This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft File: 25K4P0wYeDkNakTmrtV6d1ImNRI.mft (raw, json) Hash identifier: 3NPL4yjV57yDDuBNJb9ZfJK3HcXOPbwA30vhVIS6kfI= Subject key identifier: 73:A0:99:11:F1:E1:48:A4:BE:92:F8:DD:A0:3D:95:77:58:DD:3F:12 Authority key identifier: DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 Certificate issuer: /CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Certificate serial: 1D7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft Manifest number: 1D73 Signing time: Mon 22 Dec 2025 15:55:22 +0000 Manifest this update: Mon 22 Dec 2025 15:55:22 +0000 Manifest next update: Mon 29 Dec 2025 15:55:22 +0000 Files and hashes: 1: 25K4P0wYeDkNakTmrtV6d1ImNRI.crl (hash: JQYDO7wWDx8BScsttqDwfFT18dJJjFh20jQEY9ruZ48=) 2: AB9480A6BB6811E69E8D1212C4F9AE02.roa (hash: kiqsqwNMBPh3qwxfNJAfqtQq0GlxcHUCDHglujirUPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:55:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7551 (0x1d7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBD5B, serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Validity Not Before: Dec 22 15:55:22 2025 GMT Not After : Dec 29 15:55:22 2025 GMT Subject: CN=694969ea-cd3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ce:14:00:a0:72:4f:63:19:f6:61:89:2b:d2: f5:44:f0:e3:1e:e2:c4:4a:1d:2b:66:14:ef:d6:7d: c4:c3:20:b5:81:c7:e7:34:df:b9:31:1f:89:08:88: c5:10:96:b5:2c:f0:8e:02:5a:b0:fe:cf:08:a6:7a: 83:b6:24:1b:bd:3d:c7:10:50:d1:a0:56:c8:b1:38: 13:f9:f7:1a:f6:50:6b:82:3a:b0:99:39:6e:fc:56: c6:b6:56:de:66:6c:8b:46:dc:ca:16:ba:61:3f:10: ab:45:ef:2b:0d:22:17:0a:ab:c9:ff:e0:55:e7:e8: 2d:79:ad:10:cd:ed:42:7c:f9:44:91:fa:43:eb:ce: 0f:8f:2e:ee:77:54:53:f2:30:87:8a:8f:22:5f:16: cb:b5:6f:e0:72:79:f9:a7:b9:c1:79:27:bb:db:9b: 12:9a:85:82:e6:cd:0f:5d:05:3a:25:8b:b3:58:65: 71:52:45:49:85:5d:da:85:ae:f3:a4:d6:0a:4a:cb: 6a:47:54:07:6e:47:92:21:88:c5:da:03:5f:4f:f4: 4c:15:7a:dc:98:6d:8b:09:bf:bd:2d:69:cc:57:63: c4:63:9e:a0:95:cd:0d:71:9e:2a:e6:58:85:26:a1: 14:56:db:de:10:70:ea:b4:5c:f2:7d:4f:9e:eb:b5: f9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A0:99:11:F1:E1:48:A4:BE:92:F8:DD:A0:3D:95:77:58:DD:3F:12 X509v3 Authority Key Identifier: keyid:DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:2f:8d:dd:73:48:ec:76:c0:7e:3f:13:d2:1e:0f:f5:11:95: 0b:7d:e3:55:9b:f4:38:e0:97:49:18:e4:7a:69:8d:38:67:a9: ed:2b:55:38:dc:e9:13:39:91:7a:c3:7a:d9:22:66:da:ba:72: ef:6b:8e:51:6a:7d:cb:6b:86:4e:1f:04:35:65:46:4d:d5:01: 7c:c3:d4:18:fa:39:3b:1a:67:52:d7:52:87:1b:d0:31:23:b8: 54:f3:a9:98:bb:f3:a1:fb:0a:24:2c:2a:8d:07:54:19:20:0a: 49:b0:d8:82:85:44:cf:a4:0e:ea:c9:68:07:dd:76:0a:a0:c3: 2a:9e:ce:c9:b9:71:f7:02:5d:8b:68:93:d2:fa:8d:7f:0b:ba: 85:3c:65:60:51:7c:dd:a5:5b:3f:09:d0:7a:d5:a0:1a:43:eb: 56:93:b7:42:d4:91:49:dd:7d:0e:1f:95:94:14:c6:d2:64:df: af:c8:48:fd:e4:c8:00:22:7b:55:e5:21:00:b0:e4:ce:e5:11: 46:d0:44:f9:5a:58:ae:77:a8:75:99:2e:78:f9:5c:3a:0c:3a: 35:b6:c8:8b:47:cd:29:a0:66:f2:be:3a:54:c6:d7:00:4b:14: 7e:a9:60:6c:38:42:d3:9c:dc:25:20:98:04:d9:da:22:a6:c5: 76:0a:6f:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJENUIxMTAvBgNVBAUTKERCOTJCODNGNEMxODc4MzkwRDZBNDRFNkFFRDU3QTc3 NTIyNjM1MTIwHhcNMjUxMjIyMTU1NTIyWhcNMjUxMjI5MTU1NTIyWjAYMRYwFAYD VQQDDA02OTQ5NjllYS1jZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr84UAKByT2MZ9mGJK9L1RPDjHuLESh0rZhTv1n3EwyC1gcfnNN+5MR+JCIjF EJa1LPCOAlqw/s8IpnqDtiQbvT3HEFDRoFbIsTgT+fca9lBrgjqwmTlu/FbGtlbe ZmyLRtzKFrphPxCrRe8rDSIXCqvJ/+BV5+gtea0Qze1CfPlEkfpD684Pjy7ud1RT 8jCHio8iXxbLtW/gcnn5p7nBeSe725sSmoWC5s0PXQU6JYuzWGVxUkVJhV3aha7z pNYKSstqR1QHbkeSIYjF2gNfT/RMFXrcmG2LCb+9LWnMV2PEY56glc0NcZ4q5liF JqEUVtveEHDqtFzyfU+e67X5gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOgmRHx 4UikvpL43aA9lXdY3T8SMB8GA1UdIwQYMBaAFNuSuD9MGHg5DWpE5q7VendSJjUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkQ1Qi8xNzAyRkMzRUJC NjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVEa05ha1RtcnRWNmQxSW1O UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1SzRQMHdZZURrTmFrVG1ydFY2ZDFJbU5SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkQ1Qi8xNzAyRkMzRUJCNjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVE a05ha1RtcnRWNmQxSW1OUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZL43dc0jsdsB+PxPSHg/1EZULfeNVm/Q44JdJGOR6aY04Z6ntK1U4 3OkTOZF6w3rZImbaunLva45Ran3La4ZOHwQ1ZUZN1QF8w9QY+jk7GmdS11KHG9Ax I7hU86mYu/Oh+wokLCqNB1QZIApJsNiChUTPpA7qyWgH3XYKoMMqns7JuXH3Al2L aJPS+o1/C7qFPGVgUXzdpVs/CdB61aAaQ+tWk7dC1JFJ3X0OH5WUFMbSZN+vyEj9 5MgAIntV5SEAsOTO5RFG0ET5Wliud6h1mS54+Vw6DDo1tsiLR80poGbyvjpUxtcA SxR+qWBsOELTnNwlIJgE2doipsV2Cm8N -----END CERTIFICATE-----Generated at Wed Dec 24 00:14:13 2025 by rpki-client