This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft File: sXSj1LqbR24rMeR8cqKY0ETZh4U.mft (raw, json) Hash identifier: NGbSwEOA7avopf0bwrgN80P2g81DscFYjTJDwXidqQ4= Subject key identifier: 47:A3:51:D1:F7:9B:CD:3B:0A:E0:0D:61:AC:5C:35:5F:B9:E2:63:7B Authority key identifier: B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 Certificate issuer: /CN=A91FBC89/serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft Manifest number: AF Signing time: Tue 23 Dec 2025 05:17:57 +0000 Manifest this update: Tue 23 Dec 2025 05:17:57 +0000 Manifest next update: Tue 30 Dec 2025 05:17:57 +0000 Files and hashes: 1: sXSj1LqbR24rMeR8cqKY0ETZh4U.crl (hash: giAs0mOyFJ3iO1WHStNsi4pDjzeypv/at5b8KoDzgU8=) 2: 000A7CE25A5911F0948C6D20C4F9AE02.roa (hash: GWfp52D5q+ZWDIE0kYIw+TpLPvEGwRDdK6mh7QUL+8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC89, serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Validity Not Before: Dec 23 05:17:57 2025 GMT Not After : Dec 30 05:17:57 2025 GMT Subject: CN=694a2605-60bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:aa:b2:d7:ef:b3:ad:98:29:27:18:28:96:18: e9:72:e1:0d:12:7e:fa:b0:a3:9e:a6:07:ac:a7:d6: 65:02:06:13:70:e8:80:31:3e:ba:1f:c8:e4:3d:a9: fd:65:05:8f:e4:fc:2e:6f:4d:b8:d4:08:c0:dc:67: 87:ce:a8:5e:51:53:84:a9:55:ff:2c:71:2b:28:60: 49:d7:fc:2f:0a:df:f8:7b:ba:d4:f6:ab:14:72:b0: 45:3d:ab:59:1c:56:51:ad:8b:fa:7a:db:84:98:4e: 39:a4:47:5f:19:d2:a7:da:af:2d:04:1d:0a:48:3e: ad:c4:11:23:a4:ce:92:0d:c1:4d:0d:78:f6:a2:d2: 9a:5f:f4:f5:17:d9:07:ef:6c:4c:c9:1e:68:56:3d: 66:3f:de:48:e0:54:38:0e:aa:ab:c4:6c:bc:af:1b: a8:77:3c:76:5e:54:5b:cd:62:bb:80:99:a2:a0:c9: be:ba:2e:da:1c:d2:cb:0a:bc:f1:50:2c:52:26:6d: 9e:4d:20:29:85:64:e2:a5:97:82:a9:03:7e:e0:09: 0b:3d:6f:c1:6b:18:86:26:de:02:3e:89:40:34:cb: 43:5a:fa:76:85:81:98:95:a8:92:7d:44:ba:05:bc: ac:7d:04:43:c1:32:db:4f:e6:2d:ad:8e:6f:05:2d: 70:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A3:51:D1:F7:9B:CD:3B:0A:E0:0D:61:AC:5C:35:5F:B9:E2:63:7B X509v3 Authority Key Identifier: keyid:B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:75:fc:44:94:8e:34:13:c8:09:bc:22:b6:a1:d2:cc:10:a6: 3a:a8:77:40:31:b9:3a:69:11:29:84:8b:e2:75:0a:ea:8d:4e: 18:82:76:b6:c5:27:18:37:04:da:91:55:bd:7e:12:42:1e:1f: 6d:ad:a2:3a:d7:30:9f:2c:14:2b:db:08:1d:32:05:be:a4:1a: 13:fe:65:6f:e1:14:ae:18:c5:1d:38:c7:3c:78:90:3a:24:eb: a2:5d:0d:4f:c0:57:05:d9:50:4f:90:ac:78:61:2e:ef:75:ad: 58:a3:d2:11:ee:dd:51:77:22:0b:84:3a:c9:9f:63:cf:ed:de: 30:57:b1:e5:9f:95:8c:dd:a5:09:aa:04:5f:95:f0:89:4f:6c: 09:f9:60:5b:9e:28:8f:71:99:b7:24:84:29:01:6c:36:09:01: 37:f2:26:b7:b1:9b:77:f2:31:9d:0d:a3:9a:70:b0:d9:f9:ca: a7:3d:a1:50:13:d2:9f:aa:e3:d2:bc:b5:46:f8:7d:56:cb:ec: 27:de:05:a9:f8:34:aa:a7:3b:49:94:1a:b6:70:f7:ee:e1:76: 60:48:8a:47:f7:d0:8c:5e:81:07:f2:10:68:68:74:be:ac:cc: 63:57:4e:a3:d4:bb:28:fd:4a:5d:7a:00:43:09:d1:10:99:cf: 00:43:32:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJDODkxMTAvBgNVBAUTKEIxNzRBM0Q0QkE5QjQ3NkUyQjMxRTQ3QzcyQTI5OEQw NDREOTg3ODUwHhcNMjUxMjIzMDUxNzU3WhcNMjUxMjMwMDUxNzU3WjAYMRYwFAYD VQQDDA02OTRhMjYwNS02MGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qqy1++zrZgpJxgolhjpcuENEn76sKOepgesp9ZlAgYTcOiAMT66H8jkPan9 ZQWP5Pwub0241AjA3GeHzqheUVOEqVX/LHErKGBJ1/wvCt/4e7rU9qsUcrBFPatZ HFZRrYv6etuEmE45pEdfGdKn2q8tBB0KSD6txBEjpM6SDcFNDXj2otKaX/T1F9kH 72xMyR5oVj1mP95I4FQ4DqqrxGy8rxuodzx2XlRbzWK7gJmioMm+ui7aHNLLCrzx UCxSJm2eTSAphWTipZeCqQN+4AkLPW/BaxiGJt4CPolANMtDWvp2hYGYlaiSfUS6 BbysfQRDwTLbT+YtrY5vBS1wuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEejUdH3 m807CuANYaxcNV+54mN7MB8GA1UdIwQYMBaAFLF0o9S6m0duKzHkfHKimNBE2YeF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkM4OS85RTcyNjJCRUVG Q0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIyNHJNZVI4Y3FLWTBFVFpo NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYU2oxTHFiUjI0ck1lUjhjcUtZMEVUWmg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkM4OS85RTcyNjJCRUVGQ0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIy NHJNZVI4Y3FLWTBFVFpoNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGdfxElI40E8gJvCK2odLMEKY6qHdAMbk6aREphIvidQrqjU4Ygna2 xScYNwTakVW9fhJCHh9traI61zCfLBQr2wgdMgW+pBoT/mVv4RSuGMUdOMc8eJA6 JOuiXQ1PwFcF2VBPkKx4YS7vda1Yo9IR7t1RdyILhDrJn2PP7d4wV7Hln5WM3aUJ qgRflfCJT2wJ+WBbniiPcZm3JIQpAWw2CQE38ia3sZt38jGdDaOacLDZ+cqnPaFQ E9KfquPSvLVG+H1Wy+wn3gWp+DSqpztJlBq2cPfu4XZgSIpH99CMXoEH8hBoaHS+ rMxjV06j1Lso/UpdegBDCdEQmc8AQzI4 -----END CERTIFICATE-----Generated at Tue Dec 23 22:08:07 2025 by rpki-client