This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: 8uDJCQvxIkTJraVuXs6A/WWBH+6JDZtwOvBGONI3RLA= Subject key identifier: 5C:0C:E3:F8:F3:E1:78:7D:51:29:A2:91:AD:26:74:B2:48:07:3A:52 Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 14E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 14CE Signing time: Thu 18 Dec 2025 16:44:59 +0000 Manifest this update: Thu 18 Dec 2025 16:44:58 +0000 Manifest next update: Thu 25 Dec 2025 16:44:58 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: u8o0sXTlKB03MesjbC8k6nhUHgmgdBPg8rxNJ3ES3bU=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: U3tQJQlcyfHM4FE2g1sFZHo1n5O210FCbrxqZ5WoAEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5346 (0x14e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Dec 18 16:44:58 2025 GMT Not After : Dec 25 16:44:58 2025 GMT Subject: CN=69442f8b-9bbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ce:00:34:3d:93:4b:e3:d2:38:82:3c:85:5d: f5:d4:0a:f2:a9:80:65:29:8b:cf:ce:b9:5c:f7:1a: e0:29:ad:dc:fd:0c:ac:e4:22:22:41:4b:a1:7c:60: 04:ac:2e:b9:d4:26:aa:d9:c7:b4:47:f8:62:31:ab: be:4c:d9:fe:0c:11:4d:fb:f4:0f:30:fa:6f:1c:f9: 6e:d6:a6:61:5b:00:3e:7d:98:f2:b4:79:69:d1:cf: 1f:6d:c7:59:69:6c:5c:46:ab:cb:20:58:bc:47:3e: ea:6a:f1:d4:98:e8:69:54:86:8c:8c:39:6b:5e:93: 7c:fb:5d:48:3f:0c:10:51:37:8c:bf:d1:5f:07:9e: a8:c6:80:1d:d9:8b:15:e8:50:44:1a:00:5a:e2:8e: cd:6b:32:47:d8:66:8d:ec:99:fa:44:8e:eb:08:3a: 4f:9e:32:0b:e7:4c:94:d2:84:09:4b:85:96:7c:b5: 61:28:c1:1b:aa:3a:8e:d1:7f:09:24:98:1a:be:93: c4:94:00:42:a2:bf:54:a3:48:2f:73:ef:96:7b:b1: f4:89:74:15:8a:21:33:05:48:86:79:89:c4:28:bb: 1f:ca:20:6d:e5:13:c8:87:cc:02:88:cb:a3:22:a5: 38:f2:1e:36:61:1f:02:6c:ee:a2:66:29:06:4e:b8: 5c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0C:E3:F8:F3:E1:78:7D:51:29:A2:91:AD:26:74:B2:48:07:3A:52 X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:34:7f:ae:ee:1d:3f:7b:ce:3e:b2:ae:cf:32:cc:ae:6e:36: 27:17:91:c2:60:7b:a6:c5:df:d3:26:a9:5b:7d:b9:0c:f7:c9: 50:02:be:65:b1:68:8a:ba:7c:78:9c:4e:c4:35:f6:c3:19:1f: b6:48:65:95:34:b1:fe:2a:12:e2:8a:38:30:44:02:8e:96:11: 8c:14:a6:0c:19:97:84:c0:59:d6:71:90:55:e9:d5:f1:38:06: c9:07:b1:9e:cb:25:cc:bf:e2:b4:e8:67:fd:7a:b2:a0:f7:f8: 46:e3:22:74:55:df:04:8f:28:4e:0b:4f:ed:19:b2:3e:52:e1: 88:f7:b5:19:d5:42:2f:2e:72:ef:6c:87:02:c3:44:4c:82:58: 9d:69:63:d2:c2:26:fe:5d:de:15:a9:49:61:a1:4c:6d:dd:94: 7f:10:b6:73:13:ec:a6:38:c7:b6:f4:39:ac:40:c8:39:63:8b: 7f:76:62:5f:fe:a4:77:a0:cc:63:ef:56:d4:66:59:2f:cd:dd: e1:e6:80:ad:8a:99:47:6b:0b:75:ae:9c:a7:61:8c:39:87:ff: ce:24:6b:06:d2:9c:93:b3:d8:a7:ef:80:50:6d:95:52:f9:a3: 6d:89:98:78:29:81:55:d7:8c:3f:88:89:49:5e:d9:8d:e7:22: aa:5f:0a:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjUxMjE4MTY0NDU4WhcNMjUxMjI1MTY0NDU4WjAYMRYwFAYD VQQDDA02OTQ0MmY4Yi05YmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2c4AND2TS+PSOII8hV311AryqYBlKYvPzrlc9xrgKa3c/Qys5CIiQUuhfGAE rC651Caq2ce0R/hiMau+TNn+DBFN+/QPMPpvHPlu1qZhWwA+fZjytHlp0c8fbcdZ aWxcRqvLIFi8Rz7qavHUmOhpVIaMjDlrXpN8+11IPwwQUTeMv9FfB56oxoAd2YsV 6FBEGgBa4o7NazJH2GaN7Jn6RI7rCDpPnjIL50yU0oQJS4WWfLVhKMEbqjqO0X8J JJgavpPElABCor9Uo0gvc++We7H0iXQViiEzBUiGeYnEKLsfyiBt5RPIh8wCiMuj IqU48h42YR8CbO6iZikGTrhciQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwM4/jz 4Xh9USmika0mdLJIBzpSMB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9NH+u7h0/e84+sq7PMsyubjYnF5HCYHumxd/TJqlbfbkM98lQAr5l sWiKunx4nE7ENfbDGR+2SGWVNLH+KhLiijgwRAKOlhGMFKYMGZeEwFnWcZBV6dXx OAbJB7GeyyXMv+K06Gf9erKg9/hG4yJ0Vd8EjyhOC0/tGbI+UuGI97UZ1UIvLnLv bIcCw0RMglidaWPSwib+Xd4VqUlhoUxt3ZR/ELZzE+ymOMe29DmsQMg5Y4t/dmJf /qR3oMxj71bUZlkvzd3h5oCtiplHawt1rpynYYw5h//OJGsG0pyTs9in74BQbZVS +aNtiZh4KYFV14w/iIlJXtmN5yKqXwo4 -----END CERTIFICATE-----Generated at Fri Dec 19 06:21:18 2025 by rpki-client