIxflu9+wJWATW2B3t2AX5RPPz 270iLEq4Ap83Ua3anEaGiYdRuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEcPk93 ZUxEuOtV16KDTxRbbfXrMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCksp73u1Dt/DYrNQQXnSvdl2tVbcJe90NsHpAMoOi842CXP7sJgvu AZZ62/cbpXDhQqDd7vO91wD1dXwtfPtimna/Ula5pxEtWHtJsCXDB1DAMnB4Vw8v s0KJKYhwxW982Xs1YyyPFS6ksFOas52a1LCquBiXWC/dHkudhpQAYyXneoOl5uBR wRR4bOXzlnDIVwMUyMZdBZT9vlG6EynY8GAFcH7WmMnbcNQ4ivvN9opUrr04HaTv vTUVCDguQwfwns7azhwIU9Urr3i7Ln5/Y55m+LUf962nGIHQOmseO26D46E4Vrix szCAMVDw9xrwmRW0Y3DvMkJM1Z3z/J7W -----END CERTIFICATE-----Generated at Tue Dec 23 09:07:04 2025 by rpki-client