This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft File: 4190GdVyqG920uv3gpq22dA0CQU.mft (raw, json) Hash identifier: MuL0lmKFsltaGIAFP/mY57cF42OY21PO+U92I5BONR0= Subject key identifier: 8C:A9:A5:0C:4B:E9:D0:94:AC:F9:8A:DE:70:DB:D0:5D:3B:E3:CD:40 Authority key identifier: E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 Certificate issuer: /CN=A91E8AF5/serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft Manifest number: 01C2 Signing time: Tue 23 Dec 2025 01:59:34 +0000 Manifest this update: Tue 23 Dec 2025 01:59:34 +0000 Manifest next update: Tue 30 Dec 2025 01:59:34 +0000 Files and hashes: 1: 4190GdVyqG920uv3gpq22dA0CQU.crl (hash: kZsVaV3Djfb/DFKjDVZc+74gqCbG7e+oSN+IrG2iMfw=) 2: 9985244A2D1411EEAA9EA45DC4F9AE02.roa (hash: gPmbtMjtLenMFEAnNmFzzGl8ckVYYI4uHTkTnXpU64U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF5, serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Validity Not Before: Dec 23 01:59:34 2025 GMT Not After : Dec 30 01:59:34 2025 GMT Subject: CN=6949f786-e677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:52:c8:96:3c:1b:3c:15:38:0d:4c:76:f7:ac: c3:b7:8c:d6:95:17:14:4e:95:0e:6a:b8:8a:6e:5f: f8:60:a0:cc:bc:8a:c3:64:f8:f9:5d:2f:c9:5a:bb: 38:d5:80:cc:85:15:8b:f8:55:4b:e1:a1:de:7f:72: 53:9d:cf:a3:6b:aa:31:2c:f1:fa:32:b5:03:50:af: 6c:51:a3:d7:96:4e:0d:97:b3:b6:e3:8a:b4:9a:81: 86:cc:76:f8:a9:03:94:75:09:a0:75:4b:2a:7d:80: 35:2b:49:df:cf:11:5e:f7:cb:42:11:0b:c0:32:46: a8:62:7e:ed:bc:3b:59:f6:5d:a6:49:7b:8e:e8:10: 9c:a3:23:94:61:3c:3d:bb:25:01:f4:7b:c5:af:5a: ec:1b:e2:ea:a0:9d:c9:e5:51:eb:44:d8:68:c2:d6: c9:8c:9e:5a:50:80:3f:08:53:1b:37:21:a8:10:cf: 78:bd:5b:4a:03:6f:bb:43:d1:e4:ab:8f:ee:3c:a6: ea:0f:a4:e6:e6:fd:ed:41:e6:d3:82:1e:26:59:dd: 75:4a:93:66:92:ac:46:78:54:83:d9:1c:5f:d3:02: 97:77:d4:98:a6:48:98:47:04:b5:61:6d:7f:8b:67: b5:50:52:30:a1:ca:8c:13:f6:d7:e0:e3:d6:49:07: a9:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A9:A5:0C:4B:E9:D0:94:AC:F9:8A:DE:70:DB:D0:5D:3B:E3:CD:40 X509v3 Authority Key Identifier: keyid:E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:0c:61:55:54:bb:59:3c:6a:db:b0:7c:e5:c1:b2:3c:89:be: 13:4c:38:05:2f:45:11:5c:e6:48:08:a7:a5:1c:51:26:74:61: fe:53:ef:dd:d1:1f:aa:b9:6a:63:21:1c:f3:f4:f7:15:80:63: 4c:c8:c9:52:35:d2:10:e6:ae:1c:00:40:e0:b4:03:3e:1f:b6: 74:d4:6b:6f:de:9e:12:6c:fa:ce:0a:cd:18:d2:5e:27:2d:15: 0d:72:16:82:50:97:d0:a1:f6:31:a6:5c:cd:86:d3:56:f6:54: 59:97:5a:7b:f2:f4:74:c5:c0:1f:c1:01:8f:7c:89:e8:7f:0a: d6:c6:48:d9:aa:e0:a6:66:62:2c:ee:d1:2f:f1:91:ba:dc:3c: da:7d:50:0e:63:ad:09:6f:1b:58:b1:0d:3d:72:7f:1c:94:e1: b3:2f:2b:e6:f3:d2:0a:42:5a:cc:cb:6e:7a:2e:04:f0:80:80: ff:4f:d5:ae:e3:06:bf:07:28:20:04:a7:c6:37:27:96:28:48: d0:7e:d1:fa:21:34:89:a6:0d:22:6d:cc:94:0e:7f:21:3a:e0: 38:45:8a:48:c3:18:91:fe:5c:c0:2d:0b:a2:21:4f:cd:0f:89: 17:05:d8:47:91:80:34:b4:a0:66:01:3c:dd:e5:b6:52:0a:dd: 13:c5:35:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjUxMTAvBgNVBAUTKEUzNUY3NDE5RDU3MkE4NkY3NkQyRUJGNzgyOUFCNkQ5 RDAzNDA5MDUwHhcNMjUxMjIzMDE1OTM0WhcNMjUxMjMwMDE1OTM0WjAYMRYwFAYD VQQDDA02OTQ5Zjc4Ni1lNjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFLIljwbPBU4DUx296zDt4zWlRcUTpUOariKbl/4YKDMvIrDZPj5XS/JWrs4 1YDMhRWL+FVL4aHef3JTnc+ja6oxLPH6MrUDUK9sUaPXlk4Nl7O244q0moGGzHb4 qQOUdQmgdUsqfYA1K0nfzxFe98tCEQvAMkaoYn7tvDtZ9l2mSXuO6BCcoyOUYTw9 uyUB9HvFr1rsG+LqoJ3J5VHrRNhowtbJjJ5aUIA/CFMbNyGoEM94vVtKA2+7Q9Hk q4/uPKbqD6Tm5v3tQebTgh4mWd11SpNmkqxGeFSD2Rxf0wKXd9SYpkiYRwS1YW1/ i2e1UFIwocqME/bX4OPWSQepKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyppQxL 6dCUrPmK3nDb0F07481AMB8GA1UdIwQYMBaAFONfdBnVcqhvdtLr94KattnQNAkF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGNS8zM0Y3MjU4NjJE MTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFHOTIwdXYzZ3BxMjJkQTBD UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQxOTBHZFZ5cUc5MjB1djNncHEyMmRBMENRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGNS8zM0Y3MjU4NjJEMTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFH OTIwdXYzZ3BxMjJkQTBDUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMDGFVVLtZPGrbsHzlwbI8ib4TTDgFL0URXOZICKelHFEmdGH+U+/d 0R+quWpjIRzz9PcVgGNMyMlSNdIQ5q4cAEDgtAM+H7Z01Gtv3p4SbPrOCs0Y0l4n LRUNchaCUJfQofYxplzNhtNW9lRZl1p78vR0xcAfwQGPfInofwrWxkjZquCmZmIs 7tEv8ZG63DzafVAOY60JbxtYsQ09cn8clOGzLyvm89IKQlrMy256LgTwgID/T9Wu 4wa/ByggBKfGNyeWKEjQftH6ITSJpg0ibcyUDn8hOuA4RYpIwxiR/lzALQuiIU/N D4kXBdhHkYA0tKBmATzd5bZSCt0TxTWM -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:29 2025 by rpki-client