This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: 0ib5Fa13wgjRMe2Bl7PaUpucP42Md0ai8gqa4ZxuSsE= Subject key identifier: 75:7F:A4:19:3C:46:3E:7A:4E:DC:30:A2:A2:CC:62:A8:2E:5D:FD:04 Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 35E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 355C Signing time: Sat 20 Dec 2025 14:16:24 +0000 Manifest this update: Sat 20 Dec 2025 14:16:23 +0000 Manifest next update: Sat 27 Dec 2025 14:16:23 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: WaDXCgYt79/uaIpNWirMzHJy/uB7QOtaTMnjOZT/NBg=) 2: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: aQYfeFSthN9oof4UX3Yota3Vi8A1Xibnwm7ZRxMjljY=) 3: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: ZJSRmEu8ZSRqTlcPEDfX6hYX2fzOC+1QV4+V6A/VckU=) 4: DB3F9CA4817B11F0BDC51985C4F9AE02.roa (hash: JAIKKCo9C8qw6fr8uLdaMchlj/iGB4GqwIN2CeXneAc=) 5: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: nJvnNt0eJsmGuLUjItzV/NgJ7+2UZ1r5MhffEQ8w0sk=) 6: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: MRkFXSabw9acLO92YltXC7hoPQwJsDF6DX+Xsg12tnY=) 7: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: iJ1kB8ujNY3bRF9sFR+ioHj2q77p/d9prgJ8hOEg/Tw=) 8: DCD41E8E98D511F0B3824663C4F9AE02.roa (hash: EWlSDhZJpxeihw3aeM/sQAa10hdfChLc1MQCCqHexiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13795 (0x35e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Dec 20 14:16:23 2025 GMT Not After : Dec 27 14:16:23 2025 GMT Subject: CN=6946afb8-86d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8e:bb:59:36:2e:19:3c:e5:be:9a:a5:50:83: a3:87:4e:20:43:4e:4e:39:f2:f9:44:87:96:39:ff: 14:4f:db:d7:09:c2:92:e7:a3:cd:32:63:cb:e7:b0: 46:2b:3a:2c:b5:5e:7e:62:14:69:5f:57:73:37:c0: 26:26:0a:ed:40:50:91:5c:b8:27:e2:a8:6e:6a:16: 4a:03:8d:64:d3:4a:72:76:21:46:4f:5d:9a:b2:1f: 04:35:39:c0:9a:29:ec:6d:c0:07:1d:c8:cc:93:c6: ed:db:5a:3a:32:b5:d6:aa:78:6a:fe:98:ef:f6:7e: ad:a2:bc:c7:ed:bf:16:23:8a:a9:ce:9b:3f:a8:7b: ea:87:00:70:e7:00:2b:2b:0d:35:4c:30:a4:44:88: 4b:ce:f2:a2:32:a3:7b:ed:af:3b:61:67:63:c0:01: bd:c9:ad:8b:2c:89:30:df:1d:0d:9d:06:aa:e8:ce: 6c:9b:3b:70:62:40:3a:5c:8c:d2:69:a1:c6:f4:04: 8e:f4:ea:96:1e:72:ce:97:c5:f0:48:95:4f:9b:79: ca:53:e6:a2:60:ec:78:b6:50:7b:b1:be:e6:c1:b1: 1e:a9:1b:84:ba:c9:d1:51:52:09:76:cd:f2:a5:4c: fd:86:d9:ca:fd:3b:a8:94:ab:d4:d9:6b:3e:e7:cc: 3d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:7F:A4:19:3C:46:3E:7A:4E:DC:30:A2:A2:CC:62:A8:2E:5D:FD:04 X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:e5:fb:aa:50:d0:53:4c:39:17:10:fd:f8:77:31:f0:93:48: 30:cc:41:25:ea:5c:98:d2:fa:88:e6:cb:55:c0:a6:9c:19:67: ad:8f:6f:db:38:6c:98:6b:94:64:8d:63:ca:06:51:44:98:07: 7b:6d:18:48:c8:c2:72:45:22:72:76:b0:7c:12:85:84:82:d2: 35:c3:a3:be:df:ce:e3:0f:17:b2:fc:70:2d:79:e0:42:18:11: 38:06:c3:eb:67:78:9d:97:e8:43:d3:3d:67:96:57:4d:75:c3: 08:94:6c:6f:20:44:41:c5:26:2e:98:8f:90:c5:72:ac:94:e3: e7:c9:55:4a:b3:af:84:bc:53:48:44:1b:45:43:c1:5d:6f:fe: 7a:75:6c:36:66:82:4d:91:6f:87:f9:1b:f8:31:33:2b:65:a7: 74:3d:fb:12:74:7e:8e:55:22:d0:f6:b3:ce:44:c6:db:a7:7f: 8e:b9:58:22:f0:37:5f:04:3b:06:c6:97:61:e1:72:48:1d:52: 7d:ff:0e:cc:81:4a:7c:f3:95:59:2e:f1:e9:6e:46:28:eb:88: ba:8e:b3:05:83:7c:06:47:7d:da:89:a2:6c:0c:78:66:78:7d: 39:b5:7f:44:13:f0:33:a0:0e:3f:dd:13:f3:10:0b:d8:70:82: 3c:86:f1:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjUxMjIwMTQxNjIzWhcNMjUxMjI3MTQxNjIzWjAYMRYwFAYD VQQDDA02OTQ2YWZiOC04NmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvY67WTYuGTzlvpqlUIOjh04gQ05OOfL5RIeWOf8UT9vXCcKS56PNMmPL57BG KzostV5+YhRpX1dzN8AmJgrtQFCRXLgn4qhuahZKA41k00pydiFGT12ash8ENTnA minsbcAHHcjMk8bt21o6MrXWqnhq/pjv9n6torzH7b8WI4qpzps/qHvqhwBw5wAr Kw01TDCkRIhLzvKiMqN77a87YWdjwAG9ya2LLIkw3x0NnQaq6M5smztwYkA6XIzS aaHG9ASO9OqWHnLOl8XwSJVPm3nKU+aiYOx4tlB7sb7mwbEeqRuEusnRUVIJds3y pUz9htnK/TuolKvU2Ws+58w9DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHV/pBk8 Rj56TtwwoqLMYqguXf0EMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC05fuqUNBTTDkXEP34dzHwk0gwzEEl6lyY0vqI5stVwKacGWetj2/b OGyYa5RkjWPKBlFEmAd7bRhIyMJyRSJydrB8EoWEgtI1w6O+387jDxey/HAteeBC GBE4BsPrZ3idl+hD0z1nlldNdcMIlGxvIERBxSYumI+QxXKslOPnyVVKs6+EvFNI RBtFQ8Fdb/56dWw2ZoJNkW+H+Rv4MTMrZad0PfsSdH6OVSLQ9rPORMbbp3+OuVgi 8DdfBDsGxpdh4XJIHVJ9/w7MgUp885VZLvHpbkYo64i6jrMFg3wGR33aiaJsDHhm eH05tX9EE/AzoA4/3RPzEAvYcII8hvG4 -----END CERTIFICATE-----Generated at Sun Dec 21 18:18:58 2025 by rpki-client