This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: kTPUVrrjmBkcxBr/k7ohB7vPQrwkna1k4Ii/VlSDZwU= Subject key identifier: D8:24:38:20:59:C6:CB:11:76:38:42:6B:22:8E:AB:63:AC:44:9D:11 Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 082A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 0824 Signing time: Sat 06 Dec 2025 19:57:52 +0000 Manifest this update: Sat 06 Dec 2025 19:57:51 +0000 Manifest next update: Sat 13 Dec 2025 19:57:51 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: 7c70OgNFu+QPvhekdtx3yNe7eEBORoWDt6U4hI8DbSU=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: 9LJKIwXdcyYkVupcdiZ+JpUY7SOiyN67bapZPwlLn04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2090 (0x82a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Dec 6 19:57:51 2025 GMT Not After : Dec 13 19:57:51 2025 GMT Subject: CN=69348ac0-bb84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7e:96:ed:82:9e:35:a1:85:aa:26:bf:77:c0: 7a:0d:14:52:c2:1e:ef:d7:7a:e0:32:dc:d4:21:ac: e4:f3:e0:92:1e:10:53:59:0f:8f:52:be:84:9b:28: d0:b8:e6:cc:c4:a2:5a:bb:dd:05:7c:59:2a:41:1b: 51:a7:7e:a0:2e:22:13:f3:bb:81:e5:d5:35:30:41: 19:2c:99:77:63:3e:2d:e8:f4:df:8a:0f:38:18:1d: 8e:09:b0:3c:fe:b0:19:8e:68:aa:d5:78:fa:2e:0c: fe:e4:e5:12:38:f9:2e:e8:76:8e:8c:ff:9c:04:f0: cd:06:ed:e8:aa:7b:1e:0a:56:64:76:f2:57:e6:c0: 2a:5a:23:23:91:5f:62:72:14:84:14:13:56:0d:f7: c1:37:e5:32:f1:bc:0f:bf:f1:f3:ea:4a:77:68:fd: f5:b7:fc:82:64:f8:b0:82:6f:cb:f3:1f:1e:1e:ea: b9:fd:98:1e:d0:fc:7f:74:ba:39:b0:e8:6b:17:87: 05:cc:85:6c:d3:4a:45:ec:eb:63:98:3a:09:36:3f: c0:56:5c:e2:f2:9e:31:16:94:90:5d:f0:71:1a:74: bc:0b:36:c0:98:c4:cd:46:76:f4:5d:f5:b9:6e:73: 3a:07:22:b5:84:ea:7b:38:23:9c:d6:5c:32:11:45: fb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:24:38:20:59:C6:CB:11:76:38:42:6B:22:8E:AB:63:AC:44:9D:11 X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:e4:81:80:2d:16:8c:89:0d:fb:8b:b2:df:57:30:e4:37:ca: 88:4c:99:c3:f6:22:03:be:c3:ee:c4:1b:bf:3f:3a:23:35:95: e9:8e:29:2e:8c:bb:a0:74:4a:06:96:84:59:e2:9e:d8:02:31: 17:34:55:b2:62:04:f3:29:5b:b6:91:66:2e:db:c8:e9:b5:32: e5:43:66:dd:34:08:ca:c7:43:ac:da:5c:93:b0:02:d5:78:b2: f9:9f:70:87:35:d5:f2:06:e8:c6:f5:97:ea:21:b2:3a:00:10: fa:1b:0d:37:b0:9d:a8:a6:63:4c:ec:86:7c:b8:b3:4e:fd:c4: 3f:f1:3c:1c:ec:29:58:80:be:cb:3f:78:00:90:55:2b:85:25: 6c:ab:cd:a5:b1:2c:55:a2:3d:f0:00:65:ed:8d:0e:5d:42:67: cd:70:4b:39:a2:2f:04:00:b9:83:c5:f6:d4:09:a9:5b:d0:87: bf:e8:97:5b:f6:c7:fc:e0:c1:58:59:c6:f7:16:93:10:80:38: dc:6f:0b:c2:d6:42:4f:17:b3:54:1f:2b:74:0f:0d:b9:36:d4: 97:04:4f:35:1e:95:5c:1d:39:4f:ce:c0:13:fd:95:02:3e:23: e7:30:ed:9a:04:4a:50:fb:e9:5a:93:ab:9c:c4:48:8a:1c:85: 63:b6:74:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjUxMjA2MTk1NzUxWhcNMjUxMjEzMTk1NzUxWjAYMRYwFAYD VQQDEw02OTM0OGFjMC1iYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsX6W7YKeNaGFqia/d8B6DRRSwh7v13rgMtzUIazk8+CSHhBTWQ+PUr6EmyjQ uObMxKJau90FfFkqQRtRp36gLiIT87uB5dU1MEEZLJl3Yz4t6PTfig84GB2OCbA8 /rAZjmiq1Xj6Lgz+5OUSOPku6HaOjP+cBPDNBu3oqnseClZkdvJX5sAqWiMjkV9i chSEFBNWDffBN+Uy8bwPv/Hz6kp3aP31t/yCZPiwgm/L8x8eHuq5/Zge0Px/dLo5 sOhrF4cFzIVs00pF7OtjmDoJNj/AVlzi8p4xFpSQXfBxGnS8CzbAmMTNRnb0XfW5 bnM6ByK1hOp7OCOc1lwyEUX7WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgkOCBZ xssRdjhCayKOq2OsRJ0RMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl5IGALRaMiQ37i7LfVzDkN8qITJnD9iIDvsPuxBu/PzojNZXpjiku jLugdEoGloRZ4p7YAjEXNFWyYgTzKVu2kWYu28jptTLlQ2bdNAjKx0Os2lyTsALV eLL5n3CHNdXyBujG9ZfqIbI6ABD6Gw03sJ2opmNM7IZ8uLNO/cQ/8Twc7ClYgL7L P3gAkFUrhSVsq82lsSxVoj3wAGXtjQ5dQmfNcEs5oi8EALmDxfbUCalb0Ie/6Jdb 9sf84MFYWcb3FpMQgDjcbwvC1kJPF7NUHyt0Dw25NtSXBE81HpVcHTlPzsAT/ZUC PiPnMO2aBEpQ++lak6ucxEiKHIVjtnQE -----END CERTIFICATE-----Generated at Sun Dec 7 08:20:39 2025 by rpki-client