This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: e/abAHkHq/CAa5bV+ugarRDMpOlPTVTsx2hPlQeedmA= Subject key identifier: 48:89:87:B9:06:EE:A4:65:4B:E0:5F:7D:6F:E7:DC:F1:F2:F2:6C:24 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 36E4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 36E2 Signing time: Sat 20 Dec 2025 14:32:08 +0000 Manifest this update: Sat 20 Dec 2025 14:32:08 +0000 Manifest next update: Sat 27 Dec 2025 14:32:08 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: QYa0Z7azLKIUoxrJfwS7HQZEUukF20Ib7o/S2/DvVaM=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: N2bskfxMFTrCp2qSWTYeMDSrONrPAtxZB594KPwftq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14052 (0x36e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Dec 20 14:32:08 2025 GMT Not After : Dec 27 14:32:08 2025 GMT Subject: CN=6946b368-aa6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:f4:e1:d2:93:23:76:0e:23:75:e5:33:a9: 38:8e:10:d6:ca:14:a0:57:7c:0e:b0:b5:cf:d6:9b: e6:8b:1f:92:8d:75:6c:d3:a6:1a:f4:7e:f3:54:f0: f6:ca:e6:34:34:36:e0:da:34:8c:ef:ff:fa:18:81: 86:30:e6:19:e2:6e:d8:18:15:3a:e4:5d:79:44:35: 30:23:50:fc:81:45:4b:52:e7:a4:8c:a4:26:49:e0: 73:3a:ef:8b:f1:3a:de:b4:c1:6e:d4:ef:54:06:fb: b5:5b:9f:ee:c1:23:a7:a9:b9:d8:d6:35:19:07:d7: 67:f3:6c:97:3f:41:8f:d7:5e:4e:10:49:74:9b:d6: f2:3d:13:8d:83:6f:f5:17:84:fd:12:5e:c0:e1:39: 91:b8:52:01:4b:3f:bf:b0:a4:14:a0:6e:5d:fc:6c: ae:66:73:30:d2:d0:4b:d7:29:dd:e2:25:6f:5c:47: c2:04:16:51:33:9c:7e:a4:ea:61:87:54:ea:1b:36: de:24:a0:76:4e:b9:26:35:35:25:cb:b6:03:13:fd: c5:59:24:83:8c:0f:51:5b:f3:9d:7d:4f:58:ff:df: 40:f6:90:cc:3c:cd:03:1e:90:42:93:62:d5:7f:d2: 2d:c2:a8:cb:67:28:ab:d0:9b:f1:dd:c5:76:f5:b0: 9b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:89:87:B9:06:EE:A4:65:4B:E0:5F:7D:6F:E7:DC:F1:F2:F2:6C:24 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:4b:50:2e:da:81:d9:ad:a2:a1:7e:6e:f8:58:7b:ef:67:31: 89:ae:a9:14:ff:3e:65:4e:10:ab:36:1d:83:4e:7b:4a:08:85: 1e:71:b3:6c:82:32:f3:17:3d:7a:87:2f:51:7e:a3:f0:e7:92: 9f:9e:54:0e:0b:95:96:c0:d0:be:47:6e:6c:b8:6d:8d:a7:d5: 98:59:81:f4:5c:6b:5c:38:63:04:71:f8:b4:4f:7a:20:bf:1b: 80:f8:c2:68:81:55:59:e8:14:26:a7:45:9b:8f:97:fc:66:5f: 70:22:3f:63:21:33:18:e9:30:fe:49:b0:1b:40:e2:a4:cd:0c: b0:85:85:24:71:02:2e:c1:49:f0:68:d7:35:3f:c1:88:eb:3c: 68:52:00:39:4c:d5:8d:91:04:73:80:25:e7:83:11:8b:06:db: 15:ae:1c:b5:3e:ac:68:25:6e:dd:8a:4c:75:12:ce:d2:7b:91: 77:f0:dd:dc:fc:7c:3f:9b:6a:97:a9:d1:e7:92:34:54:47:09: 28:2a:8f:9d:36:b9:01:01:c3:e4:4b:6c:79:8f:de:df:6c:0c: 47:9b:83:6f:8d:d4:a4:79:76:95:b5:b7:b8:e5:ea:2b:e6:29: ac:e0:f3:0e:c8:0b:6a:22:50:2c:7e:98:fc:27:62:32:96:17: fc:99:8f:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUxMjIwMTQzMjA4WhcNMjUxMjI3MTQzMjA4WjAYMRYwFAYD VQQDDA02OTQ2YjM2OC1hYTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBb04dKTI3YOI3XlM6k4jhDWyhSgV3wOsLXP1pvmix+SjXVs06Ya9H7zVPD2 yuY0NDbg2jSM7//6GIGGMOYZ4m7YGBU65F15RDUwI1D8gUVLUuekjKQmSeBzOu+L 8TretMFu1O9UBvu1W5/uwSOnqbnY1jUZB9dn82yXP0GP115OEEl0m9byPRONg2/1 F4T9El7A4TmRuFIBSz+/sKQUoG5d/GyuZnMw0tBL1ynd4iVvXEfCBBZRM5x+pOph h1TqGzbeJKB2TrkmNTUly7YDE/3FWSSDjA9RW/OdfU9Y/99A9pDMPM0DHpBCk2LV f9ItwqjLZyir0Jvx3cV29bCbTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiJh7kG 7qRlS+BffW/n3PHy8mwkMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1S1Au2oHZraKhfm74WHvvZzGJrqkU/z5lThCrNh2DTntKCIUecbNs gjLzFz16hy9RfqPw55KfnlQOC5WWwNC+R25suG2Np9WYWYH0XGtcOGMEcfi0T3og vxuA+MJogVVZ6BQmp0Wbj5f8Zl9wIj9jITMY6TD+SbAbQOKkzQywhYUkcQIuwUnw aNc1P8GI6zxoUgA5TNWNkQRzgCXngxGLBtsVrhy1PqxoJW7dikx1Es7Se5F38N3c /Hw/m2qXqdHnkjRURwkoKo+dNrkBAcPkS2x5j97fbAxHm4NvjdSkeXaVtbe45eor 5ims4PMOyAtqIlAsfpj8J2Iylhf8mY97 -----END CERTIFICATE-----Generated at Sat Dec 20 21:08:00 2025 by rpki-client