This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft File: SyWxRyDwREuz1mj5Y1hDVPf6whM.mft (raw, json) Hash identifier: 4ZtLpPUWc0+KEUpeYATZGjwPdwJFGeGQopVBUmM2ilM= Subject key identifier: 79:3E:9A:B7:5D:72:21:28:7D:5A:54:88:01:84:F8:0D:F3:9C:43:18 Authority key identifier: 4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 Certificate issuer: /CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft Manifest number: 014F Signing time: Sun 21 Dec 2025 03:24:41 +0000 Manifest this update: Sun 21 Dec 2025 03:24:40 +0000 Manifest next update: Sun 28 Dec 2025 03:24:40 +0000 Files and hashes: 1: SyWxRyDwREuz1mj5Y1hDVPf6whM.crl (hash: OOjHgNA0VKVISuDG7nX6AtpA/pyQNpPFI87Unc77ZDk=) 2: D0F245E0D76711EE99C72C29C4F9AE02.roa (hash: 9VKla165NEuwDujrYh1FdBvK2ZH/U/K5NZJL+RjIV7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650EA, serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Validity Not Before: Dec 21 03:24:40 2025 GMT Not After : Dec 28 03:24:40 2025 GMT Subject: CN=69476879-199b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:70:89:a6:7a:cf:7c:88:62:7c:78:c2:c2:c5: 3b:a2:0b:9b:60:c5:71:46:f1:84:4a:99:69:58:78: 58:27:c4:a1:b0:5f:c7:cf:ac:87:d5:c1:fb:c9:ff: b8:fc:dc:bb:84:29:8b:d8:e4:fd:08:39:86:3b:6a: cd:b9:92:da:d1:19:43:49:f7:4e:f8:b4:b5:da:69: 6c:9c:a2:04:b6:3a:e7:50:23:db:36:3a:0e:ea:29: a0:31:d5:cb:5f:2b:79:22:2c:38:38:48:38:2a:fc: f0:df:45:43:bc:8e:f1:27:c3:44:f1:11:20:e1:ff: 30:c3:3a:6b:41:3c:69:1b:dc:fa:4a:09:09:6c:a7: 47:a6:e4:f9:03:d8:0e:aa:54:bc:10:a9:12:75:82: d2:ca:3c:5b:3e:ae:4a:e8:f2:59:70:4a:8f:c1:0a: 94:82:c7:c4:37:d3:34:bd:40:e0:f3:37:b3:06:02: 1d:16:3d:3b:90:7b:de:d0:09:58:96:e0:5b:00:34: 06:a7:88:69:b4:65:18:57:50:50:25:b5:a6:a1:7c: d7:8b:de:2d:cc:9c:83:e5:8d:91:37:b1:84:f6:4c: 29:a6:8d:d4:d2:66:c0:f3:a4:5b:96:df:41:91:d0: d7:3c:b3:82:18:22:fb:fb:fc:72:6e:49:8c:51:10: 91:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:3E:9A:B7:5D:72:21:28:7D:5A:54:88:01:84:F8:0D:F3:9C:43:18 X509v3 Authority Key Identifier: keyid:4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:7a:03:a7:40:b2:e1:c9:17:b9:97:a4:ce:e4:90:61:c3:49: 67:a1:b9:97:b0:20:5d:e0:6c:eb:c5:c7:ee:30:c3:6a:9c:c9: d3:20:6b:ea:b7:a4:55:54:ac:76:c8:a5:cc:e1:09:87:1a:42: 84:95:bb:d8:47:ae:76:42:a1:ec:08:f9:cb:21:04:83:51:e9: 57:31:f1:e0:c1:cc:3f:d5:05:94:16:93:86:9e:f8:59:91:97: 2f:39:47:b0:92:65:b7:ca:6e:75:0c:5f:60:6b:e9:4f:27:9f: 5a:44:da:96:b9:76:33:db:7c:6d:8b:2d:2e:eb:0b:33:ca:61: 31:ce:1b:20:a3:17:1a:95:66:34:bd:5a:26:51:9a:33:1d:f1: 5d:cc:14:0a:6e:97:ff:72:7b:2b:ae:d1:91:13:1f:a2:7d:3f: 48:16:9f:a4:7c:d6:60:28:cc:eb:80:c7:33:02:eb:78:cd:ad: 62:15:e2:e6:98:0f:53:60:c9:86:0a:06:5b:0e:65:7b:a5:89: 7b:2b:bb:7b:45:73:3e:0e:21:3a:21:59:e7:55:01:1f:83:eb: fa:73:25:5c:f9:d9:0c:ab:6e:3e:69:27:c3:7a:ea:38:aa:73: c8:2c:0b:f0:1f:51:71:02:aa:18:06:91:ec:06:4e:f9:11:e9: ad:fa:50:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwRUExMTAvBgNVBAUTKDRCMjVCMTQ3MjBGMDQ0NEJCM0Q2NjhGOTYzNTg0MzU0 RjdGQUMyMTMwHhcNMjUxMjIxMDMyNDQwWhcNMjUxMjI4MDMyNDQwWjAYMRYwFAYD VQQDDA02OTQ3Njg3OS0xOTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynCJpnrPfIhifHjCwsU7ogubYMVxRvGESplpWHhYJ8ShsF/Hz6yH1cH7yf+4 /Ny7hCmL2OT9CDmGO2rNuZLa0RlDSfdO+LS12mlsnKIEtjrnUCPbNjoO6imgMdXL Xyt5Iiw4OEg4Kvzw30VDvI7xJ8NE8REg4f8wwzprQTxpG9z6SgkJbKdHpuT5A9gO qlS8EKkSdYLSyjxbPq5K6PJZcEqPwQqUgsfEN9M0vUDg8zezBgIdFj07kHve0AlY luBbADQGp4hptGUYV1BQJbWmoXzXi94tzJyD5Y2RN7GE9kwppo3U0mbA86Rblt9B kdDXPLOCGCL7+/xybkmMURCR3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHk+mrdd ciEofVpUiAGE+A3znEMYMB8GA1UdIwQYMBaAFEslsUcg8ERLs9Zo+WNYQ1T3+sIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBFQS81MjFEMUFEOEQ3 NjcxMUVFQUYyMkMwNjZDNEY5QUUwMi9TeVd4UnlEd1JFdXoxbWo1WTFoRFZQZjZ3 aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N5V3hSeUR3UkV1ejFtajVZMWhEVlBmNndoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBFQS81MjFEMUFEOEQ3NjcxMUVFQUYyMkMwNjZDNEY5QUUwMi9TeVd4UnlEd1JF dXoxbWo1WTFoRFZQZjZ3aE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8egOnQLLhyRe5l6TO5JBhw0lnobmXsCBd4GzrxcfuMMNqnMnTIGvq t6RVVKx2yKXM4QmHGkKElbvYR652QqHsCPnLIQSDUelXMfHgwcw/1QWUFpOGnvhZ kZcvOUewkmW3ym51DF9ga+lPJ59aRNqWuXYz23xtiy0u6wszymExzhsgoxcalWY0 vVomUZozHfFdzBQKbpf/cnsrrtGREx+ifT9IFp+kfNZgKMzrgMczAut4za1iFeLm mA9TYMmGCgZbDmV7pYl7K7t7RXM+DiE6IVnnVQEfg+v6cyVc+dkMq24+aSfDeuo4 qnPILAvwH1FxAqoYBpHsBk75Eemt+lC9 -----END CERTIFICATE-----Generated at Mon Dec 22 18:54:58 2025 by rpki-client