This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft File: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft (raw, json) Hash identifier: IqyWVh538hygEKBG455ktkLNTyHePTjVyZK1wj0S5j4= Subject key identifier: 3F:4C:01:95:43:50:56:92:55:AE:39:DC:26:B3:D6:40:C8:85:E4:6C Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 0880 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft Manifest number: 0878 Signing time: Sat 20 Dec 2025 19:59:17 +0000 Manifest this update: Sat 20 Dec 2025 19:59:16 +0000 Manifest next update: Sat 27 Dec 2025 19:59:16 +0000 Files and hashes: 1: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl (hash: JECgssi8Mpxhp1e6VJ6BnrussRuxQ+qMQZ6n9ytNcdQ=) 2: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (hash: xnTcG0VVgFarV7NphsJDgbhRV6XedAyDHFeL5PTrEnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2176 (0x880) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Dec 20 19:59:16 2025 GMT Not After : Dec 27 19:59:16 2025 GMT Subject: CN=69470015-0f95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:48:c3:ea:e3:9b:85:7f:7a:06:bb:6b:ba:15: 93:16:d4:0b:a6:bd:ba:db:82:2f:f8:82:21:f4:36: 59:60:61:ff:e3:27:60:ce:e1:e1:a5:c6:43:da:cd: d3:db:cb:79:4e:8a:77:0b:5a:4c:6f:2a:4d:d0:dc: 69:c1:da:ab:a5:62:94:e9:9c:1f:c1:4c:24:44:4e: 2b:56:d5:b1:41:f2:ce:5c:62:90:e1:06:28:93:b5: 81:80:b8:3d:3e:bc:31:a1:c1:72:69:d5:7c:67:f9: 50:db:8e:43:84:12:24:ea:fd:d4:b2:0c:5e:08:35: c3:13:8b:ed:9f:65:56:3a:2a:34:2e:9c:a9:8f:6b: 09:45:e9:c8:bb:51:23:e4:1b:8f:27:44:a7:4e:cc: 54:28:bb:97:31:07:cc:0a:79:9c:c5:59:83:58:4e: dc:4e:9f:54:7d:42:09:10:68:3f:e6:af:5a:60:af: a2:46:a9:b6:c9:58:82:d1:a6:c4:2c:ea:6d:9d:65: 4a:31:ff:b2:95:97:a1:28:25:ea:48:f7:a0:32:14: d9:e6:bf:6d:ec:57:80:74:62:d0:9f:a1:95:47:82: 20:f6:ab:09:e4:ed:83:5d:8b:2c:61:2f:27:10:37: 3f:4b:91:1d:0a:f7:a1:c4:c2:83:a6:5a:04:1d:1d: c5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:4C:01:95:43:50:56:92:55:AE:39:DC:26:B3:D6:40:C8:85:E4:6C X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:ce:0a:c7:5e:e6:0a:21:6a:26:cf:ce:83:33:d5:2c:9b:9c: 83:c3:bf:90:34:d1:ed:cf:6e:9b:e4:89:35:89:18:68:66:57: 1d:30:6e:79:e2:97:70:0a:c6:69:12:36:65:ff:5a:60:ce:6f: 1c:75:36:bc:7c:f2:53:34:16:41:b8:91:ab:98:20:87:98:5f: 62:20:5a:2d:bb:8d:31:5c:b8:42:32:9d:c6:56:e1:fd:13:c1: f3:2e:06:60:ab:91:cf:ae:c9:ae:92:34:83:1b:59:d4:92:f5: 18:fa:5a:27:c7:19:d2:c2:0a:63:42:b8:10:d3:fc:3a:9f:b9: 9f:31:bd:90:10:fe:68:4a:7e:eb:7f:7f:f3:82:17:12:38:5f: 21:32:33:cb:4e:7d:a5:cc:5d:69:46:d8:56:24:52:92:f2:6b: 8c:15:f8:09:67:a9:60:86:ec:fb:41:b7:16:2f:48:2f:41:ec: 26:63:74:81:20:9e:0a:b1:cd:59:82:74:0c:a0:f9:cb:b0:b5: 5e:a7:ee:0f:00:5e:44:9f:ef:94:ea:56:0f:6b:df:8d:fe:b8: 29:b9:b2:07:40:f9:0b:80:92:b9:53:6f:9c:ef:b4:02:46:b0: ac:14:a8:ba:d2:b0:5d:73:99:d9:d2:28:41:62:3c:3d:95:95: d1:6c:ef:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjUxMjIwMTk1OTE2WhcNMjUxMjI3MTk1OTE2WjAYMRYwFAYD VQQDDA02OTQ3MDAxNS0wZjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkjD6uObhX96BrtruhWTFtQLpr2624Iv+IIh9DZZYGH/4ydgzuHhpcZD2s3T 28t5Top3C1pMbypN0NxpwdqrpWKU6ZwfwUwkRE4rVtWxQfLOXGKQ4QYok7WBgLg9 PrwxocFyadV8Z/lQ245DhBIk6v3UsgxeCDXDE4vtn2VWOio0Lpypj2sJRenIu1Ej 5BuPJ0SnTsxUKLuXMQfMCnmcxVmDWE7cTp9UfUIJEGg/5q9aYK+iRqm2yViC0abE LOptnWVKMf+ylZehKCXqSPegMhTZ5r9t7FeAdGLQn6GVR4Ig9qsJ5O2DXYssYS8n EDc/S5EdCvehxMKDploEHR3FKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9MAZVD UFaSVa453Caz1kDIheRsMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDc1MC85MEQ1RUM1QURBQkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVG TVdkWFpsRVFQNEgxbXMzQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCzgrHXuYKIWomz86DM9Usm5yDw7+QNNHtz26b5Ik1iRhoZlcdMG55 4pdwCsZpEjZl/1pgzm8cdTa8fPJTNBZBuJGrmCCHmF9iIFotu40xXLhCMp3GVuH9 E8HzLgZgq5HPrsmukjSDG1nUkvUY+lonxxnSwgpjQrgQ0/w6n7mfMb2QEP5oSn7r f3/zghcSOF8hMjPLTn2lzF1pRthWJFKS8muMFfgJZ6lghuz7QbcWL0gvQewmY3SB IJ4Ksc1ZgnQMoPnLsLVep+4PAF5En++U6lYPa9+N/rgpubIHQPkLgJK5U2+c77QC RrCsFKi60rBdc5nZ0ihBYjw9lZXRbO+r -----END CERTIFICATE-----Generated at Sun Dec 21 11:14:01 2025 by rpki-client