This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft File: 0hsNWsWvkZAPUK2WADMT5R7WChA.mft (raw, json) Hash identifier: y18o0TU74Ho3L1Jk+yX3VjO9VlxG16xQ6eUMuzSDSOY= Subject key identifier: BA:E1:D7:31:CD:44:35:F3:DA:07:7F:3B:AD:C6:44:B6:78:49:96:C7 Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft Manifest number: E0 Signing time: Fri 19 Dec 2025 04:46:35 +0000 Manifest this update: Fri 19 Dec 2025 04:46:35 +0000 Manifest next update: Fri 26 Dec 2025 04:46:35 +0000 Files and hashes: 1: 0hsNWsWvkZAPUK2WADMT5R7WChA.crl (hash: bq919oZ1NK3Dy604R5pPZmybKzGbWBSDpOue3eBvLdk=) 2: 3996C94896D211EF924C486FC4F9AE02.roa (hash: kqOdm4mIQ5rtE9W5sQYT9M1D8hmXdIyf47H8prMLi/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: Dec 19 04:46:35 2025 GMT Not After : Dec 26 04:46:35 2025 GMT Subject: CN=6944d8ab-8d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9d:cb:a7:ce:f1:ab:ce:60:a0:0a:fd:82:12: bb:ba:5a:b2:25:3e:41:13:ed:db:c4:64:4e:1a:bc: 04:03:ec:50:63:85:49:94:7a:e2:9a:32:bf:cf:71: ca:74:25:d8:4a:e1:da:2b:75:9f:82:17:fc:7d:28: 29:f6:e2:3b:1a:bb:89:99:f1:8c:c8:c2:c3:ed:7c: 64:9b:44:ef:e8:ea:c3:10:09:a6:58:4f:4d:95:75: e3:aa:f2:57:73:7d:79:4e:a4:bc:f8:59:7f:cd:71: 82:c1:cd:01:71:43:47:d6:d2:50:69:f2:78:50:44: 4c:59:ab:f2:97:9c:aa:1b:4f:8f:73:64:05:3f:3d: da:70:84:ad:0d:a9:59:2e:0c:68:51:88:ce:0e:c8: 14:ab:0a:35:55:0e:26:e7:e5:92:ff:6d:c6:f0:b9: 89:90:ad:1c:5a:71:b7:02:da:f8:e4:52:15:20:84: af:93:a9:39:6e:7d:4a:6e:67:83:29:b4:8a:b9:2d: bd:fe:97:75:bb:88:04:88:31:42:49:d1:59:7b:33: 40:ad:6a:e6:2e:ae:54:c0:a0:e8:37:fe:36:5f:4a: 2b:cd:d1:83:ca:a3:a2:31:1e:c7:37:d4:1a:1f:6a: 6f:0d:04:63:11:12:db:0b:14:ed:eb:95:23:b7:de: 78:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E1:D7:31:CD:44:35:F3:DA:07:7F:3B:AD:C6:44:B6:78:49:96:C7 X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:99:24:20:a6:4c:29:a9:26:af:86:fb:98:04:d9:a0:2c:35: 91:4e:8f:00:38:e7:bc:a5:69:09:e3:6d:78:ab:88:bc:39:b6: dd:20:19:40:40:57:f6:a2:28:b5:8f:aa:2c:40:14:6e:db:d4: de:47:cc:91:b1:99:58:9a:47:83:1a:98:a0:a1:1b:54:b4:68: 19:88:58:23:b7:d1:74:82:e4:8e:74:ae:77:c8:5f:86:53:41: 81:e9:8b:22:03:c7:a2:fd:2f:cd:dc:ea:15:f0:43:57:03:b3: 03:eb:50:d6:fe:7f:d3:61:0e:44:91:ef:02:6f:98:c2:7c:63: ff:26:bc:aa:3f:c9:3e:2e:c4:1a:1a:69:96:0f:21:0a:30:c9: a9:b2:34:40:c2:80:67:fa:db:60:31:13:75:f7:8a:cf:56:59: 9c:2e:90:a9:b5:6c:dc:ad:c4:d0:71:5b:3f:59:7e:8c:96:15: f9:b2:4d:cc:53:5f:27:ac:18:1c:aa:25:70:35:3d:58:b9:7b: 6b:70:e3:4a:ca:3c:4c:db:75:e2:5f:6a:df:75:f7:40:f3:6e: 7b:3a:ca:61:7d:69:8b:8e:d6:c5:6e:6d:3b:21:02:24:94:ee: 22:9d:af:77:c0:3e:5d:84:14:df:48:2a:3f:b4:6d:d0:74:ac: 43:d7:d1:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBFOUQxMTAvBgNVBAUTKEQyMUIwRDVBQzVBRjkxOTAwRjUwQUQ5NjAwMzMxM0U1 MUVENjBBMTAwHhcNMjUxMjE5MDQ0NjM1WhcNMjUxMjI2MDQ0NjM1WjAYMRYwFAYD VQQDDA02OTQ0ZDhhYi04ZDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZ3Lp87xq85goAr9ghK7ulqyJT5BE+3bxGROGrwEA+xQY4VJlHrimjK/z3HK dCXYSuHaK3Wfghf8fSgp9uI7GruJmfGMyMLD7Xxkm0Tv6OrDEAmmWE9NlXXjqvJX c315TqS8+Fl/zXGCwc0BcUNH1tJQafJ4UERMWavyl5yqG0+Pc2QFPz3acIStDalZ LgxoUYjODsgUqwo1VQ4m5+WS/23G8LmJkK0cWnG3Atr45FIVIISvk6k5bn1KbmeD KbSKuS29/pd1u4gEiDFCSdFZezNArWrmLq5UwKDoN/42X0orzdGDyqOiMR7HN9Qa H2pvDQRjERLbCxTt65Ujt954fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrh1zHN RDXz2gd/O63GRLZ4SZbHMB8GA1UdIwQYMBaAFNIbDVrFr5GQD1CtlgAzE+Ue1goQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEU5RC85NTY5QURCNDk1 REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmtaQVBVSzJXQURNVDVSN1dD aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0NoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEU5RC85NTY5QURCNDk1REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmta QVBVSzJXQURNVDVSN1dDaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAmSQgpkwpqSavhvuYBNmgLDWRTo8AOOe8pWkJ4214q4i8ObbdIBlA QFf2oii1j6osQBRu29TeR8yRsZlYmkeDGpigoRtUtGgZiFgjt9F0guSOdK53yF+G U0GB6YsiA8ei/S/N3OoV8ENXA7MD61DW/n/TYQ5Eke8Cb5jCfGP/JryqP8k+LsQa GmmWDyEKMMmpsjRAwoBn+ttgMRN194rPVlmcLpCptWzcrcTQcVs/WX6MlhX5sk3M U18nrBgcqiVwNT1YuXtrcONKyjxM23XiX2rfdfdA8257OsphfWmLjtbFbm07IQIk lO4ina93wD5dhBTfSCo/tG3QdKxD19E/ -----END CERTIFICATE-----Generated at Fri Dec 19 18:56:12 2025 by rpki-client