This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: smeqXYacIDgvMGe3fHGVljikN6jV873S9geYl3bM200= Subject key identifier: 10:5A:02:B9:6A:20:D1:BC:05:81:0D:A8:14:B0:65:29:F9:8E:64:57 Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 0645 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 0640 Signing time: Fri 26 Dec 2025 21:53:23 +0000 Manifest this update: Fri 26 Dec 2025 21:53:23 +0000 Manifest next update: Fri 02 Jan 2026 21:53:23 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: EybSZmEOxkz1SxCPhuVnf3x/AnrCiZfYW/UEgF2u0yg=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 21:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1605 (0x645) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Dec 26 21:53:23 2025 GMT Not After : Jan 2 21:53:23 2026 GMT Subject: CN=694f03d3-62bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f8:1d:c8:26:90:83:a9:8e:66:f4:99:3c:27: 9c:ec:91:46:53:a3:4d:87:55:18:bb:89:e7:11:ab: ce:60:fa:aa:64:b8:c1:a4:67:a6:0c:14:6d:22:6d: 39:0c:ea:a2:ac:69:65:84:16:a7:48:ea:99:1e:88: 33:4d:c8:28:6b:5e:c2:11:2d:49:d3:da:cc:51:38: a8:c8:98:fb:cf:2b:b1:24:0c:03:2e:9e:4f:26:6e: dc:f4:ed:6b:af:fc:01:bd:4a:a9:92:0e:b5:1a:cd: 05:6a:6a:7f:1c:8e:f9:9d:c2:bc:be:10:69:48:16: 8f:71:40:b5:16:ea:1d:2b:7a:8f:72:79:ed:fd:7f: 56:96:93:41:96:ba:00:5d:e3:dd:c5:bf:59:5a:b3: cc:a6:b2:ed:0b:45:3e:81:aa:82:bd:f8:d1:8e:7b: b1:a6:4c:5e:f5:26:f8:d1:f5:84:a4:a4:11:57:a1: 16:96:6c:ab:1d:b1:d8:7f:66:0e:f1:ac:94:a9:6d: d6:5f:ff:82:0a:16:ed:92:4a:57:5d:e8:0e:67:1d: 15:de:85:6a:5a:f4:93:ad:13:11:72:03:03:0d:ae: c9:53:a7:36:b4:13:09:01:04:ae:56:e4:37:71:32: 19:94:25:d3:c2:22:16:70:57:2d:57:ca:e0:08:f3: 2e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:5A:02:B9:6A:20:D1:BC:05:81:0D:A8:14:B0:65:29:F9:8E:64:57 X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:81:18:5b:1f:17:23:8e:41:4b:6c:b6:22:73:64:14:ad:f6: 45:d8:67:6f:d1:a9:1e:61:e0:ca:a0:a2:85:e6:7f:a2:27:bd: bf:53:2a:80:08:95:dd:da:75:e3:6f:a9:29:fb:72:3c:02:3c: 93:d0:b6:b0:e2:36:00:18:d2:fd:db:e9:49:33:7a:2b:c0:8a: af:05:90:eb:c4:03:5e:47:cf:5a:32:13:1a:08:2a:52:2d:59: e3:b9:49:11:09:7e:4c:e6:ef:eb:21:5d:28:92:d0:f2:2a:af: a5:97:c3:6e:8f:e2:80:c9:c8:ec:ac:73:d7:57:3e:6a:2c:d6: 2e:87:57:2a:8f:59:27:fb:89:48:d6:89:09:17:6b:13:d7:ff: 54:21:95:f8:2c:0d:59:72:82:02:87:c8:24:a6:bf:7b:2d:1b: 53:3e:8d:cd:18:31:d7:70:1f:d1:cb:fb:a3:1f:bc:21:33:2f: 7c:db:38:09:e7:f0:22:3b:ef:84:16:d7:16:06:10:e5:87:f7: be:30:be:06:cb:05:0a:0f:b6:42:39:ff:e4:4e:8e:6d:50:20: 6f:2e:18:ca:e2:d0:6f:e9:8f:94:78:3b:50:ec:e5:e1:39:36: 50:35:9b:aa:68:fb:e1:2f:61:04:8a:84:09:4e:6a:4c:8b:97: a6:c3:97:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUxMjI2MjE1MzIzWhcNMjYwMTAyMjE1MzIzWjAYMRYwFAYD VQQDDA02OTRmMDNkMy02MmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/gdyCaQg6mOZvSZPCec7JFGU6NNh1UYu4nnEavOYPqqZLjBpGemDBRtIm05 DOqirGllhBanSOqZHogzTcgoa17CES1J09rMUTioyJj7zyuxJAwDLp5PJm7c9O1r r/wBvUqpkg61Gs0Famp/HI75ncK8vhBpSBaPcUC1FuodK3qPcnnt/X9WlpNBlroA XePdxb9ZWrPMprLtC0U+gaqCvfjRjnuxpkxe9Sb40fWEpKQRV6EWlmyrHbHYf2YO 8ayUqW3WX/+CChbtkkpXXegOZx0V3oVqWvSTrRMRcgMDDa7JU6c2tBMJAQSuVuQ3 cTIZlCXTwiIWcFctV8rgCPMu0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBaArlq ING8BYENqBSwZSn5jmRXMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZgRhbHxcjjkFLbLYic2QUrfZF2Gdv0akeYeDKoKKF5n+iJ72/UyqA CJXd2nXjb6kp+3I8AjyT0Law4jYAGNL92+lJM3orwIqvBZDrxANeR89aMhMaCCpS LVnjuUkRCX5M5u/rIV0oktDyKq+ll8Nuj+KAycjsrHPXVz5qLNYuh1cqj1kn+4lI 1okJF2sT1/9UIZX4LA1ZcoICh8gkpr97LRtTPo3NGDHXcB/Ry/ujH7whMy982zgJ 5/AiO++EFtcWBhDlh/e+ML4GywUKD7ZCOf/kTo5tUCBvLhjK4tBv6Y+UeDtQ7OXh OTZQNZuqaPvhL2EEioQJTmpMi5emw5fG -----END CERTIFICATE-----Generated at Sat Dec 27 04:23:16 2025 by rpki-client