This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft File: toNIsZBwY8BERWnOsijqUkbQLxk.mft (raw, json) Hash identifier: MV1Mq0t/WZ4VMgyzmDZmJPpONKJxcmgTYUUHqC6oWvQ= Subject key identifier: 0C:4E:34:D2:FE:A6:AA:98:1B:11:FF:BA:6B:BD:62:56:78:7B:E6:9D Authority key identifier: B6:83:48:B1:90:70:63:C0:44:45:69:CE:B2:28:EA:52:46:D0:2F:19 Certificate issuer: /CN=A91B3CB5/serialNumber=B68348B1907063C0444569CEB228EA5246D02F19 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/toNIsZBwY8BERWnOsijqUkbQLxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft Manifest number: 15 Signing time: Thu 18 Dec 2025 18:03:18 +0000 Manifest this update: Thu 18 Dec 2025 18:03:18 +0000 Manifest next update: Thu 25 Dec 2025 18:03:18 +0000 Files and hashes: 1: toNIsZBwY8BERWnOsijqUkbQLxk.crl (hash: wdmv4NbCxGLrDpn6uCOzx0Oojj7pyWR9E6nh/BTbkro=) 2: 3AF6CDE4CE7E11F0BDD3E452C4F9AE02.roa (hash: ubVdeZPf6OneoRvNqezniKDm+qaCd4tbWJlkLoTSud4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.crl rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/toNIsZBwY8BERWnOsijqUkbQLxk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CB5, serialNumber=B68348B1907063C0444569CEB228EA5246D02F19 Validity Not Before: Dec 18 18:03:18 2025 GMT Not After : Dec 25 18:03:18 2025 GMT Subject: CN=694441e6-646c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5d:5f:b1:ba:3e:86:d8:49:1d:db:06:6b:27: 07:dc:5f:e8:40:16:25:ab:79:e5:f1:c3:09:f4:22: 1d:db:f3:ef:60:ae:ea:c3:5e:ab:84:fd:56:9f:6c: 82:a4:86:60:4f:a1:78:0d:f3:9d:f2:ca:a3:cf:f6: a9:d0:dd:c3:2c:f3:f6:68:11:19:27:07:ef:f4:56: 5d:46:51:23:e1:8d:c2:b8:5b:cb:72:d9:f5:03:dd: 8c:df:1b:91:bc:92:ec:09:2a:e6:0c:8f:40:1b:9e: 3b:55:ad:95:21:87:1e:65:b5:e6:50:73:9c:b0:19: 78:3e:8f:3b:b4:42:9d:53:18:dd:b6:ee:07:bf:a3: d6:34:02:09:b7:9c:db:ac:6d:7c:a7:32:80:85:d7: 9b:5b:cd:ba:00:16:89:8f:e5:80:3c:e1:8d:49:b4: 1e:9b:89:0d:2e:95:94:1d:f6:42:85:51:4e:31:15: ed:35:6c:2e:b8:76:66:64:ed:db:cd:d1:07:71:b4: 92:5d:22:56:3f:1d:c7:43:28:2b:79:5b:83:5a:04: a1:d0:ed:e1:ee:5e:6a:f7:b1:db:42:31:11:19:c8: 3e:03:c4:f1:48:76:d9:86:40:1f:49:f0:31:a2:64: 8d:6e:e9:38:08:9e:97:b3:0f:d4:16:8c:84:cf:86: d8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:4E:34:D2:FE:A6:AA:98:1B:11:FF:BA:6B:BD:62:56:78:7B:E6:9D X509v3 Authority Key Identifier: keyid:B6:83:48:B1:90:70:63:C0:44:45:69:CE:B2:28:EA:52:46:D0:2F:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/toNIsZBwY8BERWnOsijqUkbQLxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:c0:de:5e:71:e4:63:bd:d1:a6:18:39:c4:cc:42:ef:6b:5f: bb:cb:3c:10:60:dc:ee:84:f7:7e:ef:1b:0d:0a:e1:73:03:ba: 08:b2:9f:00:42:ec:8d:c0:85:59:d5:ef:d2:5f:8f:2e:9c:0e: 45:0d:f8:7f:2f:4a:0b:77:62:55:df:bb:8c:ad:8b:fe:88:51: 86:3d:32:d8:c4:2d:68:db:03:d8:b2:c0:9d:6a:01:a5:c2:5d: 9a:19:20:6b:b3:81:81:a8:4d:f3:73:a9:07:e0:1a:70:e0:c2: 83:b3:06:43:67:ea:26:ed:d4:3f:19:55:11:f3:e7:a2:d3:89: 20:3d:bd:e3:38:45:f7:62:fe:12:c5:80:73:25:3f:ca:b6:58: a9:ac:47:ce:97:aa:93:d4:b6:c4:b3:3d:de:df:95:e6:55:04: d0:26:c5:a7:df:54:27:0e:e2:de:b2:59:25:8b:f3:bf:7e:ee: 38:d3:dd:6f:2e:ae:e2:d7:3d:cc:2b:80:47:d9:ba:58:88:fb: ab:1b:e8:74:63:a6:1b:5f:e0:a9:88:ae:5d:d9:21:17:e1:63: e8:c0:9d:98:dd:80:0f:9b:7c:1c:a4:51:2e:76:f4:e8:37:01: e3:0c:3f:2b:40:10:20:0b:12:20:1f:e9:98:94:2c:b3:30:ac: 15:7e:9b:79 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC M0NCNTExMC8GA1UEBRMoQjY4MzQ4QjE5MDcwNjNDMDQ0NDU2OUNFQjIyOEVBNTI0 NkQwMkYxOTAeFw0yNTEyMTgxODAzMThaFw0yNTEyMjUxODAzMThaMBgxFjAUBgNV BAMMDTY5NDQ0MWU2LTY0NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqXV+xuj6G2Ekd2wZrJwfcX+hAFiWreeXxwwn0Ih3b8+9grurDXquE/VafbIKk hmBPoXgN853yyqPP9qnQ3cMs8/ZoERknB+/0Vl1GUSPhjcK4W8ty2fUD3YzfG5G8 kuwJKuYMj0AbnjtVrZUhhx5lteZQc5ywGXg+jzu0Qp1TGN227ge/o9Y0Agm3nNus bXynMoCF15tbzboAFomP5YA84Y1JtB6biQ0ulZQd9kKFUU4xFe01bC64dmZk7dvN 0QdxtJJdIlY/HcdDKCt5W4NaBKHQ7eHuXmr3sdtCMREZyD4DxPFIdtmGQB9J8DGi ZI1u6TgInpezD9QWjITPhtjDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDE400v6m qpgbEf+6a71iVnh75p0wHwYDVR0jBBgwFoAUtoNIsZBwY8BERWnOsijqUkbQLxkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzQ0I1L0VEMjI1NTMyQzQz NDExRjBBODI3QTU3REM0RjlBRTAyL3RvTklzWkJ3WThCRVJXbk9zaWpxVWtiUUx4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdG9OSXNaQndZOEJFUlduT3NpanFVa2JRTHhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz Q0I1L0VEMjI1NTMyQzQzNDExRjBBODI3QTU3REM0RjlBRTAyL3RvTklzWkJ3WThC RVJXbk9zaWpxVWtiUUx4ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABPA3l5x5GO90aYYOcTMQu9rX7vLPBBg3O6E937vGw0K4XMDugiynwBC 7I3AhVnV79Jfjy6cDkUN+H8vSgt3YlXfu4yti/6IUYY9MtjELWjbA9iywJ1qAaXC XZoZIGuzgYGoTfNzqQfgGnDgwoOzBkNn6ibt1D8ZVRHz56LTiSA9veM4Rfdi/hLF gHMlP8q2WKmsR86XqpPUtsSzPd7fleZVBNAmxaffVCcO4t6yWSWL879+7jjT3W8u ruLXPcwrgEfZuliI+6sb6HRjphtf4KmIrl3ZIRfhY+jAnZjdgA+bfBykUS529Og3 AeMMPytAECALEiAf6ZiULLMwrBV+m3k= -----END CERTIFICATE-----Generated at Sat Dec 20 00:50:38 2025 by rpki-client