This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft File: ABc0faPzW3U5Ub30sbB_dh49nr8.mft (raw, json) Hash identifier: Onv8tomASfSXkPqgZ1JQay2+hoaMZF4h9WsicWZzlD4= Subject key identifier: 2F:4F:29:86:41:A5:7E:79:12:34:AD:4F:28:7D:4E:A7:97:F4:CA:13 Authority key identifier: 00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF Certificate issuer: /CN=A91E0AAD/serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Certificate serial: 0477 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft Manifest number: 046A Signing time: Sat 20 Dec 2025 23:25:23 +0000 Manifest this update: Sat 20 Dec 2025 23:25:23 +0000 Manifest next update: Sat 27 Dec 2025 23:25:23 +0000 Files and hashes: 1: ABc0faPzW3U5Ub30sbB_dh49nr8.crl (hash: zOIcbzsBTmgs4fiY8XGSOuX3sMBDHm+/gZZD1mjrKSs=) 2: 0BE6F39E79E611EC99DA1B51C4F9AE02.roa (hash: DlL3SJChckNOqua785W26axk8/KnPljvxeRS/X/r6xg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1143 (0x477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0AAD, serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Validity Not Before: Dec 20 23:25:23 2025 GMT Not After : Dec 27 23:25:23 2025 GMT Subject: CN=69473063-1cbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:bf:d8:12:26:ee:d1:79:58:36:3c:7b:a5:64: 38:38:f4:82:50:fa:76:23:d1:ab:52:39:23:c4:e9: 15:c7:26:fe:ac:1b:7d:9a:d3:31:68:03:7c:92:25: 3b:0e:a8:f2:d8:c9:02:52:2a:d8:8c:ad:6c:6d:d9: f1:08:ae:2f:ab:d0:a0:a6:5b:c7:aa:cb:80:e4:81: 5b:8c:56:b9:b0:05:dd:e0:93:8a:4c:e7:75:50:10: a8:b6:52:42:45:3d:44:8f:7f:d9:13:a7:ce:c5:eb: a4:73:d5:8f:d4:17:dc:a8:ae:90:24:ea:8d:e6:9a: 91:47:3e:3e:8f:10:5b:0f:7d:4c:14:80:ba:14:4c: 6e:67:41:52:3b:6d:78:1c:ce:02:ce:75:a1:92:31: 1b:18:40:1e:72:d4:92:3d:d0:6d:7f:b8:8d:d1:c6: 16:83:18:fa:4f:e0:91:47:4c:6b:76:f7:53:7e:fe: 13:83:40:d0:7c:62:24:f1:04:37:39:9a:e4:4d:67: b0:42:2f:3e:d3:be:da:e3:f5:5d:06:c3:20:f4:cf: e5:8e:22:90:ba:f2:66:7d:4a:2b:51:e5:6b:77:c6: 32:6f:32:16:6c:5b:53:59:fd:37:3b:4b:e5:78:16: b1:8d:d9:01:ce:fe:96:95:11:9b:33:c2:7e:6b:97: db:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:4F:29:86:41:A5:7E:79:12:34:AD:4F:28:7D:4E:A7:97:F4:CA:13 X509v3 Authority Key Identifier: keyid:00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:1b:5e:95:3b:c1:0c:cc:21:b1:d7:ae:1a:db:50:73:0d:d0: 01:b2:2a:b5:6d:0e:14:12:96:b4:87:81:6f:8b:2f:14:dd:e0: 4c:ee:86:55:9f:68:e3:90:21:dc:22:0a:be:46:7b:1b:01:b3: f2:86:ec:be:7b:fe:b1:5d:9d:39:c3:80:6d:c3:bc:55:bf:c5: f1:04:dc:b7:80:c8:35:6c:8d:82:71:b2:6b:91:37:ca:e7:6e: 81:db:f8:5c:42:c9:da:68:66:e9:35:20:39:f8:4f:01:25:7a: fc:01:ed:0b:f0:4e:d2:03:21:e8:a0:b1:94:d8:c8:59:a7:e3: b4:3d:bb:91:a8:bd:47:87:7b:02:ee:bc:e7:b1:4c:fd:9c:0b: 1e:41:a6:e0:f7:74:8b:23:92:1c:d8:bb:b7:04:67:69:a4:90: 50:d2:02:2a:bf:89:1d:7e:40:42:02:79:b7:78:fc:4b:45:24: 31:ae:7e:df:48:9a:c2:34:12:b0:58:79:c3:26:91:3c:39:07: 0f:66:e5:53:76:2b:c3:14:33:2e:94:44:23:a5:b8:31:b6:ad: 59:e3:61:b7:63:dc:f8:3f:52:ca:ac:9b:cd:fe:d7:ee:6b:ae: 76:60:81:71:6f:9a:9a:84:1b:f9:06:a4:1c:ec:15:d0:80:58: f0:18:bd:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBBQUQxMTAvBgNVBAUTKDAwMTczNDdEQTNGMzVCNzUzOTUxQkRGNEIxQjA3Rjc2 MUUzRDlFQkYwHhcNMjUxMjIwMjMyNTIzWhcNMjUxMjI3MjMyNTIzWjAYMRYwFAYD VQQDDA02OTQ3MzA2My0xY2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhb/YEibu0XlYNjx7pWQ4OPSCUPp2I9GrUjkjxOkVxyb+rBt9mtMxaAN8kiU7 Dqjy2MkCUirYjK1sbdnxCK4vq9CgplvHqsuA5IFbjFa5sAXd4JOKTOd1UBCotlJC RT1Ej3/ZE6fOxeukc9WP1BfcqK6QJOqN5pqRRz4+jxBbD31MFIC6FExuZ0FSO214 HM4CznWhkjEbGEAectSSPdBtf7iN0cYWgxj6T+CRR0xrdvdTfv4Tg0DQfGIk8QQ3 OZrkTWewQi8+077a4/VdBsMg9M/ljiKQuvJmfUorUeVrd8YybzIWbFtTWf03O0vl eBaxjdkBzv6WlRGbM8J+a5fblQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9PKYZB pX55EjStTyh9TqeX9MoTMB8GA1UdIwQYMBaAFAAXNH2j81t1OVG99LGwf3YePZ6/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEFBRC8wREU1QjQwRTc5 RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelczVTVVYjMwc2JCX2RoNDlu cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FCYzBmYVB6VzNVNVViMzBzYkJfZGg0OW5yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEFBRC8wREU1QjQwRTc5RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelcz VTVVYjMwc2JCX2RoNDlucjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcG16VO8EMzCGx164a21BzDdABsiq1bQ4UEpa0h4Fviy8U3eBM7oZV n2jjkCHcIgq+RnsbAbPyhuy+e/6xXZ05w4Btw7xVv8XxBNy3gMg1bI2CcbJrkTfK 526B2/hcQsnaaGbpNSA5+E8BJXr8Ae0L8E7SAyHooLGU2MhZp+O0PbuRqL1Hh3sC 7rznsUz9nAseQabg93SLI5Ic2Lu3BGdppJBQ0gIqv4kdfkBCAnm3ePxLRSQxrn7f SJrCNBKwWHnDJpE8OQcPZuVTdivDFDMulEQjpbgxtq1Z42G3Y9z4P1LKrJvN/tfu a652YIFxb5qahBv5BqQc7BXQgFjwGL03 -----END CERTIFICATE-----Generated at Sun Dec 21 06:44:37 2025 by rpki-client