This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft File: MOI2HN2l66cF86ay--vl232vEPE.mft (raw, json) Hash identifier: y+o4JXnUhBxg3A8aa0sQlQnNNwYfr/fbIO1LX4zXjhQ= Subject key identifier: 7C:B8:61:BE:AA:B7:C1:E2:29:BB:0A:34:62:8F:E0:50:B6:C8:36:CB Authority key identifier: 30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 Certificate issuer: /CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Certificate serial: 0680 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft Manifest number: 0676 Signing time: Mon 22 Dec 2025 21:46:34 +0000 Manifest this update: Mon 22 Dec 2025 21:46:34 +0000 Manifest next update: Mon 29 Dec 2025 21:46:34 +0000 Files and hashes: 1: MOI2HN2l66cF86ay--vl232vEPE.crl (hash: 5oUoV4tHp69k+Ir2iqQNlRmJDoftlssctR9ASC7iDcE=) 2: 65C6DD42E15211EC8EEE9668C4F9AE02.roa (hash: BLYldDR5zxqTMcX8NQEJYFIKVTzk5VrQGbTFGjfROjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91386E8, serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Validity Not Before: Dec 22 21:46:34 2025 GMT Not After : Dec 29 21:46:34 2025 GMT Subject: CN=6949bc3a-a77f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:08:53:93:16:7d:ee:0f:2a:7a:af:40:00:55: bb:53:2d:10:94:77:3f:d9:47:b6:4d:7c:72:49:b0: 0f:84:47:e8:80:ae:4f:09:5c:f0:28:07:9d:8b:fa: c2:e4:84:88:b7:fe:32:b1:ef:cc:1f:f8:9c:8f:2d: 6f:6f:28:37:47:4f:fd:c6:f7:d8:69:58:1e:98:de: 50:b9:ce:d2:7e:76:ef:1d:61:7a:aa:41:66:1b:6e: da:c2:d3:e5:fe:74:6a:37:c9:ae:f6:79:20:d8:d1: f0:3a:0d:9a:62:fd:64:97:c6:30:95:97:e8:9e:43: f1:65:3d:6b:16:c9:9b:9f:57:be:85:b9:65:bd:53: 93:8c:e4:ef:27:c9:97:7e:da:04:46:b4:86:12:52: fd:70:f9:0d:e3:71:0e:a9:ea:b9:f0:b0:3d:04:0a: 10:93:2b:24:41:bd:ab:9e:c4:4e:4c:9d:b4:d8:f1: ab:c1:95:08:40:e9:7e:45:a5:73:59:2f:0c:2a:92: 5a:35:0b:5a:2a:3d:df:55:c5:f1:96:0c:ca:59:5b: b5:48:46:8f:3a:86:03:77:83:c5:60:ea:a5:24:fa: ed:36:ad:08:6d:bd:69:f6:d2:6b:e1:69:4b:2a:5e: db:cd:3c:b8:17:15:9b:13:67:d8:a5:33:e6:c3:98: 8b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:B8:61:BE:AA:B7:C1:E2:29:BB:0A:34:62:8F:E0:50:B6:C8:36:CB X509v3 Authority Key Identifier: keyid:30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:30:5a:12:ad:04:18:83:12:29:1c:7b:80:ac:ed:45:f4:17: 5a:34:31:d0:09:54:f3:d6:8c:56:33:7f:ae:94:73:70:17:61: 3c:31:42:ae:72:bb:21:43:38:a9:a4:6c:eb:a1:e0:2c:a0:27: ad:97:9c:b8:8d:20:d3:63:13:a6:26:75:64:42:fa:89:25:f6: 4c:7d:7d:54:b5:b2:18:9a:52:33:97:ad:58:c1:ea:fa:5b:3c: f1:bc:fa:30:32:3e:d4:66:b8:6a:aa:7c:97:99:c9:db:2a:ad: db:9d:90:66:e4:bc:1c:6d:3a:b6:c5:db:3b:b6:c6:0b:d8:e0: f4:21:d8:b1:5a:04:35:b2:98:99:0e:9e:11:ec:c9:b8:41:70: 1b:a3:d2:4c:da:d7:3b:2e:3c:b3:b9:d4:35:79:69:0c:ad:d0: a4:e8:6d:a2:8f:2a:5b:c3:16:d0:c2:0f:80:b1:3c:ce:c3:52: 80:f1:f9:7f:9e:69:f5:69:55:94:30:4a:f9:12:af:8f:ae:4b: e1:dd:4f:06:71:1a:e7:d3:31:c5:12:40:5a:79:4d:c1:6a:b8: 1c:a7:a7:b7:82:98:a1:e2:16:95:eb:57:64:1f:06:29:be:e8: 7b:fc:8d:99:3c:8a:6c:67:f0:f8:17:f7:8d:bc:db:11:e6:ae: 3e:52:88:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2RTgxMTAvBgNVBAUTKDMwRTIzNjFDRERBNUVCQTcwNUYzQTZCMkZCRUJFNURC N0RBRjEwRjEwHhcNMjUxMjIyMjE0NjM0WhcNMjUxMjI5MjE0NjM0WjAYMRYwFAYD VQQDDA02OTQ5YmMzYS1hNzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAhTkxZ97g8qeq9AAFW7Uy0QlHc/2Ue2TXxySbAPhEfogK5PCVzwKAedi/rC 5ISIt/4yse/MH/icjy1vbyg3R0/9xvfYaVgemN5Quc7SfnbvHWF6qkFmG27awtPl /nRqN8mu9nkg2NHwOg2aYv1kl8YwlZfonkPxZT1rFsmbn1e+hbllvVOTjOTvJ8mX ftoERrSGElL9cPkN43EOqeq58LA9BAoQkyskQb2rnsROTJ202PGrwZUIQOl+RaVz WS8MKpJaNQtaKj3fVcXxlgzKWVu1SEaPOoYDd4PFYOqlJPrtNq0Ibb1p9tJr4WlL Kl7bzTy4FxWbE2fYpTPmw5iLQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHy4Yb6q t8HiKbsKNGKP4FC2yDbLMB8GA1UdIwQYMBaAFDDiNhzdpeunBfOmsvvr5dt9rxDx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODZFOC80ODg5NTk0RUE4 MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2Y0Y4NmF5LS12bDIzMnZF UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSTJITjJsNjZjRjg2YXktLXZsMjMydkVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODZFOC80ODg5NTk0RUE4MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2 Y0Y4NmF5LS12bDIzMnZFUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+MFoSrQQYgxIpHHuArO1F9BdaNDHQCVTz1oxWM3+ulHNwF2E8MUKu crshQzippGzroeAsoCetl5y4jSDTYxOmJnVkQvqJJfZMfX1UtbIYmlIzl61Ywer6 WzzxvPowMj7UZrhqqnyXmcnbKq3bnZBm5LwcbTq2xds7tsYL2OD0IdixWgQ1spiZ Dp4R7Mm4QXAbo9JM2tc7LjyzudQ1eWkMrdCk6G2ijypbwxbQwg+AsTzOw1KA8fl/ nmn1aVWUMEr5Eq+Prkvh3U8GcRrn0zHFEkBaeU3Bargcp6e3gpih4haV61dkHwYp vuh7/I2ZPIpsZ/D4F/eNvNsR5q4+UoiJ -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:26 2025 by rpki-client