This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: D4L3A4ng1K3u9RHy1wQIDfBbmi+wlRx9KuDiZdvrciU= Subject key identifier: 9F:B4:75:74:B4:97:A2:D6:42:14:2F:B8:07:4C:C2:2D:F6:FD:A8:63 Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: BB Signing time: Tue 23 Dec 2025 04:59:09 +0000 Manifest this update: Tue 23 Dec 2025 04:59:08 +0000 Manifest next update: Tue 30 Dec 2025 04:59:08 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: KhPZ1Fu1ETMFY9m4fZ98y7GejssyrMgPpvPlDJ0Ewlc=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: drd+idSshs98eOD0pXc/+ttH+udrA5TRp96UQZXHfUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:59:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Dec 23 04:59:08 2025 GMT Not After : Dec 30 04:59:08 2025 GMT Subject: CN=694a219d-a970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:91:d7:9b:ef:14:34:75:bc:0a:db:af:cb:fb: 1b:56:c6:43:5a:7d:c2:93:8d:33:c7:5f:2d:43:6e: 24:b0:72:03:6c:37:32:d0:e5:b8:78:93:d3:7d:ae: 89:76:5a:e6:0d:26:0b:6b:cd:b7:fd:56:76:d9:1e: a0:0c:80:70:1c:e4:5c:f0:07:d6:e0:ad:09:82:6b: 9b:ff:e8:ec:fb:49:30:d5:89:07:ae:37:92:90:05: c5:32:c8:02:8f:79:01:db:7c:e5:80:18:f8:51:c1: 4a:55:76:31:12:fa:98:dc:b3:23:d7:23:70:21:61: e8:aa:34:7f:ad:51:91:78:d3:4c:06:70:08:50:af: f9:58:75:d2:31:f5:e5:01:2f:82:22:51:dc:e7:f1: 8c:20:5a:ab:99:03:da:15:18:3d:f4:b3:7c:bf:fa: 88:9d:e2:7d:14:9f:ea:38:c0:5f:cc:a0:78:1c:0a: 58:7d:c8:96:42:4a:42:bf:d6:1d:8f:1e:88:fb:af: 80:02:7d:09:12:a9:f5:23:8a:f7:66:4f:ac:d5:19: 81:20:1e:2e:f4:b4:53:3c:48:05:61:eb:aa:a5:81: 7c:c3:dd:83:c9:9a:84:0c:04:65:4d:d0:86:da:c2: 1f:32:8c:4f:1a:1f:37:ae:80:08:8c:b1:58:38:06: 8c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:B4:75:74:B4:97:A2:D6:42:14:2F:B8:07:4C:C2:2D:F6:FD:A8:63 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:01:63:e4:4b:53:01:5a:13:2b:12:b5:37:90:31:b6:96:b1: 94:72:66:fe:e1:bb:f3:1b:cb:19:76:48:f4:83:1c:4a:ed:7e: 5e:5c:7f:bf:50:88:d6:38:f7:aa:f6:89:a1:bc:e7:7f:a2:8f: 3d:7b:26:4e:34:bd:84:f4:7a:24:9c:05:50:88:5c:4d:c6:e1: 30:0b:0a:f1:75:22:3c:4b:0f:00:d4:38:c4:8f:60:fb:7b:3e: f0:ec:4b:c4:f4:06:c1:1d:79:7c:f4:47:f0:4f:04:42:dd:a7: 84:50:e8:59:0b:44:8f:41:01:98:37:b5:59:98:b2:fb:c0:8c: 7b:aa:ad:6a:d1:09:7f:53:2b:bf:4a:bc:c1:71:1b:dc:38:a1: 39:cd:ef:9e:ad:1b:98:6e:8f:cc:78:87:01:8e:73:74:c3:4b: 24:2c:71:47:73:94:60:94:56:ca:ef:b5:28:60:10:5e:47:ad: 38:89:e6:2f:29:29:8e:82:17:a9:54:52:42:1a:70:b0:ac:6c: e2:4b:03:d1:2c:76:bb:61:f4:2a:34:44:f6:95:a7:fe:f5:43: 6b:b1:79:53:51:18:ab:af:75:8e:ae:cd:ef:f1:00:73:e9:7c: 88:38:a6:96:0e:65:1e:1b:b3:f9:0c:6a:81:06:1d:8f:8f:e3: 5f:f4:82:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RTIxMTAvBgNVBAUTKDZBQUYzRDlCQzNERkEzQTEyNTA4Mjk2NUQ4RkYzM0I4 MTI4RjI5MUYwHhcNMjUxMjIzMDQ1OTA4WhcNMjUxMjMwMDQ1OTA4WjAYMRYwFAYD VQQDDA02OTRhMjE5ZC1hOTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl5HXm+8UNHW8Ctuvy/sbVsZDWn3Ck40zx18tQ24ksHIDbDcy0OW4eJPTfa6J dlrmDSYLa823/VZ22R6gDIBwHORc8AfW4K0Jgmub/+js+0kw1YkHrjeSkAXFMsgC j3kB23zlgBj4UcFKVXYxEvqY3LMj1yNwIWHoqjR/rVGReNNMBnAIUK/5WHXSMfXl AS+CIlHc5/GMIFqrmQPaFRg99LN8v/qIneJ9FJ/qOMBfzKB4HApYfciWQkpCv9Yd jx6I+6+AAn0JEqn1I4r3Zk+s1RmBIB4u9LRTPEgFYeuqpYF8w92DyZqEDARlTdCG 2sIfMoxPGh83roAIjLFYOAaMyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+0dXS0 l6LWQhQvuAdMwi32/ahjMB8GA1UdIwQYMBaAFGqvPZvD36OhJQgpZdj/M7gSjykf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZFMi8zQjU0MUYyMENC M0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82RWxDQ2xsMlA4enVCS1BL UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZFMi8zQjU0MUYyMENCM0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82 RWxDQ2xsMlA4enVCS1BLUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaAWPkS1MBWhMrErU3kDG2lrGUcmb+4bvzG8sZdkj0gxxK7X5eXH+/ UIjWOPeq9omhvOd/oo89eyZONL2E9HoknAVQiFxNxuEwCwrxdSI8Sw8A1DjEj2D7 ez7w7EvE9AbBHXl89EfwTwRC3aeEUOhZC0SPQQGYN7VZmLL7wIx7qq1q0Ql/Uyu/ SrzBcRvcOKE5ze+erRuYbo/MeIcBjnN0w0skLHFHc5RglFbK77UoYBBeR604ieYv KSmOghepVFJCGnCwrGziSwPRLHa7YfQqNET2laf+9UNrsXlTURirr3WOrs3v8QBz 6XyIOKaWDmUeG7P5DGqBBh2Pj+Nf9II1 -----END CERTIFICATE-----Generated at Wed Dec 24 23:00:07 2025 by rpki-client