This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: +UkYQvQTxAxrlr6VOpydoNZIjnVi/lKnUjSFDVIZrhM= Subject key identifier: 8C:9A:E7:DE:A6:58:47:22:C6:EC:1D:65:4D:9B:89:AD:DB:D0:53:28 Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 34F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 53C2 Signing time: Thu 18 Dec 2025 15:00:28 +0000 Manifest this update: Thu 18 Dec 2025 15:00:28 +0000 Manifest next update: Thu 25 Dec 2025 15:00:28 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: 4ET4Io44hIQ3rR76+2blKdXPW2/vV3TI9APdWRCJoPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Dec 18 15:00:28 2025 GMT Not After : Dec 25 15:00:28 2025 GMT Subject: CN=6944170c-2da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a3:a1:ab:8d:70:d1:44:22:65:2d:27:fa:02: 9b:08:19:c1:56:1b:df:65:a6:0c:75:e1:59:e2:0c: 77:c5:b0:36:13:3f:30:05:5d:f0:5e:15:49:e8:ac: 3c:d4:35:e7:06:1a:67:a4:9a:3e:b1:22:9b:22:49: d1:89:37:c8:c2:d7:e9:8c:00:09:62:51:2f:cd:7d: 3c:b6:4a:7a:28:93:d9:7f:ba:5a:06:5c:cb:cd:29: 3d:91:78:ac:db:e1:5c:87:82:43:01:ce:69:27:cd: 02:59:b2:61:2b:cb:99:d5:fa:1f:78:74:69:b6:fb: ac:d7:43:22:76:bd:cf:14:ff:79:a6:2d:b1:bd:6c: 83:88:36:f9:4e:05:e0:f3:d5:17:03:b9:a2:0b:7e: 4d:df:61:58:70:5e:e9:12:41:f8:da:24:f1:44:2e: 0d:5a:61:3f:3a:5c:63:7b:bd:33:f3:71:e7:a2:45: 0a:e7:ad:75:b7:78:cf:76:6a:c7:b4:2b:b8:45:10: e7:81:38:21:e0:32:b8:43:38:b4:bb:c2:4d:23:0d: da:11:54:4f:21:ba:dd:00:03:f8:64:b1:d5:52:be: 74:7f:a7:34:0f:a5:4e:88:07:59:da:57:18:fe:49: 56:17:45:0d:0f:7d:4a:b3:ab:e7:9d:30:ed:67:20: fe:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:9A:E7:DE:A6:58:47:22:C6:EC:1D:65:4D:9B:89:AD:DB:D0:53:28 X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:ac:a9:28:9c:77:8d:2e:ac:2f:07:7a:e8:92:31:40:c4:33: 25:7b:57:7b:51:a0:c0:53:54:d9:78:aa:a0:9c:6e:27:14:91: 75:d6:63:7f:74:1b:1c:3e:8f:ca:26:d3:06:47:8a:08:18:28: 28:23:c0:a2:40:f9:04:30:37:25:79:55:4b:33:60:f7:7e:56: 31:e0:bc:50:da:05:59:fd:b8:39:3b:21:a5:d8:03:2c:b1:97: 74:61:74:73:d7:4d:5e:cf:65:92:eb:8d:9b:4a:94:8e:f2:00: dd:7b:df:c2:3d:ac:f6:ac:d5:32:92:fe:80:10:bb:2a:14:9b: 6d:1d:76:92:0f:89:49:7f:30:33:02:90:79:5a:84:61:e5:c0: d3:fe:ed:e4:6f:95:58:25:52:ea:85:bd:6f:c1:1f:cb:2d:16: 45:2a:da:22:b3:a0:fe:46:05:7b:77:80:d4:c1:88:a5:9a:fe: b3:13:d1:47:74:11:da:6e:25:75:bc:7f:69:43:4a:fe:d9:ec: 21:08:a5:49:52:cc:fb:6e:e3:3f:09:f1:14:78:7f:d0:e6:da: 2a:b8:a0:27:e5:fe:9b:ef:cb:07:a1:8f:2e:ac:31:b2:06:b1: 31:b4:63:b3:4f:e6:3c:f4:83:0f:e2:02:5e:c0:e0:b5:c9:d1: c1:d4:7d:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjUxMjE4MTUwMDI4WhcNMjUxMjI1MTUwMDI4WjAYMRYwFAYD VQQDDA02OTQ0MTcwYy0yZGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlKOhq41w0UQiZS0n+gKbCBnBVhvfZaYMdeFZ4gx3xbA2Ez8wBV3wXhVJ6Kw8 1DXnBhpnpJo+sSKbIknRiTfIwtfpjAAJYlEvzX08tkp6KJPZf7paBlzLzSk9kXis 2+Fch4JDAc5pJ80CWbJhK8uZ1fofeHRptvus10Midr3PFP95pi2xvWyDiDb5TgXg 89UXA7miC35N32FYcF7pEkH42iTxRC4NWmE/Olxje70z83HnokUK5611t3jPdmrH tCu4RRDngTgh4DK4Qzi0u8JNIw3aEVRPIbrdAAP4ZLHVUr50f6c0D6VOiAdZ2lcY /klWF0UND31Ks6vnnTDtZyD+swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIya596m WEcixuwdZU2bia3b0FMoMB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByrKkonHeNLqwvB3rokjFAxDMle1d7UaDAU1TZeKqgnG4nFJF11mN/ dBscPo/KJtMGR4oIGCgoI8CiQPkEMDcleVVLM2D3flYx4LxQ2gVZ/bg5OyGl2AMs sZd0YXRz101ez2WS642bSpSO8gDde9/CPaz2rNUykv6AELsqFJttHXaSD4lJfzAz ApB5WoRh5cDT/u3kb5VYJVLqhb1vwR/LLRZFKtois6D+RgV7d4DUwYilmv6zE9FH dBHabiV1vH9pQ0r+2ewhCKVJUsz7buM/CfEUeH/Q5toquKAn5f6b78sHoY8urDGy BrExtGOzT+Y89IMP4gJewOC1ydHB1H2j -----END CERTIFICATE-----Generated at Fri Dec 19 23:58:02 2025 by rpki-client