This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: MVUZNcqqORQdHk2Z1y/wGTeFgtQmueQzsfqgX0F6JRA= Subject key identifier: 0F:AF:C3:6A:59:EC:9A:EF:D7:E4:14:CE:ED:C7:96:77:C7:D0:90:A0 Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 095F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 0958 Signing time: Sat 06 Dec 2025 19:19:47 +0000 Manifest this update: Sat 06 Dec 2025 19:19:46 +0000 Manifest next update: Sat 13 Dec 2025 19:19:46 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: 5SH9A7hV7gc53juFbneGW2BE5BFCKncHR7HaZW6SM5E=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2399 (0x95f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Dec 6 19:19:46 2025 GMT Not After : Dec 13 19:19:46 2025 GMT Subject: CN=693481d3-4fe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ef:5d:ed:05:fb:93:3f:8b:d3:83:63:b1:c3: 4c:b6:59:fe:e9:2a:d9:ec:c8:97:d8:8a:5f:a1:bf: 34:9f:bb:00:af:8c:1a:96:8a:06:9c:6e:de:9a:35: 5d:ff:23:34:32:ca:19:ae:29:d5:6e:93:e8:7f:e2: 33:90:88:5b:fd:92:d4:99:73:3c:2d:87:bc:67:f7: 43:82:23:d4:00:97:b0:a4:bc:a7:90:de:54:31:ef: 14:85:ed:25:67:72:c3:42:ad:70:fc:90:1c:60:b6: 03:b8:c6:c9:a7:7a:c4:59:67:bb:9f:80:f2:15:36: d6:4a:f3:db:e9:1f:2c:eb:f8:62:86:d1:fe:40:eb: 76:80:93:ee:a2:4a:2b:93:d6:a1:cb:28:06:a8:95: 17:50:a4:a9:8d:ea:c1:e6:81:29:6b:3f:48:38:71: 3e:d6:45:30:e7:79:c1:71:28:1e:98:fa:39:22:20: 97:78:08:ae:ae:81:79:18:ad:80:18:ca:43:2c:84: a7:15:a1:53:1b:81:2d:50:94:f7:54:b0:70:5f:e2: d8:1c:44:0d:12:96:21:90:fd:54:2b:d8:c8:57:68: 70:d9:d4:44:b2:f4:a5:56:50:0d:7b:25:ec:23:a5: 39:ff:4a:b1:53:20:e3:99:4f:fd:c4:2e:48:77:32: 27:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:AF:C3:6A:59:EC:9A:EF:D7:E4:14:CE:ED:C7:96:77:C7:D0:90:A0 X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:5d:76:89:58:58:d0:7e:5e:ea:04:e4:53:4e:8d:93:45:49: 02:2c:2c:b5:12:a5:00:a6:47:84:7d:b3:49:28:b8:c0:e6:c3: 56:2a:3e:30:a0:ad:19:fd:61:f5:bc:40:e3:d6:11:d7:41:17: 58:af:f7:c5:26:68:83:bf:6f:eb:b9:e3:29:62:85:f9:89:46: 69:08:c1:e8:74:e0:90:f2:63:c8:1d:8c:10:1f:f8:be:66:03: 39:5e:63:a0:f0:46:92:ed:4e:99:e4:92:12:91:e3:17:a7:e5: c2:cc:1e:ad:b0:bb:c9:2f:fa:49:80:3e:9d:cd:4d:33:ec:39: 7f:81:d6:20:6e:c8:a3:99:dc:f2:7d:ad:4a:d7:d6:b4:93:c7: 47:41:2c:ad:66:9a:f4:ca:b4:84:70:60:ac:55:76:53:c3:7b: fa:45:e7:8e:a6:99:d6:41:fa:df:44:49:34:5f:61:67:1f:d3: be:80:fe:b4:76:6c:40:9c:6d:e5:7b:ba:af:0d:f8:48:a1:bd: a6:02:bc:be:a8:0d:dc:c4:53:99:ea:34:aa:61:67:26:75:a2: e0:53:e3:c0:70:82:b3:0d:cc:35:3b:81:b7:d3:ee:a5:da:fe: 63:d3:e9:c9:f6:33:12:bd:e9:b0:89:1d:04:f9:1a:5f:62:85: 84:c7:d6:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUxMjA2MTkxOTQ2WhcNMjUxMjEzMTkxOTQ2WjAYMRYwFAYD VQQDEw02OTM0ODFkMy00ZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyu9d7QX7kz+L04NjscNMtln+6SrZ7MiX2Ipfob80n7sAr4walooGnG7emjVd /yM0MsoZrinVbpPof+IzkIhb/ZLUmXM8LYe8Z/dDgiPUAJewpLynkN5UMe8Uhe0l Z3LDQq1w/JAcYLYDuMbJp3rEWWe7n4DyFTbWSvPb6R8s6/hihtH+QOt2gJPuokor k9ahyygGqJUXUKSpjerB5oEpaz9IOHE+1kUw53nBcSgemPo5IiCXeAiuroF5GK2A GMpDLISnFaFTG4EtUJT3VLBwX+LYHEQNEpYhkP1UK9jIV2hw2dREsvSlVlANeyXs I6U5/0qxUyDjmU/9xC5IdzInJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+vw2pZ 7Jrv1+QUzu3HlnfH0JCgMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCXXaJWFjQfl7qBORTTo2TRUkCLCy1EqUApkeEfbNJKLjA5sNWKj4w oK0Z/WH1vEDj1hHXQRdYr/fFJmiDv2/rueMpYoX5iUZpCMHodOCQ8mPIHYwQH/i+ ZgM5XmOg8EaS7U6Z5JISkeMXp+XCzB6tsLvJL/pJgD6dzU0z7Dl/gdYgbsijmdzy fa1K19a0k8dHQSytZpr0yrSEcGCsVXZTw3v6ReeOppnWQfrfREk0X2FnH9O+gP60 dmxAnG3le7qvDfhIob2mAry+qA3cxFOZ6jSqYWcmdaLgU+PAcIKzDcw1O4G30+6l 2v5j0+nJ9jMSvemwiR0E+RpfYoWEx9ZV -----END CERTIFICATE-----Generated at Sun Dec 7 01:51:46 2025 by rpki-client