This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: IASfwun+MnKrJullgjsAgrO9gEq0Ehut5JeTn7zowYA= Subject key identifier: 99:76:52:F0:18:FE:6B:F5:EC:72:3C:16:36:EC:8B:78:AD:8A:23:0A Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 22B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 226B Signing time: Sat 20 Dec 2025 15:43:18 +0000 Manifest this update: Sat 20 Dec 2025 15:43:17 +0000 Manifest next update: Sat 27 Dec 2025 15:43:17 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: 881HgbpYIoLGLieGxT/CTe4wRmChF2gz6uKHVaLHSmw=) 2: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: yWabycL0fNoBRknav9eJgJDTlAAj5pKSPiafY7/LIVs=) 3: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: KNbruYSf1caR+avFgp2kJOhFS2xDq+YQHk8sfsca8TA=) 4: F4B9363CD97C11F0998DA3C49DD3641D.roa (hash: iKaGp6aMywsrc3+QJBPct8yxTotntICq1up42PPmt6M=) 5: 05302944D38811F096791A31C4F9AE02.roa (hash: 87Kz6rOL3NCK+78LHKYv5w0lk7VawQEMiErvRzb+ilE=) 6: 08C1C86EC44811F0A783F54FC4F9AE02.roa (hash: LQee+XhKOJkAia9gXyqy0jgcw8paskB+oVbYCpcaQvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8882 (0x22b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Dec 20 15:43:17 2025 GMT Not After : Dec 27 15:43:17 2025 GMT Subject: CN=6946c416-ae00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c5:e7:8d:02:22:1a:88:a4:aa:44:46:fb:19: ed:3d:6d:9e:c1:5f:bb:8b:54:7b:36:48:c9:de:a1: 43:7b:26:10:31:ad:cb:92:5b:8c:99:a5:9a:25:83: 7a:29:e9:aa:b9:14:7a:bf:2c:57:fd:11:20:6a:05: 6d:4f:5b:a9:ea:14:94:1d:53:53:5d:32:69:aa:77: a2:72:a4:4c:c1:96:a5:64:13:e6:6a:5d:4c:3e:4a: 21:b1:39:7c:4d:f5:c3:c8:6c:bb:2d:09:b3:a9:4b: ae:0d:b0:64:81:24:05:46:01:03:52:be:88:10:81: 16:63:7f:0f:b6:1e:48:90:25:b3:68:c0:52:3c:d5: cc:f7:50:ea:0f:2d:e9:e9:fc:2f:f7:16:53:47:ea: ff:a7:30:14:3e:ab:95:e8:dd:c9:49:74:4b:03:ef: f0:b3:bd:54:68:71:64:01:eb:44:32:e4:cc:b7:8a: 67:ae:46:87:00:a8:78:c5:65:75:96:e3:c9:6e:41: 22:ec:cc:49:d5:49:fe:6d:80:d7:7e:dd:7c:36:bd: c4:ec:38:cb:ea:47:35:ae:4d:49:66:ca:95:04:f7: a6:1e:3e:fe:b7:26:1c:ac:46:bf:dd:49:4d:4a:c4: b2:6c:68:07:3a:ee:0a:4f:4f:fe:c0:b1:01:b9:04: c6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:76:52:F0:18:FE:6B:F5:EC:72:3C:16:36:EC:8B:78:AD:8A:23:0A X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:da:d2:05:06:97:9a:93:f7:59:5b:25:ee:6d:f1:a1:82:97: 0c:b4:c2:c3:db:5b:01:35:5b:bc:db:72:e1:a5:2c:f3:a5:12: c3:08:9e:2e:df:41:cb:31:9e:21:15:86:64:df:86:f0:60:44: 89:39:4f:a7:6a:b7:1c:6d:e5:4e:8b:4c:0b:c4:8d:e9:2c:3f: 23:ae:d2:cc:ab:fc:71:7e:f9:f9:a1:ce:a6:02:fa:b8:9b:53: 7d:2d:cc:42:37:0c:1a:94:99:a4:fe:fd:17:03:cd:66:4b:48: 78:d4:63:0c:37:b2:d6:f8:f2:2c:ad:63:f2:b3:65:5f:6a:78: d6:d5:24:e9:84:4e:a1:94:41:04:18:19:19:f1:61:59:39:45: 70:07:5f:df:86:32:e1:7c:75:eb:bc:23:f1:8e:7b:f5:d8:fb: 4a:6f:6b:61:e9:eb:b5:a7:c6:b1:dd:5f:e0:5b:6b:c7:d6:6d: 8a:bb:d3:82:c2:e8:24:88:5f:44:66:ae:37:aa:61:fe:d7:fb: c7:f1:9b:d8:5b:ad:b3:19:1c:b5:67:c9:19:db:f5:a5:dd:1f: ce:d0:82:ef:04:fe:ef:74:33:94:a8:36:fd:f0:f9:24:14:02: 02:2b:4b:56:cd:bf:1c:60:c3:91:3f:6c:f5:f6:84:d9:ef:5a: 57:a3:88:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUxMjIwMTU0MzE3WhcNMjUxMjI3MTU0MzE3WjAYMRYwFAYD VQQDDA02OTQ2YzQxNi1hZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMXnjQIiGoikqkRG+xntPW2ewV+7i1R7NkjJ3qFDeyYQMa3LkluMmaWaJYN6 KemquRR6vyxX/REgagVtT1up6hSUHVNTXTJpqneicqRMwZalZBPmal1MPkohsTl8 TfXDyGy7LQmzqUuuDbBkgSQFRgEDUr6IEIEWY38Pth5IkCWzaMBSPNXM91DqDy3p 6fwv9xZTR+r/pzAUPquV6N3JSXRLA+/ws71UaHFkAetEMuTMt4pnrkaHAKh4xWV1 luPJbkEi7MxJ1Un+bYDXft18Nr3E7DjL6kc1rk1JZsqVBPemHj7+tyYcrEa/3UlN SsSybGgHOu4KT0/+wLEBuQTGXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJl2UvAY /mv17HI8Fjbsi3itiiMKMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC2tIFBpeak/dZWyXubfGhgpcMtMLD21sBNVu823LhpSzzpRLDCJ4u 30HLMZ4hFYZk34bwYESJOU+narccbeVOi0wLxI3pLD8jrtLMq/xxfvn5oc6mAvq4 m1N9LcxCNwwalJmk/v0XA81mS0h41GMMN7LW+PIsrWPys2VfanjW1STphE6hlEEE GBkZ8WFZOUVwB1/fhjLhfHXrvCPxjnv12PtKb2th6eu1p8ax3V/gW2vH1m2Ku9OC wugkiF9EZq43qmH+1/vH8ZvYW62zGRy1Z8kZ2/Wl3R/O0ILvBP7vdDOUqDb98Pkk FAICK0tWzb8cYMORP2z19oTZ71pXo4iT -----END CERTIFICATE-----Generated at Sat Dec 20 22:40:26 2025 by rpki-client