This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: WvIScmlk3ycFsQoTATVZ41xv/ueIVSw77eOi8ixnYZc= Subject key identifier: F8:62:E8:6F:A9:E9:08:52:A6:41:BA:CB:DB:08:6B:E2:F6:E9:43:B9 Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: 013E Signing time: Tue 23 Dec 2025 03:32:23 +0000 Manifest this update: Tue 23 Dec 2025 03:32:23 +0000 Manifest next update: Tue 30 Dec 2025 03:32:23 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: 1sN/TFMnDoOSaZPoWfOu6i2SgZdmYpxNbvTJ2lAy+F4=) 2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 4s3NtIvsEComlAClIWN0C/pBpA6ARQs8HzKhlcubCoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:32:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: Dec 23 03:32:23 2025 GMT Not After : Dec 30 03:32:23 2025 GMT Subject: CN=694a0d47-56f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:9b:96:ec:3c:b2:75:91:d5:ea:c5:bd:3c: ac:80:f7:63:79:7e:52:7e:23:cb:d8:f0:3d:78:43: 18:fb:b3:3c:75:d2:cd:60:72:e9:68:15:1d:26:0b: 7e:e7:42:7a:61:1a:f1:d5:c4:58:cf:79:e7:cb:0e: 1a:95:f6:69:31:b0:1c:60:20:78:d4:0f:22:0d:aa: c0:df:58:06:43:72:00:eb:78:87:4c:a5:a2:6d:f5: c1:e6:11:f6:55:04:1d:9d:16:41:36:c5:ab:b2:65: c4:72:02:4c:66:6d:d1:e5:24:6b:34:28:31:e5:4a: 45:31:04:3b:a2:92:98:1e:23:9a:45:20:0e:50:5c: 1a:f2:7e:fc:97:e6:3a:90:c2:55:7d:27:87:ea:3e: 3a:1b:82:cb:71:d6:47:d2:b7:65:37:ea:23:7d:57: 97:49:1e:84:35:28:6f:95:1a:d5:b5:c8:16:fb:d3: 64:2c:f5:c8:0c:f7:0b:da:5b:93:61:54:9b:73:dc: 4d:30:23:55:42:84:88:af:e3:d5:f4:78:05:09:63: 0d:ac:fd:8a:b7:a4:c3:b5:1b:ef:7a:92:1d:e7:e4: 77:91:79:cf:4c:53:21:86:69:15:cf:45:8d:1a:3c: 15:61:e6:f8:d7:fe:47:a8:e3:e9:93:15:f7:84:18: 9f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:62:E8:6F:A9:E9:08:52:A6:41:BA:CB:DB:08:6B:E2:F6:E9:43:B9 X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:86:fe:6e:ef:29:05:d0:0c:89:17:45:cd:bd:b8:0d:b7:9d: 85:a3:03:18:33:e7:3d:61:85:d5:44:f7:6f:16:c9:c1:e5:7b: 9a:4c:72:3d:8c:19:1a:b7:eb:24:f5:f2:91:af:9a:51:7a:b2: ff:ff:bb:dc:78:da:2a:2f:77:42:59:6b:1d:2f:f5:b8:fe:51: 34:0c:9e:7f:dc:05:df:d7:e1:47:ae:6c:e7:73:96:b0:fa:24: 8d:b9:6f:f0:37:07:45:65:2d:7c:3e:b4:ea:a4:f9:fa:81:f0: 6a:83:62:b7:e6:7a:09:ce:cd:b0:88:eb:66:f5:ba:a7:cc:06: 5f:a2:ed:32:35:45:b1:a3:4f:c1:8b:79:fc:44:9a:c8:fe:b3: de:1a:4e:f6:24:04:5a:55:61:de:0b:73:28:3a:0f:32:e5:bd: 37:0d:fb:53:0b:a3:ca:82:26:25:a6:5f:93:e1:7e:f1:e4:47: 2d:e3:fb:5b:dd:0c:04:11:e8:91:6c:53:fd:27:42:43:c3:d4: 22:bb:6d:8f:3b:41:65:9b:cd:b5:68:87:f5:84:74:55:c1:7d: 40:5d:72:4c:70:de:00:45:ec:32:29:53:02:d5:eb:ec:e5:f9: fe:e0:bd:1b:d8:9c:40:3e:26:aa:e3:a5:68:bc:1d:c2:a9:ec: 31:f6:95:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUxMjIzMDMzMjIzWhcNMjUxMjMwMDMzMjIzWjAYMRYwFAYD VQQDDA02OTRhMGQ0Ny01NmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeSbluw8snWR1erFvTysgPdjeX5SfiPL2PA9eEMY+7M8ddLNYHLpaBUdJgt+ 50J6YRrx1cRYz3nnyw4alfZpMbAcYCB41A8iDarA31gGQ3IA63iHTKWibfXB5hH2 VQQdnRZBNsWrsmXEcgJMZm3R5SRrNCgx5UpFMQQ7opKYHiOaRSAOUFwa8n78l+Y6 kMJVfSeH6j46G4LLcdZH0rdlN+ojfVeXSR6ENShvlRrVtcgW+9NkLPXIDPcL2luT YVSbc9xNMCNVQoSIr+PV9HgFCWMNrP2Kt6TDtRvvepId5+R3kXnPTFMhhmkVz0WN GjwVYeb41/5HqOPpkxX3hBifXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhi6G+p 6QhSpkG6y9sIa+L26UO5MB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNhv5u7ykF0AyJF0XNvbgNt52FowMYM+c9YYXVRPdvFsnB5XuaTHI9 jBkat+sk9fKRr5pRerL//7vceNoqL3dCWWsdL/W4/lE0DJ5/3AXf1+FHrmznc5aw +iSNuW/wNwdFZS18PrTqpPn6gfBqg2K35noJzs2wiOtm9bqnzAZfou0yNUWxo0/B i3n8RJrI/rPeGk72JARaVWHeC3MoOg8y5b03DftTC6PKgiYlpl+T4X7x5Ect4/tb 3QwEEeiRbFP9J0JDw9Qiu22PO0Flm821aIf1hHRVwX1AXXJMcN4ARewyKVMC1evs 5fn+4L0b2JxAPiaq46VovB3Cqewx9pWG -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:00 2025 by rpki-client