This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: fnmclSpvcUUAdEI0idfnV8CXTSiafS1r88k910hiZ/w= Subject key identifier: 8E:27:16:B4:77:F1:62:3E:19:BD:E4:4C:A1:84:73:49:2B:65:3C:75 Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 024E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 0242 Signing time: Sun 21 Dec 2025 01:09:08 +0000 Manifest this update: Sun 21 Dec 2025 01:09:08 +0000 Manifest next update: Sun 28 Dec 2025 01:09:08 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: wXTNhMD0OfXWGd1CLcnHmuw4W92rONrPiKtKentBYEY=) 2: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: KwJcRfcCHNm1/1H4hZVLWjzBmRVSuYEae2GuTglAJm0=) 3: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: n2zLDtDaPNL3Ye6qBkwU/zpDC2mfhiqQ0N3aGF+8gOs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Dec 21 01:09:08 2025 GMT Not After : Dec 28 01:09:08 2025 GMT Subject: CN=694748b4-984d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:3f:69:93:04:f0:20:1f:41:03:06:bf:9e:ca: ef:1e:ea:c8:0c:e9:a0:33:46:93:a0:13:86:86:1f: 7f:b8:23:dc:91:d6:90:fb:92:e7:bc:8e:b9:f0:dc: b8:9a:e2:63:27:b4:a6:cb:d2:32:9c:8b:c6:3f:db: f6:52:aa:89:83:08:f5:6d:12:b4:08:8c:b8:45:b5: 3d:b1:94:31:df:1e:3b:ad:28:6d:1f:64:5c:8e:25: d3:f2:04:73:32:73:e7:20:fa:06:89:2d:ae:66:3f: 7f:4f:de:fb:e5:2f:76:84:a4:96:7f:00:f7:40:8f: 25:b6:f1:c3:de:50:3f:18:ad:a4:7b:d7:c2:c4:69: 07:db:4c:19:dc:c0:d8:a0:6f:7c:44:a3:41:ec:09: 40:25:1d:8c:77:33:78:1d:8b:ce:54:a5:8d:b1:66: 24:89:85:51:1c:61:0a:23:ed:d4:ab:1f:34:90:af: a8:15:49:b3:84:cc:e2:d6:e1:fe:4f:ee:86:7c:42: 4b:62:52:4f:af:a4:29:c2:ac:45:e3:6c:34:ad:36: 72:3e:aa:59:65:41:1b:13:7b:d4:58:13:f8:17:f6: 47:d1:b5:42:37:98:58:62:7e:3f:cd:8f:da:be:20: 08:a6:49:ee:bf:c3:78:8d:a0:7c:9c:29:32:bf:34: e2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:27:16:B4:77:F1:62:3E:19:BD:E4:4C:A1:84:73:49:2B:65:3C:75 X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:f0:4a:0a:c2:26:30:96:c1:1a:be:2b:14:86:40:e3:da:96: c5:16:90:8b:8a:8f:53:f8:e6:37:53:c1:3c:a2:1d:19:da:39: 44:69:ac:2c:f4:68:52:d7:87:81:01:1d:95:53:a1:d2:7b:a1: 75:ec:73:c6:9b:d0:a6:86:18:f0:7a:fe:84:ca:8f:86:45:cc: 7c:15:ea:83:80:7e:49:8a:e3:44:47:ff:4c:46:f2:92:9f:06: 08:90:9b:bb:ab:88:8e:c8:c2:ad:e3:41:4e:cc:21:bf:5d:84: a9:c2:a9:29:32:74:e2:43:fa:1b:25:82:88:fa:87:41:5a:8f: c8:d0:86:6f:14:72:3d:b3:e4:32:4f:ff:14:e2:61:57:4b:03: 66:41:69:33:1b:04:3f:69:60:ef:5b:54:56:fd:1a:5e:a0:5c: 4c:a4:b7:0f:78:8f:7d:8d:fb:a4:0e:ef:8b:8b:d2:06:c0:ac: ce:9b:b0:35:0e:1e:25:27:44:8e:2c:75:b7:ec:bc:cc:1e:ea: e2:19:0d:5b:2a:2f:4a:f0:e4:29:86:78:db:32:6f:ac:ec:3a: 23:9e:fc:99:55:f8:71:bf:94:e6:c8:7e:d9:2b:de:4d:63:5b: 56:3e:1e:3f:86:b3:bb:24:d9:85:6f:e3:03:df:86:e3:60:7d: 86:7a:03:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjUxMjIxMDEwOTA4WhcNMjUxMjI4MDEwOTA4WjAYMRYwFAYD VQQDDA02OTQ3NDhiNC05ODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkj9pkwTwIB9BAwa/nsrvHurIDOmgM0aToBOGhh9/uCPckdaQ+5LnvI658Ny4 muJjJ7Smy9IynIvGP9v2UqqJgwj1bRK0CIy4RbU9sZQx3x47rShtH2RcjiXT8gRz MnPnIPoGiS2uZj9/T9775S92hKSWfwD3QI8ltvHD3lA/GK2ke9fCxGkH20wZ3MDY oG98RKNB7AlAJR2MdzN4HYvOVKWNsWYkiYVRHGEKI+3Uqx80kK+oFUmzhMzi1uH+ T+6GfEJLYlJPr6QpwqxF42w0rTZyPqpZZUEbE3vUWBP4F/ZH0bVCN5hYYn4/zY/a viAIpknuv8N4jaB8nCkyvzTiIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4nFrR3 8WI+Gb3kTKGEc0krZTx1MB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI8EoKwiYwlsEavisUhkDj2pbFFpCLio9T+OY3U8E8oh0Z2jlEaaws 9GhS14eBAR2VU6HSe6F17HPGm9Cmhhjwev6Eyo+GRcx8FeqDgH5JiuNER/9MRvKS nwYIkJu7q4iOyMKt40FOzCG/XYSpwqkpMnTiQ/obJYKI+odBWo/I0IZvFHI9s+Qy T/8U4mFXSwNmQWkzGwQ/aWDvW1RW/RpeoFxMpLcPeI99jfukDu+Li9IGwKzOm7A1 Dh4lJ0SOLHW37LzMHuriGQ1bKi9K8OQphnjbMm+s7DojnvyZVfhxv5TmyH7ZK95N Y1tWPh4/hrO7JNmFb+MD34bjYH2GegPk -----END CERTIFICATE-----Generated at Sun Dec 21 11:10:07 2025 by rpki-client