This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft File: x52oqmnxJno4UemSoGnAL1DoArw.mft (raw, json) Hash identifier: 1tjS0QH/Q+WHli6G0WMXvvD+fgjBgkiRR0SX0bFXg8E= Subject key identifier: 44:BE:BE:C8:C6:A7:0A:AC:13:47:9D:7C:2B:89:4A:6F:98:74:D7:20 Authority key identifier: C7:9D:A8:AA:69:F1:26:7A:38:51:E9:92:A0:69:C0:2F:50:E8:02:BC Certificate issuer: /CN=A91DC524/serialNumber=C79DA8AA69F1267A3851E992A069C02F50E802BC Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft Manifest number: 01C2 Signing time: Fri 19 Dec 2025 02:10:47 +0000 Manifest this update: Fri 19 Dec 2025 02:10:46 +0000 Manifest next update: Fri 26 Dec 2025 02:10:46 +0000 Files and hashes: 1: x52oqmnxJno4UemSoGnAL1DoArw.crl (hash: BFP//MZ46hgS3RE/E7pcF+ryMKMQfk6b3Jq22+pmIIE=) 2: 0D705F8A2C5911EEBB4C2C4BC4F9AE02.roa (hash: hOVAvRIUigVI0CAVOiiMzqa8BgN7YWxwOV488s7RJJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.crl rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC524, serialNumber=C79DA8AA69F1267A3851E992A069C02F50E802BC Validity Not Before: Dec 19 02:10:46 2025 GMT Not After : Dec 26 02:10:46 2025 GMT Subject: CN=6944b427-8117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8f:61:0c:67:d9:cc:27:32:13:10:c4:91:5c: fc:c7:d3:f2:81:c9:19:89:cd:ff:f4:26:be:6d:22: 73:22:f3:74:c6:22:db:81:20:00:de:53:6a:28:0b: cf:4c:e6:68:df:09:a8:b8:94:ea:64:47:8c:ef:35: 00:1e:a2:ef:41:35:9e:ae:72:ea:98:f1:c2:bf:84: e1:81:d8:6b:91:cd:4b:dd:b4:b6:c8:2f:52:0a:d1: 56:de:0c:53:e4:dd:7f:c7:34:eb:b1:01:29:42:08: 7f:33:e5:df:61:63:d5:26:34:da:0d:d5:2f:cf:a6: 4a:0f:05:6b:5f:48:4d:0f:a5:bb:8e:8f:90:dc:e6: 5c:25:99:6d:95:ba:79:e1:13:f9:28:a8:71:bf:8a: 93:b9:da:1d:8b:60:5a:b4:fd:b3:66:b9:a6:b1:2f: 1a:88:bc:ed:b4:14:45:2f:50:5b:b4:d4:54:46:13: 5c:c0:aa:48:86:80:f4:fd:52:e2:13:e4:16:b6:5b: e5:d8:2a:6c:90:2f:15:b9:98:69:a9:e1:75:03:1e: 84:18:2f:28:93:67:8d:7d:0e:5a:cd:3c:80:6e:f2: e7:9a:b6:c5:92:6d:92:54:54:7c:96:b7:84:e8:2c: a2:94:54:ad:7f:5e:0f:9e:8a:e7:c7:09:dd:7a:b7: 8c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:BE:BE:C8:C6:A7:0A:AC:13:47:9D:7C:2B:89:4A:6F:98:74:D7:20 X509v3 Authority Key Identifier: keyid:C7:9D:A8:AA:69:F1:26:7A:38:51:E9:92:A0:69:C0:2F:50:E8:02:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:c5:c3:c0:ed:9f:4b:07:2c:06:62:65:70:f1:5b:bf:2f:0d: cf:f4:51:f5:c9:9f:9b:ca:86:32:42:42:06:5a:60:d9:dc:ad: 28:f0:fe:e1:56:67:01:95:f9:dc:fc:a6:31:4e:31:4c:4f:b1: f4:40:40:ac:c8:b4:42:b0:c8:11:22:26:31:e9:77:7f:be:52: 4b:87:82:79:a5:fe:ea:1d:a9:6c:52:19:3f:f7:7c:30:29:87: 50:10:e8:99:4a:09:fd:bc:8e:a1:d7:e6:e4:38:14:ee:a6:31: 63:f2:8c:42:cc:3d:cc:c1:22:e8:d6:42:6f:62:15:b2:ea:4b: 35:f4:93:33:38:77:7d:07:e8:f2:bd:93:fc:8b:5e:fe:f4:37: b6:36:03:ee:8d:fd:27:2a:e5:02:64:8f:56:17:76:1e:41:4e: d7:cf:52:9a:83:36:58:b8:a4:16:be:ad:ff:bb:2b:2b:0e:51: 99:4f:7a:26:8c:69:cb:00:71:6a:35:b6:45:21:24:75:6e:8e: c6:29:a0:9e:d8:a2:3c:ff:24:dd:fa:c0:3e:2b:d2:37:a0:62: e1:ea:5c:0f:41:90:ff:b4:35:e9:8a:99:e1:7f:37:f2:c1:ab: d5:03:19:d3:f2:b3:29:04:b3:36:c7:47:d5:17:fc:04:54:39: 12:4b:db:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1MjQxMTAvBgNVBAUTKEM3OURBOEFBNjlGMTI2N0EzODUxRTk5MkEwNjlDMDJG NTBFODAyQkMwHhcNMjUxMjE5MDIxMDQ2WhcNMjUxMjI2MDIxMDQ2WjAYMRYwFAYD VQQDDA02OTQ0YjQyNy04MTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqI9hDGfZzCcyExDEkVz8x9PygckZic3/9Ca+bSJzIvN0xiLbgSAA3lNqKAvP TOZo3wmouJTqZEeM7zUAHqLvQTWernLqmPHCv4Thgdhrkc1L3bS2yC9SCtFW3gxT 5N1/xzTrsQEpQgh/M+XfYWPVJjTaDdUvz6ZKDwVrX0hND6W7jo+Q3OZcJZltlbp5 4RP5KKhxv4qTudodi2BatP2zZrmmsS8aiLzttBRFL1BbtNRURhNcwKpIhoD0/VLi E+QWtlvl2CpskC8VuZhpqeF1Ax6EGC8ok2eNfQ5azTyAbvLnmrbFkm2SVFR8lreE 6CyilFStf14PnornxwndereM+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFES+vsjG pwqsE0edfCuJSm+YdNcgMB8GA1UdIwQYMBaAFMedqKpp8SZ6OFHpkqBpwC9Q6AK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzUyNC9CNUMyQjczNDJD NTcxMUVFQkIxODg2MjlDNEY5QUUwMi94NTJvcW1ueEpubzRVZW1Tb0duQUwxRG9B cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1Mm9xbW54Sm5vNFVlbVNvR25BTDFEb0Fydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzUyNC9CNUMyQjczNDJDNTcxMUVFQkIxODg2MjlDNEY5QUUwMi94NTJvcW1ueEpu bzRVZW1Tb0duQUwxRG9BcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1xcPA7Z9LBywGYmVw8Vu/Lw3P9FH1yZ+byoYyQkIGWmDZ3K0o8P7h VmcBlfnc/KYxTjFMT7H0QECsyLRCsMgRIiYx6Xd/vlJLh4J5pf7qHalsUhk/93ww KYdQEOiZSgn9vI6h1+bkOBTupjFj8oxCzD3MwSLo1kJvYhWy6ks19JMzOHd9B+jy vZP8i17+9De2NgPujf0nKuUCZI9WF3YeQU7Xz1KagzZYuKQWvq3/uysrDlGZT3om jGnLAHFqNbZFISR1bo7GKaCe2KI8/yTd+sA+K9I3oGLh6lwPQZD/tDXpipnhfzfy wavVAxnT8rMpBLM2x0fVF/wEVDkSS9vf -----END CERTIFICATE-----Generated at Fri Dec 19 19:02:58 2025 by rpki-client