This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft File: Sn0mxMvxZwAkXWf79pULcSkYmTk.mft (raw, json) Hash identifier: Bs4+CIC7wj1tT1W/n3UzaYJS2CtaNb+5zgUAS17I8Jg= Subject key identifier: A8:53:0E:CF:C2:7A:21:86:E1:51:BE:36:E5:BF:15:14:98:29:E3:81 Authority key identifier: 4A:7D:26:C4:CB:F1:67:00:24:5D:67:FB:F6:95:0B:71:29:18:99:39 Certificate issuer: /CN=A91839CF/serialNumber=4A7D26C4CBF16700245D67FBF6950B7129189939 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft Manifest number: CA Signing time: Fri 19 Dec 2025 04:55:41 +0000 Manifest this update: Fri 19 Dec 2025 04:55:41 +0000 Manifest next update: Fri 26 Dec 2025 04:55:41 +0000 Files and hashes: 1: Sn0mxMvxZwAkXWf79pULcSkYmTk.crl (hash: akmIGphI8KHjACf2vvpt8c5vmAq2+WbCPkWl0eBizpg=) 2: 305EB30EA98D11EF8C023466C4F9AE02.roa (hash: mTvWjDqRpjoE4gToiz3x8YclXADkkIN+m00HGh0rTzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.crl rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91839CF, serialNumber=4A7D26C4CBF16700245D67FBF6950B7129189939 Validity Not Before: Dec 19 04:55:41 2025 GMT Not After : Dec 26 04:55:41 2025 GMT Subject: CN=6944dacd-c085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d9:5d:5b:43:f0:f9:a2:25:dd:5b:eb:cf:4d: 25:71:3b:90:f0:ab:9c:2d:88:d7:32:6d:d8:b4:80: 6e:04:78:15:ee:61:97:6e:31:82:6b:e4:17:5d:e2: ee:84:36:00:b3:47:39:d0:cf:28:8f:ba:5d:7a:52: 2b:c9:0f:01:a1:71:a0:70:3b:ab:26:64:fa:b3:7b: 60:92:b7:c3:11:d0:ae:9e:ed:bc:76:32:33:a5:2d: a2:98:6d:93:03:3e:d6:c1:f5:04:b7:bf:7b:11:1a: af:34:97:a0:64:63:d6:bc:91:4b:6a:17:a0:7c:29: 5f:e0:10:78:47:d5:5e:84:36:51:50:31:15:5b:21: 5a:6e:72:89:08:a2:5c:a3:e8:af:c7:04:0d:1d:a1: 43:f6:03:35:b3:c8:0f:2f:2c:85:5c:9b:51:c8:5a: 3c:7e:08:b8:13:2c:77:7d:a7:4c:52:4a:e5:2f:1f: 17:cd:4f:37:c0:1e:af:c7:03:6f:d7:6f:19:c6:9d: ac:b7:f3:1b:91:bf:df:2e:cc:cb:7a:b8:cd:5c:3f: b8:fc:71:9b:0d:0f:c5:8f:ca:a9:15:ba:45:64:3a: eb:b6:ea:43:46:da:40:57:83:b8:68:b2:80:fa:d5: 30:f2:e8:3e:4f:2f:df:4d:98:ca:d9:3e:db:c9:d5: 9e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:53:0E:CF:C2:7A:21:86:E1:51:BE:36:E5:BF:15:14:98:29:E3:81 X509v3 Authority Key Identifier: keyid:4A:7D:26:C4:CB:F1:67:00:24:5D:67:FB:F6:95:0B:71:29:18:99:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:44:3e:1e:92:89:2e:f1:de:cc:39:23:f2:f2:5d:d1:f6:d8: 3c:f3:9c:e3:01:67:35:96:06:fb:4d:6d:31:95:df:13:29:af: e5:35:61:7b:9b:8d:c8:a5:3e:45:dd:6b:7d:d0:34:53:81:2c: 6d:c9:f5:41:67:8e:ea:92:b0:e5:19:d6:45:8b:9f:04:c8:73: 36:5f:2a:af:32:55:42:4a:e5:0e:13:a5:90:e6:e0:b9:28:f2: 98:74:ab:f0:43:c3:95:12:4d:e3:3e:e8:56:0a:c7:c5:19:a6: 1d:4f:1d:66:bd:62:0f:82:7d:e8:f3:7e:f4:2f:ef:e4:0f:60: e8:4d:6f:93:e9:79:e8:09:f7:20:bf:f4:34:38:26:6f:c6:9c: 36:76:d0:c8:f4:77:92:d3:7f:ec:09:7d:24:63:07:41:c4:aa: 6f:16:5c:73:8d:a1:59:32:59:b4:a3:ff:4a:5d:fd:0d:1a:52: 9c:6c:49:89:8e:42:9f:da:6a:3a:1c:f0:62:b3:e1:e9:cb:ac: cd:1f:47:36:d2:f1:bb:2e:a5:f7:82:77:33:88:9a:77:43:63: 01:0e:24:34:9b:b6:ab:6e:36:d2:f7:7f:17:ce:23:af:67:29: 8a:9b:75:28:37:1c:72:8e:ff:e5:5a:0c:86:17:c4:24:8c:1d: 6c:0c:b3:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM5Q0YxMTAvBgNVBAUTKDRBN0QyNkM0Q0JGMTY3MDAyNDVENjdGQkY2OTUwQjcx MjkxODk5MzkwHhcNMjUxMjE5MDQ1NTQxWhcNMjUxMjI2MDQ1NTQxWjAYMRYwFAYD VQQDDA02OTQ0ZGFjZC1jMDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9ldW0Pw+aIl3Vvrz00lcTuQ8KucLYjXMm3YtIBuBHgV7mGXbjGCa+QXXeLu hDYAs0c50M8oj7pdelIryQ8BoXGgcDurJmT6s3tgkrfDEdCunu28djIzpS2imG2T Az7WwfUEt797ERqvNJegZGPWvJFLahegfClf4BB4R9VehDZRUDEVWyFabnKJCKJc o+ivxwQNHaFD9gM1s8gPLyyFXJtRyFo8fgi4Eyx3fadMUkrlLx8XzU83wB6vxwNv 128Zxp2st/Mbkb/fLszLerjNXD+4/HGbDQ/Fj8qpFbpFZDrrtupDRtpAV4O4aLKA +tUw8ug+Ty/fTZjK2T7bydWewQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhTDs/C eiGG4VG+NuW/FRSYKeOBMB8GA1UdIwQYMBaAFEp9JsTL8WcAJF1n+/aVC3EpGJk5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzlDRi80REYyQkU1MkE5 OEMxMUVGQkEwNjg4NjRDNEY5QUUwMi9TbjBteE12eFp3QWtYV2Y3OXBVTGNTa1lt VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NuMG14TXZ4WndBa1hXZjc5cFVMY1NrWW1Uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzlDRi80REYyQkU1MkE5OEMxMUVGQkEwNjg4NjRDNEY5QUUwMi9TbjBteE12eFp3 QWtYV2Y3OXBVTGNTa1ltVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQRD4ekoku8d7MOSPy8l3R9tg885zjAWc1lgb7TW0xld8TKa/lNWF7 m43IpT5F3Wt90DRTgSxtyfVBZ47qkrDlGdZFi58EyHM2XyqvMlVCSuUOE6WQ5uC5 KPKYdKvwQ8OVEk3jPuhWCsfFGaYdTx1mvWIPgn3o8370L+/kD2DoTW+T6XnoCfcg v/Q0OCZvxpw2dtDI9HeS03/sCX0kYwdBxKpvFlxzjaFZMlm0o/9KXf0NGlKcbEmJ jkKf2mo6HPBis+Hpy6zNH0c20vG7LqX3gncziJp3Q2MBDiQ0m7arbjbS938XziOv ZymKm3UoNxxyjv/lWgyGF8QkjB1sDLNA -----END CERTIFICATE-----Generated at Fri Dec 19 18:47:56 2025 by rpki-client