This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft File: vbWSaolrtlGg51QKOYzV7wcUFx8.mft (raw, json) Hash identifier: hWbbVXaWim1EPJv+ahBKvHtWzhoLRW5IHD6n9PIBLN4= Subject key identifier: 71:F8:2B:64:A8:1B:78:7C:D5:7D:C5:1A:94:2D:13:82:64:66:7F:B8 Authority key identifier: BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F Certificate issuer: /CN=A916A5CD/serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Certificate serial: 0489 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft Manifest number: 0484 Signing time: Thu 18 Dec 2025 23:27:05 +0000 Manifest this update: Thu 18 Dec 2025 23:27:05 +0000 Manifest next update: Thu 25 Dec 2025 23:27:05 +0000 Files and hashes: 1: vbWSaolrtlGg51QKOYzV7wcUFx8.crl (hash: f+IENnJ0Dlp9c4jH18wlmifQNeG5Jt5YKSZ7Jav7GKY=) 2: 66864FCE688011ECAA829E31C4F9AE02.roa (hash: oV8jstChrG2LMgvNNWOO9hMkyB2Ar9RL1KKMQtKZSu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1161 (0x489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A5CD, serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Validity Not Before: Dec 18 23:27:05 2025 GMT Not After : Dec 25 23:27:05 2025 GMT Subject: CN=69448dc9-b8c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:94:47:a7:cf:47:01:08:3e:ca:07:d4:d1:50: 2e:1a:12:3f:c4:da:c9:cf:e8:c5:bf:56:2a:34:d8: c7:78:0b:de:29:a3:1a:8c:13:9b:eb:e0:3d:fc:ef: 0c:b2:3d:7e:1c:5b:76:1f:9c:6a:4e:d1:11:f6:fc: b5:50:2c:52:86:d2:77:c3:49:88:21:e6:f4:5d:d5: 04:a5:ae:7d:62:60:0f:b1:e2:33:ad:2f:f3:96:d9: 34:b7:19:dd:b8:ba:b3:50:3b:cd:81:0d:47:7a:f4: 82:d3:44:d7:a9:f8:d2:f7:08:8c:78:ff:1b:41:32: ea:a3:33:a5:83:9c:31:1d:c3:88:2c:12:33:bd:ee: 0e:ee:b4:fa:1d:15:ae:a6:f3:19:41:2b:d6:57:e1: 89:43:6e:5b:b5:92:73:2b:cb:5d:1d:92:a7:fc:7d: 29:6c:b1:03:5e:4d:5a:f4:ed:9e:e4:96:fa:4c:b6: 32:5f:15:bf:74:05:3d:1d:bc:66:97:91:41:bd:94: 9c:e5:25:12:f1:89:e1:b7:38:22:d9:5c:82:bc:ae: e3:5e:4a:6c:7f:29:a9:3d:a2:ea:fd:9c:41:a1:cd: 32:9e:a5:9c:03:ff:16:e8:18:98:9d:4e:09:84:4f: e0:ce:39:4b:f2:8d:0e:11:35:0a:ef:3d:cc:05:4a: 34:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F8:2B:64:A8:1B:78:7C:D5:7D:C5:1A:94:2D:13:82:64:66:7F:B8 X509v3 Authority Key Identifier: keyid:BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a3:7f:fe:5d:a2:17:74:39:76:9c:1f:94:76:9b:47:61:13: ff:0f:1f:af:53:90:f7:01:79:92:73:5a:db:eb:30:64:ef:e1: e3:e0:63:01:79:38:6d:0b:08:0f:ac:a3:85:0e:5e:ab:82:e2: 9b:d7:1d:7b:00:3a:e7:48:10:dc:b4:ab:88:6d:58:21:eb:88: 50:c4:8c:b8:de:d8:3a:c7:d5:5c:7a:34:a5:e3:55:d8:aa:3e: c3:02:32:f7:98:2c:b9:41:83:25:cf:39:fc:9e:a8:25:d6:28: a5:6b:ab:97:65:85:c7:1c:75:da:9f:d5:ec:8b:6e:4d:a2:86: a1:c5:91:68:7f:27:01:fb:ca:13:ae:ec:ae:95:c4:a5:f4:3c: c5:da:f4:f6:03:e3:f0:38:a2:86:d0:a1:b5:38:19:58:bb:44: 3b:bd:cb:25:a6:c2:0f:8c:78:68:a9:44:b2:d7:c2:54:f5:52: 60:f2:87:58:70:ec:00:c4:6c:1b:e1:df:7b:a6:e9:23:d0:e8: 02:d5:be:bc:1a:61:25:2e:2a:75:c3:06:ed:23:b9:97:1e:73: aa:ba:3d:d8:ab:90:e6:16:24:a9:d1:07:6c:e7:c4:dc:e6:bc: c8:d7:74:b8:7a:5f:30:cf:f2:cb:9d:39:43:16:ac:89:0f:10: 63:26:8f:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1Q0QxMTAvBgNVBAUTKEJEQjU5MjZBODk2QkI2NTFBMEU3NTQwQTM5OENENUVG MDcxNDE3MUYwHhcNMjUxMjE4MjMyNzA1WhcNMjUxMjI1MjMyNzA1WjAYMRYwFAYD VQQDDA02OTQ0OGRjOS1iOGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5RHp89HAQg+ygfU0VAuGhI/xNrJz+jFv1YqNNjHeAveKaMajBOb6+A9/O8M sj1+HFt2H5xqTtER9vy1UCxShtJ3w0mIIeb0XdUEpa59YmAPseIzrS/zltk0txnd uLqzUDvNgQ1HevSC00TXqfjS9wiMeP8bQTLqozOlg5wxHcOILBIzve4O7rT6HRWu pvMZQSvWV+GJQ25btZJzK8tdHZKn/H0pbLEDXk1a9O2e5Jb6TLYyXxW/dAU9Hbxm l5FBvZSc5SUS8Ynhtzgi2VyCvK7jXkpsfympPaLq/ZxBoc0ynqWcA/8W6BiYnU4J hE/gzjlL8o0OETUK7z3MBUo07wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHH4K2So G3h81X3FGpQtE4JkZn+4MB8GA1UdIwQYMBaAFL21kmqJa7ZRoOdUCjmM1e8HFBcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTVDRC8yOTQzNkZDRTY4 N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRsR2c1MVFLT1l6Vjd3Y1VG eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZiV1Nhb2xydGxHZzUxUUtPWXpWN3djVUZ4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTVDRC8yOTQzNkZDRTY4N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRs R2c1MVFLT1l6Vjd3Y1VGeDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlo3/+XaIXdDl2nB+UdptHYRP/Dx+vU5D3AXmSc1rb6zBk7+Hj4GMB eThtCwgPrKOFDl6rguKb1x17ADrnSBDctKuIbVgh64hQxIy43tg6x9VcejSl41XY qj7DAjL3mCy5QYMlzzn8nqgl1iila6uXZYXHHHXan9Xsi25NooahxZFofycB+8oT ruyulcSl9DzF2vT2A+PwOKKG0KG1OBlYu0Q7vcslpsIPjHhoqUSy18JU9VJg8odY cOwAxGwb4d97pukj0OgC1b68GmElLip1wwbtI7mXHnOquj3Yq5DmFiSp0Qds58Tc 5rzI13S4el8wz/LLnTlDFqyJDxBjJo8q -----END CERTIFICATE-----Generated at Fri Dec 19 23:55:58 2025 by rpki-client