This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft File: Sr2iSte9no2c77NZONCoeIBMYuQ.mft (raw, json) Hash identifier: /v4tCnNV6FW3aLUMgzdW6jXqfkcg6Iyw7S+5UnkvLVk= Subject key identifier: EE:A3:F2:75:35:41:4C:9F:FE:ED:3A:A8:C0:D9:55:36:9D:4A:D7:F1 Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 1108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft Manifest number: 10EE Signing time: Wed 24 Dec 2025 17:01:54 +0000 Manifest this update: Wed 24 Dec 2025 17:01:53 +0000 Manifest next update: Wed 31 Dec 2025 17:01:53 +0000 Files and hashes: 1: Sr2iSte9no2c77NZONCoeIBMYuQ.crl (hash: clXGHRbn7YjQApYfVAWpy074CV7cnRBC0WRQjGrFHuY=) 2: 60E695B6C52A11EE80D54071C4F9AE02.roa (hash: EbivVKsv2oyupGDtV6dF4T5ILVyhqV2iONhViZoJNxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4360 (0x1108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096, serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Dec 24 17:01:53 2025 GMT Not After : Dec 31 17:01:53 2025 GMT Subject: CN=694c1c82-e7fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:48:17:e1:4c:53:f7:45:49:38:2e:95:2d:a8: 83:3a:62:ae:c8:5f:30:3d:d5:65:38:f8:4a:40:2d: dc:be:33:29:bb:30:a7:72:ee:72:e6:1f:59:43:b3: d2:5a:6b:47:2e:24:46:a7:32:5f:1b:ed:98:f5:c9: 45:16:42:54:8d:93:d7:96:04:fd:af:9e:9e:13:66: 56:79:9a:4e:ee:1f:c0:60:ce:3b:7e:9e:43:46:32: eb:ec:e2:b5:88:ae:72:d0:74:44:30:9e:42:67:a9: 1b:29:44:4a:cb:26:7e:f7:10:a0:0d:6c:8a:f0:f3: cb:2a:85:1c:f8:1d:49:c7:df:e4:7e:18:ed:d2:18: 3b:1a:9a:c2:9f:ff:22:41:da:f0:13:fb:4a:f0:d2: a4:13:7f:4a:29:51:5f:e9:12:76:c0:fb:65:3e:b5: 45:0c:8b:39:f6:b1:36:7b:ed:b2:92:57:b5:9e:00: 78:23:05:85:cc:c2:37:b3:66:f5:79:bf:a0:76:d9: 00:01:b2:a9:03:4d:48:fb:d4:ea:f7:9d:7c:e2:cd: 98:53:14:cf:ae:f9:99:a1:cd:95:e3:89:74:d9:09: 90:37:8c:2b:68:08:92:bf:10:ba:ae:09:6b:41:fb: cd:04:0a:51:9d:fd:b1:dd:65:52:28:4d:a2:a8:2f: 5c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A3:F2:75:35:41:4C:9F:FE:ED:3A:A8:C0:D9:55:36:9D:4A:D7:F1 X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:8e:1e:d5:ef:da:78:8a:6d:a5:70:d1:ae:17:bd:60:95:c6: 5b:1c:2d:9d:4c:13:86:7e:b0:3d:a7:b1:cc:b7:07:ab:ae:35: 5e:27:96:2f:20:54:75:0d:ff:cf:5e:5b:62:51:fb:e9:ab:92: 2d:77:dd:a3:b0:15:f2:66:72:98:64:31:ec:90:62:e9:87:2d: 17:09:fa:ee:26:e0:c2:8b:94:6d:2a:30:4b:28:f8:81:2c:bb: 79:ce:bb:a7:04:11:64:fd:40:d0:b7:9e:cc:99:1b:fa:72:f8: a4:9d:09:65:b6:79:d5:e0:16:76:26:c5:d0:5d:02:23:0d:db: 0f:09:40:8d:51:d9:31:c9:ff:be:16:4e:6b:2f:21:93:8b:8f: d1:8e:85:21:01:1d:3b:90:46:0d:b3:f8:dc:f7:13:34:36:11: 5e:70:b3:60:8a:a4:b6:e3:d7:3d:55:b0:5d:50:56:f1:b3:09: 55:3b:c0:35:ec:53:2d:c8:59:60:86:38:35:6b:08:81:07:8c: 80:24:83:8e:4b:a0:11:f0:e8:9c:ef:bb:3b:84:aa:ba:6f:a6: 06:93:6c:ac:f3:3d:7b:d3:43:c3:38:4a:e5:2a:44:3a:4d:ab: f2:e6:50:d8:48:ef:c3:58:c9:ca:f0:13:7d:12:d0:ce:08:0e: c9:48:ac:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjUxMjI0MTcwMTUzWhcNMjUxMjMxMTcwMTUzWjAYMRYwFAYD VQQDDA02OTRjMWM4Mi1lN2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkgX4UxT90VJOC6VLaiDOmKuyF8wPdVlOPhKQC3cvjMpuzCncu5y5h9ZQ7PS WmtHLiRGpzJfG+2Y9clFFkJUjZPXlgT9r56eE2ZWeZpO7h/AYM47fp5DRjLr7OK1 iK5y0HREMJ5CZ6kbKURKyyZ+9xCgDWyK8PPLKoUc+B1Jx9/kfhjt0hg7GprCn/8i QdrwE/tK8NKkE39KKVFf6RJ2wPtlPrVFDIs59rE2e+2ykle1ngB4IwWFzMI3s2b1 eb+gdtkAAbKpA01I+9Tq95184s2YUxTPrvmZoc2V44l02QmQN4wraAiSvxC6rglr QfvNBApRnf2x3WVSKE2iqC9cAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6j8nU1 QUyf/u06qMDZVTadStfxMB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA5Ni8yRkJCNDQwRTMzNDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5v MmM3N05aT05Db2VJQk1ZdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKjh7V79p4im2lcNGuF71glcZbHC2dTBOGfrA9p7HMtwerrjVeJ5Yv IFR1Df/PXltiUfvpq5Itd92jsBXyZnKYZDHskGLphy0XCfruJuDCi5RtKjBLKPiB LLt5zrunBBFk/UDQt57MmRv6cviknQlltnnV4BZ2JsXQXQIjDdsPCUCNUdkxyf++ Fk5rLyGTi4/RjoUhAR07kEYNs/jc9xM0NhFecLNgiqS249c9VbBdUFbxswlVO8A1 7FMtyFlghjg1awiBB4yAJIOOS6AR8Oic77s7hKq6b6YGk2ys8z1700PDOErlKkQ6 Tavy5lDYSO/DWMnK8BN9EtDOCA7JSKz5 -----END CERTIFICATE-----Generated at Fri Dec 26 04:51:32 2025 by rpki-client