This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: Ue+BgisBJPS/mIHt5/HbqInbJ5W6nfzLoWxJOabANPs= Subject key identifier: C9:D6:CE:24:3B:65:63:2D:87:F5:06:17:FB:60:07:09:9E:E0:DE:89 Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0BF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0BE4 Signing time: Sat 20 Dec 2025 18:27:25 +0000 Manifest this update: Sat 20 Dec 2025 18:27:24 +0000 Manifest next update: Sat 27 Dec 2025 18:27:24 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: jvgI8nJap+Xh3uWGhgGozV5U5JkdUnM+veHlPheewms=) 2: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: vucacXYSTLw3pjicQM0MXD2U1//BsbEO3gpX4wVcXB8=) 3: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: mo/NLmT3qTw906fWZIYD+HCMnaLWUZhtdPeHn3oqJ6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:27:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3058 (0xbf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Dec 20 18:27:24 2025 GMT Not After : Dec 27 18:27:24 2025 GMT Subject: CN=6946ea8d-fcd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bd:f9:66:58:d2:00:d5:6d:66:4b:aa:96:63: 50:47:6a:ad:00:e4:79:a4:1b:8c:cb:82:22:cc:b1: 0c:de:26:f5:c2:a3:78:51:be:e0:8e:5a:08:71:9b: aa:d7:61:44:3d:b6:62:bb:a2:ce:66:50:d5:b3:b7: 8a:63:99:f7:6b:b0:fa:2e:aa:bf:24:20:9e:2a:f1: aa:f1:78:ad:a3:6a:7f:8e:7e:b5:4a:c0:63:5b:ba: 34:f8:03:83:d4:78:93:ae:fd:0f:ea:66:10:11:c6: 0f:8e:ad:ae:a8:fd:c8:c5:6a:2c:13:99:83:1a:a3: b6:1a:15:08:18:8f:08:df:47:8d:cb:c0:51:6f:2d: ed:39:87:cd:f8:d9:8b:c7:1b:0f:33:4b:80:ab:62: 15:51:a7:c9:a5:fe:d0:e5:dc:47:74:f3:47:ac:f6: b1:fa:ad:d2:99:55:51:f2:1c:f3:19:75:de:bc:67: 3a:e8:94:2d:64:9c:54:d5:dc:05:0b:5c:60:62:a6: 49:62:e7:59:9c:ff:0a:59:fb:26:14:13:4e:0e:30: 4c:97:2a:5d:d9:12:c5:86:ae:77:14:e9:78:69:70: eb:a2:01:49:e6:d0:61:ab:fa:0d:84:4d:73:e5:96: 8a:48:f0:6f:11:46:2f:92:b8:ff:56:51:78:83:de: 71:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:D6:CE:24:3B:65:63:2D:87:F5:06:17:FB:60:07:09:9E:E0:DE:89 X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:8a:39:66:46:42:a2:5a:1c:7d:7e:e8:6b:62:eb:6e:21:45: d9:7f:e3:61:ed:03:e2:17:d6:5a:b5:e6:e4:44:6e:56:a1:12: 5f:80:68:c8:88:7b:13:63:4d:50:94:ae:af:6d:e4:57:33:48: 30:6e:c7:b2:aa:a0:fa:89:3d:d5:b7:fd:87:87:05:81:69:67: 3b:00:5a:1e:3a:cb:f6:22:7f:e5:ba:ff:1c:73:76:b6:e8:b2: ec:0d:a0:24:32:d5:23:27:7c:fe:e5:29:d6:f1:2f:97:3e:f8: a0:02:27:23:bb:0c:c0:bd:c4:53:9b:d5:d0:de:d2:b7:35:12: a0:0e:9e:c0:4d:43:d2:af:97:16:02:64:2d:d6:89:bb:d8:b1: 9e:d5:69:6e:d9:82:75:88:52:c5:e5:bd:92:91:ff:3d:df:2d: 13:af:4c:82:45:a4:77:94:fa:f7:c6:a7:75:78:d4:25:af:1a: 76:80:f8:81:5b:5f:92:90:2a:c1:34:20:66:22:33:a1:f1:6d: 16:61:71:e4:ab:5d:c7:c9:d3:15:b2:e8:f9:fd:77:ba:b1:b6: a3:8f:67:6f:b9:92:38:1e:48:be:00:a1:00:ac:8d:37:4f:fa: e8:b1:4d:42:64:5b:1e:a6:f5:7b:09:6b:06:58:d5:18:ea:3c: e0:76:12:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjUxMjIwMTgyNzI0WhcNMjUxMjI3MTgyNzI0WjAYMRYwFAYD VQQDDA02OTQ2ZWE4ZC1mY2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtL35ZljSANVtZkuqlmNQR2qtAOR5pBuMy4IizLEM3ib1wqN4Ub7gjloIcZuq 12FEPbZiu6LOZlDVs7eKY5n3a7D6Lqq/JCCeKvGq8Xito2p/jn61SsBjW7o0+AOD 1HiTrv0P6mYQEcYPjq2uqP3IxWosE5mDGqO2GhUIGI8I30eNy8BRby3tOYfN+NmL xxsPM0uAq2IVUafJpf7Q5dxHdPNHrPax+q3SmVVR8hzzGXXevGc66JQtZJxU1dwF C1xgYqZJYudZnP8KWfsmFBNODjBMlypd2RLFhq53FOl4aXDrogFJ5tBhq/oNhE1z 5ZaKSPBvEUYvkrj/VlF4g95xMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnWziQ7 ZWMth/UGF/tgBwme4N6JMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvijlmRkKiWhx9fuhrYutuIUXZf+Nh7QPiF9ZatebkRG5WoRJfgGjI iHsTY01QlK6vbeRXM0gwbseyqqD6iT3Vt/2HhwWBaWc7AFoeOsv2In/luv8cc3a2 6LLsDaAkMtUjJ3z+5SnW8S+XPvigAicjuwzAvcRTm9XQ3tK3NRKgDp7ATUPSr5cW AmQt1om72LGe1Wlu2YJ1iFLF5b2Skf893y0Tr0yCRaR3lPr3xqd1eNQlrxp2gPiB W1+SkCrBNCBmIjOh8W0WYXHkq13HydMVsuj5/Xe6sbajj2dvuZI4Hki+AKEArI03 T/rosU1CZFsepvV7CWsGWNUY6jzgdhKA -----END CERTIFICATE-----Generated at Sun Dec 21 09:55:32 2025 by rpki-client