This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: YQ/qkcMMH8ktd+Ky0MjOboHmNBpFw9qtmkFcEl0aZ30= Subject key identifier: 6D:95:7B:A1:99:41:BD:7C:20:38:95:5A:AB:C3:36:F8:39:C3:47:75 Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0B4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0B45 Signing time: Fri 26 Dec 2025 18:43:41 +0000 Manifest this update: Fri 26 Dec 2025 18:43:41 +0000 Manifest next update: Fri 02 Jan 2026 18:43:41 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: N0+2r0wlergMreeJUCKStVcYQi+AzRyx0lXkcQNmdHQ=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: 7dou7EZJS0k+10u39gMW4DiImFVNtTINLLrPstsJeHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 18:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2893 (0xb4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: Dec 26 18:43:41 2025 GMT Not After : Jan 2 18:43:41 2026 GMT Subject: CN=694ed75d-8fa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:13:cf:64:98:d1:7e:1f:4d:00:a5:ac:f1:be: af:a4:af:6c:9a:6d:a8:8b:29:dd:f3:e9:4a:0f:bc: 09:4e:ce:7b:fe:d9:1c:6d:b9:f8:a9:b6:af:fe:cd: 3c:6e:99:16:10:4a:bb:40:74:13:02:fd:81:97:c6: 8e:5b:41:c5:48:9b:9a:86:1d:a2:39:3e:f1:1f:e2: c4:64:5e:09:0a:61:e0:d4:52:cd:cd:1e:eb:ea:f9: 0d:d5:9e:67:5f:56:b4:86:43:c9:af:18:e6:89:62: 1c:dc:98:e2:29:3d:2d:8c:f9:ad:b7:e5:3b:a0:ea: 67:f8:5f:8f:b3:02:e7:8a:73:45:76:fb:9a:41:8b: 79:96:eb:03:87:19:ce:80:7c:53:e5:2c:04:8b:c3: 0f:3b:34:e0:41:e6:d9:42:54:f1:c0:ec:d2:9e:b4: 34:75:c6:5e:c6:29:78:82:ae:32:fb:5c:84:57:0c: 23:4e:78:97:b7:83:3b:80:80:fb:f7:35:6c:33:e2: 44:33:ee:2b:af:f2:7a:f3:b3:39:d9:8a:ee:ae:d7: 10:3d:48:ca:01:ec:c4:28:d0:b2:c3:13:56:11:e1: c5:b1:dc:37:02:08:18:12:b4:67:62:a0:6d:19:bd: df:c1:b4:f0:d5:ca:25:04:4c:09:b6:dc:64:32:b5: 47:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:95:7B:A1:99:41:BD:7C:20:38:95:5A:AB:C3:36:F8:39:C3:47:75 X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:c2:5a:a3:a9:b8:f6:74:18:d5:d9:df:d0:7e:04:e6:e2:39: 2a:9e:af:3d:72:bb:f8:3b:f1:62:15:36:9f:fe:0f:95:65:dc: 44:82:49:fb:5d:fc:9b:c3:17:f1:78:5a:bd:c2:d6:2d:e3:8a: ae:c9:37:88:af:7e:dd:58:21:b9:22:e9:be:d1:98:86:25:59: 57:33:59:6b:f9:37:38:09:08:aa:a8:08:59:0d:75:ae:83:f2: d9:01:13:ad:56:c8:66:81:86:4b:76:f9:81:00:c2:49:b5:96: 5f:0f:ab:c4:52:ee:e3:71:1a:7a:06:de:66:18:ed:34:52:21: 14:d9:6b:42:da:8e:9a:19:99:0c:32:76:72:80:a6:54:14:c5: 64:af:37:2f:70:84:3d:8a:1f:92:32:89:f3:a1:c7:22:35:25: 56:f8:47:1c:bb:cb:9d:cc:d6:44:b8:53:4e:c3:f1:61:af:9b: 91:01:70:c2:23:4e:70:ae:42:7d:37:74:23:d5:aa:50:e1:e5: 1b:cb:4e:7a:1f:85:af:f7:46:85:4f:82:06:90:30:f1:42:36: 79:ea:01:7f:60:94:00:9e:25:cc:19:3d:f3:f5:e4:a7:99:d6: 9b:fa:00:7b:72:46:75:7d:44:0d:6e:b0:62:00:63:cf:29:53: b0:f9:fa:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjUxMjI2MTg0MzQxWhcNMjYwMTAyMTg0MzQxWjAYMRYwFAYD VQQDDA02OTRlZDc1ZC04ZmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRPPZJjRfh9NAKWs8b6vpK9smm2oiynd8+lKD7wJTs57/tkcbbn4qbav/s08 bpkWEEq7QHQTAv2Bl8aOW0HFSJuahh2iOT7xH+LEZF4JCmHg1FLNzR7r6vkN1Z5n X1a0hkPJrxjmiWIc3JjiKT0tjPmtt+U7oOpn+F+PswLninNFdvuaQYt5lusDhxnO gHxT5SwEi8MPOzTgQebZQlTxwOzSnrQ0dcZexil4gq4y+1yEVwwjTniXt4M7gID7 9zVsM+JEM+4rr/J687M52YrurtcQPUjKAezEKNCywxNWEeHFsdw3AggYErRnYqBt Gb3fwbTw1colBEwJttxkMrVHcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2Ve6GZ Qb18IDiVWqvDNvg5w0d1MB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzwlqjqbj2dBjV2d/QfgTm4jkqnq89crv4O/FiFTaf/g+VZdxEgkn7 XfybwxfxeFq9wtYt44quyTeIr37dWCG5Ium+0ZiGJVlXM1lr+Tc4CQiqqAhZDXWu g/LZAROtVshmgYZLdvmBAMJJtZZfD6vEUu7jcRp6Bt5mGO00UiEU2WtC2o6aGZkM MnZygKZUFMVkrzcvcIQ9ih+SMonzocciNSVW+Eccu8udzNZEuFNOw/Fhr5uRAXDC I05wrkJ9N3Qj1apQ4eUby056H4Wv90aFT4IGkDDxQjZ56gF/YJQAniXMGT3z9eSn mdab+gB7ckZ1fUQNbrBiAGPPKVOw+foS -----END CERTIFICATE-----Generated at Sat Dec 27 21:03:54 2025 by rpki-client