This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft File: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft (raw, json) Hash identifier: KyLinAPAeYiio86OIunTEeuCK2TH/MQGwds7SaVGdiE= Subject key identifier: 7E:FF:A6:39:CF:E8:9A:0B:5D:7B:75:4B:F7:04:6B:FE:BD:99:C3:6C Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 0883 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft Manifest number: 087B Signing time: Fri 26 Dec 2025 19:55:46 +0000 Manifest this update: Fri 26 Dec 2025 19:55:46 +0000 Manifest next update: Fri 02 Jan 2026 19:55:46 +0000 Files and hashes: 1: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl (hash: slEwbE/OXiqv2yH/foiehmLNxo8AhlgbnxXsazxZg8E=) 2: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (hash: xnTcG0VVgFarV7NphsJDgbhRV6XedAyDHFeL5PTrEnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 19:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2179 (0x883) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Dec 26 19:55:46 2025 GMT Not After : Jan 2 19:55:46 2026 GMT Subject: CN=694ee842-6822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:eb:8e:0f:45:4a:bf:54:e1:6f:9e:a8:e4:c8: ce:28:56:9f:a9:cc:fb:83:14:e7:6d:a9:32:47:b6: 3d:3c:de:27:3a:15:31:43:e8:49:d7:90:d8:2c:d9: e4:aa:62:6d:a5:a2:94:1b:83:f6:49:f3:32:c7:2e: 6a:3b:53:c2:97:95:d5:83:ce:bb:6f:f1:bf:e6:d8: 6a:42:ee:ad:44:a0:7f:43:20:e7:ca:06:aa:1b:fd: 0c:56:44:c6:b8:a7:b5:68:55:b1:76:a2:e4:a2:61: 14:7c:7b:71:42:04:62:5d:52:23:4e:24:ef:16:c9: 78:43:3f:21:3a:d2:d1:37:92:57:92:92:fb:d7:11: 9c:a5:05:d4:9a:20:4e:27:86:76:c6:2f:25:ac:1a: 42:9f:98:82:69:21:c1:bb:f0:d6:09:7c:0f:0a:94: a5:20:b7:fa:13:42:d6:a6:fe:06:d5:6d:47:0b:cd: d2:a8:53:ec:64:3e:0b:b8:75:74:38:6b:c4:a2:2a: 83:ff:e8:bd:00:d5:93:3b:fa:2b:fd:47:ba:c3:60: ee:ef:05:47:6b:9d:68:8b:b0:19:f8:4a:09:71:f0: 8a:6f:12:35:0a:d5:fe:de:36:9b:90:3d:9a:12:43: 59:93:f8:c0:8c:45:c1:e4:37:dd:8a:f1:73:6c:01: 51:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FF:A6:39:CF:E8:9A:0B:5D:7B:75:4B:F7:04:6B:FE:BD:99:C3:6C X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:4b:9d:1d:e1:95:3d:e4:cc:19:17:38:0c:de:7f:2b:ba:db: 55:ce:44:a6:5d:93:68:e9:87:5f:f2:13:86:15:01:ab:d8:46: 17:a2:ce:04:ad:78:61:71:2e:62:c6:d5:23:a2:d8:91:34:4c: ce:e9:e0:dc:62:19:e6:67:f3:83:44:2f:74:9d:27:c2:c7:d0: 12:86:39:12:d6:21:6c:90:f6:54:29:dd:fa:fe:95:15:5e:c4: 22:20:9c:dd:67:77:1a:91:27:65:70:0c:32:7c:41:ab:94:06: 3d:8c:b0:8e:1b:25:da:11:9e:29:67:ce:91:26:3f:5c:0a:df: 41:e5:04:e7:0b:d9:8d:9d:b8:ea:df:20:12:c2:f1:84:df:98: d8:67:45:b0:47:86:3e:aa:2a:23:b9:3a:38:f3:d3:34:85:1c: fe:7c:45:82:cd:d8:2a:43:25:26:6b:9b:f2:3a:3d:02:88:da: 22:6a:34:73:0f:2d:a6:ae:57:77:bc:7a:f2:79:89:e6:13:4c: 88:01:9b:d7:dd:b3:70:be:fc:72:42:49:78:b9:16:a7:77:22: 57:d8:e4:0b:8b:5f:24:db:f8:85:74:04:50:b0:98:62:22:16: 23:83:87:d0:05:bd:ba:fc:2c:9d:96:68:36:fd:23:38:49:e2: be:da:12:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjUxMjI2MTk1NTQ2WhcNMjYwMTAyMTk1NTQ2WjAYMRYwFAYD VQQDDA02OTRlZTg0Mi02ODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOuOD0VKv1Thb56o5MjOKFafqcz7gxTnbakyR7Y9PN4nOhUxQ+hJ15DYLNnk qmJtpaKUG4P2SfMyxy5qO1PCl5XVg867b/G/5thqQu6tRKB/QyDnygaqG/0MVkTG uKe1aFWxdqLkomEUfHtxQgRiXVIjTiTvFsl4Qz8hOtLRN5JXkpL71xGcpQXUmiBO J4Z2xi8lrBpCn5iCaSHBu/DWCXwPCpSlILf6E0LWpv4G1W1HC83SqFPsZD4LuHV0 OGvEoiqD/+i9ANWTO/or/Ue6w2Du7wVHa51oi7AZ+EoJcfCKbxI1CtX+3jabkD2a EkNZk/jAjEXB5DfdivFzbAFRpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7/pjnP 6JoLXXt1S/cEa/69mcNsMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDc1MC85MEQ1RUM1QURBQkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVG TVdkWFpsRVFQNEgxbXMzQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3S50d4ZU95MwZFzgM3n8ruttVzkSmXZNo6Ydf8hOGFQGr2EYXos4E rXhhcS5ixtUjotiRNEzO6eDcYhnmZ/ODRC90nSfCx9AShjkS1iFskPZUKd36/pUV XsQiIJzdZ3cakSdlcAwyfEGrlAY9jLCOGyXaEZ4pZ86RJj9cCt9B5QTnC9mNnbjq 3yASwvGE35jYZ0WwR4Y+qiojuTo489M0hRz+fEWCzdgqQyUma5vyOj0CiNoiajRz Dy2mrld3vHryeYnmE0yIAZvX3bNwvvxyQkl4uRandyJX2OQLi18k2/iFdARQsJhi IhYjg4fQBb26/Cydlmg2/SM4SeK+2hIC -----END CERTIFICATE-----Generated at Sat Dec 27 17:46:11 2025 by rpki-client