This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: bbUiZvYWWxLke6APwAY4XC49NLSxGgav0VGiOj6C7JI= Subject key identifier: 37:8D:80:35:51:79:5A:60:19:37:D5:E6:D2:6F:F5:69:55:06:B2:84 Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 0192 Signing time: Thu 25 Dec 2025 02:36:16 +0000 Manifest this update: Thu 25 Dec 2025 02:36:16 +0000 Manifest next update: Thu 01 Jan 2026 02:36:16 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: mqWC3VOtDWwzpl+XHhex7K9cyn/vvHifhc8nG5nS7Ts=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: 2U1GUUuHz/HspZCAbX8MNYKTWmtmGMuAJscXPNynpMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 02:36:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Dec 25 02:36:16 2025 GMT Not After : Jan 1 02:36:16 2026 GMT Subject: CN=694ca320-6e5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f8:66:d9:f4:d5:86:3a:fc:7b:c4:f6:99:bb: 85:6e:7a:a4:c8:c7:fc:18:57:89:7c:54:df:46:d8: 5c:08:1c:2b:1e:cb:a1:d0:bc:5d:2f:1e:f0:ef:62: 4b:1b:0a:36:3a:61:e6:2e:3a:ee:76:fd:27:ad:21: 15:2b:39:a3:bb:1a:0a:ce:e0:a9:b8:9d:cb:7a:27: cf:9f:d4:a0:b0:38:6e:2d:3b:cf:3b:e4:32:f9:33: 2d:8a:d1:81:01:f9:06:89:33:9f:08:aa:57:2f:f4: 28:c1:2d:ca:51:77:67:23:0b:39:a1:9c:85:ec:6c: 8b:75:aa:59:fd:96:31:f1:0c:d0:b7:5c:f6:df:f3: 79:13:9b:4e:3d:e6:3b:3e:86:98:f7:68:ce:dd:44: b7:13:8e:a9:bf:1a:f8:a5:40:b6:3c:26:af:85:e2: 06:5a:77:5f:94:e8:ef:b3:bf:ff:ef:8f:71:f1:fc: f8:5b:b1:34:5a:5f:ec:17:5b:6e:d2:ec:b0:30:4a: ae:da:92:31:7b:e1:12:a4:ac:54:bc:69:40:fc:a5: a8:f8:cf:81:72:02:70:7d:04:52:90:d1:de:86:a9: 1e:da:51:85:1c:26:ad:d2:b2:bf:65:b7:4b:ed:27: b2:8f:4e:3e:b8:d7:31:a1:cc:d9:5d:3f:9b:ea:1a: c2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8D:80:35:51:79:5A:60:19:37:D5:E6:D2:6F:F5:69:55:06:B2:84 X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:7c:d5:91:40:3e:c4:2b:3a:bd:0c:b2:40:98:41:d1:09:d7: 74:36:d7:da:54:0d:80:79:7f:e1:8d:82:13:db:ec:b6:aa:02: 0a:3d:91:30:1d:c5:c1:37:bc:ab:cc:59:8d:a4:19:66:9a:36: 1d:18:24:d7:6d:43:54:d4:31:31:25:00:30:ba:db:6d:ef:38: cf:47:0c:98:d0:22:ae:86:69:7b:70:0f:d8:e7:52:16:d9:c0: 40:40:64:c6:1c:f0:41:6a:c9:bd:15:db:46:b9:44:16:e7:7c: d3:5b:c6:a1:bf:4f:1c:b8:5a:24:6a:36:73:b9:33:b7:22:df: d3:fb:e5:cc:96:9d:84:9c:63:fd:86:9f:aa:41:34:a9:2a:41: 1f:c3:f7:e0:a2:1a:70:77:72:77:87:7d:a6:59:f0:c8:bf:b2: f9:74:83:d6:39:3b:96:aa:74:04:3d:68:ab:34:e6:53:32:a5: d6:c3:d8:23:7f:a3:67:ec:64:a6:0d:c1:5b:df:03:ce:72:59: 39:5c:c2:d9:34:0f:67:52:49:21:40:b3:87:d9:26:3e:3f:0a: 81:a8:18:51:9b:67:9b:1b:ff:86:98:c9:4d:94:44:8d:2e:2a: 95:23:32:fc:4a:aa:63:ee:c5:2f:fd:21:a7:53:29:08:eb:45: 7a:f1:b4:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjUxMjI1MDIzNjE2WhcNMjYwMTAxMDIzNjE2WjAYMRYwFAYD VQQDDA02OTRjYTMyMC02ZTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/hm2fTVhjr8e8T2mbuFbnqkyMf8GFeJfFTfRthcCBwrHsuh0LxdLx7w72JL Gwo2OmHmLjrudv0nrSEVKzmjuxoKzuCpuJ3LeifPn9SgsDhuLTvPO+Qy+TMtitGB AfkGiTOfCKpXL/QowS3KUXdnIws5oZyF7GyLdapZ/ZYx8QzQt1z23/N5E5tOPeY7 PoaY92jO3US3E46pvxr4pUC2PCavheIGWndflOjvs7//749x8fz4W7E0Wl/sF1tu 0uywMEqu2pIxe+ESpKxUvGlA/KWo+M+BcgJwfQRSkNHehqke2lGFHCat0rK/ZbdL 7Seyj04+uNcxoczZXT+b6hrCpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeNgDVR eVpgGTfV5tJv9WlVBrKEMB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2 OUEwT09IOGh0RzZFM3Axd3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlfNWRQD7EKzq9DLJAmEHRCdd0NtfaVA2AeX/hjYIT2+y2qgIKPZEw HcXBN7yrzFmNpBlmmjYdGCTXbUNU1DExJQAwuttt7zjPRwyY0CKuhml7cA/Y51IW 2cBAQGTGHPBBasm9FdtGuUQW53zTW8ahv08cuFokajZzuTO3It/T++XMlp2EnGP9 hp+qQTSpKkEfw/fgohpwd3J3h32mWfDIv7L5dIPWOTuWqnQEPWirNOZTMqXWw9gj f6Nn7GSmDcFb3wPOclk5XMLZNA9nUkkhQLOH2SY+PwqBqBhRm2ebG/+GmMlNlESN LiqVIzL8Sqpj7sUv/SGnUykI60V68bRq -----END CERTIFICATE-----Generated at Thu Dec 25 13:09:43 2025 by rpki-client