This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: CQnQOZlvGFGrYjy1SiG02GQ3kojijENUpT9JB0Z4UTY= Subject key identifier: 60:75:A4:6C:CD:0A:0E:D3:6B:F6:3B:D4:02:96:44:D6:26:92:91:F6 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2CCD Signing time: Wed 24 Dec 2025 16:33:08 +0000 Manifest this update: Wed 24 Dec 2025 16:33:08 +0000 Manifest next update: Wed 31 Dec 2025 16:33:08 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: 8k9AXdI9YJdjZb3jabJD3d1EwwuP82PxQY9+5z6lSTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3949 (0xf6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Dec 24 16:33:08 2025 GMT Not After : Dec 31 16:33:08 2025 GMT Subject: CN=694c15c4-8cd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f3:31:3d:7f:7e:0c:3f:61:2c:35:35:07:5e: 84:89:bd:95:93:5e:83:6c:6a:cf:f9:bb:33:0c:89: 3b:e4:99:61:19:c9:bb:64:1e:26:0b:3d:35:c8:6e: 76:99:75:b4:2e:3c:ee:8e:41:99:0e:66:be:71:f7: 20:8f:b0:3f:8c:4a:a3:14:ad:c7:7a:3f:5e:2f:84: 20:73:d6:63:0f:e0:bb:71:29:13:81:b5:07:fd:3d: a1:e5:dc:a1:e4:81:4d:fd:a0:f9:3f:d4:8f:fc:28: 14:73:78:a9:9c:b4:7a:2c:72:95:f4:2b:8c:c5:b1: c0:08:e9:01:6c:2d:81:47:22:78:a8:d8:0a:26:ac: 57:ed:56:0a:d0:68:4b:6f:85:dd:cc:f1:9e:c9:fd: 51:92:82:53:a0:36:9e:63:be:fc:57:1f:db:58:c4: 27:24:76:48:27:d5:a2:8e:4e:45:10:49:8b:ca:11: ab:7f:f4:a1:69:7b:a8:29:5e:7d:d3:61:0a:cc:7f: c8:2e:41:3c:8f:f5:03:a4:4d:5a:51:87:4e:da:5b: 62:3e:d7:36:73:b8:0a:3a:9c:51:a0:95:d2:72:95: b5:20:a9:48:d2:36:a9:f4:ab:0c:cd:2c:a9:00:60: 0b:0b:12:28:8b:3a:00:4a:57:b6:e3:ae:2d:ef:fa: 9f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:75:A4:6C:CD:0A:0E:D3:6B:F6:3B:D4:02:96:44:D6:26:92:91:F6 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:af:73:a1:06:ee:0f:c4:a2:31:fd:9d:2b:75:78:82:d2:04: bd:37:b3:f6:96:4a:83:12:fb:93:85:ca:13:bf:bd:7f:e3:d5: 3d:48:e7:c2:82:bd:df:0c:6d:50:33:8d:f5:35:05:eb:c8:df: e9:c6:57:c4:d0:5b:60:6c:19:53:78:f4:2a:8e:a2:2f:8d:74: a2:56:7c:b0:56:4f:50:03:52:c5:16:9e:21:a0:ef:ca:dd:ad: 7d:df:49:43:d0:95:d4:3e:13:ca:a8:30:9a:5a:8c:0d:cf:4f: e3:b3:85:13:1e:ce:c8:da:6f:6f:87:77:75:c1:6f:38:bf:23: ac:bd:8b:5c:fc:c7:4a:06:d1:77:d3:8a:a7:d7:bb:93:35:67: 8a:4d:a3:ad:c6:fc:93:68:00:4e:4d:f6:da:03:62:62:7c:b3: 7a:07:bf:70:7c:c1:0b:44:e1:4f:4e:b3:54:20:44:fe:7b:b8: e9:53:ef:a3:34:79:71:e0:73:0c:72:68:8c:24:8b:e2:1d:ad: f0:29:f8:9e:42:60:5e:e5:a2:dd:06:b7:30:22:54:3a:1c:26: e7:40:35:86:25:97:32:52:98:25:7b:57:0b:d6:13:b6:35:9a: 09:19:6c:11:17:29:a4:23:ea:11:d3:23:53:fb:ab:d3:ea:60: 6a:8c:1b:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUxMjI0MTYzMzA4WhcNMjUxMjMxMTYzMzA4WjAYMRYwFAYD VQQDDA02OTRjMTVjNC04Y2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fMxPX9+DD9hLDU1B16Eib2Vk16DbGrP+bszDIk75JlhGcm7ZB4mCz01yG52 mXW0LjzujkGZDma+cfcgj7A/jEqjFK3Hej9eL4Qgc9ZjD+C7cSkTgbUH/T2h5dyh 5IFN/aD5P9SP/CgUc3ipnLR6LHKV9CuMxbHACOkBbC2BRyJ4qNgKJqxX7VYK0GhL b4XdzPGeyf1RkoJToDaeY778Vx/bWMQnJHZIJ9Wijk5FEEmLyhGrf/ShaXuoKV59 02EKzH/ILkE8j/UDpE1aUYdO2ltiPtc2c7gKOpxRoJXScpW1IKlI0jap9KsMzSyp AGALCxIoizoASle2464t7/qfuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGB1pGzN Cg7Ta/Y71AKWRNYmkpH2MB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlr3OhBu4PxKIx/Z0rdXiC0gS9N7P2lkqDEvuThcoTv71/49U9SOfC gr3fDG1QM431NQXryN/pxlfE0FtgbBlTePQqjqIvjXSiVnywVk9QA1LFFp4hoO/K 3a1930lD0JXUPhPKqDCaWowNz0/js4UTHs7I2m9vh3d1wW84vyOsvYtc/MdKBtF3 04qn17uTNWeKTaOtxvyTaABOTfbaA2JifLN6B79wfMELROFPTrNUIET+e7jpU++j NHlx4HMMcmiMJIviHa3wKfieQmBe5aLdBrcwIlQ6HCbnQDWGJZcyUpgle1cL1hO2 NZoJGWwRFymkI+oR0yNT+6vT6mBqjBsD -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:40 2025 by rpki-client