This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: nVC1UaLVa7rV9i800c/3TaPzAKoWQrPhqQ+oL7Umy90= Subject key identifier: 6E:5D:72:21:D1:63:C9:99:E0:03:4A:9C:B9:92:ED:BE:45:7A:E6:DC Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 0965 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 095E Signing time: Thu 18 Dec 2025 19:40:44 +0000 Manifest this update: Thu 18 Dec 2025 19:40:44 +0000 Manifest next update: Thu 25 Dec 2025 19:40:44 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: 502xTsWb+r0VbCxy8b4y/efy3IuHQ86VyrSTMkzDr8o=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2405 (0x965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Dec 18 19:40:44 2025 GMT Not After : Dec 25 19:40:44 2025 GMT Subject: CN=694458bc-ac5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:64:61:57:fd:75:d1:ba:18:0e:47:93:7a:15: e8:b2:49:21:ea:0e:07:07:37:ca:41:8a:63:f9:ea: bd:15:e3:16:71:d5:57:97:46:da:cf:82:e4:74:93: 1f:04:f0:f7:76:30:f4:46:5d:3e:29:ef:fc:3b:b2: b8:e7:8f:71:d0:b6:c5:9e:db:0d:a0:5d:56:e5:c9: 00:d7:07:8a:1d:74:f0:c2:c0:dc:6e:e8:61:1c:5e: 2f:d3:fc:35:d4:b4:75:8a:8b:a6:5e:6f:ec:d1:24: de:f6:31:a8:28:36:a2:7f:ab:d1:9d:a2:4d:d7:ef: 22:c5:90:54:3f:c8:70:fe:b8:a7:64:d5:7a:3a:70: 1e:be:94:be:b3:0a:f1:e9:f1:cd:42:ff:7f:8e:88: 52:55:2a:04:c8:ad:00:54:be:e1:65:54:38:89:47: 86:a9:2a:3d:45:62:1e:96:62:9a:37:81:4a:8d:42: b8:66:3c:83:bd:c0:4d:ae:db:f7:a9:29:79:41:67: d5:ec:5c:28:b0:20:da:6a:fd:61:d1:63:7c:57:0a: f0:3a:eb:f2:a8:f2:e5:00:b1:3c:4f:e0:d0:bd:b3: ce:88:19:eb:44:15:f3:ef:70:d2:8e:55:4c:9d:82: 2a:b4:2d:c5:34:2e:1b:b4:85:54:23:4b:d4:71:1c: ce:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:5D:72:21:D1:63:C9:99:E0:03:4A:9C:B9:92:ED:BE:45:7A:E6:DC X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:63:68:d4:9f:30:7c:fb:08:37:57:16:6a:36:ca:26:89:6e: 0c:2c:9a:61:e7:ea:4b:b3:6b:7e:d0:1a:60:53:41:d1:46:f0: eb:62:d3:90:7c:2e:99:85:41:f1:48:86:b7:80:47:f8:81:3a: 29:39:3b:52:dd:0e:ee:e8:b7:cd:6b:64:b8:29:89:31:1d:b8: 9d:90:cc:5a:7f:2b:c3:4b:bf:80:fe:5d:8b:58:7a:77:48:17: 46:af:fa:08:30:b2:6c:69:9b:c1:d7:ce:52:09:ec:82:3b:0c: 49:24:23:15:99:2a:92:8b:7c:a2:68:9a:c2:dc:7a:f5:f0:bd: 7d:d7:30:fa:3b:51:05:46:d7:ed:13:03:60:17:ed:8f:2f:48: 2f:f3:78:b7:bd:74:76:5b:58:52:d7:90:8a:aa:98:2d:f4:49: 13:1a:7c:15:2a:ab:fe:10:c8:92:6a:24:ca:af:cd:d6:7c:d8: 6e:d0:22:7a:32:6d:93:59:d4:3d:1a:3b:d3:ba:68:5a:92:46: 80:3e:41:ab:99:1f:01:ce:13:ff:cb:a7:26:09:a4:10:fc:29: f3:b1:f6:6d:f1:48:b9:fa:5c:3c:ad:a5:a4:cb:cd:35:43:cb: 45:16:fc:79:20:61:a2:41:76:47:05:ff:ce:23:eb:7a:a8:dd: ed:49:f2:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUxMjE4MTk0MDQ0WhcNMjUxMjI1MTk0MDQ0WjAYMRYwFAYD VQQDDA02OTQ0NThiYy1hYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WRhV/110boYDkeTehXoskkh6g4HBzfKQYpj+eq9FeMWcdVXl0baz4LkdJMf BPD3djD0Rl0+Ke/8O7K4549x0LbFntsNoF1W5ckA1weKHXTwwsDcbuhhHF4v0/w1 1LR1ioumXm/s0STe9jGoKDaif6vRnaJN1+8ixZBUP8hw/rinZNV6OnAevpS+swrx 6fHNQv9/johSVSoEyK0AVL7hZVQ4iUeGqSo9RWIelmKaN4FKjUK4ZjyDvcBNrtv3 qSl5QWfV7FwosCDaav1h0WN8VwrwOuvyqPLlALE8T+DQvbPOiBnrRBXz73DSjlVM nYIqtC3FNC4btIVUI0vUcRzOAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5dciHR Y8mZ4ANKnLmS7b5FeubcMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaY2jUnzB8+wg3VxZqNsomiW4MLJph5+pLs2t+0BpgU0HRRvDrYtOQ fC6ZhUHxSIa3gEf4gTopOTtS3Q7u6LfNa2S4KYkxHbidkMxafyvDS7+A/l2LWHp3 SBdGr/oIMLJsaZvB185SCeyCOwxJJCMVmSqSi3yiaJrC3Hr18L191zD6O1EFRtft EwNgF+2PL0gv83i3vXR2W1hS15CKqpgt9EkTGnwVKqv+EMiSaiTKr83WfNhu0CJ6 Mm2TWdQ9GjvTumhakkaAPkGrmR8BzhP/y6cmCaQQ/CnzsfZt8Ui5+lw8raWky801 Q8tFFvx5IGGiQXZHBf/OI+t6qN3tSfIz -----END CERTIFICATE-----Generated at Fri Dec 19 18:57:27 2025 by rpki-client