This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft File: rXHewTibFKASABB2mR9Zq-LKseY.mft (raw, json) Hash identifier: rNbIngC2gvVRSpR+IMhQmNOw8RKh61RIukiSrR7vUBw= Subject key identifier: 1B:48:95:BE:5B:80:84:75:F0:B1:C5:22:DD:8C:42:CA:2F:90:92:CB Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft Manifest number: 0CB7 Signing time: Thu 18 Dec 2025 18:50:59 +0000 Manifest this update: Thu 18 Dec 2025 18:50:58 +0000 Manifest next update: Thu 25 Dec 2025 18:50:58 +0000 Files and hashes: 1: rXHewTibFKASABB2mR9Zq-LKseY.crl (hash: 8v2bR0jZyjzFLxYJecvNT8LbPtKnh/8xA27+Nbzk+Ho=) 2: 6360524E03D311F0A6C64177C4F9AE02.roa (hash: aDdJ1zHHJM2Pp/llY4+TjUByw8VD+3beZi6B31AyTJ8=) 3: 58EC5A1A8F3E11EF9B5DE37CC4F9AE02.roa (hash: fNb48r4M+gfLXajaKFGp8VWXxugH32v0si+d8iboCho=) 4: FF5213E8A81D11EFA74FFD31C4F9AE02.roa (hash: EO+r4YCRXrWQGjZoJ/CD1KsxdVzlBHVNlbdYh39PLSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Dec 18 18:50:58 2025 GMT Not After : Dec 25 18:50:58 2025 GMT Subject: CN=69444d13-8c22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c0:17:ec:47:e4:d5:c5:42:be:e4:e4:41:74: 62:b5:5f:30:85:a5:c9:66:3b:3c:f7:aa:d2:2c:d4: 76:a4:28:16:e3:5e:57:f0:b3:e9:fc:af:d3:3c:b3: 15:6c:3e:dd:42:3f:af:3f:df:e2:c7:be:a4:a1:b3: e5:4b:a3:8b:c7:f8:34:27:36:8e:3e:c1:25:39:b8: c0:0f:d9:93:1f:96:15:58:c6:cd:22:63:3d:29:c3: 3d:f6:e4:49:c3:7a:39:ff:5e:3a:7b:d3:41:ce:43: c2:80:3b:05:54:81:fe:6b:e7:dc:df:66:70:41:b8: 9a:f5:ae:f5:c2:81:fa:d8:3f:fc:d9:50:d8:20:df: 9d:e1:3b:b6:72:ca:74:fc:0c:64:df:2a:15:a8:10: a3:d0:e1:9b:38:b9:82:f6:b5:f2:70:9c:af:b7:94: f5:93:07:33:df:15:ee:f5:82:74:17:7d:0c:46:b8: 10:0d:bb:ab:b1:fd:b6:84:4d:1d:a2:b2:8e:33:8b: e8:f1:03:11:b6:d8:6e:a5:e7:95:20:e3:58:35:19: 64:96:81:7c:64:20:4d:c9:28:ab:ab:1a:bd:42:2a: 2f:85:df:a4:d6:bf:f1:8e:fd:f8:c9:dc:53:a9:7f: 9a:3c:ef:26:52:dc:e4:34:88:ab:08:c7:2a:8a:f5: 5f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:48:95:BE:5B:80:84:75:F0:B1:C5:22:DD:8C:42:CA:2F:90:92:CB X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:e0:8c:5d:58:91:e3:68:fb:4b:9c:b7:3e:1b:54:f1:5d:f5: ab:10:74:92:bb:ae:57:69:e1:72:59:0a:f5:66:fc:f5:08:4f: 54:7c:ad:48:88:a9:e1:a7:9c:60:54:9a:de:8b:40:01:73:a6: e6:53:58:a2:4d:68:3d:b1:b7:e4:79:5b:04:7c:9d:9a:d4:8e: f5:dc:55:94:0e:fc:49:e2:38:70:6c:ce:72:52:3b:f3:02:ad: 71:09:0a:18:c7:77:2e:7e:75:74:e9:7b:13:23:fc:e9:6c:70: 6f:f1:be:ce:aa:42:29:d8:25:26:e5:9d:ea:39:6b:1f:b1:be: 00:0f:92:18:40:be:bf:37:98:73:df:0d:34:a9:f9:6a:25:27: 54:00:ac:92:7a:63:03:9d:88:78:53:5f:4e:fe:19:be:76:9d: d4:dc:46:01:c0:ec:60:90:b8:19:18:d9:cb:90:6c:44:e1:ff: 1e:b6:b6:91:47:96:b5:41:77:46:65:70:5a:e5:92:a0:e4:24: 17:7a:1a:c2:e0:17:63:8c:9c:45:b8:c2:b5:33:3d:07:f0:59: a1:f8:84:b6:d0:70:6c:86:c2:4a:ba:1a:c3:e9:6f:68:39:f9: 39:9c:72:93:f7:1a:a2:e3:b7:95:4e:6f:6a:d5:82:a1:be:8d: 15:e6:ba:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEFENzFERUMxMzg5QjE0QTAxMjAwMTA3Njk5MUY1OUFC RTJDQUIxRTYwHhcNMjUxMjE4MTg1MDU4WhcNMjUxMjI1MTg1MDU4WjAYMRYwFAYD VQQDDA02OTQ0NGQxMy04YzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsAX7Efk1cVCvuTkQXRitV8whaXJZjs896rSLNR2pCgW415X8LPp/K/TPLMV bD7dQj+vP9/ix76kobPlS6OLx/g0JzaOPsElObjAD9mTH5YVWMbNImM9KcM99uRJ w3o5/146e9NBzkPCgDsFVIH+a+fc32ZwQbia9a71woH62D/82VDYIN+d4Tu2csp0 /Axk3yoVqBCj0OGbOLmC9rXycJyvt5T1kwcz3xXu9YJ0F30MRrgQDbursf22hE0d orKOM4vo8QMRtthupeeVIONYNRlkloF8ZCBNySirqxq9Qiovhd+k1r/xjv34ydxT qX+aPO8mUtzkNIirCMcqivVf5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtIlb5b gIR18LHFIt2MQsovkJLLMB8GA1UdIwQYMBaAFK1x3sE4mxSgEgAQdpkfWaviyrHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZLQVNBQkIybVI5WnEtTEtz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3NlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZL QVNBQkIybVI5WnEtTEtzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq4IxdWJHjaPtLnLc+G1TxXfWrEHSSu65XaeFyWQr1Zvz1CE9UfK1I iKnhp5xgVJrei0ABc6bmU1iiTWg9sbfkeVsEfJ2a1I713FWUDvxJ4jhwbM5yUjvz Aq1xCQoYx3cufnV06XsTI/zpbHBv8b7OqkIp2CUm5Z3qOWsfsb4AD5IYQL6/N5hz 3w00qflqJSdUAKySemMDnYh4U19O/hm+dp3U3EYBwOxgkLgZGNnLkGxE4f8etraR R5a1QXdGZXBa5ZKg5CQXehrC4BdjjJxFuMK1Mz0H8Fmh+IS20HBshsJKuhrD6W9o Ofk5nHKT9xqi47eVTm9q1YKhvo0V5rrc -----END CERTIFICATE-----Generated at Fri Dec 19 22:01:58 2025 by rpki-client