This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft File: 49O0eIJzzkWSmwmYOr9ktdRNHwg.mft (raw, json) Hash identifier: w8xaQT+r+5ovLDXX5QtfpCA3S9C0+LiuLBNHe9FDleI= Subject key identifier: 96:42:42:B8:AF:DE:BA:20:E1:4B:7C:41:E1:BA:75:FE:18:08:F1:F6 Authority key identifier: E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 Certificate issuer: /CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Certificate serial: 1195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft Manifest number: 117E Signing time: Mon 22 Dec 2025 16:55:58 +0000 Manifest this update: Mon 22 Dec 2025 16:55:57 +0000 Manifest next update: Mon 29 Dec 2025 16:55:57 +0000 Files and hashes: 1: 49O0eIJzzkWSmwmYOr9ktdRNHwg.crl (hash: //RUde/dOowL+Ol3UGLfer7IxSwfjOY0W8F3pxH/19c=) 2: 97F937E440BC11EAA2B89432C4F9AE02.roa (hash: YvhnTG1A1W5kz0Vch4cPsIzgbILMaDioP1ySIyj5aeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4501 (0x1195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF634, serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Validity Not Before: Dec 22 16:55:57 2025 GMT Not After : Dec 29 16:55:57 2025 GMT Subject: CN=6949781d-447b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:6a:e2:61:e9:9d:cc:78:a8:24:61:0b:6f:d5: 9a:2d:ab:2d:e0:f3:98:eb:ae:0d:00:8b:d9:99:ea: f1:72:52:3b:b8:e2:b4:f2:a0:00:7f:8e:e9:7c:71: 0b:2e:9c:e7:dd:02:00:18:a1:5a:7b:57:0f:e1:5e: 3b:32:49:d7:b4:63:8d:33:4f:29:d2:16:28:a5:76: 03:4b:59:27:39:94:d7:ba:70:48:3d:08:8d:ff:fb: 59:94:b1:f0:24:2b:dd:68:15:ea:15:2c:df:52:1b: 4e:76:e4:29:a8:9f:88:aa:0a:6b:ce:79:e3:7a:8d: cc:a4:02:ab:5b:9a:57:c3:ac:b1:0b:a9:de:dc:ed: e0:c5:b7:fd:c0:c3:13:bf:a2:dd:6d:89:51:bd:c6: c5:6b:16:3f:0c:c8:ea:30:02:10:c4:8e:c8:99:77: f3:67:c7:94:45:8e:db:82:1d:81:28:b4:05:2b:43: c9:a6:7e:4b:13:83:d5:d1:f2:ef:fe:3b:99:ad:ca: cb:a6:6a:95:93:4b:9f:0f:59:7d:73:a1:c8:b7:cd: 3c:f5:fb:91:d6:80:79:f9:19:05:67:d7:36:8d:97: 5b:8a:5f:fa:a8:f2:4d:2f:ae:4c:eb:d9:f8:0a:7a: 42:4e:bd:53:88:47:9b:17:2a:8c:f3:55:82:83:47: 34:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:42:42:B8:AF:DE:BA:20:E1:4B:7C:41:E1:BA:75:FE:18:08:F1:F6 X509v3 Authority Key Identifier: keyid:E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ad:26:fb:1b:6a:9b:28:65:b7:bb:02:1d:e6:15:ee:5f:e2: 1c:c8:fe:91:c1:c6:f8:a3:32:03:5f:cf:2c:b2:11:3b:9e:e5: c6:c8:7c:e8:cb:de:5f:c9:d2:53:50:92:c5:af:d3:cd:6d:b1: 6b:e9:c1:8d:e3:99:34:2d:ba:ce:10:7c:a8:98:88:69:24:77: 47:69:8e:70:39:37:27:47:f9:8f:54:59:cc:5f:35:e4:3d:d4: 9e:f2:7a:03:af:2f:9c:56:18:88:75:d8:9a:43:29:c6:09:d2: c8:7f:37:8f:16:98:e6:ee:51:e7:4c:b5:2f:19:91:72:26:85: be:72:ab:39:98:b7:57:d0:96:d1:1b:a6:bd:ab:f4:3e:4e:ed: 1b:77:fe:06:1a:eb:f7:1a:e0:9e:e2:9c:2c:d1:8a:0d:34:74: 8e:14:3a:b5:18:f3:a6:6a:8a:ac:69:83:29:54:08:6b:6d:68: 62:ec:a2:a2:fc:67:8a:8f:7e:6b:ca:7f:e9:f9:5f:74:cd:27: 0f:2a:db:24:49:d0:8f:f4:fe:98:aa:1a:f8:bd:7d:21:29:65: c8:54:1a:9e:57:b6:c8:75:7d:6a:88:d9:25:0a:94:b9:a1:59: 8a:81:d5:0b:82:3d:7b:39:5c:ec:f6:43:64:7d:81:ae:5d:04: 28:ee:87:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzQxMTAvBgNVBAUTKEUzRDNCNDc4ODI3M0NFNDU5MjlCMDk5ODNBQkY2NEI1 RDQ0RDFGMDgwHhcNMjUxMjIyMTY1NTU3WhcNMjUxMjI5MTY1NTU3WjAYMRYwFAYD VQQDDA02OTQ5NzgxZC00NDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WriYemdzHioJGELb9WaLast4POY664NAIvZmerxclI7uOK08qAAf47pfHEL Lpzn3QIAGKFae1cP4V47MknXtGONM08p0hYopXYDS1knOZTXunBIPQiN//tZlLHw JCvdaBXqFSzfUhtOduQpqJ+Iqgprznnjeo3MpAKrW5pXw6yxC6ne3O3gxbf9wMMT v6LdbYlRvcbFaxY/DMjqMAIQxI7ImXfzZ8eURY7bgh2BKLQFK0PJpn5LE4PV0fLv /juZrcrLpmqVk0ufD1l9c6HIt8089fuR1oB5+RkFZ9c2jZdbil/6qPJNL65M69n4 CnpCTr1TiEebFyqM81WCg0c0PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZCQriv 3rog4Ut8QeG6df4YCPH2MB8GA1UdIwQYMBaAFOPTtHiCc85FkpsJmDq/ZLXUTR8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzNC8xMzI3QTczRTE3 MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenprV1Ntd21ZT3I5a3RkUk5I d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ5TzBlSUp6emtXU213bVlPcjlrdGRSTkh3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzNC8xMzI3QTczRTE3MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenpr V1Ntd21ZT3I5a3RkUk5Id2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbrSb7G2qbKGW3uwId5hXuX+IcyP6Rwcb4ozIDX88sshE7nuXGyHzo y95fydJTUJLFr9PNbbFr6cGN45k0LbrOEHyomIhpJHdHaY5wOTcnR/mPVFnMXzXk PdSe8noDry+cVhiIddiaQynGCdLIfzePFpjm7lHnTLUvGZFyJoW+cqs5mLdX0JbR G6a9q/Q+Tu0bd/4GGuv3GuCe4pws0YoNNHSOFDq1GPOmaoqsaYMpVAhrbWhi7KKi /GeKj35ryn/p+V90zScPKtskSdCP9P6Yqhr4vX0hKWXIVBqeV7bIdX1qiNklCpS5 oVmKgdULgj17OVzs9kNkfYGuXQQo7odt -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:24 2025 by rpki-client