This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: Whd4YG2O91VFSr0yUhNZO4I2q2yT41w24NxydY0xyp8= Subject key identifier: 2C:1E:DE:D8:40:81:B3:B8:BD:49:C8:0F:34:A7:10:75:FD:AA:1A:63 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: CA Signing time: Fri 19 Dec 2025 04:55:00 +0000 Manifest this update: Fri 19 Dec 2025 04:55:00 +0000 Manifest next update: Fri 26 Dec 2025 04:55:00 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: aDbb1UAQM265K+9E0EsuSCe35QO+BlCpXlwb1R1Bv08=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 6sFK3IOISiUObcshTaAhJEDmqO5j9CtjdCqW8qlBcT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Dec 19 04:55:00 2025 GMT Not After : Dec 26 04:55:00 2025 GMT Subject: CN=6944daa4-ad95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:47:bb:bf:6c:be:49:b8:83:4c:58:25:00:17: ca:ec:ff:44:d8:63:02:61:af:a2:b7:9e:85:7f:5d: 4a:db:24:0e:fb:26:53:7a:74:a9:c1:1b:0b:36:c6: eb:10:c6:fa:80:98:57:47:58:6d:5c:a9:13:d0:eb: 8a:2a:4d:62:24:16:b2:b2:58:b1:7c:b2:bc:85:6c: fe:15:64:12:5f:c1:59:2d:e1:dd:b7:dd:8b:d1:7a: 69:86:ae:22:bb:86:7c:a1:40:3d:c3:4a:0b:b3:9e: 68:eb:41:d1:ae:21:81:ff:ef:ee:29:36:50:bb:21: 28:5f:d8:a5:c6:1e:69:69:f0:82:9b:1a:9a:82:ae: 56:08:79:01:76:a1:46:51:fa:43:66:32:0b:c4:6b: 57:20:bd:cb:39:26:6d:d8:ea:15:46:5a:8c:81:e5: 9e:d5:d9:1f:2a:6d:34:fc:c0:3a:a1:93:9d:00:50: dc:e5:d3:43:3a:c0:6c:4e:a4:78:be:c5:79:f6:da: e8:4f:55:4e:81:18:3d:d0:38:55:cc:a2:a2:30:01: 73:02:32:4d:cb:dd:d5:3c:b4:24:28:93:c7:dc:62: a8:d2:29:af:f7:62:93:fd:49:be:c3:79:0f:a4:6e: 3c:f2:33:a6:67:b0:26:42:21:4e:22:48:79:7f:b5: 78:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1E:DE:D8:40:81:B3:B8:BD:49:C8:0F:34:A7:10:75:FD:AA:1A:63 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:ea:25:85:dc:ac:ee:51:71:83:64:0e:d7:30:7c:c7:2f:4e: bb:03:93:17:c4:b4:54:0e:d9:6c:66:d6:e3:3f:87:60:78:28: 67:c6:9e:ac:b7:f2:69:14:e6:97:0b:07:f6:42:e1:89:0d:55: a8:80:72:9c:b8:ed:18:47:6f:51:68:c1:f2:55:44:6f:e3:eb: f3:4d:92:d7:76:07:e3:29:f9:a7:8d:a2:08:6a:36:de:2f:06: 1f:8d:ff:48:93:39:ee:0f:14:df:5e:67:2a:e1:b6:19:f9:4a: 20:d8:99:b2:4b:e2:c7:c8:57:57:ea:f2:97:2e:4c:32:46:99: c5:a0:45:49:f6:fd:5d:95:a5:cb:03:4e:a6:60:7f:0b:c2:5d: 61:c6:cc:82:44:a6:28:8a:37:02:b2:d1:00:72:14:f8:1e:e4: 31:db:8c:59:ba:3a:77:9c:bf:08:68:bc:27:d0:ca:b6:99:b8: 3f:33:07:63:28:29:fa:44:6c:7a:08:61:82:86:a3:16:72:62: 96:6b:69:3d:ad:cf:23:1c:27:33:46:65:b0:11:4d:f9:87:96: 0e:02:08:18:77:26:bc:9a:28:79:3a:9e:a6:0a:19:dd:56:84: 47:c3:36:99:b5:a5:10:ba:2f:ad:4a:a9:ac:d2:3c:d6:d4:f4: 6e:99:5c:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUyMEYxMTAvBgNVBAUTKEIxQkQ0REIwMjFGNTRDNzI2M0YzQzM1MzVGODgzNjg0 OUJBMkU2MEUwHhcNMjUxMjE5MDQ1NTAwWhcNMjUxMjI2MDQ1NTAwWjAYMRYwFAYD VQQDDA02OTQ0ZGFhNC1hZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEe7v2y+SbiDTFglABfK7P9E2GMCYa+it56Ff11K2yQO+yZTenSpwRsLNsbr EMb6gJhXR1htXKkT0OuKKk1iJBayslixfLK8hWz+FWQSX8FZLeHdt92L0Xpphq4i u4Z8oUA9w0oLs55o60HRriGB/+/uKTZQuyEoX9ilxh5pafCCmxqagq5WCHkBdqFG UfpDZjILxGtXIL3LOSZt2OoVRlqMgeWe1dkfKm00/MA6oZOdAFDc5dNDOsBsTqR4 vsV59troT1VOgRg90DhVzKKiMAFzAjJNy93VPLQkKJPH3GKo0imv92KT/Um+w3kP pG488jOmZ7AmQiFOIkh5f7V4DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwe3thA gbO4vUnIDzSnEHX9qhpjMB8GA1UdIwQYMBaAFLG9TbAh9UxyY/PDU1+INoSbouYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTIwRi80MUNDQkM2RUE4 MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRISmo4OE5UWDRnMmhKdWk1 ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTIwRi80MUNDQkM2RUE4MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRI Smo4OE5UWDRnMmhKdWk1ZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr6iWF3KzuUXGDZA7XMHzHL067A5MXxLRUDtlsZtbjP4dgeChnxp6s t/JpFOaXCwf2QuGJDVWogHKcuO0YR29RaMHyVURv4+vzTZLXdgfjKfmnjaIIajbe LwYfjf9IkznuDxTfXmcq4bYZ+Uog2JmyS+LHyFdX6vKXLkwyRpnFoEVJ9v1dlaXL A06mYH8Lwl1hxsyCRKYoijcCstEAchT4HuQx24xZujp3nL8IaLwn0Mq2mbg/Mwdj KCn6RGx6CGGChqMWcmKWa2k9rc8jHCczRmWwEU35h5YOAggYdya8mih5Op6mChnd VoRHwzaZtaUQui+tSqms0jzW1PRumVz7 -----END CERTIFICATE-----Generated at Fri Dec 19 17:47:25 2025 by rpki-client