This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: lqPdy/skp9nN/9GaTogm9hQASgMhr9CSXiWHR/r71qM= Subject key identifier: CF:E0:BB:BF:BE:B4:DF:45:B1:8E:C0:6E:94:41:E1:4F:B3:D8:B1:2C Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 0257 Signing time: Wed 31 Dec 2025 00:48:31 +0000 Manifest this update: Wed 31 Dec 2025 00:48:30 +0000 Manifest next update: Wed 07 Jan 2026 00:48:30 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: m5cw4tyQY6e4Clb1/G+ztvDSRD8vhJ+8AMz3qaL6GGQ=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: ih5APdD+Nurby0NtdsRTrQ51xACa7dPtth9SlQyC+ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 00:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0, serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Dec 31 00:48:30 2025 GMT Not After : Jan 7 00:48:30 2026 GMT Subject: CN=695472df-84c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:de:e9:53:2d:83:53:b2:08:ae:0a:1d:6d:c4: dc:f2:8a:e6:6f:99:5d:e7:e6:af:c2:36:b0:bb:14: d9:08:ed:de:97:4a:da:e6:74:67:53:1b:fa:4e:4a: 29:83:16:25:b6:69:cb:d2:ac:c6:60:da:f0:47:d3: 89:a0:57:db:b8:e3:d4:94:5a:e1:fd:26:12:99:20: 6f:b1:a4:95:7d:21:ed:b8:32:c3:eb:46:2e:61:32: 26:39:70:54:e5:53:00:01:d4:4d:5f:18:20:b6:38: dd:8a:1d:c2:af:e2:97:3d:21:a7:03:d6:1e:77:28: ba:b8:8d:99:ea:59:dc:c4:05:85:91:32:8a:65:65: e6:8b:8e:77:6c:6f:2d:93:a1:8d:5d:37:a7:fe:7b: 48:1e:0a:f5:7a:ba:fb:5e:9f:28:8a:fb:b5:f3:93: c9:a2:69:c8:fe:a9:58:90:05:f4:3b:9e:c2:ca:d4: ec:47:b2:e2:5d:39:4d:b8:3a:c0:78:81:7e:fd:fb: a6:1c:d9:d4:a9:f3:23:ca:2b:3f:b3:d1:97:42:53: 70:6a:01:b1:1f:49:06:f8:bd:c4:83:d7:73:77:56: f1:7d:d8:46:f1:b0:3a:8d:8c:23:36:b6:53:b9:d9: 83:4f:b5:9b:34:6c:db:fb:a9:1b:29:7f:45:46:3b: 8a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E0:BB:BF:BE:B4:DF:45:B1:8E:C0:6E:94:41:E1:4F:B3:D8:B1:2C X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:e4:2f:01:7e:75:ec:3d:a9:a2:aa:c8:37:60:c3:d0:59:2d: 52:cf:58:35:ed:24:5b:e0:b6:1a:33:c9:ef:4d:c1:fb:45:95: 94:8a:71:c9:56:80:bf:6e:26:0f:ad:49:f3:de:e2:12:5c:2f: 48:96:16:5d:24:1a:08:27:85:17:43:ba:69:49:0e:83:bf:6c: 76:17:a3:d5:22:a8:1c:16:fe:07:f5:8a:8b:a2:09:95:3d:22: f0:77:10:c0:49:c8:21:1b:c1:fe:02:c0:dc:7f:cf:0c:2c:d4: 49:85:17:b8:64:bd:41:1e:4e:40:2d:57:0e:db:72:b8:73:fb: 84:58:df:92:a0:62:e0:f0:ea:bb:c7:74:66:78:14:d8:10:01: a5:6f:4c:bb:9e:ad:95:05:82:8b:39:68:ba:12:2a:ae:d1:1b: f2:04:9e:9c:d7:3c:3f:00:a1:b8:ee:30:57:fe:21:ba:c2:55: e8:dc:8d:48:43:23:a9:cf:29:99:c0:f3:43:68:6e:70:e4:74: 48:d8:4a:51:98:d1:67:62:a1:ca:aa:e8:33:3e:f7:a8:d2:5c: 52:45:db:9f:71:d1:fc:23:2a:be:da:46:26:e5:8a:f6:94:0c: bf:d0:f6:c2:45:4d:61:98:86:a6:e9:df:66:76:2e:4a:be:89: e0:cd:60:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjUxMjMxMDA0ODMwWhcNMjYwMTA3MDA0ODMwWjAYMRYwFAYD VQQDDA02OTU0NzJkZi04NGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy97pUy2DU7IIrgodbcTc8ormb5ld5+avwjawuxTZCO3el0ra5nRnUxv6Tkop gxYltmnL0qzGYNrwR9OJoFfbuOPUlFrh/SYSmSBvsaSVfSHtuDLD60YuYTImOXBU 5VMAAdRNXxggtjjdih3Cr+KXPSGnA9Yedyi6uI2Z6lncxAWFkTKKZWXmi453bG8t k6GNXTen/ntIHgr1err7Xp8oivu185PJomnI/qlYkAX0O57CytTsR7LiXTlNuDrA eIF+/fumHNnUqfMjyis/s9GXQlNwagGxH0kG+L3Eg9dzd1bxfdhG8bA6jYwjNrZT udmDT7WbNGzb+6kbKX9FRjuKVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/gu7++ tN9FsY7AbpRB4U+z2LEsMB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH5C8BfnXsPamiqsg3YMPQWS1Sz1g17SRb4LYaM8nvTcH7RZWUinHJ VoC/biYPrUnz3uISXC9IlhZdJBoIJ4UXQ7ppSQ6Dv2x2F6PVIqgcFv4H9YqLogmV PSLwdxDAScghG8H+AsDcf88MLNRJhRe4ZL1BHk5ALVcO23K4c/uEWN+SoGLg8Oq7 x3RmeBTYEAGlb0y7nq2VBYKLOWi6Eiqu0RvyBJ6c1zw/AKG47jBX/iG6wlXo3I1I QyOpzymZwPNDaG5w5HRI2EpRmNFnYqHKqugzPveo0lxSRdufcdH8Iyq+2kYm5Yr2 lAy/0PbCRU1hmIam6d9mdi5KvongzWBV -----END CERTIFICATE-----Generated at Wed Dec 31 03:43:09 2025 by rpki-client