This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft File: vNzosG8FliNAMAycR0e1olGiGcQ.mft (raw, json) Hash identifier: bsJM6FcIcrLYWpyvQqIXFdfbQ+XaFw+LvKDRQ45WiKU= Subject key identifier: C2:0C:80:D1:14:9E:0A:01:F2:B6:90:D1:C5:A7:04:32:06:76:F8:AC Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 350F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft Manifest number: 34FF Signing time: Mon 22 Dec 2025 14:50:14 +0000 Manifest this update: Mon 22 Dec 2025 14:50:14 +0000 Manifest next update: Mon 29 Dec 2025 14:50:14 +0000 Files and hashes: 1: vNzosG8FliNAMAycR0e1olGiGcQ.crl (hash: wsGvEkiYDbVTVNpWQE/tbYMdTZsRfJJuQ9VEV8BQBLk=) 2: 3FEFA562483D11EC82E81112C4F9AE02.roa (hash: rK0c8XECyvN9kLfaJ8Yz0Teq8RiIt0v2rBtEKSM98ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13583 (0x350f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8, serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: Dec 22 14:50:14 2025 GMT Not After : Dec 29 14:50:14 2025 GMT Subject: CN=69495aa6-ead8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:17:34:a2:a5:59:d9:10:f9:bc:55:72:00:ee: bc:b3:1e:b3:4f:ba:b0:a2:41:92:a0:f0:eb:48:5c: f3:38:ad:09:3c:a3:00:4e:75:98:59:fa:4d:d1:03: da:d0:58:9e:ca:59:1a:17:ce:67:5f:d3:f9:20:0c: ca:a2:f6:0c:a0:fa:e0:bd:99:a9:99:2f:db:1f:77: 8d:2b:31:3c:5a:a0:0a:20:f4:c4:0a:43:7b:32:ab: 61:5f:58:00:27:60:80:71:fa:40:9a:12:ad:f2:81: 36:e9:1a:7d:cb:d1:0d:f4:1e:8f:c8:92:6e:4d:8b: 7a:e1:c9:c3:9a:20:be:03:16:73:ea:98:d3:7e:37: 74:41:1f:58:e9:2f:d8:0e:4a:48:df:3c:b8:0b:d8: 63:64:e1:58:c7:49:99:2d:3c:15:93:5f:d3:7e:32: 13:8e:21:ca:94:53:2f:6f:db:e5:4b:5f:6a:99:ad: 5e:e1:e4:40:b2:8d:5f:eb:83:fe:a2:65:36:7f:b1: 73:da:c0:8d:0c:b3:e9:d3:44:ab:5a:0c:a5:19:5d: f4:c4:2f:42:8d:81:22:24:4d:20:fc:2b:06:78:a3: 7a:5d:88:eb:38:cf:83:33:de:a8:94:90:03:28:ab: 96:bd:70:8b:69:24:4e:1f:56:48:53:21:ae:cf:9e: 97:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:0C:80:D1:14:9E:0A:01:F2:B6:90:D1:C5:A7:04:32:06:76:F8:AC X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:f4:f0:d2:98:d8:a5:04:bc:86:89:7c:93:79:65:03:68:97: 0b:bf:02:65:87:0a:de:5e:48:67:61:10:6f:70:4c:32:cf:e7: f6:f4:ea:57:a8:03:cf:06:aa:d6:ba:71:5a:46:ae:1b:ed:50: 56:89:0e:73:fb:68:55:d3:2e:22:46:a8:66:ee:d9:1c:08:d3: fb:91:81:85:b7:24:58:15:76:3e:86:21:7e:77:e5:02:94:cf: 2b:3f:d1:18:e2:9d:84:49:a4:51:61:dc:ce:4b:37:72:1e:92: 98:96:ec:7b:64:ef:93:e7:43:47:20:3f:e2:c7:df:a1:d6:b1: b7:5e:6e:be:18:9c:48:ab:58:a1:30:16:27:6b:2e:05:2f:b8: 93:41:2d:e1:0c:b8:66:c2:3d:ed:76:87:e1:67:d4:e4:91:1d: 0e:5b:c1:23:a3:40:4c:fa:ae:db:82:93:a8:d4:3d:91:0c:97: 22:57:96:41:a3:7e:a1:bc:7a:70:a2:28:6b:78:1e:33:75:60: b8:67:13:27:c8:85:49:48:5c:7c:bc:a6:cb:3f:7a:9b:47:42: 25:8e:e0:40:cb:da:8e:d8:7b:7b:82:d7:5b:9d:9d:0f:f6:16: 71:51:7a:31:7c:fc:5c:25:82:ee:eb:94:3c:2c:c9:ee:9b:99: 53:bc:74:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjUxMjIyMTQ1MDE0WhcNMjUxMjI5MTQ1MDE0WjAYMRYwFAYD VQQDDA02OTQ5NWFhNi1lYWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xc0oqVZ2RD5vFVyAO68sx6zT7qwokGSoPDrSFzzOK0JPKMATnWYWfpN0QPa 0FieylkaF85nX9P5IAzKovYMoPrgvZmpmS/bH3eNKzE8WqAKIPTECkN7MqthX1gA J2CAcfpAmhKt8oE26Rp9y9EN9B6PyJJuTYt64cnDmiC+AxZz6pjTfjd0QR9Y6S/Y DkpI3zy4C9hjZOFYx0mZLTwVk1/TfjITjiHKlFMvb9vlS19qma1e4eRAso1f64P+ omU2f7Fz2sCNDLPp00SrWgylGV30xC9CjYEiJE0g/CsGeKN6XYjrOM+DM96olJAD KKuWvXCLaSROH1ZIUyGuz56XKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIMgNEU ngoB8raQ0cWnBDIGdvisMB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjVFOC9BMUYyM0E2NDFEOTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4Rmxp TkFNQXljUjBlMW9sR2lHY1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA29PDSmNilBLyGiXyTeWUDaJcLvwJlhwreXkhnYRBvcEwyz+f29OpX qAPPBqrWunFaRq4b7VBWiQ5z+2hV0y4iRqhm7tkcCNP7kYGFtyRYFXY+hiF+d+UC lM8rP9EY4p2ESaRRYdzOSzdyHpKYlux7ZO+T50NHID/ix9+h1rG3Xm6+GJxIq1ih MBYnay4FL7iTQS3hDLhmwj3tdofhZ9TkkR0OW8Ejo0BM+q7bgpOo1D2RDJciV5ZB o36hvHpwoihreB4zdWC4ZxMnyIVJSFx8vKbLP3qbR0IljuBAy9qO2Ht7gtdbnZ0P 9hZxUXoxfPxcJYLu65Q8LMnum5lTvHQ7 -----END CERTIFICATE-----Generated at Wed Dec 24 00:15:13 2025 by rpki-client