This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft File: awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft (raw, json) Hash identifier: Bml/ZyPH0kn+dYAV2K947K0xmHMt2B8pGEjKqENNLzk= Subject key identifier: DE:E0:FF:C7:BE:F9:41:07:43:71:7E:34:6E:B2:06:0D:0C:39:E4:BE Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0CA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft Manifest number: 0C7B Signing time: Sat 06 Dec 2025 17:54:51 +0000 Manifest this update: Sat 06 Dec 2025 17:54:50 +0000 Manifest next update: Sat 13 Dec 2025 17:54:50 +0000 Files and hashes: 1: awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl (hash: RIQUp/W2OzpAFec/FvjRTi0nhVVCUs1iHPvvjIRY3/w=) 2: 1ECA8050696211EC8A05D115C4F9AE02.roa (hash: bKIVbhRs5w35IIfwUaxKPcUoIg+dZW+Orr/jkzvA1ls=) 3: 7A0359125C0E11ECA36CBF0FC4F9AE02.roa (hash: o9KgCgIfk9qmZZ9pgzWFPU4WMxKkFhiZ4bjzLNQ6ffs=) 4: DF1E2FEA97D611EB8BEF8223C4F9AE02.roa (hash: ltU83qHdHMX+gE2JiPsnwwizXD7fI0umImKJHXZ+qiY=) 5: 884C5FB8E60411EFBF5A7957C4F9AE02.roa (hash: X2T86WPoFoEyZcogT1ndr7RJyh96AHdCumJauzM/7xw=) 6: 84CFF0D6D2F311EEAFCF3273C4F9AE02.roa (hash: 3CkpfzzdlD3cY7gMPcsoVBDo+GHLrm85uXTpFP0fJ9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3234 (0xca2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Dec 6 17:54:50 2025 GMT Not After : Dec 13 17:54:50 2025 GMT Subject: CN=69346dea-144b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:c4:e3:05:e5:4f:3d:b1:a1:bd:82:aa:3e: 2c:70:14:14:7b:8a:c3:c0:ef:43:4a:97:21:fc:e0: 99:e9:45:5f:40:a1:e0:b2:48:a2:53:8a:36:bd:8b: 07:19:60:82:70:af:ab:53:b8:2f:61:79:8f:30:e9: 73:85:a2:9c:28:4f:77:98:3d:e4:03:71:b5:33:a6: 78:78:59:5c:f6:c3:66:16:1d:d9:47:90:35:50:c2: 42:65:1a:64:75:a7:68:7f:d7:26:de:c4:d0:e8:38: c8:eb:6e:8d:2d:a2:fe:df:65:25:ae:9b:7f:cd:00: 45:75:48:e4:82:26:76:71:70:01:59:f0:05:26:fc: 7a:c3:36:e2:79:32:02:10:f0:1a:16:ce:7d:21:a7: a5:71:6b:1b:3b:4e:76:6c:1a:eb:13:0d:1c:a9:85: fa:6b:19:38:cc:5f:7b:3a:b9:3b:be:56:4a:6e:74: a4:6a:7a:f1:d3:28:59:8b:cf:7e:93:94:24:8d:77: 75:6e:ed:2b:8c:09:88:ea:e8:e9:69:a2:12:46:75: 66:04:cb:a8:71:f6:73:36:60:a1:e7:b0:8a:ea:13: 42:36:61:1e:a0:cb:bf:39:c9:f6:aa:87:bc:48:4f: 15:ac:b2:3d:57:99:15:7f:77:97:51:8e:8d:30:1e: cb:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E0:FF:C7:BE:F9:41:07:43:71:7E:34:6E:B2:06:0D:0C:39:E4:BE X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:3a:bc:19:6d:0d:9b:01:9f:36:7d:a3:6c:16:91:59:85:a3: c1:a9:e5:50:ad:7d:c0:27:a0:43:6a:06:65:e4:a3:7f:1b:8f: 89:2b:53:e0:e8:e0:00:3a:43:cb:96:7d:99:5f:3a:bb:d2:5c: f9:f9:78:50:c1:23:ad:e9:74:49:39:d2:f1:85:73:c2:63:72: e7:e9:fb:55:b8:97:b7:de:8f:a0:1f:5c:fb:aa:a5:fb:fb:80: 2d:85:18:9f:10:56:bd:76:f6:66:e4:fe:9c:5a:47:70:11:28: 08:bb:08:fe:bf:4d:c7:e8:07:86:61:20:47:27:27:f2:a7:fe: bc:89:f9:fd:15:16:10:6f:6e:48:1a:7f:61:99:20:0f:78:c8: b0:7a:f5:6d:4e:9a:68:07:22:cb:40:6e:42:b5:0d:43:89:67: 4f:1e:59:42:26:26:0f:af:59:55:a9:24:fc:fb:d8:be:d5:35: 6b:16:f4:97:5c:4f:d0:0b:d4:ad:e1:03:c3:13:f1:3d:84:94: 85:2d:fe:67:e2:05:c3:ee:2b:dc:22:ab:e8:71:52:bf:a6:ac: b7:74:cd:ea:de:a7:68:63:86:1d:78:41:9e:57:a8:75:68:02: a8:cb:ad:a9:0a:f7:51:4c:b7:9e:24:7b:0f:e1:34:49:e6:ed: c3:17:33:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjUxMjA2MTc1NDUwWhcNMjUxMjEzMTc1NDUwWjAYMRYwFAYD VQQDEw02OTM0NmRlYS0xNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4HE4wXlTz2xob2Cqj4scBQUe4rDwO9DSpch/OCZ6UVfQKHgskiiU4o2vYsH GWCCcK+rU7gvYXmPMOlzhaKcKE93mD3kA3G1M6Z4eFlc9sNmFh3ZR5A1UMJCZRpk dadof9cm3sTQ6DjI626NLaL+32Ulrpt/zQBFdUjkgiZ2cXABWfAFJvx6wzbieTIC EPAaFs59IaelcWsbO052bBrrEw0cqYX6axk4zF97Ork7vlZKbnSkanrx0yhZi89+ k5QkjXd1bu0rjAmI6ujpaaISRnVmBMuocfZzNmCh57CK6hNCNmEeoMu/Ocn2qoe8 SE8VrLI9V5kVf3eXUY6NMB7LcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7g/8e+ +UEHQ3F+NG6yBg0MOeS+MB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDVFMC8yM0JGMkYyNjExM0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlW XzVRbW5YcWJ3Z0poY0UzT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3OrwZbQ2bAZ82faNsFpFZhaPBqeVQrX3AJ6BDagZl5KN/G4+JK1Pg 6OAAOkPLln2ZXzq70lz5+XhQwSOt6XRJOdLxhXPCY3Ln6ftVuJe33o+gH1z7qqX7 +4AthRifEFa9dvZm5P6cWkdwESgIuwj+v03H6AeGYSBHJyfyp/68ifn9FRYQb25I Gn9hmSAPeMiwevVtTppoByLLQG5CtQ1DiWdPHllCJiYPr1lVqST8+9i+1TVrFvSX XE/QC9St4QPDE/E9hJSFLf5n4gXD7ivcIqvocVK/pqy3dM3q3qdoY4YdeEGeV6h1 aAKoy62pCvdRTLeeJHsP4TRJ5u3DFzPi -----END CERTIFICATE-----Generated at Sun Dec 7 00:01:40 2025 by rpki-client