This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft File: Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft (raw, json) Hash identifier: gJdp0PXR3RXv3rkODWiWj97tjiP4KI98pkIymvvVOgw= Subject key identifier: 29:26:5F:CE:47:24:0F:99:F6:B0:55:32:EE:23:5A:71:D4:ED:21:13 Authority key identifier: 49:DB:61:FF:03:C5:51:67:95:CF:78:50:9E:A3:7A:06:0F:45:47:BF Certificate issuer: /CN=A91947C4/serialNumber=49DB61FF03C5516795CF78509EA37A060F4547BF Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft Manifest number: 01A1 Signing time: Fri 19 Dec 2025 02:32:49 +0000 Manifest this update: Fri 19 Dec 2025 02:32:48 +0000 Manifest next update: Fri 26 Dec 2025 02:32:48 +0000 Files and hashes: 1: Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl (hash: 3z3nGWFT2SrqQGZYH/EhKezspDP3ulXIZY7wgw0z7iw=) 2: 08181C0C646D11EE82448758C4F9AE02.roa (hash: 1AC56+KqoXmIdoXxTwj6Vr1818DLnFN433yaIdYEMfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91947C4, serialNumber=49DB61FF03C5516795CF78509EA37A060F4547BF Validity Not Before: Dec 19 02:32:48 2025 GMT Not After : Dec 26 02:32:48 2025 GMT Subject: CN=6944b950-226d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:32:b9:05:04:0f:24:4a:91:56:14:c2:d6:39: 35:3c:48:b0:97:0f:17:60:6b:8c:e5:7a:4b:5b:97: eb:c0:6d:49:c4:e9:e1:9e:32:ff:30:36:c0:48:75: 62:3f:c8:bc:30:39:cb:cb:63:d6:01:aa:23:52:a5: 5d:11:7b:89:b4:63:5f:e9:aa:c9:4f:b0:d2:d1:8d: 24:e8:22:8e:6d:f0:bc:f6:98:05:14:c0:07:06:b4: ce:31:af:51:68:98:66:e5:2d:9d:ec:d8:06:1b:3a: 92:72:db:90:e1:a9:8a:4c:24:c3:97:a5:a1:16:f8: e3:d2:17:76:41:09:10:7e:59:cf:df:5b:9b:a0:d6: 40:28:f7:c2:1c:13:22:e1:3c:fa:16:56:fe:48:3e: 3e:3b:c4:32:b4:e7:62:5e:4a:d1:64:e5:73:4a:d8: f3:c6:c0:cf:e3:d3:b2:40:fa:d9:ea:b8:1c:88:07: d3:13:26:23:ae:25:16:bb:00:94:9a:85:ad:f5:c6: fd:63:f1:ce:f1:87:03:cc:12:bd:7d:e9:a3:11:7c: 10:da:73:f5:00:ac:61:6f:fe:b6:2b:f8:ad:a2:d2: a7:6c:38:b4:6c:b7:55:b0:ea:21:cc:a4:8f:e3:58: b4:30:67:fe:16:67:a2:2e:b3:9a:ca:1c:9a:e4:9f: e5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:26:5F:CE:47:24:0F:99:F6:B0:55:32:EE:23:5A:71:D4:ED:21:13 X509v3 Authority Key Identifier: keyid:49:DB:61:FF:03:C5:51:67:95:CF:78:50:9E:A3:7A:06:0F:45:47:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ba:2e:24:3f:aa:cf:03:54:2e:b2:18:e1:00:df:e6:9a:ef: a8:f1:6a:4d:9e:bb:e3:d9:ae:58:33:88:47:7f:c3:e8:3f:4e: bc:0e:22:3c:18:74:e0:f5:ab:8e:19:2a:b2:03:1b:7c:7a:a7: 2f:3c:e3:ad:f8:0d:f1:6c:9f:a7:22:44:ae:4e:28:a5:47:ba: fb:30:31:02:02:a4:19:84:01:47:ab:94:55:51:3d:e1:37:7d: 80:2c:df:75:17:11:b5:1b:6b:05:45:20:ca:85:2c:a6:ac:8e: a8:85:79:31:03:5e:b6:12:ba:bc:61:8f:9b:45:cc:33:b1:d9: ea:ec:9f:81:b8:38:ef:37:45:5f:3f:32:0d:e6:b0:6d:9e:b4: 75:9f:e6:db:2a:c2:0c:85:ab:2e:09:0a:3c:0e:2f:52:70:6e: 65:f0:8a:81:d3:49:24:29:7f:97:78:1c:61:26:9e:05:cd:3f: 6e:b9:ae:7c:37:36:bf:b2:7e:60:bd:2b:ac:28:60:8d:b6:dc: f8:77:d5:91:da:73:b8:10:34:a5:b4:c0:8e:58:87:91:bb:67: fe:ac:ad:38:71:84:40:21:27:d7:e8:2c:9f:0a:5d:63:88:23: 7d:cc:47:07:9f:05:84:90:ec:30:ab:14:5a:54:51:0a:93:b3: 93:82:1e:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ3QzQxMTAvBgNVBAUTKDQ5REI2MUZGMDNDNTUxNjc5NUNGNzg1MDlFQTM3QTA2 MEY0NTQ3QkYwHhcNMjUxMjE5MDIzMjQ4WhcNMjUxMjI2MDIzMjQ4WjAYMRYwFAYD VQQDDA02OTQ0Yjk1MC0yMjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jK5BQQPJEqRVhTC1jk1PEiwlw8XYGuM5XpLW5frwG1JxOnhnjL/MDbASHVi P8i8MDnLy2PWAaojUqVdEXuJtGNf6arJT7DS0Y0k6CKObfC89pgFFMAHBrTOMa9R aJhm5S2d7NgGGzqSctuQ4amKTCTDl6WhFvjj0hd2QQkQflnP31uboNZAKPfCHBMi 4Tz6Flb+SD4+O8QytOdiXkrRZOVzStjzxsDP49OyQPrZ6rgciAfTEyYjriUWuwCU moWt9cb9Y/HO8YcDzBK9femjEXwQ2nP1AKxhb/62K/itotKnbDi0bLdVsOohzKSP 41i0MGf+FmeiLrOayhya5J/l3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkmX85H JA+Z9rBVMu4jWnHU7SETMB8GA1UdIwQYMBaAFEnbYf8DxVFnlc94UJ6jegYPRUe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDdDNC81OTVCRTgyQzYz NUIxMUVFODg0Q0FENEZDNEY5QUUwMi9TZHRoX3dQRlVXZVZ6M2hRbnFONkJnOUZS NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NkdGhfd1BGVVdlVnozaFFucU42Qmc5RlI3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDdDNC81OTVCRTgyQzYzNUIxMUVFODg0Q0FENEZDNEY5QUUwMi9TZHRoX3dQRlVX ZVZ6M2hRbnFONkJnOUZSNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWui4kP6rPA1QushjhAN/mmu+o8WpNnrvj2a5YM4hHf8PoP068DiI8 GHTg9auOGSqyAxt8eqcvPOOt+A3xbJ+nIkSuTiilR7r7MDECAqQZhAFHq5RVUT3h N32ALN91FxG1G2sFRSDKhSymrI6ohXkxA162Erq8YY+bRcwzsdnq7J+BuDjvN0Vf PzIN5rBtnrR1n+bbKsIMhasuCQo8Di9ScG5l8IqB00kkKX+XeBxhJp4FzT9uua58 Nza/sn5gvSusKGCNttz4d9WR2nO4EDSltMCOWIeRu2f+rK04cYRAISfX6CyfCl1j iCN9zEcHnwWEkOwwqxRaVFEKk7OTgh57 -----END CERTIFICATE-----Generated at Fri Dec 19 20:25:37 2025 by rpki-client