This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft File: mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft (raw, json) Hash identifier: mpy2pREo5ClBM+hr6v4SgT0ZJMdFSbRT3on9kH9hLYI= Subject key identifier: D1:DA:54:9D:5D:EC:20:F6:25:BD:D9:91:5D:B5:48:51:84:98:29:93 Authority key identifier: 9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 Certificate issuer: /CN=A91CB21D/serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft Manifest number: 021A Signing time: Fri 19 Dec 2025 01:25:23 +0000 Manifest this update: Fri 19 Dec 2025 01:25:23 +0000 Manifest next update: Fri 26 Dec 2025 01:25:23 +0000 Files and hashes: 1: mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl (hash: GYX+AIQq6I5a6iE56todEjc6CHbjN/MMJtC7OtpZQa0=) 2: 6B724CC6DB0011F0AC29E8F57ED3641D.roa (hash: 7rL0FBSKkznrl2udj8uNlQFyPTeXQMYsE1y8QdItuVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB21D, serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Validity Not Before: Dec 19 01:25:23 2025 GMT Not After : Dec 26 01:25:23 2025 GMT Subject: CN=6944a983-a117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a6:81:23:93:a7:8b:f4:f1:7b:3e:e2:76:44: d6:cf:ae:eb:a3:bd:b4:c8:a8:e1:de:78:a1:c0:b6: c8:04:27:91:c2:2c:1d:ff:40:92:48:f0:ba:eb:00: a0:0c:fb:cc:61:43:de:dc:a5:4f:ec:e9:f4:4f:db: 7f:8a:89:38:b4:8b:4c:05:54:d7:30:f6:c8:6a:38: 51:e6:c9:28:d6:c0:20:1b:c0:7e:5a:ce:b7:90:17: 30:79:85:83:b1:08:9a:a6:d8:08:10:f5:80:1a:99: 60:92:35:7e:94:c2:4d:7e:39:bb:03:1a:90:9e:08: 18:37:57:96:7f:56:02:6c:d1:d6:52:32:5a:6b:dc: 17:b3:64:6c:21:81:b4:3a:a7:a3:31:3c:e4:b8:2f: 2b:9c:fd:a8:98:01:74:11:05:60:88:aa:1d:8e:e0: 7e:ae:6a:ea:6b:ac:cb:5d:3c:42:a3:ca:6b:13:70: da:57:1c:4b:05:00:58:13:02:29:49:39:e9:75:a9: 8d:c2:83:e0:85:9f:1d:ad:7e:8c:72:c0:51:5d:e4: 3b:d5:90:b6:98:45:dc:53:72:b7:5e:02:c8:7d:ad: 0b:52:b1:4d:af:d0:63:4a:25:00:54:2f:a8:69:c6: 39:57:bc:94:7b:fc:eb:da:93:90:8b:af:4c:3b:91: 84:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:DA:54:9D:5D:EC:20:F6:25:BD:D9:91:5D:B5:48:51:84:98:29:93 X509v3 Authority Key Identifier: keyid:9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:2d:d0:30:dc:92:5a:33:0b:4b:1a:2d:f6:24:73:0a:3a:5b: b1:16:ac:8d:4e:6b:30:17:12:03:16:22:03:c3:f4:3c:71:ba: a6:23:68:94:c0:2b:e6:06:51:5d:45:dc:d6:39:c0:79:86:b4: 66:57:f1:8a:46:83:c1:f6:2a:3d:b0:22:03:db:30:97:65:a1: ee:e0:99:96:cd:17:93:1c:4b:31:db:d8:0c:43:a4:81:5a:ed: 5e:76:c2:0a:8e:6b:96:10:6a:ee:e1:ec:67:12:56:ee:f4:de: 08:13:6b:65:e8:90:54:c9:82:28:39:be:a9:6d:5d:60:87:38: 5a:a3:e3:31:c0:4b:4d:9b:2c:06:78:02:99:7a:76:b2:f6:8d: a7:a4:69:92:be:06:3a:bf:c7:7b:25:44:67:cb:00:6c:54:2c: f4:1c:44:77:ff:ce:b9:32:e6:68:3f:e1:55:c7:c1:d4:fe:19: dc:23:6b:3a:7c:7d:a7:de:b3:ec:6c:65:60:88:c5:30:10:c9: 31:54:d4:3a:b3:63:17:ec:90:2b:20:d1:28:ee:37:46:5e:92: 84:80:fd:d0:16:14:30:bc:aa:12:65:42:2e:07:36:b5:57:2f: d5:a6:6d:cf:ad:50:b7:46:19:81:06:98:55:69:8f:ec:74:b5: ed:66:3b:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IyMUQxMTAvBgNVBAUTKDlCMUU4MTg4Q0U2NDM5N0U4QjQyNDFFNjc1OEQ0MjlE QTBGRjJFNzAwHhcNMjUxMjE5MDEyNTIzWhcNMjUxMjI2MDEyNTIzWjAYMRYwFAYD VQQDDA02OTQ0YTk4My1hMTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKaBI5Oni/Txez7idkTWz67ro720yKjh3nihwLbIBCeRwiwd/0CSSPC66wCg DPvMYUPe3KVP7On0T9t/iok4tItMBVTXMPbIajhR5sko1sAgG8B+Ws63kBcweYWD sQiaptgIEPWAGplgkjV+lMJNfjm7AxqQnggYN1eWf1YCbNHWUjJaa9wXs2RsIYG0 OqejMTzkuC8rnP2omAF0EQVgiKodjuB+rmrqa6zLXTxCo8prE3DaVxxLBQBYEwIp STnpdamNwoPghZ8drX6McsBRXeQ71ZC2mEXcU3K3XgLIfa0LUrFNr9BjSiUAVC+o acY5V7yUe/zr2pOQi69MO5GEfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHaVJ1d 7CD2Jb3ZkV21SFGEmCmTMB8GA1UdIwQYMBaAFJsegYjOZDl+i0JB5nWNQp2g/y5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjIxRC82MzJDRDNFNkE3 RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09YNkxRa0htZFkxQ25hRF9M bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL214NkJpTTVrT1g2TFFrSG1kWTFDbmFEX0xuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjIxRC82MzJDRDNFNkE3RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09Y NkxRa0htZFkxQ25hRF9MbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBLdAw3JJaMwtLGi32JHMKOluxFqyNTmswFxIDFiIDw/Q8cbqmI2iU wCvmBlFdRdzWOcB5hrRmV/GKRoPB9io9sCID2zCXZaHu4JmWzReTHEsx29gMQ6SB Wu1edsIKjmuWEGru4exnElbu9N4IE2tl6JBUyYIoOb6pbV1ghzhao+MxwEtNmywG eAKZenay9o2npGmSvgY6v8d7JURnywBsVCz0HER3/865MuZoP+FVx8HU/hncI2s6 fH2n3rPsbGVgiMUwEMkxVNQ6s2MX7JArINEo7jdGXpKEgP3QFhQwvKoSZUIuBza1 Vy/Vpm3PrVC3RhmBBphVaY/sdLXtZjtP -----END CERTIFICATE-----Generated at Fri Dec 19 19:06:12 2025 by rpki-client