This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft File: A0a2NPJj9jaEI52232S7us33-KQ.mft (raw, json) Hash identifier: HFb9RCe9c2dQRf4zzM/vsVz8WWnbadm0e9P9Ei/IlrE= Subject key identifier: 29:20:71:0D:5D:BA:3C:C1:35:86:3F:CF:C2:52:13:AE:AD:E5:3F:3C Authority key identifier: 03:46:B6:34:F2:63:F6:36:84:23:9D:B6:DF:64:BB:BA:CD:F7:F8:A4 Certificate issuer: /CN=A91D7156/serialNumber=0346B634F263F63684239DB6DF64BBBACDF7F8A4 Certificate serial: 11A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft Manifest number: 0F6D Signing time: Thu 18 Dec 2025 17:49:41 +0000 Manifest this update: Thu 18 Dec 2025 17:49:41 +0000 Manifest next update: Thu 25 Dec 2025 17:49:41 +0000 Files and hashes: 1: A0a2NPJj9jaEI52232S7us33-KQ.crl (hash: AWYVAcsXfrr53XkMLIU/ffmSY4gKzv8lWIF2ipC0AbU=) 2: 26DA1E16247411EA8E1A1178C4F9AE02.roa (hash: j7XNm5DKP0Bl1Qb4lNAiZR4S+roC1NEkMzkbumJCusw=) 3: 942F8E2CCB7811F08DD67782C4F9AE02.roa (hash: JiSs/MyyKf91SvEzW9GyCAyecuNfv95KJI9TELzwxYg=) 4: 161D8022A24611EF966F6286C4F9AE02.roa (hash: TBlZiuTwGUAL/S4SWJ+uMXyA9TxQ/N4TkgdjoflSU1k=) 5: F13EB484826311F092F0144AC4F9AE02.roa (hash: GZZJl1eE+4cKYzJ1SIxoVng8+8JqX7BjD1PpjJ2aFy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.crl rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4513 (0x11a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7156, serialNumber=0346B634F263F63684239DB6DF64BBBACDF7F8A4 Validity Not Before: Dec 18 17:49:41 2025 GMT Not After : Dec 25 17:49:41 2025 GMT Subject: CN=69443eb5-cb32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:09:11:7d:52:db:aa:27:78:53:8f:ee:53:fc: a4:43:6e:04:b9:75:27:71:9e:9a:09:1e:35:23:e4: bc:fd:82:9d:c1:4a:da:76:d0:0d:93:ac:b2:f7:1a: 68:87:82:53:a9:52:88:37:82:9f:81:bb:a3:53:0e: 93:75:ad:4a:75:13:3c:76:0b:10:88:29:52:86:ab: 36:77:0f:94:7a:8b:48:08:b2:ef:bf:b0:ce:50:f7: 11:4f:78:66:b4:2b:d9:ac:6a:c0:7c:e3:09:69:05: cc:b9:0f:5e:d3:40:9e:dc:57:50:38:47:3e:e6:ea: 41:ef:79:f6:76:b9:8a:cf:53:a5:55:d2:c1:e6:00: 92:47:1b:44:77:f2:af:eb:ff:a8:51:a9:04:7f:e1: 3a:eb:ba:e7:cc:6c:08:2a:ab:c2:01:b1:79:73:3f: eb:5d:15:10:03:17:41:18:78:2a:b0:34:04:3e:7a: 13:87:75:8d:d9:1b:48:18:a4:e6:e1:6f:4e:3a:84: 6f:2d:d4:ac:ff:2f:bf:0e:d5:9c:a6:52:e0:06:d3: 03:68:e3:4e:80:50:7c:79:da:2d:e7:e7:07:04:96: a2:13:96:53:f6:d0:ff:40:dd:a7:2c:8c:9f:a7:77: f0:38:cf:fc:c1:cc:ab:d5:c0:58:84:4c:ba:b6:17: 11:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:20:71:0D:5D:BA:3C:C1:35:86:3F:CF:C2:52:13:AE:AD:E5:3F:3C X509v3 Authority Key Identifier: keyid:03:46:B6:34:F2:63:F6:36:84:23:9D:B6:DF:64:BB:BA:CD:F7:F8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:f3:46:b5:88:c3:31:e2:b2:49:1c:94:9f:4c:47:de:dd:1f: 02:e6:ab:7e:b1:dc:32:05:29:a2:10:25:43:ce:fe:8e:86:52: 99:2a:a9:be:53:5d:b4:85:49:3b:2f:d5:47:ad:dd:10:36:fb: bc:83:86:b5:18:e4:61:97:41:c7:2e:33:04:15:31:d7:e7:69: 50:1e:8d:fe:10:19:bd:88:f9:d6:91:62:97:4d:be:86:57:43: d5:6a:fb:ca:a5:a6:9a:88:9c:6c:fb:75:a2:8d:47:49:7f:5e: ac:87:68:c1:91:b7:76:75:c8:ae:e3:22:4b:da:3d:95:d9:72: 97:72:2a:02:0b:30:ba:07:39:a9:57:8b:c4:d8:77:27:ab:3f: 54:9a:31:49:e6:f7:94:3b:0f:3d:87:1d:6c:62:b1:51:3d:c3: 0c:01:96:94:e7:ef:3c:3f:82:db:ba:0f:e1:64:43:c0:5f:65: 11:5a:a1:93:d5:ef:b3:64:4c:7d:57:57:db:ab:f1:50:6c:d5: 15:30:ee:35:d2:75:bd:22:ed:90:ca:7f:80:bf:19:b2:6b:2e: 27:28:b3:57:4b:8a:c8:40:a6:36:40:09:e4:f0:88:1a:9b:3c: b7:ed:39:a6:71:d6:e7:41:6b:76:1d:bb:e5:a7:48:c7:65:c6: 53:a1:3e:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxNTYxMTAvBgNVBAUTKDAzNDZCNjM0RjI2M0Y2MzY4NDIzOURCNkRGNjRCQkJB Q0RGN0Y4QTQwHhcNMjUxMjE4MTc0OTQxWhcNMjUxMjI1MTc0OTQxWjAYMRYwFAYD VQQDDA02OTQ0M2ViNS1jYjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQkRfVLbqid4U4/uU/ykQ24EuXUncZ6aCR41I+S8/YKdwUradtANk6yy9xpo h4JTqVKIN4KfgbujUw6Tda1KdRM8dgsQiClShqs2dw+UeotICLLvv7DOUPcRT3hm tCvZrGrAfOMJaQXMuQ9e00Ce3FdQOEc+5upB73n2drmKz1OlVdLB5gCSRxtEd/Kv 6/+oUakEf+E667rnzGwIKqvCAbF5cz/rXRUQAxdBGHgqsDQEPnoTh3WN2RtIGKTm 4W9OOoRvLdSs/y+/DtWcplLgBtMDaONOgFB8edot5+cHBJaiE5ZT9tD/QN2nLIyf p3fwOM/8wcyr1cBYhEy6thcRHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkgcQ1d ujzBNYY/z8JSE66t5T88MB8GA1UdIwQYMBaAFANGtjTyY/Y2hCOdtt9ku7rN9/ik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzE1Ni9COUYwODQ0Q0Yy M0QxMUU5QUY4NDI3MjRDNEY5QUUwMi9BMGEyTlBKajlqYUVJNTIyMzJTN3VzMzMt S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwYTJOUEpqOWphRUk1MjIzMlM3dXMzMy1LUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzE1Ni9COUYwODQ0Q0YyM0QxMUU5QUY4NDI3MjRDNEY5QUUwMi9BMGEyTlBKajlq YUVJNTIyMzJTN3VzMzMtS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq80a1iMMx4rJJHJSfTEfe3R8C5qt+sdwyBSmiECVDzv6OhlKZKqm+ U120hUk7L9VHrd0QNvu8g4a1GORhl0HHLjMEFTHX52lQHo3+EBm9iPnWkWKXTb6G V0PVavvKpaaaiJxs+3WijUdJf16sh2jBkbd2dciu4yJL2j2V2XKXcioCCzC6Bzmp V4vE2Hcnqz9UmjFJ5veUOw89hx1sYrFRPcMMAZaU5+88P4Lbug/hZEPAX2URWqGT 1e+zZEx9V1fbq/FQbNUVMO410nW9Iu2Qyn+Avxmyay4nKLNXS4rIQKY2QAnk8Iga mzy37TmmcdbnQWt2Hbvlp0jHZcZToT5d -----END CERTIFICATE-----Generated at Fri Dec 19 17:43:48 2025 by rpki-client