This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: xnlfORBKVS19OB+OV6rTUD/ZfUZmHVT2ym5SlOiltRg= Subject key identifier: 57:C0:DE:D9:4A:45:69:8F:FF:6D:A0:1F:F9:CE:E2:C3:31:41:8D:7D Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 055E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0553 Signing time: Thu 18 Dec 2025 22:46:49 +0000 Manifest this update: Thu 18 Dec 2025 22:46:48 +0000 Manifest next update: Thu 25 Dec 2025 22:46:48 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: rKa0z2gFSoXBE3xk1GADaUxQa0swRQj2O958RURBrg4=) 2: 5EAA75CC28E511F0BE4DF317C4F9AE02.roa (hash: UPMPKRsc2hV5JHHuE9pFh4JOQF+bzX7eP0KzlGdFT7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1374 (0x55e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Dec 18 22:46:48 2025 GMT Not After : Dec 25 22:46:48 2025 GMT Subject: CN=69448459-277e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d9:91:1e:a6:1f:ca:b0:2d:f5:2e:85:0d:fd: 8c:40:fc:27:11:ab:26:dc:67:19:8d:76:85:5a:59: 4f:f6:f5:50:8c:c9:6b:2c:aa:b0:8d:c6:e8:e8:5c: 1b:94:cd:4c:f8:40:ed:30:5c:3a:30:22:ea:30:18: 74:42:75:95:3c:2f:bd:0d:68:9b:04:49:af:8e:88: a7:4d:80:bb:32:de:41:36:f2:1d:f9:95:60:7d:80: e3:ce:7b:61:f1:b7:e4:fe:e7:5e:d0:02:55:30:6a: 6e:cb:c7:f4:cb:2b:39:d9:ed:da:1d:83:50:d1:c7: f3:2d:d2:ba:11:65:36:e5:f9:d7:df:e5:99:3e:8a: 38:9e:27:9d:59:7d:bd:51:d1:00:76:0f:dc:30:35: 49:b0:0e:bb:d2:06:b8:c2:86:2e:33:09:0d:13:29: b6:df:12:c4:fe:4b:3b:72:92:05:8c:04:37:a5:66: 44:6e:a4:60:73:1a:76:d0:9a:37:38:55:c7:0c:10: c1:8e:b4:7f:8b:c5:0c:3e:b7:5d:33:5f:3b:9b:6a: 22:ca:2b:a3:89:3b:0c:7f:23:f7:ca:97:f3:e8:95: 52:12:87:67:77:81:09:e9:0b:1a:fe:0c:85:47:10: 59:e7:c3:2d:77:8e:5b:60:73:38:14:24:6d:2a:88: 67:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:C0:DE:D9:4A:45:69:8F:FF:6D:A0:1F:F9:CE:E2:C3:31:41:8D:7D X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:46:92:ce:e3:31:de:e7:4c:8c:7b:7c:f8:cd:76:2a:46:42: 46:73:ba:aa:eb:66:a2:82:82:b3:c4:7e:91:70:56:09:fd:23: 48:4f:bd:b2:10:bd:38:73:d1:b3:08:23:02:2d:15:7e:98:4c: 55:a0:88:ef:42:3a:5e:75:d2:f3:dc:16:3f:e7:22:1d:87:4d: 9c:61:b4:2f:3c:ae:ca:1d:be:8d:8d:a1:c6:ab:a4:a7:64:1c: 60:5e:51:85:d2:75:ba:10:5c:68:35:db:e9:10:58:26:91:75: 6b:22:14:6c:1e:8d:f8:d7:b4:92:98:03:8e:d9:45:5a:fa:34: 7e:8e:5b:11:cc:e6:33:08:f1:0c:dd:19:93:83:a5:9a:23:4b: 9d:6c:b7:36:d8:db:3e:56:15:9a:e1:4a:cf:48:7d:d6:7b:f1: e3:88:70:c6:31:66:1e:00:d1:48:dc:12:17:49:b7:3e:67:81: 2e:40:02:52:58:e0:dd:b3:a1:e9:fe:72:43:a5:d8:4e:ce:85: 0c:14:93:fb:b8:5e:83:4e:3e:36:4b:09:59:12:02:84:e0:4d: af:09:fb:14:61:62:08:9e:36:82:7d:57:97:9f:1d:0d:b7:88: 5a:70:f1:d9:d4:c5:c2:46:7b:73:d7:c7:4a:31:b8:a6:88:76: f0:cc:27:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjUxMjE4MjI0NjQ4WhcNMjUxMjI1MjI0NjQ4WjAYMRYwFAYD VQQDDA02OTQ0ODQ1OS0yNzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdmRHqYfyrAt9S6FDf2MQPwnEasm3GcZjXaFWllP9vVQjMlrLKqwjcbo6Fwb lM1M+EDtMFw6MCLqMBh0QnWVPC+9DWibBEmvjoinTYC7Mt5BNvId+ZVgfYDjznth 8bfk/ude0AJVMGpuy8f0yys52e3aHYNQ0cfzLdK6EWU25fnX3+WZPoo4niedWX29 UdEAdg/cMDVJsA670ga4woYuMwkNEym23xLE/ks7cpIFjAQ3pWZEbqRgcxp20Jo3 OFXHDBDBjrR/i8UMPrddM187m2oiyiujiTsMfyP3ypfz6JVSEodnd4EJ6Qsa/gyF RxBZ58Mtd45bYHM4FCRtKohn6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfA3tlK RWmP/22gH/nO4sMxQY19MB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChRpLO4zHe50yMe3z4zXYqRkJGc7qq62aigoKzxH6RcFYJ/SNIT72y EL04c9GzCCMCLRV+mExVoIjvQjpeddLz3BY/5yIdh02cYbQvPK7KHb6NjaHGq6Sn ZBxgXlGF0nW6EFxoNdvpEFgmkXVrIhRsHo3417SSmAOO2UVa+jR+jlsRzOYzCPEM 3RmTg6WaI0udbLc22Ns+VhWa4UrPSH3We/HjiHDGMWYeANFI3BIXSbc+Z4EuQAJS WODds6Hp/nJDpdhOzoUMFJP7uF6DTj42SwlZEgKE4E2vCfsUYWIInjaCfVeXnx0N t4hacPHZ1MXCRntz18dKMbimiHbwzCeA -----END CERTIFICATE-----Generated at Sat Dec 20 08:09:39 2025 by rpki-client