This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft File: REDuIbNImmUKYWsSDY5b5Xku4Es.mft (raw, json) Hash identifier: JLMj0SXd93W+ZjhWahnvbg9rMVBamf1XAOmE7rrLHAk= Subject key identifier: 06:E3:B2:F6:3C:9C:88:13:FD:2E:FA:2D:DA:9C:B5:6D:18:56:81:DE Authority key identifier: 44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B Certificate issuer: /CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Certificate serial: 0CB9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft Manifest number: 0CB1 Signing time: Sun 28 Dec 2025 17:54:00 +0000 Manifest this update: Sun 28 Dec 2025 17:53:59 +0000 Manifest next update: Sun 04 Jan 2026 17:53:59 +0000 Files and hashes: 1: REDuIbNImmUKYWsSDY5b5Xku4Es.crl (hash: FNfS3V4NoqMRyvDgr4hwmp/QbRvS57VM50RJmwwedhk=) 2: 7155C8563E5E11EAB043A522C4F9AE02.roa (hash: M3bsS+Xk9LNsygw5XkjDTpnJwQmvk0v371BaGHqkpV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 17:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3257 (0xcb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Validity Not Before: Dec 28 17:53:59 2025 GMT Not After : Jan 4 17:53:59 2026 GMT Subject: CN=69516eb7-24c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:87:73:13:0e:54:35:7b:be:ea:eb:d4:30:9e: cb:4d:d6:34:12:e1:99:2b:df:c8:ec:8f:62:40:60: 59:73:a0:2a:57:de:73:74:5d:66:51:a3:0d:b2:17: 1a:00:64:12:42:a1:dc:a6:c8:3d:5e:b4:2f:76:91: 2a:98:2c:90:bc:80:8f:a0:d8:70:57:42:8b:48:c2: 9e:e8:c1:ac:5e:65:d4:5c:c0:72:b8:93:c0:35:ae: 34:06:28:25:9a:24:63:28:2d:0d:94:63:3b:39:ea: c6:7d:d7:9b:e2:7a:c0:1d:f0:00:15:15:fa:20:3d: b3:1d:b3:aa:0c:0e:91:d9:69:13:f7:85:2f:73:0a: 4e:34:61:2d:ae:ca:63:25:16:6b:a8:e3:36:0b:dd: 7a:1a:39:44:07:e1:b6:6d:1c:f3:d7:bb:91:15:3a: 41:11:7b:51:0b:7f:56:d3:b1:7b:83:10:00:44:b9: f1:75:64:8d:e5:ea:39:35:79:76:a7:d1:1f:5f:9a: c8:21:3a:5e:ae:66:5c:b0:df:c9:8d:93:80:d8:c3: 70:92:3a:99:6b:2b:ba:5c:59:a5:f2:58:d1:af:23: 62:32:af:20:5e:1b:f1:fe:24:14:0d:59:26:63:86: 83:45:4a:c1:13:55:21:85:e9:0f:00:cf:d4:2e:73: 9e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E3:B2:F6:3C:9C:88:13:FD:2E:FA:2D:DA:9C:B5:6D:18:56:81:DE X509v3 Authority Key Identifier: keyid:44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:97:08:98:b0:a2:bb:c5:a8:e4:be:df:9e:d9:69:00:f3:67: 11:19:be:5a:50:c3:83:11:ab:a0:b1:53:d7:26:fd:5b:6b:92: c7:72:3f:60:bb:69:be:35:94:13:66:47:71:31:f7:64:12:df: 12:79:84:45:cf:9e:7d:cb:4d:73:3d:1a:42:e3:17:77:aa:ed: 48:e5:0d:85:f8:2b:2b:23:ed:33:d6:01:c5:ba:3b:ac:5c:66: 35:79:1c:87:83:2f:9d:dd:93:51:ac:62:1c:6c:90:ed:56:b4: e6:a7:21:2a:e5:fb:90:a5:76:a4:11:36:54:12:00:10:05:86: 64:80:a1:3d:a4:b8:5e:01:14:e6:75:a0:5d:00:32:46:c6:f9: de:ee:a1:bf:5c:36:de:e8:cf:3a:94:df:5b:74:1b:d6:d3:47: f3:93:0c:81:ff:eb:5b:fb:b2:7b:d9:a5:88:0c:23:fe:20:15: 27:f6:70:4d:da:79:d7:08:85:c5:b8:db:3c:e7:d1:1f:92:d2: 42:e4:4d:c5:ad:6b:21:41:c4:70:7b:60:9b:23:52:9f:9e:61: 17:6e:14:46:d8:5d:b3:29:ac:8e:4c:e2:9c:21:73:99:8e:a2: 7f:7b:b9:b0:c5:4c:e1:bf:7a:7b:f7:29:6b:f6:c9:be:1d:33: d1:cb:fa:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKDQ0NDBFRTIxQjM0ODlBNjUwQTYxNkIxMjBEOEU1QkU1 NzkyRUUwNEIwHhcNMjUxMjI4MTc1MzU5WhcNMjYwMTA0MTc1MzU5WjAYMRYwFAYD VQQDDA02OTUxNmViNy0yNGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYdzEw5UNXu+6uvUMJ7LTdY0EuGZK9/I7I9iQGBZc6AqV95zdF1mUaMNshca AGQSQqHcpsg9XrQvdpEqmCyQvICPoNhwV0KLSMKe6MGsXmXUXMByuJPANa40Bigl miRjKC0NlGM7OerGfdeb4nrAHfAAFRX6ID2zHbOqDA6R2WkT94UvcwpONGEtrspj JRZrqOM2C916GjlEB+G2bRzz17uRFTpBEXtRC39W07F7gxAARLnxdWSN5eo5NXl2 p9EfX5rIITpermZcsN/JjZOA2MNwkjqZayu6XFml8ljRryNiMq8gXhvx/iQUDVkm Y4aDRUrBE1UhhekPAM/ULnOeXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbjsvY8 nIgT/S76LdqctW0YVoHeMB8GA1UdIwQYMBaAFERA7iGzSJplCmFrEg2OW+V5LuBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8xODgyM0M4QzA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1tVUtZV3NTRFk1YjVYa3U0 RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JFRHVJYk5JbW1VS1lXc1NEWTViNVhrdTRFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8xODgyM0M4QzA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1t VUtZV3NTRFk1YjVYa3U0RXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6lwiYsKK7xajkvt+e2WkA82cRGb5aUMODEaugsVPXJv1ba5LHcj9g u2m+NZQTZkdxMfdkEt8SeYRFz559y01zPRpC4xd3qu1I5Q2F+CsrI+0z1gHFujus XGY1eRyHgy+d3ZNRrGIcbJDtVrTmpyEq5fuQpXakETZUEgAQBYZkgKE9pLheARTm daBdADJGxvne7qG/XDbe6M86lN9bdBvW00fzkwyB/+tb+7J72aWIDCP+IBUn9nBN 2nnXCIXFuNs859EfktJC5E3FrWshQcRwe2CbI1KfnmEXbhRG2F2zKayOTOKcIXOZ jqJ/e7mwxUzhv3p79ylr9sm+HTPRy/pD -----END CERTIFICATE-----Generated at Mon Dec 29 00:48:01 2025 by rpki-client