This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: EiUggqzPY1HFNeAObufqQYLvTEQ4jLsL4xPpayPtJ6c= Subject key identifier: 7C:86:8B:62:35:BC:D8:C2:11:3A:8B:AE:AE:7E:73:37:95:DF:4B:D8 Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: E0 Signing time: Sun 21 Dec 2025 04:42:54 +0000 Manifest this update: Sun 21 Dec 2025 04:42:54 +0000 Manifest next update: Sun 28 Dec 2025 04:42:54 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: t9ddrZeRt1740dp9eNnvXGQxvsuMHR8sK1+x/6gSkJA=) 2: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: Z/zZPYkWKXvraJfJSL/aeXz0Ni43Av6pEICr2Ba1ixA=) 3: B2D0D768766011F08F4AF05AC4F9AE02.roa (hash: 9nhYmTgkqcOjR0NO2+wz26tomnd/zZ4DybayX4g1JJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Dec 21 04:42:54 2025 GMT Not After : Dec 28 04:42:54 2025 GMT Subject: CN=69477ace-f26d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:97:fb:39:6f:89:b5:33:a0:75:6e:82:af:f1: 9d:4b:a4:c3:d7:23:90:54:5d:03:f5:da:5e:99:e9: 78:9f:65:04:6a:99:bf:4f:37:fd:79:5c:b2:a7:0e: f7:c4:cc:05:2f:b7:05:3d:a7:3f:60:10:bc:bb:98: b6:8b:67:70:1a:71:08:cc:81:a6:1a:3a:84:ec:75: 3e:88:3d:9c:9f:b5:c8:3a:9b:ae:b8:d0:68:82:3b: 36:65:1b:fd:90:07:68:78:d4:a0:68:a1:7d:c1:7d: 9e:56:70:80:1d:a2:aa:94:be:21:0e:c4:e8:3b:3d: 6a:49:29:1b:c1:af:76:a1:b2:ba:1e:b9:90:1a:4a: fa:14:82:c0:62:3b:be:b7:98:0d:77:28:97:8f:92: fe:4f:bf:71:d8:45:15:1e:95:ba:4a:ea:be:6d:11: dd:42:23:79:77:7c:c3:c5:17:dc:fd:cb:67:db:10: 1a:cc:16:2d:bd:09:63:0b:67:43:3a:34:e2:94:c4: 7b:c9:b6:cd:ec:63:c0:08:fc:09:aa:2f:00:87:3c: eb:65:82:4d:3f:8f:cd:44:22:3d:8e:24:c8:3a:2d: 7f:ce:95:ad:08:2a:62:40:4d:41:44:ca:d1:e9:c8: 5b:b0:e5:c8:d7:d9:39:1a:3c:2f:ef:26:88:9f:d6: 9f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:86:8B:62:35:BC:D8:C2:11:3A:8B:AE:AE:7E:73:37:95:DF:4B:D8 X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:90:a7:57:26:0d:4c:9e:56:e7:47:d5:e5:19:61:a3:56:8e: 72:85:b5:05:47:2f:1f:7e:b5:19:2a:d4:55:28:3d:16:63:c1: a6:f1:f8:56:0d:ea:f2:c8:54:1f:15:6b:eb:49:a4:54:91:43: 4b:1c:72:80:17:51:60:c6:af:98:4d:87:b3:a9:d7:c4:c4:08: e2:9e:65:28:d4:08:dd:48:0d:33:1a:33:24:2e:c4:56:b7:dd: 55:bf:79:f2:98:6a:ce:59:7b:de:01:f5:99:37:16:e2:85:80: 51:1f:36:01:c2:bb:2e:b3:88:8e:a9:6b:2b:82:67:d4:d0:0a: e5:92:44:3f:1e:01:95:b7:e8:47:be:44:87:28:e0:eb:ee:52: d3:b3:8e:93:d2:97:35:98:0b:bf:c4:ea:6e:54:e2:75:d5:fd: 0d:de:ca:10:fb:09:ab:e6:29:3a:4c:eb:88:23:22:a5:1b:18: 23:c2:96:ca:9b:4c:84:0a:28:83:5b:3c:54:f3:a5:c2:69:4a: 5e:d5:2f:9f:62:d3:e1:50:d2:72:56:87:80:fd:28:34:2c:07: 5e:5b:a1:94:5b:dd:b1:73:e5:f6:e2:64:4d:57:4e:0b:22:ce: 37:69:32:37:ce:ba:db:17:80:d2:0c:f6:c8:fd:b3:bd:b8:85: ec:c1:24:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFEQUYxMTAvBgNVBAUTKDY4QzJCNTg4RDE2ODVBNTg3NDJEOEEyRTE4ODg2NURC MzExMDNDRjcwHhcNMjUxMjIxMDQ0MjU0WhcNMjUxMjI4MDQ0MjU0WjAYMRYwFAYD VQQDDA02OTQ3N2FjZS1mMjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpf7OW+JtTOgdW6Cr/GdS6TD1yOQVF0D9dpemel4n2UEapm/Tzf9eVyypw73 xMwFL7cFPac/YBC8u5i2i2dwGnEIzIGmGjqE7HU+iD2cn7XIOpuuuNBogjs2ZRv9 kAdoeNSgaKF9wX2eVnCAHaKqlL4hDsToOz1qSSkbwa92obK6HrmQGkr6FILAYju+ t5gNdyiXj5L+T79x2EUVHpW6Suq+bRHdQiN5d3zDxRfc/ctn2xAazBYtvQljC2dD OjTilMR7ybbN7GPACPwJqi8AhzzrZYJNP4/NRCI9jiTIOi1/zpWtCCpiQE1BRMrR 6chbsOXI19k5Gjwv7yaIn9afxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyGi2I1 vNjCETqLrq5+czeV30vYMB8GA1UdIwQYMBaAFGjCtYjRaFpYdC2KLhiIZdsxEDz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQURBRi84NzE1OUM5NjhD RjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1dsaDBMWW91R0lobDJ6RVFQ UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QURBRi84NzE1OUM5NjhDRjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1ds aDBMWW91R0lobDJ6RVFQUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDkKdXJg1MnlbnR9XlGWGjVo5yhbUFRy8ffrUZKtRVKD0WY8Gm8fhW DeryyFQfFWvrSaRUkUNLHHKAF1Fgxq+YTYezqdfExAjinmUo1AjdSA0zGjMkLsRW t91Vv3nymGrOWXveAfWZNxbihYBRHzYBwrsus4iOqWsrgmfU0ArlkkQ/HgGVt+hH vkSHKODr7lLTs46T0pc1mAu/xOpuVOJ11f0N3soQ+wmr5ik6TOuIIyKlGxgjwpbK m0yECiiDWzxU86XCaUpe1S+fYtPhUNJyVoeA/Sg0LAdeW6GUW92xc+X24mRNV04L Is43aTI3zrrbF4DSDPbI/bO9uIXswSR5 -----END CERTIFICATE-----Generated at Sun Dec 21 12:00:55 2025 by rpki-client