This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: yZ3jfUr+zGG5mK6JDwn5avDGVzg40xhhDQZ3UYC50AI= Subject key identifier: 45:19:DA:03:75:7A:7A:13:AE:33:EA:1F:3E:44:47:F1:79:50:2C:44 Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 053D Signing time: Sat 20 Dec 2025 22:45:12 +0000 Manifest this update: Sat 20 Dec 2025 22:45:11 +0000 Manifest next update: Sat 27 Dec 2025 22:45:11 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: wYVpNQKTSnHCq4ot8QZJJrJU8Lcos+yCMrb2lNDoz5I=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: DBSMAaVKSu+pqc7fO689Fw0nJpqzkZ1jfjGBu9BRx34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57, serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Dec 20 22:45:11 2025 GMT Not After : Dec 27 22:45:11 2025 GMT Subject: CN=694726f8-3a07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:1f:7e:13:46:e8:15:9e:03:32:be:79:56:c4: f8:47:83:21:63:8e:e5:79:3b:50:16:ff:95:31:70: be:d1:6a:d4:38:d2:64:6c:98:53:74:27:2b:4f:7d: ae:0e:ad:79:96:df:85:ac:8a:7d:51:2d:12:dc:80: 09:ad:83:b9:91:19:af:a0:d3:95:12:38:79:78:cc: b1:57:3b:83:ab:6a:8e:21:a4:f1:56:98:0a:e4:df: b0:3c:58:be:34:03:09:f8:8b:35:86:bf:56:2f:39: fc:15:38:b6:83:4e:8c:fd:6f:ff:f2:a8:ab:14:1e: 44:f0:33:21:2c:5b:f3:87:f4:27:18:d8:4a:11:0a: 61:96:1a:6c:9c:7a:f9:1b:7e:56:57:79:fe:b7:e3: ca:83:d3:a7:74:aa:92:c9:9c:be:31:1d:06:56:68: 36:4b:90:d3:e6:50:51:c1:9b:bb:d8:a1:54:a2:61: 2d:77:16:0a:00:00:35:73:68:2b:12:9d:98:ba:88: b6:ce:15:d1:7d:2b:00:38:5a:32:db:04:85:81:46: 00:63:e2:7b:4f:43:ad:7b:ba:4e:0a:1e:f8:f8:65: df:96:48:60:f4:a3:5e:b7:fd:84:d8:d2:50:3e:ee: 03:7f:bd:88:74:e5:da:6b:31:0a:71:35:69:47:ad: 8a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:19:DA:03:75:7A:7A:13:AE:33:EA:1F:3E:44:47:F1:79:50:2C:44 X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:f8:ae:c5:54:bc:0c:ca:5a:e1:30:9f:cd:4d:b8:f8:7c:34: b5:be:1f:33:57:8b:b7:64:c5:30:5e:7f:46:0b:4a:ba:1d:97: bd:37:a2:20:65:df:4e:e6:c5:af:6a:c6:cd:5a:57:39:70:4b: 98:7c:7f:04:36:85:33:c6:e8:a6:5d:9d:eb:e0:40:3d:20:a8: 5d:09:8d:f0:0a:87:dc:f8:ab:78:32:dd:cb:f4:0d:53:60:64: d0:cb:db:a2:c6:ba:b5:55:9e:b0:40:77:95:05:db:42:b9:22: 73:49:a5:ce:fb:6d:b8:6f:e7:10:c8:12:f5:42:b7:ae:e7:27: d0:a2:c0:a5:b1:a9:9b:56:f8:c5:a0:77:70:c4:42:45:82:03: c8:85:78:00:87:d9:64:c6:1c:bd:e6:59:c9:f5:3f:66:69:ba: f5:2e:3a:92:c4:8b:c3:a2:da:cb:5f:38:b5:28:0b:9e:50:5f: 68:4a:44:94:be:4d:2d:45:b3:3d:90:e0:dd:5d:04:61:8f:1d: 24:54:b4:a0:74:70:83:6d:a8:ce:20:f4:5c:78:8f:a7:a2:5e: 22:13:5c:1d:d6:1e:f6:8b:15:66:91:84:80:ab:53:f1:6e:74: 9c:c0:08:1d:99:96:7c:a7:bc:5c:fc:26:a2:16:81:39:01:f7: e2:5d:ea:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjUxMjIwMjI0NTExWhcNMjUxMjI3MjI0NTExWjAYMRYwFAYD VQQDDA02OTQ3MjZmOC0zYTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjR9+E0boFZ4DMr55VsT4R4MhY47leTtQFv+VMXC+0WrUONJkbJhTdCcrT32u Dq15lt+FrIp9US0S3IAJrYO5kRmvoNOVEjh5eMyxVzuDq2qOIaTxVpgK5N+wPFi+ NAMJ+Is1hr9WLzn8FTi2g06M/W//8qirFB5E8DMhLFvzh/QnGNhKEQphlhpsnHr5 G35WV3n+t+PKg9OndKqSyZy+MR0GVmg2S5DT5lBRwZu72KFUomEtdxYKAAA1c2gr Ep2Yuoi2zhXRfSsAOFoy2wSFgUYAY+J7T0Ote7pOCh74+GXflkhg9KNet/2E2NJQ Pu4Df72IdOXaazEKcTVpR62KmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUZ2gN1 enoTrjPqHz5ER/F5UCxEMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD+K7FVLwMylrhMJ/NTbj4fDS1vh8zV4u3ZMUwXn9GC0q6HZe9N6Ig Zd9O5sWvasbNWlc5cEuYfH8ENoUzxuimXZ3r4EA9IKhdCY3wCofc+Kt4Mt3L9A1T YGTQy9uixrq1VZ6wQHeVBdtCuSJzSaXO+224b+cQyBL1Qreu5yfQosClsambVvjF oHdwxEJFggPIhXgAh9lkxhy95lnJ9T9mabr1LjqSxIvDotrLXzi1KAueUF9oSkSU vk0tRbM9kODdXQRhjx0kVLSgdHCDbajOIPRceI+nol4iE1wd1h72ixVmkYSAq1Px bnScwAgdmZZ8p7xc/CaiFoE5AffiXeqW -----END CERTIFICATE-----Generated at Mon Dec 22 13:21:07 2025 by rpki-client