This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft File: IsfsPNntTFDolKEbzXDQMQzV-Fk.mft (raw, json) Hash identifier: KfTL9+G5zh52mEnXCzjotuQxAN0F0X5jCa6eJHNlMlI= Subject key identifier: 54:11:97:C6:E6:FD:62:1C:A9:39:44:93:C4:7E:F6:6F:3A:67:90:64 Authority key identifier: 22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 Certificate issuer: /CN=A91EC225/serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft Manifest number: C0 Signing time: Mon 22 Dec 2025 17:16:22 +0000 Manifest this update: Mon 22 Dec 2025 17:16:21 +0000 Manifest next update: Mon 29 Dec 2025 17:16:21 +0000 Files and hashes: 1: IsfsPNntTFDolKEbzXDQMQzV-Fk.crl (hash: eQtqW2sBNr3iiRUFgXj6L48laiBd6I9Z7Qz1tEL5ce0=) 2: 25D2B94CDECD11EFA79E4065C4F9AE02.roa (hash: GGtGV78DXnx+758QjjUFzDYEJZn1i4ItJjSZC8rC92A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Validity Not Before: Dec 22 17:16:21 2025 GMT Not After : Dec 29 17:16:21 2025 GMT Subject: CN=69497ce6-03fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:20:98:ea:46:31:de:2c:68:f6:bb:2d:de:a2: 40:24:b7:6c:d0:ed:ed:f3:da:34:ad:09:ac:83:ab: 19:2b:21:03:84:96:46:15:fd:37:af:d3:05:32:d6: 0f:a3:ab:5e:eb:25:3e:4e:eb:ff:0d:49:17:93:52: 53:5f:fa:4d:b0:06:68:ec:8d:fd:ba:78:7a:e3:f3: c6:6c:97:d4:72:7d:07:6f:f7:a2:55:d1:24:70:b9: ee:a9:c6:23:07:85:5e:b4:f9:d7:4b:23:e8:4c:64: 37:c2:bd:89:e3:9a:ed:f6:e9:50:1e:45:c1:90:17: 0a:62:af:01:98:af:c9:31:be:59:e6:c4:ac:bf:b4: 8d:36:01:7b:5c:6a:12:df:56:66:95:e8:15:d4:5f: a3:7b:31:9e:b8:8f:07:6d:2c:4b:ca:bb:64:a6:d1: cf:bb:56:94:f4:3f:7e:cc:50:a4:c1:15:43:e7:b1: ee:25:29:62:64:8b:76:b6:fc:64:e3:98:72:88:cf: 9b:54:05:06:f0:51:1a:68:52:1e:fe:3a:fa:15:3e: 7c:7e:1b:5c:33:fb:ec:cc:19:9e:70:3e:71:ed:6e: 92:c2:f5:db:14:e3:1e:2a:08:1e:78:5e:a8:e0:7c: 80:a7:c1:01:63:28:d4:72:6b:79:a4:9e:42:5d:74: 19:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:11:97:C6:E6:FD:62:1C:A9:39:44:93:C4:7E:F6:6F:3A:67:90:64 X509v3 Authority Key Identifier: keyid:22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:9f:b8:38:f6:43:5d:06:b3:f9:74:e6:53:7a:67:59:4e:28: 33:92:4b:e0:92:34:3d:af:de:9c:83:32:a1:6e:0b:4a:c2:1f: 48:60:38:bf:04:e2:f8:70:81:7d:bc:e6:ce:6a:ed:aa:85:5f: 71:aa:d1:fa:fa:fd:f6:92:f7:31:69:c1:8e:c6:50:84:de:78: f8:10:7d:8b:8b:23:0b:3b:48:59:59:ab:88:3b:ab:25:37:46: b4:96:a9:38:02:41:b2:2f:56:a5:d3:57:ca:51:60:3f:98:82: 56:3e:d5:07:81:56:1c:fe:75:3e:3d:d5:00:ed:d0:32:dd:8c: d7:40:dc:a2:ab:a9:fb:4c:88:03:a7:91:32:f7:68:e0:69:38: cf:1a:74:a8:9e:d2:be:24:2a:e8:c2:5a:61:3f:56:00:51:66: 31:7c:96:e5:c3:e0:aa:f4:67:7d:27:4c:f5:d4:02:01:ab:0c: 39:81:c2:dc:8c:cf:32:f0:65:7b:eb:5f:1f:9d:4a:b1:4a:0d: 91:89:48:77:7f:25:ed:98:26:53:85:e8:e6:1c:49:77:ec:bc: 24:99:85:bf:72:85:99:f1:9b:fc:35:c7:51:5b:79:ca:94:00: 26:44:9e:31:ea:d7:21:8b:e1:ab:34:c6:ec:5a:c2:b2:6d:99: e3:5b:40:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKDIyQzdFQzNDRDlFRDRDNTBFODk0QTExQkNENzBEMDMx MENENUY4NTkwHhcNMjUxMjIyMTcxNjIxWhcNMjUxMjI5MTcxNjIxWjAYMRYwFAYD VQQDDA02OTQ5N2NlNi0wM2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SCY6kYx3ixo9rst3qJAJLds0O3t89o0rQmsg6sZKyEDhJZGFf03r9MFMtYP o6te6yU+Tuv/DUkXk1JTX/pNsAZo7I39unh64/PGbJfUcn0Hb/eiVdEkcLnuqcYj B4VetPnXSyPoTGQ3wr2J45rt9ulQHkXBkBcKYq8BmK/JMb5Z5sSsv7SNNgF7XGoS 31ZmlegV1F+jezGeuI8HbSxLyrtkptHPu1aU9D9+zFCkwRVD57HuJSliZIt2tvxk 45hyiM+bVAUG8FEaaFIe/jr6FT58fhtcM/vszBmecD5x7W6SwvXbFOMeKggeeF6o 4HyAp8EBYyjUcmt5pJ5CXXQZpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQRl8bm /WIcqTlEk8R+9m86Z5BkMB8GA1UdIwQYMBaAFCLH7DzZ7UxQ6JShG81w0DEM1fhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS9DOTQ0N0ZGMEJF RjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRGRG9sS0VielhEUU1RelYt RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lzZnNQTm50VEZEb2xLRWJ6WERRTVF6Vi1Gay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS9DOTQ0N0ZGMEJFRjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRG RG9sS0VielhEUU1RelYtRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPn7g49kNdBrP5dOZTemdZTigzkkvgkjQ9r96cgzKhbgtKwh9IYDi/ BOL4cIF9vObOau2qhV9xqtH6+v32kvcxacGOxlCE3nj4EH2LiyMLO0hZWauIO6sl N0a0lqk4AkGyL1al01fKUWA/mIJWPtUHgVYc/nU+PdUA7dAy3YzXQNyiq6n7TIgD p5Ey92jgaTjPGnSontK+JCrowlphP1YAUWYxfJblw+Cq9Gd9J0z11AIBqww5gcLc jM8y8GV7618fnUqxSg2RiUh3fyXtmCZThejmHEl37LwkmYW/coWZ8Zv8NcdRW3nK lAAmRJ4x6tchi+GrNMbsWsKybZnjW0Br -----END CERTIFICATE-----Generated at Tue Dec 23 20:06:04 2025 by rpki-client