This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft File: 64sK0sB2YghSy8N4kOZK1Aa0ieg.mft (raw, json) Hash identifier: b/cgth00zLODCeNmVZZM5lE6LIaXDmuqlyeg9dJxx5E= Subject key identifier: 44:C3:4F:17:43:71:29:A5:33:D8:78:F7:87:37:04:C9:54:DD:C6:DD Authority key identifier: EB:8B:0A:D2:C0:76:62:08:52:CB:C3:78:90:E6:4A:D4:06:B4:89:E8 Certificate issuer: /CN=A91C72B1/serialNumber=EB8B0AD2C076620852CBC37890E64AD406B489E8 Certificate serial: 0D82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft Manifest number: 0D77 Signing time: Wed 24 Dec 2025 17:39:00 +0000 Manifest this update: Wed 24 Dec 2025 17:38:59 +0000 Manifest next update: Wed 31 Dec 2025 17:38:59 +0000 Files and hashes: 1: 64sK0sB2YghSy8N4kOZK1Aa0ieg.crl (hash: tN2lEh8Vs8QYnTO6Yt8acArTbOt/csph3kbQKIOEqPI=) 2: 6714424C3C9111EA9416CA78C4F9AE02.roa (hash: BSAvl2a+qU3ElNPvDphfnCyZJ7WfZOIWkfyio3AfY2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.crl rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:38:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3458 (0xd82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C72B1, serialNumber=EB8B0AD2C076620852CBC37890E64AD406B489E8 Validity Not Before: Dec 24 17:38:59 2025 GMT Not After : Dec 31 17:38:59 2025 GMT Subject: CN=694c2534-8a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:79:11:93:67:9f:30:87:08:9a:f3:50:12:38: 74:e3:44:9c:cb:37:81:39:6f:6e:d0:bd:db:71:8f: 56:ec:9d:68:6b:0c:1a:5d:c2:d6:72:0d:d7:17:dc: 70:55:b8:de:d7:d0:e2:c0:27:22:29:81:0f:1a:34: 5b:d0:82:d1:a5:5d:1e:00:5e:eb:54:ca:94:b5:9c: 7d:bb:f9:0f:bc:34:57:b2:99:2a:19:d0:f2:80:6d: 9b:32:2a:1a:d1:ba:4c:2a:5c:29:f7:a3:58:a4:a5: 40:a5:98:c9:3e:49:a1:a1:74:31:01:60:3a:f2:31: 49:39:ba:30:73:37:00:8e:85:91:ae:30:b3:af:67: 22:ab:d6:d7:3b:89:cd:ff:e1:9c:72:12:82:48:16: 6d:79:9c:9c:08:b8:f1:ee:1d:65:16:0c:25:cb:7b: b1:03:53:23:af:2b:f7:40:70:18:fc:b4:05:5e:e2: 24:5e:e2:e4:f8:5a:5c:fa:87:8e:cc:30:0d:96:76: ed:0c:29:13:c8:20:74:13:47:1f:4a:ed:d8:27:91: 84:6c:4c:ac:47:1c:36:ec:33:4c:1e:e4:24:c2:79: e7:27:43:a4:b7:7b:a7:80:b4:17:f6:94:02:66:ad: 20:10:25:cf:ec:59:f1:f7:7c:a5:2d:2a:bc:67:e2: 07:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C3:4F:17:43:71:29:A5:33:D8:78:F7:87:37:04:C9:54:DD:C6:DD X509v3 Authority Key Identifier: keyid:EB:8B:0A:D2:C0:76:62:08:52:CB:C3:78:90:E6:4A:D4:06:B4:89:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:3d:56:87:06:0f:2c:bd:45:dd:58:3b:4b:6f:21:be:b4:29: 8c:e8:8b:36:3e:79:df:4d:8d:71:c1:44:a3:e3:f2:1e:23:4b: 25:9e:09:e5:95:61:f3:a7:16:51:75:dc:af:15:93:b4:b1:23: 7d:22:6e:90:d7:fe:c8:b7:b0:49:cb:08:3e:78:8b:bc:4f:1e: 40:fb:50:f5:af:b4:61:c0:f8:c6:8c:17:41:db:7a:57:bf:7c: 2e:56:2c:20:19:fa:a3:61:11:cb:80:fc:dc:0d:d9:1b:08:cd: 6d:5e:17:10:8e:04:26:7a:f0:78:c7:d2:1b:11:c2:cc:81:e6: 74:84:a1:79:ed:1c:61:75:27:c2:2c:96:58:08:ba:70:33:d9: 9b:57:9f:87:78:e4:1a:70:4d:31:e5:52:86:81:0b:17:80:86: fd:4e:58:8d:b4:1d:37:46:c1:cf:d2:d8:c4:0e:fb:df:6e:d9: d2:03:63:a7:b8:f0:51:f4:d7:98:fa:34:7b:3d:af:29:9f:58: 53:6b:8d:fd:65:38:82:bc:cb:1c:c8:9f:c7:f0:b5:d2:14:3f: 76:bb:21:e7:b6:b3:07:b4:d7:ea:d7:b9:29:5e:71:e8:4d:5a: 8c:84:94:a5:7a:af:6e:ef:8c:bc:ae:53:a6:01:e0:de:67:13: 45:f1:fc:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyQjExMTAvBgNVBAUTKEVCOEIwQUQyQzA3NjYyMDg1MkNCQzM3ODkwRTY0QUQ0 MDZCNDg5RTgwHhcNMjUxMjI0MTczODU5WhcNMjUxMjMxMTczODU5WjAYMRYwFAYD VQQDDA02OTRjMjUzNC04YTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXkRk2efMIcImvNQEjh040ScyzeBOW9u0L3bcY9W7J1oawwaXcLWcg3XF9xw Vbje19DiwCciKYEPGjRb0ILRpV0eAF7rVMqUtZx9u/kPvDRXspkqGdDygG2bMioa 0bpMKlwp96NYpKVApZjJPkmhoXQxAWA68jFJObowczcAjoWRrjCzr2ciq9bXO4nN /+GcchKCSBZteZycCLjx7h1lFgwly3uxA1Mjryv3QHAY/LQFXuIkXuLk+Fpc+oeO zDANlnbtDCkTyCB0E0cfSu3YJ5GEbEysRxw27DNMHuQkwnnnJ0Okt3ungLQX9pQC Zq0gECXP7Fnx93ylLSq8Z+IHwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETDTxdD cSmlM9h494c3BMlU3cbdMB8GA1UdIwQYMBaAFOuLCtLAdmIIUsvDeJDmStQGtIno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzJCMS8yQTQ1Rjk4MERF QzkxMUU5QUFBN0VDMzNDNEY5QUUwMi82NHNLMHNCMllnaFN5OE40a09aSzFBYTBp ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0c0swc0IyWWdoU3k4TjRrT1pLMUFhMGllZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzJCMS8yQTQ1Rjk4MERFQzkxMUU5QUFBN0VDMzNDNEY5QUUwMi82NHNLMHNCMlln aFN5OE40a09aSzFBYTBpZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKPVaHBg8svUXdWDtLbyG+tCmM6Is2PnnfTY1xwUSj4/IeI0slngnl lWHzpxZRddyvFZO0sSN9Im6Q1/7It7BJywg+eIu8Tx5A+1D1r7RhwPjGjBdB23pX v3wuViwgGfqjYRHLgPzcDdkbCM1tXhcQjgQmevB4x9IbEcLMgeZ0hKF57RxhdSfC LJZYCLpwM9mbV5+HeOQacE0x5VKGgQsXgIb9TliNtB03RsHP0tjEDvvfbtnSA2On uPBR9NeY+jR7Pa8pn1hTa439ZTiCvMscyJ/H8LXSFD92uyHntrMHtNfq17kpXnHo TVqMhJSleq9u74y8rlOmAeDeZxNF8fyu -----END CERTIFICATE-----Generated at Thu Dec 25 03:22:11 2025 by rpki-client