This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft File: 53BQiRv4knQyZQtwbyv-3ZKhEck.mft (raw, json) Hash identifier: 8SvGkUQHlnaNaI3zQsQFTH1F63PSe1nMXCfrMdJyACc= Subject key identifier: 92:10:1E:6F:13:60:82:21:72:89:03:BE:AB:AA:C2:85:F4:9B:A0:08 Authority key identifier: E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9 Certificate issuer: /CN=A91F8ADF/serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft Manifest number: 01E9 Signing time: Tue 23 Dec 2025 01:37:56 +0000 Manifest this update: Tue 23 Dec 2025 01:37:55 +0000 Manifest next update: Tue 30 Dec 2025 01:37:55 +0000 Files and hashes: 1: 53BQiRv4knQyZQtwbyv-3ZKhEck.crl (hash: NAEMi33sGuXKCh9++EvVv6A0JW+XEKvRx55SRBUVS4w=) 2: F2948C58F06D11ED9055A212C4F9AE02.roa (hash: WtNf5u0VPKCbZuWxho7o4y46h8TygPH5bunfDKzrwyU=) 3: F3210638F06D11ED9055A212C4F9AE02.roa (hash: MagQfzBe5yekFsZC62iyjicRBCCYPyKf7/pA5fRZ3FI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:37:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8ADF, serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9 Validity Not Before: Dec 23 01:37:55 2025 GMT Not After : Dec 30 01:37:55 2025 GMT Subject: CN=6949f274-bdc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:f1:71:c1:78:13:d0:70:7d:70:31:96:fe:8b: 4d:42:46:52:90:81:67:09:97:ea:55:a6:c3:93:08: e5:d9:10:4c:4a:1d:45:99:e9:75:89:4b:e5:cb:7d: 73:c9:5c:a0:99:0f:73:34:48:0a:2a:a6:2c:fc:07: 31:83:b2:e5:64:22:e6:49:86:4e:63:b4:98:86:f2: 7c:81:96:51:56:83:83:5d:1d:a4:9f:8f:e4:b2:af: 5b:56:a4:e6:3a:65:9b:07:11:62:6a:5c:e0:55:ac: 0b:ee:ad:3f:7e:c2:6a:88:04:a1:8d:ae:8e:cb:ce: 41:1a:c9:07:3f:a0:10:b5:8d:bf:68:57:ad:9b:c5: 39:c7:2d:c5:09:23:3c:ce:c5:76:e9:58:32:4c:a1: 0b:bb:dd:da:37:04:39:32:63:9b:70:04:1d:f7:17: 8d:d0:8b:34:28:8f:be:53:b5:a5:1e:2d:c4:ee:e5: f2:fb:fa:0b:4e:df:d4:e1:9b:be:30:a9:dc:68:b3: b1:bd:84:25:f3:86:22:6b:b0:67:db:b0:04:ea:da: 89:5b:36:c4:54:ee:91:f4:5b:75:bb:f9:fd:2e:ed: be:62:bd:dd:5b:bc:06:f3:db:57:2f:af:19:96:0c: 87:8d:d9:ca:22:20:64:e0:89:61:f2:8a:09:ff:9c: 30:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:10:1E:6F:13:60:82:21:72:89:03:BE:AB:AA:C2:85:F4:9B:A0:08 X509v3 Authority Key Identifier: keyid:E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:09:27:c2:f8:5f:a8:d6:ca:91:7d:df:70:b2:cf:84:a7:dd: b5:2f:db:79:22:5c:be:32:ca:b7:68:6d:c0:04:ff:0f:90:3e: c7:6d:4a:82:10:fc:96:cf:5c:3e:09:60:dc:0e:fc:9e:79:f8: 36:11:0d:28:45:f1:a4:da:c0:e3:02:9c:c6:35:a0:de:35:6e: 90:72:d4:02:fd:98:47:7f:fb:05:1c:6a:21:12:7a:be:79:0c: 22:26:40:5d:79:fa:cd:b4:b2:9e:9b:bc:2e:fd:05:18:8c:b3: 17:8f:83:81:82:53:2f:4c:ef:11:48:b1:e7:6d:7d:2d:50:4d: 65:53:73:70:4e:a1:00:85:99:ed:0e:d0:f6:45:ac:21:d1:20: 81:cb:00:2f:d3:f2:cb:6c:71:ac:89:58:48:df:84:cd:6c:21: 6f:94:d2:b5:6c:c9:9f:a3:3f:76:59:38:81:9d:50:ce:42:b6: e4:e1:44:f8:c0:91:2b:0f:ec:ab:d2:fc:49:96:43:18:67:3e: 20:f6:a0:f6:f7:cf:78:d6:e4:9c:2e:c9:23:bf:44:cf:d4:fb: 08:5a:6e:81:aa:d6:6f:80:c2:ac:5e:e0:e0:e1:fe:5f:b1:2a: 69:33:08:1b:60:14:af:01:4d:33:85:c5:d5:f1:15:3b:26:4e: 0a:b9:f3:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBREYxMTAvBgNVBAUTKEU3NzA1MDg5MUJGODkyNzQzMjY1MEI3MDZGMkJGRURE OTJBMTExQzkwHhcNMjUxMjIzMDEzNzU1WhcNMjUxMjMwMDEzNzU1WjAYMRYwFAYD VQQDDA02OTQ5ZjI3NC1iZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhfFxwXgT0HB9cDGW/otNQkZSkIFnCZfqVabDkwjl2RBMSh1Fmel1iUvly31z yVygmQ9zNEgKKqYs/Acxg7LlZCLmSYZOY7SYhvJ8gZZRVoODXR2kn4/ksq9bVqTm OmWbBxFialzgVawL7q0/fsJqiAShja6Oy85BGskHP6AQtY2/aFetm8U5xy3FCSM8 zsV26VgyTKELu93aNwQ5MmObcAQd9xeN0Is0KI++U7WlHi3E7uXy+/oLTt/U4Zu+ MKncaLOxvYQl84Yia7Bn27AE6tqJWzbEVO6R9Ft1u/n9Lu2+Yr3dW7wG89tXL68Z lgyHjdnKIiBk4Ilh8ooJ/5wwiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIQHm8T YIIhcokDvquqwoX0m6AIMB8GA1UdIwQYMBaAFOdwUIkb+JJ0MmULcG8r/t2SoRHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFERi9DREY0MDVDMkYw NjgxMUVEQkI5NzhFMkRDNEY5QUUwMi81M0JRaVJ2NGtuUXlaUXR3Ynl2LTNaS2hF Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUzQlFpUnY0a25ReVpRdHdieXYtM1pLaEVjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFERi9DREY0MDVDMkYwNjgxMUVEQkI5NzhFMkRDNEY5QUUwMi81M0JRaVJ2NGtu UXlaUXR3Ynl2LTNaS2hFY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSCSfC+F+o1sqRfd9wss+Ep921L9t5Ily+Msq3aG3ABP8PkD7HbUqC EPyWz1w+CWDcDvyeefg2EQ0oRfGk2sDjApzGNaDeNW6QctQC/ZhHf/sFHGohEnq+ eQwiJkBdefrNtLKem7wu/QUYjLMXj4OBglMvTO8RSLHnbX0tUE1lU3NwTqEAhZnt DtD2Rawh0SCBywAv0/LLbHGsiVhI34TNbCFvlNK1bMmfoz92WTiBnVDOQrbk4UT4 wJErD+yr0vxJlkMYZz4g9qD298941uScLskjv0TP1PsIWm6BqtZvgMKsXuDg4f5f sSppMwgbYBSvAU0zhcXV8RU7Jk4KufMr -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:54 2025 by rpki-client