This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: yXmk8nCFm/XnwkiP9PtpNe45dfMwAWhnWWzandjtraQ= Subject key identifier: 2D:2F:84:F7:C2:94:F4:8C:D9:61:C6:9F:1D:F8:20:25:1A:02:5F:45 Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0C44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 2D89 Signing time: Wed 24 Dec 2025 16:12:55 +0000 Manifest this update: Wed 24 Dec 2025 16:12:55 +0000 Manifest next update: Wed 31 Dec 2025 16:12:55 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: jUwegfsn9M54C7lLi66FybseNCuQJq1uMqJv24WgNpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 16:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3140 (0xc44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B, serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: Dec 24 16:12:55 2025 GMT Not After : Dec 31 16:12:55 2025 GMT Subject: CN=694c1107-8f9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d2:1d:0c:84:36:51:04:bb:32:b5:ca:f5:25: 81:a3:17:c1:f5:8e:bf:fa:36:9e:5f:30:2f:c3:17: 97:f2:6d:61:06:4a:71:eb:6f:d4:14:70:56:de:b8: 35:98:dc:05:26:a4:1c:a3:e4:fb:64:b8:04:8c:a6: 00:a0:a0:91:29:ca:78:24:5d:a7:da:96:1f:32:b9: d8:fe:74:bd:d3:67:f2:25:b2:54:34:2c:03:19:7b: ec:5d:28:36:7a:04:de:6d:65:c6:a9:07:4a:b9:79: 8b:40:1d:9d:9a:60:85:00:d5:b4:75:59:fa:50:4c: da:b1:ea:f0:46:ae:96:90:fb:c3:12:36:6b:8b:0d: 00:bf:7d:fc:17:f0:f6:95:52:be:8a:63:c3:4b:92: 1c:86:a8:b2:cc:4b:fc:13:c7:92:f4:ff:cc:d2:1a: f1:70:9a:43:2f:c9:95:e9:c5:44:10:18:60:b7:d0: 37:b9:21:fd:b1:ac:e7:12:84:21:91:33:d4:27:d7: 4c:3c:a2:ba:0a:a1:cd:d7:d5:52:e8:22:52:b2:24: d9:6c:4a:52:e3:47:09:c8:99:bd:e3:7c:57:73:79: 12:b7:73:1f:bb:d3:59:4d:ea:02:6a:70:a8:68:7b: 3a:c6:eb:27:f2:6a:30:99:72:00:d8:b5:d3:03:34: b3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:2F:84:F7:C2:94:F4:8C:D9:61:C6:9F:1D:F8:20:25:1A:02:5F:45 X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:08:78:b7:72:44:0c:43:5a:d8:1d:70:42:31:ac:73:e4:98: 09:1b:7a:31:00:8f:de:fb:e4:59:09:84:15:9a:4b:55:2b:67: a3:36:bc:ac:0b:39:6a:cc:6d:6e:de:e4:10:f9:8c:7f:e0:30: 5a:14:62:40:27:13:a2:39:81:cf:40:5d:d7:6d:96:12:32:55: d7:2e:6d:5b:d5:ba:f9:3b:69:4f:7e:9e:52:8d:e2:c3:d5:cb: 12:0e:5c:bf:94:55:49:72:cd:05:63:f8:6a:e1:e3:76:d3:72: 9c:99:86:72:78:76:9d:55:6a:0d:f9:57:18:96:62:b3:99:dc: 9a:ee:fe:40:02:d4:ac:f8:e6:96:f8:8e:01:17:65:71:2f:f2: ea:2e:c0:b8:ab:e4:ab:4c:08:be:bc:2e:da:d3:8b:04:fd:c7: 86:f5:62:66:77:a0:cf:a3:db:41:cc:47:f4:13:ea:02:20:33: 87:25:06:ff:09:bd:65:24:f9:f1:f6:16:61:ec:67:39:ea:6d: ab:99:25:ed:0a:2f:61:9a:ed:93:49:da:99:68:d4:a1:37:01: 06:32:22:b1:e4:05:58:90:12:d9:7e:28:ad:63:bf:cf:26:a5: db:28:24:fe:e5:5a:78:89:40:c5:cd:9f:16:bf:9a:39:59:2b: 3d:b1:fe:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjUxMjI0MTYxMjU1WhcNMjUxMjMxMTYxMjU1WjAYMRYwFAYD VQQDDA02OTRjMTEwNy04ZjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9IdDIQ2UQS7MrXK9SWBoxfB9Y6/+jaeXzAvwxeX8m1hBkpx62/UFHBW3rg1 mNwFJqQco+T7ZLgEjKYAoKCRKcp4JF2n2pYfMrnY/nS902fyJbJUNCwDGXvsXSg2 egTebWXGqQdKuXmLQB2dmmCFANW0dVn6UEzaserwRq6WkPvDEjZriw0Av338F/D2 lVK+imPDS5IchqiyzEv8E8eS9P/M0hrxcJpDL8mV6cVEEBhgt9A3uSH9saznEoQh kTPUJ9dMPKK6CqHN19VS6CJSsiTZbEpS40cJyJm943xXc3kSt3Mfu9NZTeoCanCo aHs6xusn8mowmXIA2LXTAzSzmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0vhPfC lPSM2WHGnx34ICUaAl9FMB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClCHi3ckQMQ1rYHXBCMaxz5JgJG3oxAI/e++RZCYQVmktVK2ejNrys CzlqzG1u3uQQ+Yx/4DBaFGJAJxOiOYHPQF3XbZYSMlXXLm1b1br5O2lPfp5SjeLD 1csSDly/lFVJcs0FY/hq4eN203KcmYZyeHadVWoN+VcYlmKzmdya7v5AAtSs+OaW +I4BF2VxL/LqLsC4q+SrTAi+vC7a04sE/ceG9WJmd6DPo9tBzEf0E+oCIDOHJQb/ Cb1lJPnx9hZh7Gc56m2rmSXtCi9hmu2TSdqZaNShNwEGMiKx5AVYkBLZfiitY7/P JqXbKCT+5Vp4iUDFzZ8Wv5o5WSs9sf4u -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:36 2025 by rpki-client