This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft File: o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft (raw, json) Hash identifier: 6FCjtkHLzaPfaMzsPsWExWNONxxeY/uHfm9RJAXTjkg= Subject key identifier: 6E:0E:98:13:3B:BB:5F:D8:DD:2B:F8:5E:DB:6C:7C:57:38:7C:63:E4 Authority key identifier: A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 Certificate issuer: /CN=A91FEF3B/serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft Manifest number: A1 Signing time: Tue 23 Dec 2025 05:14:33 +0000 Manifest this update: Tue 23 Dec 2025 05:14:32 +0000 Manifest next update: Tue 30 Dec 2025 05:14:32 +0000 Files and hashes: 1: o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl (hash: 6+mG0nuI1QPb7tXtPh1lY8W12BHLMGDSs3CuwpnIRCg=) 2: 10800248E9C711EFA1589312C4F9AE02.roa (hash: NgHWuWasRdq7/Tb6jtbOAPkZk5G59CnEADx3vts0M7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEF3B, serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Validity Not Before: Dec 23 05:14:32 2025 GMT Not After : Dec 30 05:14:32 2025 GMT Subject: CN=694a2538-f87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:84:29:8a:75:61:5a:ac:0d:43:0c:18:20:b4: 24:40:7e:72:0a:18:ce:a1:ff:3b:39:cf:86:00:ae: 43:7f:8e:35:12:10:5e:a3:7b:1a:ba:56:5b:fb:57: 9c:91:ca:ff:40:10:a2:5e:2e:0d:25:85:7b:09:2e: 0b:8f:12:1d:81:86:91:c2:5e:ec:e3:c3:fd:17:50: 3c:33:61:47:6d:81:41:c8:df:a1:74:c3:b9:dd:d8: 44:fb:c3:ce:a4:aa:1f:c2:93:a7:12:74:fb:17:17: 02:ff:28:ab:64:b4:99:fc:54:aa:a9:03:4e:cc:73: 87:86:85:96:08:b4:4a:a7:07:43:07:54:26:9b:a5: 6a:fc:fa:4b:d5:39:6d:3d:ae:57:d4:31:8c:7f:7c: 08:8b:85:f4:2e:b7:a2:3e:d0:04:8d:4b:45:38:d6: 5a:89:03:d1:18:7c:f3:ff:6e:fa:77:0b:e1:ed:57: 78:88:f5:c8:fb:9e:58:a9:ee:f3:00:aa:5b:13:9f: cf:a2:57:e4:cf:a0:51:48:63:b2:9b:71:b7:9c:3c: 4b:98:f3:48:3c:8d:cf:93:a2:03:b5:81:32:44:be: 17:92:0b:66:f2:92:76:aa:08:af:a0:a0:8f:8a:97: d1:97:38:7a:a0:99:41:bd:f9:d4:dd:08:bd:80:97: e1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0E:98:13:3B:BB:5F:D8:DD:2B:F8:5E:DB:6C:7C:57:38:7C:63:E4 X509v3 Authority Key Identifier: keyid:A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:fc:c5:15:a4:f4:c3:0e:1f:f1:19:fd:5b:39:48:df:51:59: 10:bd:4f:de:3e:56:71:8c:70:c1:37:ad:22:ec:b0:f6:29:0d: c5:25:ee:83:e6:40:dd:79:a3:65:93:22:e1:67:a5:a0:15:91: 53:ce:a5:e6:1e:47:97:64:66:a5:75:42:1a:cd:59:6e:60:47: d1:43:4b:84:d5:59:93:37:2c:be:c5:de:c0:5c:d7:31:37:2e: e7:21:89:c0:eb:db:15:bd:ad:c3:7b:27:e2:75:d1:f7:23:5c: 3c:09:d4:dd:5e:fe:c2:7d:1c:90:26:da:75:27:4a:89:51:66: 62:3d:fd:97:c7:da:06:f3:69:34:84:e9:a7:a9:80:d9:a2:bb: af:cb:8c:9f:73:b6:25:5d:a0:97:ae:0c:81:c9:da:c2:a8:d4: 88:5a:aa:af:71:70:34:c9:e4:aa:28:49:3c:a1:98:31:1a:4c: db:32:5f:25:c5:a0:32:94:ec:4c:54:b6:8e:90:44:79:50:1d: 62:88:2b:ba:ce:51:18:dd:bf:89:f8:8a:14:b1:4f:9e:b1:6c: 36:dc:be:21:25:48:28:fc:f5:4d:55:f0:ee:7e:0c:d1:48:85: 1c:29:e8:87:8d:61:b2:3b:ba:a3:fe:02:e2:31:b6:77:c7:e5: fc:d6:be:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGM0IxMTAvBgNVBAUTKEEzOEQ0ODdCRDVEOUE4QTg5NDgwMjc0RkU2RjdDMDYx QzYyNEJDQzAwHhcNMjUxMjIzMDUxNDMyWhcNMjUxMjMwMDUxNDMyWjAYMRYwFAYD VQQDDA02OTRhMjUzOC1mODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4QpinVhWqwNQwwYILQkQH5yChjOof87Oc+GAK5Df441EhBeo3saulZb+1ec kcr/QBCiXi4NJYV7CS4LjxIdgYaRwl7s48P9F1A8M2FHbYFByN+hdMO53dhE+8PO pKofwpOnEnT7FxcC/yirZLSZ/FSqqQNOzHOHhoWWCLRKpwdDB1Qmm6Vq/PpL1Tlt Pa5X1DGMf3wIi4X0LreiPtAEjUtFONZaiQPRGHzz/276dwvh7Vd4iPXI+55Yqe7z AKpbE5/Polfkz6BRSGOym3G3nDxLmPNIPI3Pk6IDtYEyRL4Xkgtm8pJ2qgivoKCP ipfRlzh6oJlBvfnU3Qi9gJfh/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4OmBM7 u1/Y3Sv4XttsfFc4fGPkMB8GA1UdIwQYMBaAFKONSHvV2aiolIAnT+b3wGHGJLzA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUYzQi9BQzc2MjIwMEU5 QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi9vNDFJZTlYWnFLaVVnQ2RQNXZmQVljWWt2 TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL280MUllOVhacUtpVWdDZFA1dmZBWWNZa3ZNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUYzQi9BQzc2MjIwMEU5QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi9vNDFJZTlYWnFL aVVnQ2RQNXZmQVljWWt2TUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk/MUVpPTDDh/xGf1bOUjfUVkQvU/ePlZxjHDBN60i7LD2KQ3FJe6D 5kDdeaNlkyLhZ6WgFZFTzqXmHkeXZGaldUIazVluYEfRQ0uE1VmTNyy+xd7AXNcx Ny7nIYnA69sVva3DeyfiddH3I1w8CdTdXv7CfRyQJtp1J0qJUWZiPf2Xx9oG82k0 hOmnqYDZoruvy4yfc7YlXaCXrgyBydrCqNSIWqqvcXA0yeSqKEk8oZgxGkzbMl8l xaAylOxMVLaOkER5UB1iiCu6zlEY3b+J+IoUsU+esWw23L4hJUgo/PVNVfDufgzR SIUcKeiHjWGyO7qj/gLiMbZ3x+X81r5h -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:26 2025 by rpki-client