This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft File: 45B7SOaYfi_fztAe0B1As_Y9sRg.mft (raw, json) Hash identifier: Rl3xgHhkBZt/OA+852B+DMW2q3UGypQ+rTKHN8tMLc0= Subject key identifier: 1A:D2:F3:7B:1A:6B:9E:C7:38:18:41:8D:73:F6:A1:7E:58:48:8D:A1 Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft Manifest number: 01A0 Signing time: Sun 21 Dec 2025 02:39:33 +0000 Manifest this update: Sun 21 Dec 2025 02:39:32 +0000 Manifest next update: Sun 28 Dec 2025 02:39:32 +0000 Files and hashes: 1: 45B7SOaYfi_fztAe0B1As_Y9sRg.crl (hash: HEsJYN0a1+EOF7d6F9wVY0XI29qBmQnztktVsyUsNAk=) 2: B08503D8F8AA11EE91684140C4F9AE02.roa (hash: 18UQJbHGEGObYcZEjw5pF1Ha/JCm9Dtoy6BRpv3dt58=) 3: 624C3E865DB011F0875D570FC4F9AE02.roa (hash: zOKtwgFHpwRqlyTO9H77mqE2ho8WfMEhM/eJGA5uflI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Dec 21 02:39:32 2025 GMT Not After : Dec 28 02:39:32 2025 GMT Subject: CN=69475de5-6e2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:68:30:a9:e5:ef:25:0e:bd:e0:9f:f5:20:f4: 45:3c:03:29:80:ca:48:b0:6c:34:0b:33:19:c8:d8: 0c:67:6c:cb:a7:36:b9:35:d2:b4:b2:1b:e4:1c:c6: 6e:e3:74:f7:6a:8b:8c:18:a9:f2:a9:52:e2:3b:9c: 5d:2b:64:a2:53:81:d5:7c:fe:49:2b:e6:ce:94:e6: da:0b:0c:1c:44:f4:df:6d:43:5d:e2:f2:fa:39:3c: f4:20:44:83:97:23:fe:e7:66:95:10:86:6b:07:af: 3f:39:53:e1:51:a7:ed:df:a5:4e:c7:79:03:cc:eb: 1c:51:8f:f9:31:9c:8a:8d:aa:0d:16:61:74:25:cf: ef:49:42:d3:bd:b5:0a:e3:8f:cb:ac:4a:6e:ac:ad: 89:c2:cf:22:4f:53:ca:fd:02:03:21:69:c9:15:5f: 1d:9e:e7:43:3c:55:d5:25:83:4c:cc:05:e4:49:4b: 13:fc:9b:04:93:d9:4f:a6:1f:0f:a4:7b:32:28:38: e6:e2:0a:6a:6e:0c:03:9c:36:09:bb:4d:59:40:b0: f8:18:7b:bb:22:9c:b2:c7:57:75:7d:76:36:35:c6: 9b:bb:95:73:4f:d4:98:a2:96:66:86:9b:e3:c6:08: f2:92:fe:9e:8c:fd:4d:3a:d4:ff:c3:ae:2b:81:0a: 38:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D2:F3:7B:1A:6B:9E:C7:38:18:41:8D:73:F6:A1:7E:58:48:8D:A1 X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:87:64:84:81:8b:e5:bd:38:ec:79:05:3e:a4:be:65:dd:86: 59:bd:08:50:fc:b3:3c:8c:93:40:11:43:e5:c4:95:60:5a:23: c2:53:06:bd:19:7d:61:92:cc:79:08:ff:cb:29:0e:e5:69:c3: 19:87:7e:a3:ef:d1:5b:f5:d4:af:f0:de:ea:3f:11:dd:e6:db: 5e:35:d5:2b:4a:5a:13:d2:15:96:ab:81:e7:40:9a:d7:e6:a8: 70:15:60:b6:36:78:0a:ac:48:47:34:10:54:b7:3a:1f:bd:85: 9f:b3:5b:e9:60:45:c3:12:31:9a:44:8c:e6:a1:43:a4:16:05: d6:49:e4:ba:e3:3f:1f:51:77:f2:76:f4:51:41:b1:4f:28:dd: 0d:c4:96:ba:38:12:d4:b2:05:07:44:0b:0a:c7:ce:6d:e4:e5: 6b:e9:2d:f1:02:f9:cf:09:11:fd:52:5f:91:66:71:0f:6f:d8: 45:8c:08:74:48:6d:9c:04:d4:43:ee:1d:b1:06:61:5c:3f:50: 3f:0f:ca:07:e1:ee:cb:41:48:0c:47:55:36:34:27:d0:aa:5c: c5:cb:eb:f7:2e:eb:c1:27:9f:f5:9e:6b:93:12:70:6b:f5:74: b3:54:31:76:3f:0f:16:26:29:80:82:e1:68:3b:99:b8:38:c1: ff:3b:4e:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjUxMjIxMDIzOTMyWhcNMjUxMjI4MDIzOTMyWjAYMRYwFAYD VQQDDA02OTQ3NWRlNS02ZTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmgwqeXvJQ694J/1IPRFPAMpgMpIsGw0CzMZyNgMZ2zLpza5NdK0shvkHMZu 43T3aouMGKnyqVLiO5xdK2SiU4HVfP5JK+bOlObaCwwcRPTfbUNd4vL6OTz0IESD lyP+52aVEIZrB68/OVPhUaft36VOx3kDzOscUY/5MZyKjaoNFmF0Jc/vSULTvbUK 44/LrEpurK2Jws8iT1PK/QIDIWnJFV8dnudDPFXVJYNMzAXkSUsT/JsEk9lPph8P pHsyKDjm4gpqbgwDnDYJu01ZQLD4GHu7Ipyyx1d1fXY2Ncabu5VzT9SYopZmhpvj xgjykv6ejP1NOtT/w64rgQo4wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrS83sa a57HOBhBjXP2oX5YSI2hMB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTdBMi9CM0RGQzg4NDZENjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZp X2Z6dEFlMEIxQXNfWTlzUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIh2SEgYvlvTjseQU+pL5l3YZZvQhQ/LM8jJNAEUPlxJVgWiPCUwa9 GX1hksx5CP/LKQ7lacMZh36j79Fb9dSv8N7qPxHd5tteNdUrSloT0hWWq4HnQJrX 5qhwFWC2NngKrEhHNBBUtzofvYWfs1vpYEXDEjGaRIzmoUOkFgXWSeS64z8fUXfy dvRRQbFPKN0NxJa6OBLUsgUHRAsKx85t5OVr6S3xAvnPCRH9Ul+RZnEPb9hFjAh0 SG2cBNRD7h2xBmFcP1A/D8oH4e7LQUgMR1U2NCfQqlzFy+v3LuvBJ5/1nmuTEnBr 9XSzVDF2Pw8WJimAguFoO5m4OMH/O05W -----END CERTIFICATE-----Generated at Sun Dec 21 20:36:50 2025 by rpki-client