This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: P7DxbbdC88jgJN0/OWNvKsa8/jUbHbt4gt9egOXe/44= Subject key identifier: 9E:02:39:C9:E0:FF:FA:64:FA:03:B3:41:A7:72:30:62:6E:3C:34:8A Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: FE Signing time: Tue 23 Dec 2025 04:05:36 +0000 Manifest this update: Tue 23 Dec 2025 04:05:35 +0000 Manifest next update: Tue 30 Dec 2025 04:05:35 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: HmU1+/DXaRkQDTrUOH9Rflf7S4pMimlJ79W7QceGGbo=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: YxY/TXb7ZV7RLnxJEIm3XTlQ67ELpalTGoTZTqConuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Dec 23 04:05:35 2025 GMT Not After : Dec 30 04:05:35 2025 GMT Subject: CN=694a150f-72b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:74:00:6e:20:ad:41:a5:40:e2:45:fc:7e:03: be:91:83:8d:7e:0e:10:8f:54:4f:79:e1:68:56:e1: 08:b7:c8:82:72:a3:6d:95:84:58:61:41:ef:bd:26: df:19:de:72:37:6a:1a:c6:77:72:70:04:1d:c5:8a: 50:88:55:fe:b1:c4:d2:a5:0a:aa:de:72:de:c8:a6: 79:b9:92:d0:93:06:8d:0f:eb:b1:cc:fd:f7:8b:f5: 60:df:88:68:25:4f:c5:2d:af:46:ce:5b:32:6b:a2: f7:23:49:ea:b5:c1:c7:b1:31:27:d2:45:89:ec:e3: 35:35:f4:9b:9c:3c:3f:ca:88:ef:b5:b0:22:a9:f8: db:e4:0b:9d:5e:71:da:a9:b8:56:ad:a0:63:2f:69: ca:7e:0b:f9:59:d1:34:ac:88:a5:f0:d6:aa:02:22: a4:fa:6a:5a:6e:3d:23:a4:81:0c:6c:42:34:8e:7b: 63:47:b3:0b:16:99:d3:83:14:21:0f:c7:44:86:92: 10:fc:69:e2:99:84:6a:16:3d:6b:85:8c:94:87:c1: 9d:e8:20:74:20:94:ab:5a:da:7d:df:93:f6:f4:bf: 16:27:d2:e6:a1:3d:28:78:3e:b8:07:6b:94:a5:9d: 91:11:7c:3a:9e:1c:80:43:53:b1:21:75:7f:0d:09: 83:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:02:39:C9:E0:FF:FA:64:FA:03:B3:41:A7:72:30:62:6E:3C:34:8A X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:8f:2c:3f:6e:e9:87:51:97:88:b6:18:70:68:66:69:de:e0: 1b:18:8f:4c:4c:18:06:22:73:e3:69:dc:58:8f:7a:e0:87:5f: e1:c2:60:ef:41:f0:95:e8:53:b0:57:6a:fe:60:ba:99:3b:5e: ba:d8:5d:42:5c:2c:02:72:58:20:55:26:2f:6d:27:64:d4:44: 87:3c:50:02:ac:e0:b7:5f:14:94:0f:a6:ab:1f:c0:a4:36:79: f3:37:7e:6e:c0:c4:49:c1:c5:6e:70:7d:8d:75:24:ff:56:2d: ad:e7:f9:a1:44:75:0b:f7:98:5d:2a:0d:16:c3:dd:62:d5:7d: 0d:a9:fe:f6:ca:e8:4c:b8:d4:ee:1f:e0:60:8c:33:16:6f:34: f7:0e:2e:32:86:c3:b5:2b:79:86:0f:33:7e:35:66:b6:e7:7d: 57:45:1c:12:68:74:21:e3:5e:17:89:b1:0f:48:15:a1:94:ba: cb:26:9c:9d:f0:f4:8a:0e:47:4a:b5:a4:13:46:48:11:31:90: 6a:c3:6c:85:a8:39:b2:7e:9c:8d:58:ff:7f:39:c8:f8:fc:e9: a8:43:94:46:dd:01:64:4b:05:79:12:55:ff:a0:c9:24:9b:58: 96:da:2d:1c:db:3f:05:8e:d3:61:af:f7:b4:f6:9e:79:45:ba: c0:e6:86:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjUxMjIzMDQwNTM1WhcNMjUxMjMwMDQwNTM1WjAYMRYwFAYD VQQDDA02OTRhMTUwZi03MmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXQAbiCtQaVA4kX8fgO+kYONfg4Qj1RPeeFoVuEIt8iCcqNtlYRYYUHvvSbf Gd5yN2oaxndycAQdxYpQiFX+scTSpQqq3nLeyKZ5uZLQkwaND+uxzP33i/Vg34ho JU/FLa9Gzlsya6L3I0nqtcHHsTEn0kWJ7OM1NfSbnDw/yojvtbAiqfjb5AudXnHa qbhWraBjL2nKfgv5WdE0rIil8NaqAiKk+mpabj0jpIEMbEI0jntjR7MLFpnTgxQh D8dEhpIQ/GnimYRqFj1rhYyUh8Gd6CB0IJSrWtp935P29L8WJ9LmoT0oeD64B2uU pZ2REXw6nhyAQ1OxIXV/DQmDgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4COcng //pk+gOzQadyMGJuPDSKMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtjyw/bumHUZeIthhwaGZp3uAbGI9MTBgGInPjadxYj3rgh1/hwmDv QfCV6FOwV2r+YLqZO1662F1CXCwCclggVSYvbSdk1ESHPFACrOC3XxSUD6arH8Ck NnnzN35uwMRJwcVucH2NdST/Vi2t5/mhRHUL95hdKg0Ww91i1X0Nqf72yuhMuNTu H+BgjDMWbzT3Di4yhsO1K3mGDzN+NWa2531XRRwSaHQh414XibEPSBWhlLrLJpyd 8PSKDkdKtaQTRkgRMZBqw2yFqDmyfpyNWP9/Ocj4/OmoQ5RG3QFkSwV5ElX/oMkk m1iW2i0c2z8FjtNhr/e09p55RbrA5oY3 -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:59 2025 by rpki-client