This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft File: aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft (raw, json) Hash identifier: hIRl9rlr5RLoC7Sj257f+vDOwXUZ8yHD/oczo27dt/g= Subject key identifier: 70:52:13:13:A4:81:40:18:62:F7:0B:12:E0:F3:24:36:D0:C2:3B:4B Authority key identifier: 69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 Certificate issuer: /CN=A91DC146/serialNumber=690C729F18390564D670B18F7774754E5D279951 Certificate serial: 0656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft Manifest number: 0651 Signing time: Thu 04 Dec 2025 21:24:08 +0000 Manifest this update: Thu 04 Dec 2025 21:24:07 +0000 Manifest next update: Thu 11 Dec 2025 21:24:07 +0000 Files and hashes: 1: aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl (hash: e4ldrLKYQ15uwrDpfQosVFJDm534XdSdgaoOq1WkNbE=) 2: 4BB44892AE1111EBB4C2DA11C4F9AE02.roa (hash: JNSnvB3lv0/9vnQPkUAqkaUeoo68hc8fXSyVzWlD/Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC146, serialNumber=690C729F18390564D670B18F7774754E5D279951 Validity Not Before: Dec 4 21:24:07 2025 GMT Not After : Dec 11 21:24:07 2025 GMT Subject: CN=6931fbf8-cd8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:61:32:16:bb:84:e6:ba:82:c6:21:3c:7e:bd: 86:c5:85:4a:61:92:3f:cf:af:3e:08:99:96:ce:d4: 4b:a5:2d:1e:86:a2:48:7c:77:51:15:0e:28:5f:24: 0a:a0:97:95:74:0f:d2:16:d0:6c:75:c8:f2:37:56: 67:71:87:52:6c:06:51:e8:8d:59:e7:47:f4:10:00: 12:5d:90:73:b6:46:76:24:4d:b1:60:8c:e8:26:5b: 55:9f:de:1c:db:19:82:39:40:9c:06:b6:23:15:bb: bd:e0:8e:d2:8b:f9:2b:1d:55:e3:d9:0f:05:0b:ba: ba:0d:65:b5:67:e8:e0:c9:16:84:ef:07:eb:b3:9b: 23:45:cd:6e:84:30:a6:9a:30:b9:ab:df:09:fc:7f: a3:c4:bb:a3:10:bc:44:49:ea:e0:29:ee:65:f7:61: 8f:35:99:15:65:d9:f8:8e:9c:40:e6:5d:35:5a:aa: 77:5f:54:55:08:68:9c:f2:a2:ec:db:19:a2:9d:4b: 05:9d:91:65:a6:00:be:ab:fe:d8:05:91:42:ee:b2: 5a:d4:77:59:30:aa:6a:12:c1:5b:6c:37:b0:e9:0e: c7:0b:c1:00:77:c8:24:26:f0:6b:c3:05:5d:b6:42: 9e:84:14:f3:0d:86:0a:17:6d:c7:1e:16:ad:c2:ba: af:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:52:13:13:A4:81:40:18:62:F7:0B:12:E0:F3:24:36:D0:C2:3B:4B X509v3 Authority Key Identifier: keyid:69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:ef:06:f6:f4:31:b2:b7:de:60:4c:3e:f5:91:f3:30:b0:77: 08:17:42:b6:88:d8:f7:92:c5:a1:61:4d:26:4c:61:78:6b:50: db:ed:c7:62:8c:42:10:fd:7e:89:6c:9c:4d:ac:a0:68:87:39: ec:b1:09:e2:cf:3a:54:ae:dc:00:4c:1d:cb:cf:2d:2f:f8:a7: 82:2f:9f:a4:10:9f:c3:3e:08:d9:e6:1b:6a:19:cb:f7:e1:9a: 55:cb:aa:eb:57:be:51:7d:db:27:3e:d5:2f:70:1d:52:8e:95: b8:ea:0f:d6:ae:19:35:6a:96:a0:ed:0d:ba:5d:90:9c:a8:96: 1e:f7:42:00:27:f7:b6:f9:13:5b:bb:b3:9b:c8:76:21:69:c2: b0:05:4a:f7:d2:64:58:44:c2:a9:56:6a:1b:27:f2:f2:70:39: e1:f2:e8:73:4b:50:c9:14:c5:d5:b4:8b:ea:31:af:4e:84:83: cf:f2:53:5f:93:56:4e:c5:18:d4:13:62:83:84:88:5c:fa:14: 37:92:b3:ea:d3:d2:60:20:e4:80:30:1b:9f:71:e1:6f:f3:fc: 78:04:f4:5b:b9:b7:31:68:e7:f8:d6:02:9c:bc:3c:17:3f:a8: 2e:e8:ea:dc:05:14:80:1a:47:35:14:ca:6b:4e:fd:da:c0:94: 85:2c:fc:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMxNDYxMTAvBgNVBAUTKDY5MEM3MjlGMTgzOTA1NjRENjcwQjE4Rjc3NzQ3NTRF NUQyNzk5NTEwHhcNMjUxMjA0MjEyNDA3WhcNMjUxMjExMjEyNDA3WjAYMRYwFAYD VQQDEw02OTMxZmJmOC1jZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWEyFruE5rqCxiE8fr2GxYVKYZI/z68+CJmWztRLpS0ehqJIfHdRFQ4oXyQK oJeVdA/SFtBsdcjyN1ZncYdSbAZR6I1Z50f0EAASXZBztkZ2JE2xYIzoJltVn94c 2xmCOUCcBrYjFbu94I7Si/krHVXj2Q8FC7q6DWW1Z+jgyRaE7wfrs5sjRc1uhDCm mjC5q98J/H+jxLujELxESergKe5l92GPNZkVZdn4jpxA5l01Wqp3X1RVCGic8qLs 2xminUsFnZFlpgC+q/7YBZFC7rJa1HdZMKpqEsFbbDew6Q7HC8EAd8gkJvBrwwVd tkKehBTzDYYKF23HHhatwrqvLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBSExOk gUAYYvcLEuDzJDbQwjtLMB8GA1UdIwQYMBaAFGkMcp8YOQVk1nCxj3d0dU5dJ5lR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzE0Ni9EQUE3NjQ5MkFF MEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJXVFdjTEdQZDNSMVRsMG5t VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FReHlueGc1QldUV2NMR1BkM1IxVGwwbm1WRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzE0Ni9EQUE3NjQ5MkFFMEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJX VFdjTEdQZDNSMVRsMG5tVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm7wb29DGyt95gTD71kfMwsHcIF0K2iNj3ksWhYU0mTGF4a1Db7cdi jEIQ/X6JbJxNrKBohznssQnizzpUrtwATB3Lzy0v+KeCL5+kEJ/DPgjZ5htqGcv3 4ZpVy6rrV75RfdsnPtUvcB1SjpW46g/Wrhk1apag7Q26XZCcqJYe90IAJ/e2+RNb u7ObyHYhacKwBUr30mRYRMKpVmobJ/LycDnh8uhzS1DJFMXVtIvqMa9OhIPP8lNf k1ZOxRjUE2KDhIhc+hQ3krPq09JgIOSAMBufceFv8/x4BPRbubcxaOf41gKcvDwX P6gu6OrcBRSAGkc1FMprTv3awJSFLPyR -----END CERTIFICATE-----Generated at Sat Dec 6 15:11:03 2025 by rpki-client