This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: /astuU95ZUCuJjgOGXCUmdP51KMSW6bbT+0M2CVSD+8= Subject key identifier: 59:00:17:0F:23:15:A9:C0:55:20:E4:F2:DD:99:A5:F5:9F:B3:B9:39 Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: FF Signing time: Thu 25 Dec 2025 04:08:17 +0000 Manifest this update: Thu 25 Dec 2025 04:08:17 +0000 Manifest next update: Thu 01 Jan 2026 04:08:17 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: 58eUokYF2KV52iRwO4eOVgSkzI3tgFHHmtw4JaN2SuQ=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: YxY/TXb7ZV7RLnxJEIm3XTlQ67ELpalTGoTZTqConuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 04:08:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Dec 25 04:08:17 2025 GMT Not After : Jan 1 04:08:17 2026 GMT Subject: CN=694cb8b1-19b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:dd:8f:1c:1c:03:2f:9e:80:8e:1c:e5:7c:d7: 0f:49:a7:79:99:4b:1e:9c:3f:7d:4f:d3:8a:62:42: 03:d6:07:81:39:8e:cb:3d:01:bf:59:9c:e0:09:69: 86:85:c8:1d:d2:a8:90:1c:f9:76:bb:a2:95:db:3c: a2:3e:15:9d:c3:7d:5a:8a:dd:c8:cc:86:d9:79:3e: d7:fa:50:2f:91:99:e1:2d:a7:1d:d5:fe:b8:a7:1a: 4c:be:47:7c:8d:dc:40:fe:d0:00:b8:51:4a:e3:e5: 68:ca:31:de:5a:d4:8d:f3:ea:f1:48:94:4c:48:a6: 72:a2:46:27:29:6c:6d:ce:1b:ce:f3:af:bb:38:ca: 5f:e6:8c:3f:03:58:77:86:91:7f:cc:f8:59:a4:09: 4c:fc:3c:9b:2b:b8:3e:54:62:47:ad:61:c1:fa:04: 6e:45:7c:e9:a9:25:a9:a0:2a:35:2f:db:35:47:99: 6b:15:af:9f:ef:ee:9c:a0:ee:45:29:a6:4c:21:75: 57:12:80:c3:19:5a:b2:6f:ba:17:79:65:ee:a0:3c: fd:47:e8:e3:24:d2:03:1f:2e:50:45:d4:c4:92:b3: db:e7:27:46:fe:20:f0:52:69:27:3f:8a:b7:ca:9d: 8b:84:fa:28:2b:27:4b:d5:ae:c5:0b:7a:f9:d3:7a: ab:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:00:17:0F:23:15:A9:C0:55:20:E4:F2:DD:99:A5:F5:9F:B3:B9:39 X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:d5:a7:f2:fa:b6:d9:92:a7:0c:1c:df:7b:86:a3:de:64:7d: d3:29:79:2c:4f:c5:fc:17:a2:06:ac:7f:3b:fd:d3:c1:2a:e5: da:60:bb:b4:a2:ac:0b:86:41:af:54:9e:cd:a2:2c:d9:e6:a3: 1e:6d:63:0f:3a:47:7a:48:1f:0f:7e:02:5d:39:e2:c8:4f:1d: e4:10:40:58:40:f9:ab:ec:e1:ab:21:c3:bf:18:05:92:2a:59: dd:60:af:05:4e:e5:43:ad:33:20:6b:ad:00:b5:4d:5f:f8:9d: 19:fa:af:89:4e:46:80:52:63:3d:d7:b9:f5:f2:d7:ed:62:aa: 44:50:13:d9:58:96:44:db:ea:72:95:0d:c0:5b:5a:ed:c7:28: db:0c:96:b3:ed:70:d8:cd:f5:da:14:22:9f:ff:71:0e:07:9d: 4c:43:8e:76:0b:52:12:75:63:8c:51:66:f5:c1:a6:4b:da:13: fc:ae:f8:45:14:db:06:34:8e:59:3d:b3:93:95:98:a3:e9:e6: cf:2c:87:1c:9b:4d:1d:fb:2d:5a:37:9f:d8:c9:a1:08:6b:28: 0a:b6:85:ef:80:a3:ea:ae:c2:ed:c2:61:41:b9:4c:10:fc:a2: 12:a9:91:be:35:52:65:0d:13:83:82:2e:96:8c:bf:98:0a:14: bb:65:cb:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjUxMjI1MDQwODE3WhcNMjYwMTAxMDQwODE3WjAYMRYwFAYD VQQDDA02OTRjYjhiMS0xOWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs92PHBwDL56AjhzlfNcPSad5mUsenD99T9OKYkID1geBOY7LPQG/WZzgCWmG hcgd0qiQHPl2u6KV2zyiPhWdw31ait3IzIbZeT7X+lAvkZnhLacd1f64pxpMvkd8 jdxA/tAAuFFK4+VoyjHeWtSN8+rxSJRMSKZyokYnKWxtzhvO86+7OMpf5ow/A1h3 hpF/zPhZpAlM/DybK7g+VGJHrWHB+gRuRXzpqSWpoCo1L9s1R5lrFa+f7+6coO5F KaZMIXVXEoDDGVqyb7oXeWXuoDz9R+jjJNIDHy5QRdTEkrPb5ydG/iDwUmknP4q3 yp2LhPooKydL1a7FC3r503qrVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkAFw8j FanAVSDk8t2ZpfWfs7k5MB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDA1afy+rbZkqcMHN97hqPeZH3TKXksT8X8F6IGrH87/dPBKuXaYLu0 oqwLhkGvVJ7NoizZ5qMebWMPOkd6SB8PfgJdOeLITx3kEEBYQPmr7OGrIcO/GAWS KlndYK8FTuVDrTMga60AtU1f+J0Z+q+JTkaAUmM917n18tftYqpEUBPZWJZE2+py lQ3AW1rtxyjbDJaz7XDYzfXaFCKf/3EOB51MQ452C1ISdWOMUWb1waZL2hP8rvhF FNsGNI5ZPbOTlZij6ebPLIccm00d+y1aN5/YyaEIaygKtoXvgKPqrsLtwmFBuUwQ /KISqZG+NVJlDRODgi6WjL+YChS7ZcvT -----END CERTIFICATE-----Generated at Thu Dec 25 11:15:50 2025 by rpki-client