This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft File: aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft (raw, json) Hash identifier: lZPp9b8PR33j6eyObJoczAgHQEQvPPk+rViaVNzoFE0= Subject key identifier: 45:D7:E0:7B:53:57:96:58:2F:90:7A:9B:3A:66:32:F2:EE:7A:E0:5E Authority key identifier: 68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A Certificate issuer: /CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Certificate serial: 043A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft Manifest number: 0432 Signing time: Thu 25 Dec 2025 00:20:31 +0000 Manifest this update: Thu 25 Dec 2025 00:20:30 +0000 Manifest next update: Thu 01 Jan 2026 00:20:30 +0000 Files and hashes: 1: aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl (hash: KWaewsJKFAyD/fM0yfmpiOTDNpLF1X4m27d3fAf9388=) 2: 97E8ACD68E6611EC9EBE626FC4F9AE02.roa (hash: ULNDeIC1QzBL4zb0qx8UTp3klkuCMpDktLL9H7/yLDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 00:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1082 (0x43a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91289A2, serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Validity Not Before: Dec 25 00:20:30 2025 GMT Not After : Jan 1 00:20:30 2026 GMT Subject: CN=694c834e-0be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:88:9a:25:b9:85:67:4c:e8:89:3d:b4:39:e8: 48:87:f5:8a:33:e2:3b:2f:18:ff:d9:72:6b:6b:dd: 7a:6c:b8:a4:3c:06:c2:5a:3b:a6:45:1d:02:87:e0: e5:3f:70:e9:0f:53:ab:79:88:fc:99:a7:72:20:5a: 20:8e:da:81:8d:52:2f:4d:d9:1e:52:65:0c:92:af: df:91:6c:ae:cc:5b:a3:fd:ac:57:46:d2:88:de:0d: a3:4e:ea:2a:11:2a:01:3c:b6:d9:b8:73:5e:34:7a: c4:40:0b:2d:5d:14:29:12:20:a4:76:5c:f2:d4:e7: 35:1a:ea:e9:18:59:f5:fe:1f:f6:87:a3:d0:93:72: 9a:52:d3:3e:38:57:02:24:89:b2:16:c0:07:1a:77: b1:1b:74:c4:c2:bd:bb:87:e1:df:f5:6f:88:db:11: 49:70:c7:e8:1b:8c:5d:e3:1f:84:ed:64:a3:df:81: 67:8d:9c:d4:66:e0:33:9b:d5:dc:5f:7b:9b:0c:28: 26:07:c6:4e:64:74:8f:eb:15:c6:06:61:3d:2d:99: 54:a5:d0:52:bd:18:a7:07:9a:03:74:81:fd:fa:d8: c8:ad:75:13:01:9c:02:34:5e:a9:f4:32:1a:7a:95: 36:b2:c3:5a:80:5f:fa:f0:21:b0:88:98:45:0a:23: 2d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D7:E0:7B:53:57:96:58:2F:90:7A:9B:3A:66:32:F2:EE:7A:E0:5E X509v3 Authority Key Identifier: keyid:68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:aa:6d:6d:14:1f:de:4b:89:48:9c:2b:9a:e1:12:57:97:c0: b3:a7:e0:86:78:80:29:eb:74:fd:9e:e9:0d:17:62:51:ab:c4: 8e:2a:1f:dd:79:74:2f:1e:88:1b:fd:11:fe:a0:14:45:d5:f4: 7b:de:64:3c:0d:cf:3f:c4:ab:e2:1c:d7:ff:48:27:2d:af:8e: d2:59:72:03:a2:99:7c:b0:92:06:de:f0:69:af:32:a9:44:16: 1b:ca:9b:c4:1d:c4:21:61:fa:ee:18:7c:e2:a7:1f:dd:23:d4: e2:04:77:ac:39:cd:62:b9:3c:7b:f9:2f:b0:6d:d6:3d:ba:4d: 28:49:b9:1f:79:17:34:92:a8:43:a1:8d:31:61:87:38:a1:3c: d3:8c:25:05:b6:24:ff:38:a7:aa:89:b2:45:7e:7b:9f:96:49: c6:12:0a:41:c1:43:97:29:4e:16:9a:bc:ad:a2:de:ba:61:76: 87:eb:8f:84:93:d8:9e:55:06:44:f9:a5:ae:ca:68:d0:b8:62: 5c:30:4d:64:85:8e:56:9b:c9:92:cb:aa:c8:8e:c3:7a:46:b6: 90:c4:ee:84:95:3d:3a:08:36:e5:0c:ea:d7:fd:fa:49:da:7d: 33:67:f8:b6:ee:7c:d7:78:91:a4:ed:72:7b:49:bb:87:a3:ab: 24:2f:8e:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Mjg5QTIxMTAvBgNVBAUTKDY4MTQwQzE1ODI1RUQ1MEEwMzc4MTA1MkFEREUyRUNB MUE2RkVBM0EwHhcNMjUxMjI1MDAyMDMwWhcNMjYwMTAxMDAyMDMwWjAYMRYwFAYD VQQDDA02OTRjODM0ZS0wYmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4iaJbmFZ0zoiT20OehIh/WKM+I7Lxj/2XJra916bLikPAbCWjumRR0Ch+Dl P3DpD1OreYj8madyIFogjtqBjVIvTdkeUmUMkq/fkWyuzFuj/axXRtKI3g2jTuoq ESoBPLbZuHNeNHrEQAstXRQpEiCkdlzy1Oc1GurpGFn1/h/2h6PQk3KaUtM+OFcC JImyFsAHGnexG3TEwr27h+Hf9W+I2xFJcMfoG4xd4x+E7WSj34FnjZzUZuAzm9Xc X3ubDCgmB8ZOZHSP6xXGBmE9LZlUpdBSvRinB5oDdIH9+tjIrXUTAZwCNF6p9DIa epU2ssNagF/68CGwiJhFCiMtnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXX4HtT V5ZYL5B6mzpmMvLueuBeMB8GA1UdIwQYMBaAFGgUDBWCXtUKA3gQUq3eLsoab+o6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODlBMi9GQjUyRjY0RThF NjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFRb0RlQkJTcmQ0dXlocHY2 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUU1GWUplMVFvRGVCQlNyZDR1eWhwdjZqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODlBMi9GQjUyRjY0RThFNjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFR b0RlQkJTcmQ0dXlocHY2am8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApqm1tFB/eS4lInCua4RJXl8Czp+CGeIAp63T9nukNF2JRq8SOKh/d eXQvHogb/RH+oBRF1fR73mQ8Dc8/xKviHNf/SCctr47SWXIDopl8sJIG3vBprzKp RBYbypvEHcQhYfruGHzipx/dI9TiBHesOc1iuTx7+S+wbdY9uk0oSbkfeRc0kqhD oY0xYYc4oTzTjCUFtiT/OKeqibJFfnuflknGEgpBwUOXKU4Wmrytot66YXaH64+E k9ieVQZE+aWuymjQuGJcME1khY5Wm8mSy6rIjsN6RraQxO6ElT06CDblDOrX/fpJ 2n0zZ/i27nzXeJGk7XJ7SbuHo6skL45O -----END CERTIFICATE-----Generated at Thu Dec 25 18:55:32 2025 by rpki-client