This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft File: bywgdVh2TqtQ74UGb3hZDOWxxWE.mft (raw, json) Hash identifier: nvpJBenllM7weLV9EoWsXaL++dKkadRWUWK4ZFFlo08= Subject key identifier: A2:03:3F:37:98:5B:09:DE:76:E0:DF:8A:83:48:8E:B8:EB:91:36:94 Authority key identifier: 6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 Certificate issuer: /CN=A91995D5/serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Certificate serial: 1109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft Manifest number: 1101 Signing time: Thu 18 Dec 2025 17:06:42 +0000 Manifest this update: Thu 18 Dec 2025 17:06:41 +0000 Manifest next update: Thu 25 Dec 2025 17:06:41 +0000 Files and hashes: 1: bywgdVh2TqtQ74UGb3hZDOWxxWE.crl (hash: YRIaJ/M+lSteuSBKfdsQ4GHeQTYV+AnjBwaHODUF8c8=) 2: ADA9DA3C2AAE11E9BEFAEF4EC4F9AE02.roa (hash: NcGX1+0f22h9EnvK4Hf3V559zCSmDIlERyuyLCtuDE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4361 (0x1109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91995D5, serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Validity Not Before: Dec 18 17:06:41 2025 GMT Not After : Dec 25 17:06:41 2025 GMT Subject: CN=694434a2-a527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:24:91:91:d6:ea:e0:92:e5:a9:00:bb:72:a9: ab:d0:30:67:ae:4d:71:40:5e:dd:38:11:10:6a:2c: 62:d6:26:e4:6d:90:37:e0:6e:ac:21:22:cc:95:1f: d6:11:5a:61:81:e7:ac:50:fa:63:39:9e:bb:0d:0d: bc:84:f3:12:1e:52:c9:73:d1:04:01:de:55:2f:c8: 25:ba:26:f3:56:ec:13:e6:46:92:3d:89:8e:d0:51: c7:b1:a6:6f:2e:80:a2:86:c9:a3:62:87:cb:18:bc: de:54:99:4a:33:bc:29:f8:50:68:6a:27:cb:77:b1: c2:8b:87:a9:ef:1b:a7:65:08:c3:7a:db:6b:e5:fe: 0a:e0:7a:80:0a:97:52:84:1a:5c:69:07:04:c2:cd: 21:bc:65:a9:29:b2:86:d0:dd:72:0d:c6:42:7c:58: b8:46:21:f1:9a:7f:68:7c:67:cb:2a:d7:43:5d:d2: 82:e7:0b:18:d1:6d:98:5a:70:e6:1c:7c:a8:42:a8: b0:c4:ff:9b:f5:e5:2d:2b:ae:91:d3:ed:ed:d8:34: 1c:9e:ed:46:e0:19:e9:da:e3:0f:65:fb:25:e9:ae: 64:c1:80:9b:2b:a8:b0:57:43:f8:74:37:a1:4f:d0: 87:1a:8c:d9:98:03:42:90:b6:ca:10:73:c3:20:ee: 64:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:03:3F:37:98:5B:09:DE:76:E0:DF:8A:83:48:8E:B8:EB:91:36:94 X509v3 Authority Key Identifier: keyid:6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:55:17:82:8d:ce:7f:15:e3:1d:9c:dd:99:b1:fb:cf:e4:86: 46:b9:8e:7a:9f:5e:85:f3:cb:3e:8b:d2:b3:75:f5:9e:d0:91: e9:ff:83:d5:ef:7e:fc:2b:d1:4d:7a:1d:df:2c:b9:60:4e:a4: c3:ef:df:ba:f4:2c:ae:22:e8:36:d5:22:92:9d:b5:dc:c1:96: 4d:de:cd:b7:b5:0c:fe:1d:03:ae:02:7e:89:1a:78:01:7a:8b: b0:54:d3:28:a9:b4:54:74:da:db:00:e6:75:ee:9d:01:31:15: ce:67:90:cb:76:d1:98:bc:01:1d:95:e0:72:c5:dd:68:3a:c5: 70:bd:7a:9c:1b:85:81:8f:f2:6f:48:c1:21:f0:4c:09:7f:8f: 93:cb:d6:89:e1:59:60:5c:22:37:4e:51:66:6d:df:17:a8:7f: 8c:d6:1f:52:be:5e:0c:da:d5:6f:84:ac:83:0b:67:71:0b:6b: 7d:98:62:5f:45:49:e0:90:fc:34:54:bf:c4:f6:ce:33:76:7a: 55:fe:36:3b:0d:f8:0e:c9:53:60:fc:73:4f:61:6f:ce:90:8b: 21:a2:86:8c:c4:e8:33:17:48:06:da:f6:54:ca:f8:a0:71:68: 9c:0f:aa:ab:5b:00:e4:89:59:8a:77:40:2c:1c:e2:e4:d0:91: 41:88:ea:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk1RDUxMTAvBgNVBAUTKDZGMkMyMDc1NTg3NjRFQUI1MEVGODUwNjZGNzg1OTBD RTVCMUM1NjEwHhcNMjUxMjE4MTcwNjQxWhcNMjUxMjI1MTcwNjQxWjAYMRYwFAYD VQQDDA02OTQ0MzRhMi1hNTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSSRkdbq4JLlqQC7cqmr0DBnrk1xQF7dOBEQaixi1ibkbZA34G6sISLMlR/W EVphgeesUPpjOZ67DQ28hPMSHlLJc9EEAd5VL8gluibzVuwT5kaSPYmO0FHHsaZv LoCihsmjYofLGLzeVJlKM7wp+FBoaifLd7HCi4ep7xunZQjDettr5f4K4HqACpdS hBpcaQcEws0hvGWpKbKG0N1yDcZCfFi4RiHxmn9ofGfLKtdDXdKC5wsY0W2YWnDm HHyoQqiwxP+b9eUtK66R0+3t2DQcnu1G4Bnp2uMPZfsl6a5kwYCbK6iwV0P4dDeh T9CHGozZmANCkLbKEHPDIO5khQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIDPzeY WwneduDfioNIjrjrkTaUMB8GA1UdIwQYMBaAFG8sIHVYdk6rUO+FBm94WQzlscVh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTVENS8xNjNCMUU3QzJB QUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRxdFE3NFVHYjNoWkRPV3h4 V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5d2dkVmgyVHF0UTc0VUdiM2haRE9XeHhXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTVENS8xNjNCMUU3QzJBQUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRx dFE3NFVHYjNoWkRPV3h4V0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEVReCjc5/FeMdnN2ZsfvP5IZGuY56n16F88s+i9KzdfWe0JHp/4PV 7378K9FNeh3fLLlgTqTD79+69CyuIug21SKSnbXcwZZN3s23tQz+HQOuAn6JGngB eouwVNMoqbRUdNrbAOZ17p0BMRXOZ5DLdtGYvAEdleByxd1oOsVwvXqcG4WBj/Jv SMEh8EwJf4+Ty9aJ4VlgXCI3TlFmbd8XqH+M1h9Svl4M2tVvhKyDC2dxC2t9mGJf RUngkPw0VL/E9s4zdnpV/jY7DfgOyVNg/HNPYW/OkIshooaMxOgzF0gG2vZUyvig cWicD6qrWwDkiVmKd0AsHOLk0JFBiOpk -----END CERTIFICATE-----Generated at Fri Dec 19 17:47:20 2025 by rpki-client