This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft File: cwYbqQQBgewK602PbgA_g4_JxI8.mft (raw, json) Hash identifier: YVxmM1EhzdmuMq5yN6s0T4A0Kjub4swc1tGs+iAyts8= Subject key identifier: 59:B5:E7:E9:9B:19:F1:80:C7:60:58:C0:87:02:01:23:25:2F:D8:D9 Authority key identifier: 73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F Certificate issuer: /CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft Manifest number: 014A Signing time: Fri 19 Dec 2025 03:26:25 +0000 Manifest this update: Fri 19 Dec 2025 03:26:25 +0000 Manifest next update: Fri 26 Dec 2025 03:26:25 +0000 Files and hashes: 1: cwYbqQQBgewK602PbgA_g4_JxI8.crl (hash: f+cgX4Blr6JuvOiWrKBu2BefQxEeg7OOZujONAtnvAE=) 2: 7D2E766CE5AF11EE9A0A642FC4F9AE02.roa (hash: Fb0vXPsGENJ9HpaLetk+Rjo+o9pYvcloVY8N7cgyCIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:26:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Validity Not Before: Dec 19 03:26:25 2025 GMT Not After : Dec 26 03:26:25 2025 GMT Subject: CN=6944c5e1-f271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f7:dc:75:23:f3:b6:cd:f1:fe:bb:5a:8d:59: 4b:0f:76:1a:b4:7d:77:02:a5:8f:36:01:ad:8f:f9: 10:e4:64:4c:92:7d:0f:64:7a:ac:7b:0a:88:0e:61: f4:a4:eb:db:b3:32:e9:ba:38:04:9f:75:46:77:6a: 29:e3:b6:49:4f:67:ab:b4:bf:dd:d9:18:4f:d0:c1: 4f:c6:bc:ee:72:95:02:a3:2a:d5:7e:a0:2b:c3:1c: 11:e8:8e:ba:59:55:ba:bd:f7:d1:ff:77:6a:8d:5e: 1b:1c:a2:fd:35:c3:5c:92:bb:e7:44:60:fb:81:63: 71:01:68:71:e2:68:f7:28:6e:fd:9f:6d:93:2c:ed: 6d:6c:38:d2:30:4b:3e:0c:86:7a:31:d9:d2:1c:6a: 3f:66:d4:52:c6:d8:8b:95:a5:cf:06:1e:08:2f:c2: 0a:5b:84:f4:19:24:5d:52:78:6f:90:a6:07:50:e8: 0e:06:20:43:9c:48:3e:67:db:11:4b:39:84:bd:98: 58:64:91:f6:89:bd:ae:77:07:02:c3:90:e7:54:be: bf:8b:3b:18:e0:f1:a3:f8:99:50:8a:1e:c2:e9:e3: b8:32:2d:ac:c4:3a:17:53:43:d0:ca:af:5b:42:05: 27:87:82:62:fa:9a:7d:c6:83:5c:c2:3a:8e:8e:e4: 33:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B5:E7:E9:9B:19:F1:80:C7:60:58:C0:87:02:01:23:25:2F:D8:D9 X509v3 Authority Key Identifier: keyid:73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:64:83:16:5f:68:b5:83:ef:b1:42:63:a0:41:2d:59:b9:f1: eb:73:13:5d:11:c6:35:f7:13:bb:1d:31:4f:0c:e2:d4:89:9e: 55:f1:90:b4:7c:c8:ed:6b:c6:76:73:80:58:0b:06:fc:16:b1: 4b:97:d2:f7:87:a5:74:39:13:20:f1:8b:51:7f:bb:b9:78:27: 03:2a:1d:0b:c6:54:1c:d6:07:6d:84:ef:aa:6f:9d:88:82:ca: 6f:d1:7d:34:04:b5:a8:2e:ff:f9:7d:48:b1:5e:93:f8:9b:60: 48:c2:d1:68:f4:8c:91:a0:5c:d7:8a:8f:23:c2:3c:2d:5e:83: 64:10:9d:ee:4a:75:19:aa:c9:b9:63:58:2f:29:1a:79:7d:88: be:67:14:5e:45:a5:38:68:43:25:32:b4:7e:f9:94:6b:9e:9e: 90:be:dc:47:cb:13:8c:2c:de:c7:43:c6:93:47:65:59:d3:79: 45:67:da:c0:20:53:03:66:cd:4a:73:a1:2d:77:f8:38:f3:0a: 05:86:00:f7:b8:70:c1:c3:d6:d4:78:d9:09:0f:9a:f9:37:26: 3c:d3:1b:09:7f:25:cb:13:9d:44:d3:1f:b6:b9:b0:8e:1b:07: e0:ef:d1:58:58:e8:47:57:7e:7b:03:27:84:88:de:d1:6d:68: 70:56:45:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKDczMDYxQkE5MDQwMTgxRUMwQUVCNEQ4RjZFMDAzRjgz OEZDOUM0OEYwHhcNMjUxMjE5MDMyNjI1WhcNMjUxMjI2MDMyNjI1WjAYMRYwFAYD VQQDDA02OTQ0YzVlMS1mMjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/fcdSPzts3x/rtajVlLD3YatH13AqWPNgGtj/kQ5GRMkn0PZHqsewqIDmH0 pOvbszLpujgEn3VGd2op47ZJT2ertL/d2RhP0MFPxrzucpUCoyrVfqArwxwR6I66 WVW6vffR/3dqjV4bHKL9NcNckrvnRGD7gWNxAWhx4mj3KG79n22TLO1tbDjSMEs+ DIZ6MdnSHGo/ZtRSxtiLlaXPBh4IL8IKW4T0GSRdUnhvkKYHUOgOBiBDnEg+Z9sR SzmEvZhYZJH2ib2udwcCw5DnVL6/izsY4PGj+JlQih7C6eO4Mi2sxDoXU0PQyq9b QgUnh4Ji+pp9xoNcwjqOjuQzJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFm15+mb GfGAx2BYwIcCASMlL9jZMB8GA1UdIwQYMBaAFHMGG6kEAYHsCutNj24AP4OPycSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9ENEYzREI5RUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdld0s2MDJQYmdBX2c0X0p4 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N3WWJxUVFCZ2V3SzYwMlBiZ0FfZzRfSnhJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9ENEYzREI5RUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdl d0s2MDJQYmdBX2c0X0p4STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnZIMWX2i1g++xQmOgQS1ZufHrcxNdEcY19xO7HTFPDOLUiZ5V8ZC0 fMjta8Z2c4BYCwb8FrFLl9L3h6V0ORMg8YtRf7u5eCcDKh0LxlQc1gdthO+qb52I gspv0X00BLWoLv/5fUixXpP4m2BIwtFo9IyRoFzXio8jwjwtXoNkEJ3uSnUZqsm5 Y1gvKRp5fYi+ZxReRaU4aEMlMrR++ZRrnp6QvtxHyxOMLN7HQ8aTR2VZ03lFZ9rA IFMDZs1Kc6Etd/g48woFhgD3uHDBw9bUeNkJD5r5NyY80xsJfyXLE51E0x+2ubCO Gwfg79FYWOhHV357AyeEiN7RbWhwVkWG -----END CERTIFICATE-----Generated at Fri Dec 19 19:24:36 2025 by rpki-client