This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft File: VXiaNBbn71Fc4I8Fo28d7YNETAk.mft (raw, json) Hash identifier: cApJYCnv4YX+9XRPwSM13zF4krk9wPhs+X6QzIXZDgA= Subject key identifier: 6E:D5:7E:38:A1:A6:A1:93:B9:1E:EE:EF:8A:EA:4A:2A:5A:19:F6:94 Authority key identifier: 55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 Certificate issuer: /CN=A91F43F2/serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft Manifest number: 54 Signing time: Tue 23 Dec 2025 06:05:58 +0000 Manifest this update: Tue 23 Dec 2025 06:05:57 +0000 Manifest next update: Tue 30 Dec 2025 06:05:57 +0000 Files and hashes: 1: VXiaNBbn71Fc4I8Fo28d7YNETAk.crl (hash: VncTaMPYKCXFHJmokxwS5yqZk6AIHWnaNXFTgeQr9Xk=) 2: A19F973C60C011F0A28C7F2CC4F9AE02.roa (hash: z6l4Kf7BBkbhNbxfRp+L0t7tdYphMHusFnOI/s0ajOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Validity Not Before: Dec 23 06:05:57 2025 GMT Not After : Dec 30 06:05:57 2025 GMT Subject: CN=694a3146-8708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:04:18:ca:41:fd:1a:9e:36:48:77:af:c6:66: 4d:9f:f8:0b:d6:f6:c3:71:97:ec:c6:14:68:14:e8: d0:62:ae:95:83:73:90:ce:d5:f8:de:61:80:bd:96: 40:0c:9f:80:85:4f:34:4f:df:10:a6:bc:87:35:6a: ef:7f:59:7e:4d:09:e9:39:06:c5:2b:9c:b5:b5:21: f2:28:8d:cc:0d:51:3a:e3:7d:3e:57:df:ee:e3:f2: 6c:a8:53:ec:00:1e:7a:13:44:ca:6d:80:b5:1a:de: 3d:6d:02:b2:c1:07:68:93:3f:f9:d1:0a:c9:d3:d5: 40:0f:f7:d6:b8:5c:b3:05:ac:54:93:82:8a:d4:8e: fd:59:7c:82:1c:1e:12:72:0c:4b:f6:47:b0:12:6f: e8:c4:5f:07:8d:36:93:f7:7b:9c:6d:84:62:e5:94: 6b:b9:d2:8d:b2:8d:62:f6:d5:a8:8c:a6:d9:01:23: 21:26:30:13:33:74:ad:a0:ea:43:7f:8f:14:e0:bc: a5:f5:42:05:e6:b5:4e:fb:c9:eb:04:95:65:a5:ef: c6:91:13:12:01:09:69:23:93:58:07:9a:4b:81:72: dc:c6:15:a3:08:25:db:c1:83:ac:41:4c:50:0c:79: e9:0c:7e:84:52:25:83:3f:43:60:28:ad:da:0c:00: 31:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D5:7E:38:A1:A6:A1:93:B9:1E:EE:EF:8A:EA:4A:2A:5A:19:F6:94 X509v3 Authority Key Identifier: keyid:55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:6d:eb:a4:c2:02:15:de:bb:04:ed:f4:23:82:46:96:3b:d1: e4:fd:86:ec:6a:3a:ef:ce:2b:c2:15:c3:22:01:66:99:bc:98: bc:55:9e:05:0d:8c:27:0e:3c:f7:5d:1e:18:56:cc:fe:cc:86: d3:c2:26:7a:49:b3:cc:b8:d5:b5:df:4b:07:2c:e2:8f:18:b7: 73:7b:c5:a4:15:22:7b:76:0f:7d:e2:78:d0:9e:ba:59:38:cb: 7c:29:d3:9c:0e:76:48:c6:1f:8d:84:d7:58:31:c5:39:e6:2f: 7d:2a:89:a6:60:c0:f0:65:39:d7:55:a8:3c:4f:96:f5:6d:e7: 22:20:55:67:9b:d1:5d:ac:24:86:12:1b:ad:d0:29:61:f6:c2: 2e:73:2a:6d:8c:df:c3:80:97:2a:3a:89:10:43:2a:b6:f1:99: 11:a5:39:c1:00:55:c2:15:e3:6b:c4:63:60:d1:3b:ae:a9:af: c2:32:a9:77:99:5e:2c:2f:31:2b:cc:1e:d8:5c:d2:b1:a5:30: 6f:29:d2:a8:69:fd:cc:8a:05:19:34:ca:d4:73:3e:84:b5:fb: ab:3c:70:dc:0c:f0:53:ef:a2:a8:48:06:2d:f2:88:a4:d6:72: 0d:04:2c:69:57:b5:65:f0:11:9c:46:68:55:8c:04:cf:93:6d: a4:53:58:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDNGMjExMC8GA1UEBRMoNTU3ODlBMzQxNkU3RUY1MTVDRTA4RjA1QTM2RjFERUQ4 MzQ0NEMwOTAeFw0yNTEyMjMwNjA1NTdaFw0yNTEyMzAwNjA1NTdaMBgxFjAUBgNV BAMMDTY5NGEzMTQ2LTg3MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClBBjKQf0anjZId6/GZk2f+AvW9sNxl+zGFGgU6NBirpWDc5DO1fjeYYC9lkAM n4CFTzRP3xCmvIc1au9/WX5NCek5BsUrnLW1IfIojcwNUTrjfT5X3+7j8myoU+wA HnoTRMptgLUa3j1tArLBB2iTP/nRCsnT1UAP99a4XLMFrFSTgorUjv1ZfIIcHhJy DEv2R7ASb+jEXweNNpP3e5xthGLllGu50o2yjWL21aiMptkBIyEmMBMzdK2g6kN/ jxTgvKX1QgXmtU77yesElWWl78aRExIBCWkjk1gHmkuBctzGFaMIJdvBg6xBTFAM eekMfoRSJYM/Q2AordoMADH1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbtV+OKGm oZO5Hu7viupKKloZ9pQwHwYDVR0jBBgwFoAUVXiaNBbn71Fc4I8Fo28d7YNETAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0M0YyLzQxODA1MDk0NjBD MDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFGYzRJOEZvMjhkN1lORVRB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVlhpYU5CYm43MUZjNEk4Rm8yOGQ3WU5FVEFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 M0YyLzQxODA1MDk0NjBDMDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFG YzRJOEZvMjhkN1lORVRBay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAxt66TCAhXeuwTt9COCRpY70eT9huxqOu/OK8IVwyIBZpm8mLxVngUN jCcOPPddHhhWzP7MhtPCJnpJs8y41bXfSwcs4o8Yt3N7xaQVInt2D33ieNCeulk4 y3wp05wOdkjGH42E11gxxTnmL30qiaZgwPBlOddVqDxPlvVt5yIgVWeb0V2sJIYS G63QKWH2wi5zKm2M38OAlyo6iRBDKrbxmRGlOcEAVcIV42vEY2DRO66pr8IyqXeZ XiwvMSvMHthc0rGlMG8p0qhp/cyKBRk0ytRzPoS1+6s8cNwM8FPvoqhIBi3yiKTW cg0ELGlXtWXwEZxGaFWMBM+TbaRTWCo= -----END CERTIFICATE-----Generated at Wed Dec 24 21:31:42 2025 by rpki-client