This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft File: mG5BZ9azgH9J98JgDWD5wmCacJY.mft (raw, json) Hash identifier: VwTLuenLTPOEklrhJ+sirnfAk/EVibunRqynQu9fw+A= Subject key identifier: C6:6C:2E:B5:1C:D0:2A:91:00:C3:5E:2B:4A:B2:66:42:1B:B1:E9:58 Authority key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 Certificate issuer: /CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Certificate serial: 0C90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft Manifest number: 0C89 Signing time: Wed 24 Dec 2025 18:06:23 +0000 Manifest this update: Wed 24 Dec 2025 18:06:23 +0000 Manifest next update: Wed 31 Dec 2025 18:06:23 +0000 Files and hashes: 1: mG5BZ9azgH9J98JgDWD5wmCacJY.crl (hash: +7nkjbQbqJzxAlHrisjsfBuFnLxbMWRuNxcfIHVS1J8=) 2: 4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa (hash: JrgXyhe/ZBiLMiqpguwMxQYnYLTsK7NzW7LJdocKtjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3216 (0xc90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3806, serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Validity Not Before: Dec 24 18:06:23 2025 GMT Not After : Dec 31 18:06:23 2025 GMT Subject: CN=694c2b9f-d843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:23:ae:28:fc:ce:15:67:be:4f:2a:82:7d:14: ee:72:3d:e5:9e:14:ec:b1:c2:23:3b:cc:02:6d:a8: 00:6e:61:69:6f:54:26:9e:3b:91:44:ec:ca:23:e4: a5:ef:4b:f0:62:b5:d1:02:28:8a:94:a9:7b:45:0f: 24:35:fa:d3:ef:8f:4c:b9:02:3e:f9:2d:b1:b4:fc: 4b:f6:a3:ab:62:81:8b:33:ed:bd:8c:2d:e4:cd:48: 10:03:46:24:60:5f:3d:0f:63:6d:e0:60:23:33:29: 80:a9:3c:3f:8f:fb:10:d1:1b:da:70:1f:31:77:b0: f5:e6:17:5c:bf:df:1f:49:60:d2:03:31:a6:61:a2: b7:c5:02:c7:48:54:f8:1f:74:61:6b:ca:3a:7d:80: 2c:39:84:84:6f:dd:7a:c9:81:44:d7:f5:53:37:fd: 3a:65:c5:50:0b:d5:09:65:dc:28:c8:f9:2a:5a:c5: 26:b1:51:ab:9b:69:86:f7:c5:f3:2c:5a:6c:7d:96: e8:80:d0:02:3a:e2:fc:bd:a2:c4:e6:a6:45:6e:8b: 17:6d:3c:e1:a0:30:1d:38:4a:95:48:69:d7:35:e5: 2d:82:5e:41:4c:0d:20:2d:bf:46:1d:35:d0:76:a3: 78:61:e4:f3:0d:45:d7:09:c2:ca:cc:1e:1c:cf:70: 04:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:6C:2E:B5:1C:D0:2A:91:00:C3:5E:2B:4A:B2:66:42:1B:B1:E9:58 X509v3 Authority Key Identifier: keyid:98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:14:1c:12:79:1a:13:eb:cf:cc:2c:db:26:5f:0e:2b:4e:53: 61:c9:3a:0a:14:ee:36:c2:4b:d0:7e:32:bf:6f:4b:b0:c8:40: a3:c1:15:30:55:99:b7:eb:13:3a:1c:61:f9:48:53:25:db:ad: 0d:07:3f:c6:79:35:66:4e:42:b5:f3:b3:af:51:89:30:bf:f1: d8:df:94:9b:96:9e:4a:34:2d:6b:d3:ec:f4:b4:6c:a1:52:f1: 26:48:20:38:fc:ca:82:ba:58:41:0d:cf:f4:6e:65:31:03:06: e8:b5:d0:2e:17:74:f0:eb:7e:32:28:90:21:ba:bc:2d:f5:32: dd:c3:68:f6:38:33:18:26:f0:11:ad:51:0b:3f:81:05:e8:95: 40:00:49:3c:85:a0:0f:c9:e3:c6:57:03:09:68:df:aa:ff:3c: 3d:32:8a:95:c8:78:27:ce:0d:0f:90:7e:3f:f0:07:c0:e7:de: ac:45:14:9b:42:8f:f8:ee:6c:f2:81:b9:45:e8:a4:af:36:ea: fe:82:11:1a:a4:0f:72:9b:51:a3:03:f4:67:7e:4c:f1:f6:c7: 30:7a:26:2e:c9:5e:49:d7:3d:80:92:7e:01:9c:8e:90:8d:4b: 9e:4c:16:28:59:89:1a:61:da:48:87:19:4a:14:24:ac:df:f5: 28:3f:33:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2MDBENjBGOUMy NjA5QTcwOTYwHhcNMjUxMjI0MTgwNjIzWhcNMjUxMjMxMTgwNjIzWjAYMRYwFAYD VQQDDA02OTRjMmI5Zi1kODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkiOuKPzOFWe+TyqCfRTucj3lnhTsscIjO8wCbagAbmFpb1QmnjuRROzKI+Sl 70vwYrXRAiiKlKl7RQ8kNfrT749MuQI++S2xtPxL9qOrYoGLM+29jC3kzUgQA0Yk YF89D2Nt4GAjMymAqTw/j/sQ0RvacB8xd7D15hdcv98fSWDSAzGmYaK3xQLHSFT4 H3Rha8o6fYAsOYSEb916yYFE1/VTN/06ZcVQC9UJZdwoyPkqWsUmsVGrm2mG98Xz LFpsfZbogNACOuL8vaLE5qZFbosXbTzhoDAdOEqVSGnXNeUtgl5BTA0gLb9GHTXQ dqN4YeTzDUXXCcLKzB4cz3AEnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZsLrUc 0CqRAMNeK0qyZkIbselYMB8GA1UdIwQYMBaAFJhuQWfWs4B/SffCYA1g+cJgmnCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzgwNi9CNDcyRkUyQTBC N0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdIOUo5OEpnRFdENXdtQ2Fj SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21HNUJaOWF6Z0g5Sjk4SmdEV0Q1d21DYWNKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzgwNi9CNDcyRkUyQTBCN0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdI OUo5OEpnRFdENXdtQ2FjSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3FBwSeRoT68/MLNsmXw4rTlNhyToKFO42wkvQfjK/b0uwyECjwRUw VZm36xM6HGH5SFMl260NBz/GeTVmTkK187OvUYkwv/HY35Sblp5KNC1r0+z0tGyh UvEmSCA4/MqCulhBDc/0bmUxAwbotdAuF3Tw634yKJAhurwt9TLdw2j2ODMYJvAR rVELP4EF6JVAAEk8haAPyePGVwMJaN+q/zw9MoqVyHgnzg0PkH4/8AfA596sRRSb Qo/47mzygblF6KSvNur+ghEapA9ym1GjA/Rnfkzx9scweiYuyV5J1z2Akn4BnI6Q jUueTBYoWYkaYdpIhxlKFCSs3/UoPzMb -----END CERTIFICATE-----Generated at Wed Dec 24 19:30:20 2025 by rpki-client