This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: lYvrpC4mDMzvpIVyhJmC/D0Oilm80fMK5q7AoxIQTYs= Subject key identifier: 68:00:31:D1:2B:75:E6:F2:A0:89:8B:22:FD:2E:E3:DE:20:65:9F:A3 Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 02F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 02F0 Signing time: Fri 19 Dec 2025 00:28:50 +0000 Manifest this update: Fri 19 Dec 2025 00:28:50 +0000 Manifest next update: Fri 26 Dec 2025 00:28:50 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: xTTPj+TNlZuDxvVjt6CiyPw5YPUqjH0Y2IprwVyxEsE=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: 2ErCU/J+DpquU4qqc3TwXCkDxCXKfSH2bvg7aekBShk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 757 (0x2f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Dec 19 00:28:50 2025 GMT Not After : Dec 26 00:28:50 2025 GMT Subject: CN=69449c42-671b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3c:8b:cc:f2:1b:ae:f8:57:ad:dc:f0:8a:d7: c8:6a:ee:fb:f8:07:3f:bc:12:f7:56:3e:3a:96:5a: 41:6c:97:33:7d:7c:a3:44:e8:bb:51:d0:6e:08:2c: 51:85:3d:8e:1b:b0:ef:62:45:c4:7d:83:2d:23:e3: a5:14:50:46:26:b4:d7:10:5a:ca:39:f7:7b:03:37: a5:fe:99:7d:2d:d1:b9:95:56:bd:7c:4b:2a:4e:41: 6f:2b:d1:21:77:d0:95:da:c3:14:7e:01:36:d2:4e: ba:89:ea:8f:62:a4:e5:b8:6e:b1:53:f2:47:fd:62: 23:8d:5d:bf:0e:bf:b2:40:30:40:2a:92:78:26:87: c8:3c:e4:ea:ff:b3:11:c1:af:27:a8:13:5b:77:f6: 36:3b:d9:f5:8b:02:11:3b:e1:e9:a9:89:e0:0c:08: 37:6b:1c:46:ee:73:48:9d:95:39:4c:06:72:1e:da: 9e:39:e3:c9:bb:0f:73:8c:f9:23:b4:24:d0:f3:04: 21:05:07:72:2f:42:54:e5:ca:a4:dd:ef:2b:e7:5b: 60:25:80:7a:7b:ec:97:c8:50:1b:ac:42:2b:b8:ba: 58:92:bc:2f:a5:3e:c0:7d:7e:50:fe:90:55:56:5b: 79:b0:ce:a7:b4:79:74:b5:31:1e:d5:f5:16:bb:0c: 71:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:00:31:D1:2B:75:E6:F2:A0:89:8B:22:FD:2E:E3:DE:20:65:9F:A3 X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:9a:a9:ef:1a:32:25:e9:3a:9e:65:c2:77:0e:d0:52:f6:d6: fa:53:9a:60:e4:e5:ac:9c:af:d2:63:85:16:65:68:93:74:1f: 70:60:f4:c0:a4:31:50:00:ed:81:dc:b2:a9:c9:10:15:73:76: a0:10:08:2d:cb:16:a3:5f:70:02:77:d7:48:e2:78:d5:08:72: 20:fa:0a:3b:09:2e:bd:e3:37:f5:39:fe:64:b7:b1:29:d0:ce: 95:1b:5f:45:bc:70:c7:45:21:56:28:71:8b:a9:a8:c2:42:86: d1:4a:5d:10:fb:f1:4a:4b:fd:a9:ac:cd:db:0b:ec:f6:89:ea: 90:f2:4d:7a:6f:e2:9c:04:90:c7:d5:64:76:63:aa:ca:16:e0: 53:61:d5:e4:39:7a:0a:2a:48:a5:93:cc:d4:92:06:a2:3b:a5: 86:a0:4d:f1:6d:e6:01:e8:cb:8e:9e:af:85:9e:42:77:c7:fc: e7:f2:6d:8a:57:e2:21:94:78:d7:e3:f9:62:99:58:18:a9:de: b0:d3:23:6a:f1:16:90:fd:44:c7:73:e6:e2:5a:bb:51:12:f0: 51:9f:ac:b3:3c:6b:e1:f4:32:f6:b3:27:69:dc:43:75:59:18: 80:ee:31:e8:25:02:52:a7:eb:40:db:70:fd:77:b0:13:4d:05: 67:1e:16:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjUxMjE5MDAyODUwWhcNMjUxMjI2MDAyODUwWjAYMRYwFAYD VQQDDA02OTQ0OWM0Mi02NzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjyLzPIbrvhXrdzwitfIau77+Ac/vBL3Vj46llpBbJczfXyjROi7UdBuCCxR hT2OG7DvYkXEfYMtI+OlFFBGJrTXEFrKOfd7Azel/pl9LdG5lVa9fEsqTkFvK9Eh d9CV2sMUfgE20k66ieqPYqTluG6xU/JH/WIjjV2/Dr+yQDBAKpJ4JofIPOTq/7MR wa8nqBNbd/Y2O9n1iwIRO+HpqYngDAg3axxG7nNInZU5TAZyHtqeOePJuw9zjPkj tCTQ8wQhBQdyL0JU5cqk3e8r51tgJYB6e+yXyFAbrEIruLpYkrwvpT7AfX5Q/pBV Vlt5sM6ntHl0tTEe1fUWuwxxtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgAMdEr debyoImLIv0u494gZZ+jMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYmqnvGjIl6TqeZcJ3DtBS9tb6U5pg5OWsnK/SY4UWZWiTdB9wYPTA pDFQAO2B3LKpyRAVc3agEAgtyxajX3ACd9dI4njVCHIg+go7CS694zf1Of5kt7Ep 0M6VG19FvHDHRSFWKHGLqajCQobRSl0Q+/FKS/2prM3bC+z2ieqQ8k16b+KcBJDH 1WR2Y6rKFuBTYdXkOXoKKkilk8zUkgaiO6WGoE3xbeYB6MuOnq+FnkJ3x/zn8m2K V+IhlHjX4/limVgYqd6w0yNq8RaQ/UTHc+biWrtREvBRn6yzPGvh9DL2sydp3EN1 WRiA7jHoJQJSp+tA23D9d7ATTQVnHhYu -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:03 2025 by rpki-client