This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft File: vNgnSl8YLOQAgCwIPo0VQi-bthE.mft (raw, json) Hash identifier: xkpk4o75G28zCwajh6QBbDSoiBkwDzYuNIQC25pad/Q= Subject key identifier: 67:90:CE:0C:D1:7A:E9:2C:F0:A1:43:B8:6E:29:F3:B2:B1:61:86:C6 Authority key identifier: BC:D8:27:4A:5F:18:2C:E4:00:80:2C:08:3E:8D:15:42:2F:9B:B6:11 Certificate issuer: /CN=A91554E6/serialNumber=BCD8274A5F182CE400802C083E8D15422F9BB611 Certificate serial: 0336 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft Manifest number: 04C8 Signing time: Wed 17 Dec 2025 00:26:58 +0000 Manifest this update: Wed 17 Dec 2025 00:26:58 +0000 Manifest next update: Wed 24 Dec 2025 00:26:58 +0000 Files and hashes: 1: vNgnSl8YLOQAgCwIPo0VQi-bthE.crl (hash: Nh662K94jjB9RgoERZBHdxNRx2lRmreD+98HsWzY75Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.crl rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 00:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91554E6, serialNumber=BCD8274A5F182CE400802C083E8D15422F9BB611 Validity Not Before: Dec 17 00:26:58 2025 GMT Not After : Dec 24 00:26:58 2025 GMT Subject: CN=6941f8d2-6e9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7e:f5:22:ef:cf:48:a8:4c:d2:69:50:d4:a2: bc:56:d7:32:8c:a3:d9:fc:ec:03:fc:dc:c3:82:3d: de:d1:98:a5:95:6e:7b:eb:d2:ac:13:9f:f7:1f:6e: 75:a9:05:d1:c5:e4:86:7d:5d:20:88:c5:90:69:be: 35:94:6b:d1:29:43:ba:fc:67:b5:b2:07:3d:c1:c4: ad:2e:c5:24:23:43:93:61:43:1a:97:b4:45:48:f2: 57:6b:dd:20:3f:c2:0a:19:43:b5:6b:28:59:35:5a: e1:40:b0:43:d5:bb:66:40:5f:ad:38:aa:7e:a7:bd: 29:58:13:8a:55:33:02:a8:be:9b:87:f7:f0:80:4b: 19:a3:d9:92:27:41:ce:7a:9d:b9:6f:c7:a5:7b:0e: ce:c8:13:1f:ae:d4:ca:ed:7a:5e:b2:e2:a8:44:ad: f4:30:0a:b5:0b:8c:b0:ba:a7:a1:27:99:91:81:69: cf:e1:58:c3:21:95:16:98:b7:68:2e:99:77:64:4f: e3:3f:2e:93:b2:1e:78:62:b1:15:aa:aa:01:09:7b: 4b:f5:d3:f2:d7:ca:19:d2:69:5f:4e:13:18:de:d9: ff:88:af:0c:14:35:04:86:b1:c7:37:b9:8d:2e:65: 8e:c3:f4:94:90:ce:ee:28:c8:9e:80:96:be:a3:b0: 74:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:90:CE:0C:D1:7A:E9:2C:F0:A1:43:B8:6E:29:F3:B2:B1:61:86:C6 X509v3 Authority Key Identifier: keyid:BC:D8:27:4A:5F:18:2C:E4:00:80:2C:08:3E:8D:15:42:2F:9B:B6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:91:a1:a5:64:bd:71:d2:25:d9:cd:f4:67:75:a9:80:b1:49: 10:84:6b:58:ba:43:b1:82:b4:88:c9:05:57:f9:fe:db:c3:61: 99:dd:7d:c8:3a:5a:04:9d:22:f3:e9:06:95:3f:af:e3:6c:09: 59:d2:0b:c3:7b:40:25:41:0c:34:76:94:27:3d:2f:fe:e3:6c: b1:63:30:32:e7:d9:b1:65:bf:2a:a4:a1:41:48:6f:82:00:60: 4c:f3:5a:e5:40:73:3b:11:99:da:c3:2b:7a:b9:26:14:d1:54: 90:d4:df:be:98:fb:7d:33:8f:93:5f:a0:a9:cd:90:85:8c:48: 45:70:c8:3d:30:5e:e1:c7:c2:60:95:c9:ca:0d:2f:31:c5:92: 2f:85:d8:46:e5:06:ae:60:25:5c:7b:f4:e9:8f:48:cb:bf:86: db:b8:b1:73:92:f4:a4:23:2a:92:12:36:2b:85:89:e7:93:0d: 0e:e2:c6:3a:22:ed:b0:80:8b:12:86:f4:68:c4:26:47:a0:b5: e9:7f:9f:5a:02:27:07:0c:9d:6d:cb:87:6f:7a:4f:92:a4:3e: 49:5c:bf:6d:62:31:84:e1:c5:d9:0b:af:f1:77:11:4d:e8:d1: 13:16:76:25:af:69:97:51:72:e2:a9:1c:94:a8:c0:33:ac:da: fb:4f:f3:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU0RTYxMTAvBgNVBAUTKEJDRDgyNzRBNUYxODJDRTQwMDgwMkMwODNFOEQxNTQy MkY5QkI2MTEwHhcNMjUxMjE3MDAyNjU4WhcNMjUxMjI0MDAyNjU4WjAYMRYwFAYD VQQDDA02OTQxZjhkMi02ZTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv371Iu/PSKhM0mlQ1KK8VtcyjKPZ/OwD/NzDgj3e0ZillW5769KsE5/3H251 qQXRxeSGfV0giMWQab41lGvRKUO6/Ge1sgc9wcStLsUkI0OTYUMal7RFSPJXa90g P8IKGUO1ayhZNVrhQLBD1btmQF+tOKp+p70pWBOKVTMCqL6bh/fwgEsZo9mSJ0HO ep25b8elew7OyBMfrtTK7XpesuKoRK30MAq1C4ywuqehJ5mRgWnP4VjDIZUWmLdo Lpl3ZE/jPy6Tsh54YrEVqqoBCXtL9dPy18oZ0mlfThMY3tn/iK8MFDUEhrHHN7mN LmWOw/SUkM7uKMiegJa+o7B0yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGeQzgzR euks8KFDuG4p87KxYYbGMB8GA1UdIwQYMBaAFLzYJ0pfGCzkAIAsCD6NFUIvm7YR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTRFNi85RjA2Nzc0OEVE NEIxMUVDQUI4RkFBNzdDNEY5QUUwMi92TmduU2w4WUxPUUFnQ3dJUG8wVlFpLWJ0 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOZ25TbDhZTE9RQWdDd0lQbzBWUWktYnRoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTRFNi85RjA2Nzc0OEVENEIxMUVDQUI4RkFBNzdDNEY5QUUwMi92TmduU2w4WUxP UUFnQ3dJUG8wVlFpLWJ0aEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmkaGlZL1x0iXZzfRndamAsUkQhGtYukOxgrSIyQVX+f7bw2GZ3X3I OloEnSLz6QaVP6/jbAlZ0gvDe0AlQQw0dpQnPS/+42yxYzAy59mxZb8qpKFBSG+C AGBM81rlQHM7EZnawyt6uSYU0VSQ1N++mPt9M4+TX6CpzZCFjEhFcMg9MF7hx8Jg lcnKDS8xxZIvhdhG5QauYCVce/Tpj0jLv4bbuLFzkvSkIyqSEjYrhYnnkw0O4sY6 Iu2wgIsShvRoxCZHoLXpf59aAicHDJ1ty4dvek+SpD5JXL9tYjGE4cXZC6/xdxFN 6NETFnYlr2mXUXLiqRyUqMAzrNr7T/O9 -----END CERTIFICATE-----Generated at Wed Dec 17 19:10:29 2025 by rpki-client