This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft File: mpwxvYeWc4abPI8FWW6IFVgvEdA.mft (raw, json) Hash identifier: vu1E7MQSycFSoRjbahh2iEfgEtKoWdLW17doY7Oz46s= Subject key identifier: BB:DC:66:D3:6E:90:22:54:85:F6:30:A3:D4:09:41:8E:5D:3F:C9:E6 Authority key identifier: 9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 Certificate issuer: /CN=A91856C4/serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Certificate serial: 0CC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft Manifest number: 0CB2 Signing time: Wed 31 Dec 2025 18:00:49 +0000 Manifest this update: Wed 31 Dec 2025 18:00:49 +0000 Manifest next update: Wed 07 Jan 2026 18:00:49 +0000 Files and hashes: 1: mpwxvYeWc4abPI8FWW6IFVgvEdA.crl (hash: C7rT+FryKTOJqX92DCZ1EsBRybf5vYnj3N/gMNWmowk=) 2: 58AEC9929C0F11EA9CC4217CC4F9AE02.roa (hash: nPz5etvH54CH9fTIMVloTiUDB5Qsl1I9QXbAO8u0vO8=) 3: 98DC875C050111EA9BDD372BC4F9AE02.roa (hash: yDcvIxrioePtxpeJhvFLHJCVBxiycv8OBxChNhzEutw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 18:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91856C4, serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Validity Not Before: Dec 31 18:00:49 2025 GMT Not After : Jan 7 18:00:49 2026 GMT Subject: CN=695564d1-6509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:75:3c:24:f7:5b:a3:bf:12:d9:4d:b9:9a:08: a4:b2:83:da:97:db:f2:96:60:20:a9:01:fd:ab:6e: f6:d9:75:8c:79:9b:d7:42:66:52:42:5f:93:22:a8: 20:ec:1d:4d:d1:73:cf:55:44:23:69:7d:bf:5a:37: 6a:87:14:fe:e2:5d:f3:28:d3:e4:cc:26:43:32:23: d6:fc:c1:03:50:88:c0:a7:0d:91:78:1b:ea:21:a4: 06:11:d6:ab:f8:d8:66:02:f8:21:13:a4:34:cd:8b: b5:d4:2c:67:09:ca:5e:e2:d9:a0:e6:c2:3a:98:8a: e8:c0:94:eb:56:40:6f:d1:41:b4:97:f4:d4:bc:8e: 1a:a1:6e:0f:87:a2:8c:d2:95:4e:d1:50:67:0d:23: 1e:84:9b:8c:ee:96:2b:92:6b:c0:5d:62:54:58:bf: e8:fc:a5:4f:a2:24:ba:ea:1e:29:dc:48:f4:b6:6c: cf:a5:64:26:a1:80:d8:61:cf:4d:7f:99:3e:0f:2c: 83:6c:f7:79:0b:6d:a7:a9:ce:b6:30:96:11:43:c0: cc:e1:4b:85:61:2f:08:6f:d0:b6:9c:96:b7:97:be: 83:5e:a2:2b:8f:4d:ba:33:dc:0d:68:75:77:d4:1c: 0d:b5:fb:c2:07:f2:d5:e4:5c:71:0e:6c:22:e2:80: 70:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DC:66:D3:6E:90:22:54:85:F6:30:A3:D4:09:41:8E:5D:3F:C9:E6 X509v3 Authority Key Identifier: keyid:9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:40:37:56:19:c1:03:fb:cd:d4:f4:9b:8d:f9:e4:7c:d9:77: 83:8a:c6:3c:3c:96:d3:48:31:4d:a2:59:42:10:a7:5c:74:fd: 2b:2a:0c:4f:2b:c2:c2:6f:3f:95:1e:c8:0e:05:04:bf:6e:3f: 42:f4:69:89:8d:a8:82:12:e2:98:52:a6:54:07:ce:c6:8f:f7: 21:15:ce:df:7c:e2:ec:0e:3d:4e:e6:88:82:dc:ff:97:64:43: df:31:b0:f8:41:a4:94:4e:bc:3f:ec:99:39:9f:f4:55:48:bb: 1f:63:e9:3f:8a:39:16:29:79:e7:d3:72:2f:40:76:ff:53:df: c4:12:8d:8b:c4:c2:ef:ee:5f:dd:b6:ef:83:5f:4e:15:86:c7: 72:96:96:d7:e0:64:c3:8a:f5:f9:98:11:81:5f:d9:43:23:62: 92:18:38:ad:62:fd:1c:cd:3b:f1:66:74:b9:6c:1b:60:44:23: 2a:d3:e2:b8:81:a7:6c:d3:c7:93:03:cb:dc:87:bc:4e:e9:f6: 34:68:8f:51:40:c5:9a:13:d5:88:4d:04:33:b1:51:c5:cf:c1: 8e:fa:be:35:ad:87:50:a5:77:b2:e3:73:68:cd:ec:2e:d8:22: 95:4d:d1:82:a4:d6:d4:66:63:36:37:c8:62:a9:42:62:d1:db: 45:63:83:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2QzQxMTAvBgNVBAUTKDlBOUMzMUJEODc5NjczODY5QjNDOEYwNTU5NkU4ODE1 NTgyRjExRDAwHhcNMjUxMjMxMTgwMDQ5WhcNMjYwMTA3MTgwMDQ5WjAYMRYwFAYD VQQDDA02OTU1NjRkMS02NTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3U8JPdbo78S2U25mgiksoPal9vylmAgqQH9q2722XWMeZvXQmZSQl+TIqgg 7B1N0XPPVUQjaX2/WjdqhxT+4l3zKNPkzCZDMiPW/MEDUIjApw2ReBvqIaQGEdar +NhmAvghE6Q0zYu11CxnCcpe4tmg5sI6mIrowJTrVkBv0UG0l/TUvI4aoW4Ph6KM 0pVO0VBnDSMehJuM7pYrkmvAXWJUWL/o/KVPoiS66h4p3Ej0tmzPpWQmoYDYYc9N f5k+DyyDbPd5C22nqc62MJYRQ8DM4UuFYS8Ib9C2nJa3l76DXqIrj026M9wNaHV3 1BwNtfvCB/LV5FxxDmwi4oBwlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvcZtNu kCJUhfYwo9QJQY5dP8nmMB8GA1UdIwQYMBaAFJqcMb2HlnOGmzyPBVluiBVYLxHQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTZDNC9BM0JBRDhFMjA0 RkYxMUVBOTNFRTlBMjNDNEY5QUUwMi9tcHd4dlllV2M0YWJQSThGV1c2SUZWZ3ZF ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21wd3h2WWVXYzRhYlBJOEZXVzZJRlZndkVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTZDNC9BM0JBRDhFMjA0RkYxMUVBOTNFRTlBMjNDNEY5QUUwMi9tcHd4dlllV2M0 YWJQSThGV1c2SUZWZ3ZFZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+QDdWGcED+83U9JuN+eR82XeDisY8PJbTSDFNollCEKdcdP0rKgxP K8LCbz+VHsgOBQS/bj9C9GmJjaiCEuKYUqZUB87Gj/chFc7ffOLsDj1O5oiC3P+X ZEPfMbD4QaSUTrw/7Jk5n/RVSLsfY+k/ijkWKXnn03IvQHb/U9/EEo2LxMLv7l/d tu+DX04VhsdylpbX4GTDivX5mBGBX9lDI2KSGDitYv0czTvxZnS5bBtgRCMq0+K4 gads08eTA8vch7xO6fY0aI9RQMWaE9WITQQzsVHFz8GO+r41rYdQpXey43Nozewu 2CKVTdGCpNbUZmM2N8hiqUJi0dtFY4OX -----END CERTIFICATE-----Generated at Thu Jan 1 21:22:09 2026 by rpki-client