This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: cfifIJrCik0NUTO+s8nodujHlY1aUypTPYau83EfO9o= Subject key identifier: 4A:4F:3E:4F:EA:36:8D:C4:83:95:46:7D:83:48:10:03:41:8A:DB:A7 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: E0 Signing time: Fri 19 Dec 2025 04:36:27 +0000 Manifest this update: Fri 19 Dec 2025 04:36:26 +0000 Manifest next update: Fri 26 Dec 2025 04:36:26 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: URGTBGgTrosnuirC91Urkdl7Hdm5H5SPEdNE9bhvdkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Dec 19 04:36:26 2025 GMT Not After : Dec 26 04:36:26 2025 GMT Subject: CN=6944d64b-d46f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0a:cc:7a:d2:a1:b8:2e:2d:ae:1c:82:a2:9f: e1:5d:48:97:bf:ac:45:3f:2b:88:83:32:d2:57:30: 7d:7d:fd:54:d9:05:b9:65:72:fb:7c:90:f1:b2:18: 86:56:60:90:3c:2a:31:bf:0a:8a:45:e0:6d:7f:ef: 27:61:1b:33:3c:a9:36:c1:d6:00:91:94:67:d5:57: fe:f1:36:57:d3:aa:9d:3c:4c:2a:b2:e1:0e:c7:2d: 9b:0c:82:e7:7e:e9:6b:c3:a7:43:c0:73:8f:91:38: 3a:c9:bf:f0:4d:cd:23:38:b4:73:db:36:c1:c7:6c: 04:e9:72:2d:f3:56:7c:4c:ef:fd:1b:00:2e:eb:29: ab:1c:91:15:e6:cd:08:3e:a0:b3:7f:4c:2d:0d:d1: 01:1b:f9:c9:8a:e6:22:96:a1:1d:ef:6a:d2:af:77: 8d:2c:8d:d6:10:c2:9a:ba:f1:17:1d:8c:8e:f0:83: bb:f5:d0:1e:b6:ed:77:a2:78:ff:55:ee:87:b4:75: d9:de:e6:2a:9b:48:db:78:47:09:a3:95:a2:c3:21: dc:62:64:70:3f:21:5d:36:c3:ba:8f:67:9d:23:27: 2a:29:b1:82:01:cc:89:a7:1f:77:68:6b:c0:45:39: fe:fc:a4:da:d9:45:35:de:fd:14:ad:8e:86:96:d3: a2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4F:3E:4F:EA:36:8D:C4:83:95:46:7D:83:48:10:03:41:8A:DB:A7 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:3a:31:b8:e0:5f:3d:0f:3a:78:13:34:56:ce:1d:b6:b0:b5: 76:8b:3c:60:45:6a:0f:6b:e1:1d:ea:3d:d9:b6:4a:06:cb:75: 55:59:d7:35:8b:5b:28:ef:77:dd:d0:3f:b0:f1:90:02:e4:9a: 75:84:fa:dd:20:d3:2b:75:0e:e9:18:5a:2c:7e:58:38:81:3d: 3c:e9:9a:a0:5a:92:86:cd:d7:24:dd:c8:4d:f3:b0:71:6c:da: 7b:e4:81:2f:d6:63:0c:07:01:68:ac:13:ef:0d:23:48:ab:41: 9e:7d:14:33:1c:81:d4:a7:68:b8:9a:16:5d:a7:e7:d4:08:65: 06:e0:08:e7:48:48:c1:14:9a:5d:9b:88:ab:13:e9:42:32:72: 7c:c5:48:1f:8b:97:0b:30:e4:13:92:df:b4:d5:9d:f6:8c:f5: 41:b1:95:a3:84:bf:0a:25:c6:2e:3e:7e:44:ae:f9:c4:f9:2f: 9a:c0:f5:da:87:cf:84:30:de:d4:f3:c6:81:69:4e:58:53:27: 2d:52:6d:98:24:99:05:59:36:05:0e:f7:8c:8b:fb:a9:18:fa: 42:84:5f:77:a9:b2:ef:95:3b:ed:f2:4b:56:ec:45:ea:ef:ea: dc:82:bb:f2:86:20:f6:0b:4c:38:b5:80:f6:ad:52:e2:be:d4: 98:7f:ae:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDY4QjMyM0RBODRFMTIwNTQ2NkNFQjVBRkQ3RDYwNzcy Njc1QjA1MzEwHhcNMjUxMjE5MDQzNjI2WhcNMjUxMjI2MDQzNjI2WjAYMRYwFAYD VQQDDA02OTQ0ZDY0Yi1kNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3grMetKhuC4trhyCop/hXUiXv6xFPyuIgzLSVzB9ff1U2QW5ZXL7fJDxshiG VmCQPCoxvwqKReBtf+8nYRszPKk2wdYAkZRn1Vf+8TZX06qdPEwqsuEOxy2bDILn fulrw6dDwHOPkTg6yb/wTc0jOLRz2zbBx2wE6XIt81Z8TO/9GwAu6ymrHJEV5s0I PqCzf0wtDdEBG/nJiuYilqEd72rSr3eNLI3WEMKauvEXHYyO8IO79dAetu13onj/ Ve6HtHXZ3uYqm0jbeEcJo5WiwyHcYmRwPyFdNsO6j2edIycqKbGCAcyJpx93aGvA RTn+/KTa2UU13v0UrY6GltOi4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpPPk/q No3Eg5VGfYNIEANBitunMB8GA1UdIwQYMBaAFGizI9qE4SBUZs61r9fWB3JnWwUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi83NDFBMUUyQzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElGUm16cld2MTlZSGNtZGJC VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi83NDFBMUUyQzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElG Um16cld2MTlZSGNtZGJCVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoOjG44F89Dzp4EzRWzh22sLV2izxgRWoPa+Ed6j3ZtkoGy3VVWdc1 i1so73fd0D+w8ZAC5Jp1hPrdINMrdQ7pGFosflg4gT086ZqgWpKGzdck3chN87Bx bNp75IEv1mMMBwForBPvDSNIq0GefRQzHIHUp2i4mhZdp+fUCGUG4AjnSEjBFJpd m4irE+lCMnJ8xUgfi5cLMOQTkt+01Z32jPVBsZWjhL8KJcYuPn5ErvnE+S+awPXa h8+EMN7U88aBaU5YUyctUm2YJJkFWTYFDveMi/upGPpChF93qbLvlTvt8ktW7EXq 7+rcgrvyhiD2C0w4tYD2rVLivtSYf66i -----END CERTIFICATE-----Generated at Fri Dec 19 18:46:46 2025 by rpki-client