This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: yxqETx4xURXMno7KkXWqPMfaBWBGR3uDVH6wrLtm/uk= Subject key identifier: 33:9B:B5:4E:24:D3:D9:47:1B:24:4D:0A:2A:99:13:63:C2:EF:2C:D1 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 0A37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 0A20 Signing time: Thu 18 Dec 2025 19:23:11 +0000 Manifest this update: Thu 18 Dec 2025 19:23:10 +0000 Manifest next update: Thu 25 Dec 2025 19:23:10 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: bnhvIzzJMgSUeoMzbJzlQw1CW3pEPtB+GRcicRa0PL8=) 2: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: WlJN5u1oi9WPrD229vbsWsLGL/hLS+xCYNJ5+hmxu8E=) 3: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: 9Z+s94Y5T1K7IVPTPlx/BgDTI68R9a8i/jpS5x1Nr4c=) 4: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: Jhv7IIpmMM0oZ7iAKkds1Qiv2p8w6iMgKtc0KDhD18s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2615 (0xa37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Dec 18 19:23:10 2025 GMT Not After : Dec 25 19:23:10 2025 GMT Subject: CN=6944549f-47da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:90:e8:4c:40:58:be:f5:9d:18:24:9d:c7:61: 6c:32:ff:93:61:9e:fa:c5:9a:26:c6:a7:98:7c:54: 18:69:44:ce:bd:95:3a:d0:f6:10:14:bb:b0:1f:5a: a3:6c:8b:14:8f:01:18:43:13:a0:c8:37:78:80:6f: 57:e1:77:4f:71:41:f8:49:e2:5a:80:61:ca:ed:7b: 5a:e9:aa:c3:b1:64:25:29:37:74:12:81:d6:06:e0: 29:e1:9c:26:90:9c:30:53:61:2d:23:49:1c:78:0c: 4b:e3:c2:34:79:b5:aa:7b:d4:e2:96:e3:fa:b4:f4: 4c:06:d8:fa:95:65:4f:2a:4f:c8:cd:e0:34:51:1a: d5:3c:eb:44:0d:02:c1:ad:1d:c0:c6:07:da:79:5c: 7b:a1:a0:23:98:3c:88:d8:38:c5:3f:88:4c:59:8a: d1:7d:54:8e:b2:c4:7f:b5:fc:55:44:5a:32:3d:12: 87:d8:f1:73:1e:b0:0f:f3:ea:86:6c:a4:b2:67:95: 0a:9d:73:14:42:c2:ac:39:f2:b3:b5:99:81:34:9b: 1a:ca:2e:08:4f:f2:b6:ac:e9:7f:45:c6:5b:54:10: 4d:19:7e:49:43:cb:be:87:2c:ab:2a:ba:73:c6:55: 0b:7b:17:0e:8d:a0:16:6f:e1:7a:8d:3c:ac:c4:6f: ef:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:9B:B5:4E:24:D3:D9:47:1B:24:4D:0A:2A:99:13:63:C2:EF:2C:D1 X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:26:5d:1c:0b:4d:0f:1c:45:c7:cf:7e:5d:c0:22:51:96:37: 08:a1:35:7b:a0:1c:02:cd:c5:3c:9a:8d:f8:04:c2:34:7a:5f: 35:57:81:2a:a7:4f:a9:23:2c:86:8e:5d:50:1e:54:00:82:9e: 86:50:88:ef:b6:5a:66:8d:00:59:6f:ac:db:5f:d5:4c:a0:c4: 45:5d:0c:e4:d2:b9:52:3a:c4:1f:2c:3a:de:c0:7b:60:4a:fd: 50:89:7e:38:77:e8:ca:15:c7:a6:92:f3:10:74:83:c8:54:10: 39:0c:09:c4:c8:be:2c:23:3e:68:c2:f9:1f:c5:c6:51:d6:5a: 70:4b:14:78:93:b4:00:d6:e5:57:b1:f8:c2:f1:58:57:77:6a: 93:aa:2e:dc:d9:e8:52:2b:4d:35:3f:32:e2:e7:9f:2a:9c:a3: 89:65:a0:08:23:96:dc:d6:db:70:da:a4:ca:e0:33:2f:b0:ba: 4e:ec:e3:f6:92:c6:ec:1d:57:48:9f:67:ab:39:c9:be:39:6e: 9e:60:98:34:f7:f6:b7:ee:0b:be:73:06:ba:10:7e:7d:01:fc: e4:26:ab:99:bb:83:3b:91:b6:c7:17:98:f4:f4:7c:2e:82:92: 35:2a:40:ec:8f:51:70:c2:5b:60:ab:84:a8:ad:b1:9e:63:b9: d9:6a:bb:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUxMjE4MTkyMzEwWhcNMjUxMjI1MTkyMzEwWjAYMRYwFAYD VQQDDA02OTQ0NTQ5Zi00N2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5DoTEBYvvWdGCSdx2FsMv+TYZ76xZomxqeYfFQYaUTOvZU60PYQFLuwH1qj bIsUjwEYQxOgyDd4gG9X4XdPcUH4SeJagGHK7Xta6arDsWQlKTd0EoHWBuAp4Zwm kJwwU2EtI0kceAxL48I0ebWqe9TiluP6tPRMBtj6lWVPKk/IzeA0URrVPOtEDQLB rR3AxgfaeVx7oaAjmDyI2DjFP4hMWYrRfVSOssR/tfxVRFoyPRKH2PFzHrAP8+qG bKSyZ5UKnXMUQsKsOfKztZmBNJsayi4IT/K2rOl/RcZbVBBNGX5JQ8u+hyyrKrpz xlULexcOjaAWb+F6jTysxG/v6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDObtU4k 09lHGyRNCiqZE2PC7yzRMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFJl0cC00PHEXHz35dwCJRljcIoTV7oBwCzcU8mo34BMI0el81V4Eq p0+pIyyGjl1QHlQAgp6GUIjvtlpmjQBZb6zbX9VMoMRFXQzk0rlSOsQfLDrewHtg Sv1QiX44d+jKFcemkvMQdIPIVBA5DAnEyL4sIz5owvkfxcZR1lpwSxR4k7QA1uVX sfjC8VhXd2qTqi7c2ehSK001PzLi558qnKOJZaAII5bc1ttw2qTK4DMvsLpO7OP2 ksbsHVdIn2erOcm+OW6eYJg09/a37gu+cwa6EH59AfzkJquZu4M7kbbHF5j09Hwu gpI1KkDsj1Fwwltgq4SorbGeY7nZaruG -----END CERTIFICATE-----Generated at Fri Dec 19 17:35:59 2025 by rpki-client