This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft File: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft (raw, json) Hash identifier: rhzXm3ITLEmD8VZCDsR+7175PD9pQ8lrgvQmtijClLw= Subject key identifier: 4B:EE:55:B0:4D:4A:55:39:B1:4A:E3:D8:B5:06:91:28:21:9C:61:C9 Authority key identifier: E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 Certificate issuer: /CN=A91E9406/serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Certificate serial: 02CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft Manifest number: 02C8 Signing time: Tue 23 Dec 2025 00:24:28 +0000 Manifest this update: Tue 23 Dec 2025 00:24:27 +0000 Manifest next update: Tue 30 Dec 2025 00:24:27 +0000 Files and hashes: 1: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl (hash: WgSIsbmopdkIyr7ANxGA9o/QMRmBcmizh7QWD+UiSy8=) 2: F76D8A5C170D11EDA7EC2F87C4F9AE02.roa (hash: NyO/WjiaEa7cdOFl5O0R3ch16GCk/x68oKBSzQpBSAo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 718 (0x2ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9406, serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Validity Not Before: Dec 23 00:24:27 2025 GMT Not After : Dec 30 00:24:27 2025 GMT Subject: CN=6949e13c-9696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cc:ef:68:87:ba:1a:a4:ac:89:d6:59:a7:f4: eb:2c:af:a6:94:13:5e:20:a4:c3:6c:da:7c:ce:df: 69:e0:86:4e:e6:eb:08:9f:9f:d3:c2:72:48:a7:20: 73:fe:7b:51:aa:2b:7c:f0:09:dc:88:20:55:01:68: 36:6e:eb:17:59:b6:7d:e6:63:93:f8:db:0b:26:4c: 26:1a:fa:71:0d:7d:46:01:b0:08:d3:37:6a:48:3a: d2:3d:93:61:49:7c:68:81:09:7b:eb:63:8d:70:a6: c7:1a:15:e6:94:47:a3:d1:56:2c:42:c5:aa:d3:8d: 84:6f:ff:ca:2d:97:4c:6e:21:75:5f:da:45:f5:6b: f7:9c:f2:dc:59:c1:bb:10:9c:8c:8b:08:88:44:68: 02:05:fb:78:b1:80:28:03:d1:ee:a5:3f:08:43:f5: 99:01:ec:0a:3c:44:0d:c4:88:1c:3f:91:bf:75:ab: 4e:f9:7c:ed:83:b0:d0:e9:7b:ca:08:36:9a:0e:43: 32:e0:57:20:45:ef:10:31:ce:f0:43:f9:f4:68:a8: 85:31:3a:1c:3b:53:e1:71:2f:7f:8d:d2:16:b5:1c: 2e:76:51:37:f2:18:9a:28:8f:08:a6:76:28:3a:83: 1c:9e:45:f0:e4:96:43:27:64:3a:65:52:93:f8:04: c0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:EE:55:B0:4D:4A:55:39:B1:4A:E3:D8:B5:06:91:28:21:9C:61:C9 X509v3 Authority Key Identifier: keyid:E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:27:ca:68:20:6e:db:53:d0:03:d8:97:26:02:46:05:a1:e5: fe:9f:ab:a0:55:2b:2c:cd:6a:63:36:c9:27:72:e7:b9:38:24: c6:69:40:5a:18:4f:e9:e5:4f:3e:46:44:16:a5:52:fb:c1:07: b6:a0:62:52:b4:e8:a1:19:1c:c6:8d:2e:90:6e:cd:25:0c:9b: 80:18:02:f4:36:46:17:58:b3:37:77:87:75:69:af:e7:22:1a: dc:6f:0a:81:c1:ee:d8:a9:3c:68:c3:07:7b:85:7a:d8:0f:26: 82:03:c2:be:0b:c1:f0:dd:7b:38:61:95:74:f0:97:ed:fd:89: 32:e8:7c:a0:c9:bf:f2:31:14:98:8f:0c:e4:3d:4a:88:64:e4: 82:4f:82:82:57:37:78:f4:4a:c2:94:5b:a5:67:da:6a:f0:23: 37:01:7c:5a:5b:05:ce:13:43:27:73:3d:fc:26:06:42:90:7e: 10:29:d4:d0:ad:56:ff:ab:7f:c6:1e:04:9a:13:68:c8:d7:32: ae:09:36:11:74:c7:9f:df:39:fd:50:d3:78:f3:29:96:c0:fb: 8b:22:4b:7e:75:5e:23:de:a9:21:58:d6:28:81:14:fa:46:bd: ce:1a:c6:f4:1b:e1:f7:0c:be:f3:31:4d:a7:61:bf:c1:29:71: 1e:5a:54:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0MDYxMTAvBgNVBAUTKEUzNDM4NDA1NDc2NDAyQTNBQThGOTg3QzNBRkEwNjkw RDk2RUQ0NzQwHhcNMjUxMjIzMDAyNDI3WhcNMjUxMjMwMDAyNDI3WjAYMRYwFAYD VQQDDA02OTQ5ZTEzYy05Njk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuszvaIe6GqSsidZZp/TrLK+mlBNeIKTDbNp8zt9p4IZO5usIn5/TwnJIpyBz /ntRqit88AnciCBVAWg2busXWbZ95mOT+NsLJkwmGvpxDX1GAbAI0zdqSDrSPZNh SXxogQl762ONcKbHGhXmlEej0VYsQsWq042Eb//KLZdMbiF1X9pF9Wv3nPLcWcG7 EJyMiwiIRGgCBft4sYAoA9HupT8IQ/WZAewKPEQNxIgcP5G/datO+Xztg7DQ6XvK CDaaDkMy4FcgRe8QMc7wQ/n0aKiFMTocO1PhcS9/jdIWtRwudlE38hiaKI8IpnYo OoMcnkXw5JZDJ2Q6ZVKT+ATAEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvuVbBN SlU5sUrj2LUGkSghnGHJMB8GA1UdIwQYMBaAFONDhAVHZAKjqo+YfDr6BpDZbtR0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQwNi85ODY4QTlGMDE3 MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0FxT3FqNWg4T3ZvR2tObHUx SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwT0VCVWRrQXFPcWo1aDhPdm9Ha05sdTFIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTQwNi85ODY4QTlGMDE3MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0Fx T3FqNWg4T3ZvR2tObHUxSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSJ8poIG7bU9AD2JcmAkYFoeX+n6ugVSsszWpjNskncue5OCTGaUBa GE/p5U8+RkQWpVL7wQe2oGJStOihGRzGjS6Qbs0lDJuAGAL0NkYXWLM3d4d1aa/n IhrcbwqBwe7YqTxowwd7hXrYDyaCA8K+C8Hw3Xs4YZV08Jft/Yky6Hygyb/yMRSY jwzkPUqIZOSCT4KCVzd49ErClFulZ9pq8CM3AXxaWwXOE0Mncz38JgZCkH4QKdTQ rVb/q3/GHgSaE2jI1zKuCTYRdMef3zn9UNN48ymWwPuLIkt+dV4j3qkhWNYogRT6 Rr3OGsb0G+H3DL7zMU2nYb/BKXEeWlRU -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:27 2025 by rpki-client