This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft File: Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft (raw, json) Hash identifier: T34k2qYwIG+I1zb3MERFHqsn7VfumHD2M9Gq7rjjz88= Subject key identifier: C5:A4:D8:C5:22:EA:19:87:34:64:52:2C:AC:2D:05:62:59:9A:5C:65 Authority key identifier: 15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 Certificate issuer: /CN=A916B0EA/serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Certificate serial: 0894 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft Manifest number: 1515 Signing time: Mon 22 Dec 2025 18:03:21 +0000 Manifest this update: Mon 22 Dec 2025 18:03:20 +0000 Manifest next update: Mon 29 Dec 2025 18:03:20 +0000 Files and hashes: 1: Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl (hash: KDvCtQew9+tgBlYLRlhFw87s5d+pgnieAt4PVgy58s0=) 2: 6535FEC0345C11F0B4126F3CC4F9AE02.roa (hash: pjUqvx9LjqZcGK0IESA4LP1Wg4xMY3NQqlqvkln9QM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2196 (0x894) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0EA, serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Validity Not Before: Dec 22 18:03:20 2025 GMT Not After : Dec 29 18:03:20 2025 GMT Subject: CN=694987e9-bf29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2e:28:0b:3c:4d:b7:54:3c:79:0b:f2:48:bb: 9d:19:a1:73:2c:f1:ba:56:fd:dd:50:6f:a3:bf:7b: a5:00:17:63:c8:59:b8:7f:df:72:a5:b8:89:de:cc: e3:ea:5b:fb:c6:60:47:dd:05:a4:f1:87:a4:59:75: 7d:71:10:ea:65:1d:e7:4d:7e:60:6f:e4:9e:05:02: 05:11:b9:f7:33:f2:06:aa:68:ab:f8:27:6d:37:b3: c5:f4:cc:27:1e:41:11:3c:6a:fa:96:3f:ac:84:8a: 04:6e:ce:26:21:17:73:60:19:0c:a7:3e:32:55:21: f9:58:35:a2:09:17:8e:7f:f0:c0:43:e9:74:c5:f5: ce:98:2e:e3:50:1d:b4:e7:3c:3d:3a:fc:7e:77:51: 94:cb:86:ac:1a:0b:94:29:5f:1a:7c:42:f8:96:cb: 29:d8:f3:ee:6d:bf:83:5e:ee:a5:a8:84:ce:db:41: 77:77:6e:f8:2e:48:3b:61:9a:45:a2:27:99:45:9e: ae:b4:a3:8c:9c:9b:c4:af:a0:56:d4:c7:ba:9c:02: 1e:68:94:f8:5f:9e:3e:ce:97:ff:95:41:d9:07:47: 0a:c0:61:c8:82:ee:7f:38:72:4f:4e:b2:af:3a:dc: 63:f1:22:62:52:22:44:79:a5:57:02:52:05:3c:2d: 24:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A4:D8:C5:22:EA:19:87:34:64:52:2C:AC:2D:05:62:59:9A:5C:65 X509v3 Authority Key Identifier: keyid:15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:76:4a:2f:46:ac:1f:07:56:b2:7f:5f:0f:c7:9c:58:bc:ac: 80:64:0b:18:e1:c3:75:f4:cd:12:4d:82:cc:44:44:6f:94:78: b2:18:08:12:58:31:36:46:07:43:54:07:dc:22:82:22:7a:e6: 3b:71:46:e5:f4:65:73:e8:7a:9e:75:b9:42:93:89:29:49:5f: 8b:a9:90:e5:9b:e3:b1:29:83:b8:36:6f:76:2b:31:11:a8:0c: 81:5c:96:5f:75:ee:3b:97:e6:46:ac:7a:40:7d:45:c0:02:f5: 79:0b:f5:a8:1c:f5:16:b4:7e:3b:e4:ad:b0:82:7a:d7:f2:d1: 1b:e3:85:1e:93:a7:0b:2c:f0:32:75:13:ab:8c:9d:b5:37:92: 83:14:36:c0:ba:f5:06:58:5b:fe:41:ab:4e:50:4d:03:eb:01: 0f:de:a2:d8:07:59:a4:ce:f2:ac:5d:31:df:06:7c:e3:5b:15: 41:ef:5c:19:ec:c3:8f:fa:e7:b4:cf:81:13:e2:03:b9:7c:98: 52:fe:4c:59:03:e1:bf:e0:18:7d:e8:81:ca:55:d2:34:cd:27: 09:24:07:5e:df:d3:d8:89:c8:4b:8f:83:b2:aa:58:07:a2:28: 68:26:88:55:19:55:1f:3d:b2:46:fb:84:74:95:72:3b:4b:5c: bd:28:ff:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwRUExMTAvBgNVBAUTKDE1REY3OUEwMDczOUJDMzlCNzE3ODkyNTk1OERGRUU5 OUJFMDBENDIwHhcNMjUxMjIyMTgwMzIwWhcNMjUxMjI5MTgwMzIwWjAYMRYwFAYD VQQDDA02OTQ5ODdlOS1iZjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvS4oCzxNt1Q8eQvySLudGaFzLPG6Vv3dUG+jv3ulABdjyFm4f99ypbiJ3szj 6lv7xmBH3QWk8YekWXV9cRDqZR3nTX5gb+SeBQIFEbn3M/IGqmir+CdtN7PF9Mwn HkERPGr6lj+shIoEbs4mIRdzYBkMpz4yVSH5WDWiCReOf/DAQ+l0xfXOmC7jUB20 5zw9Ovx+d1GUy4asGguUKV8afEL4lssp2PPubb+DXu6lqITO20F3d274Lkg7YZpF oieZRZ6utKOMnJvEr6BW1Me6nAIeaJT4X54+zpf/lUHZB0cKwGHIgu5/OHJPTrKv Otxj8SJiUiJEeaVXAlIFPC0kBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWk2MUi 6hmHNGRSLKwtBWJZmlxlMB8GA1UdIwQYMBaAFBXfeaAHObw5txeJJZWN/umb4A1C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBFQS80RDhFNDlCMDBC NzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZEbTNGNGtsbFkzLTZadmdE VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZkOTVvQWM1dkRtM0Y0a2xsWTMtNlp2Z0RVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBFQS80RDhFNDlCMDBCNzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZE bTNGNGtsbFkzLTZadmdEVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANdkovRqwfB1ayf18Px5xYvKyAZAsY4cN19M0STYLMRERvlHiyGAgS WDE2RgdDVAfcIoIieuY7cUbl9GVz6HqedblCk4kpSV+LqZDlm+OxKYO4Nm92KzER qAyBXJZfde47l+ZGrHpAfUXAAvV5C/WoHPUWtH475K2wgnrX8tEb44Uek6cLLPAy dROrjJ21N5KDFDbAuvUGWFv+QatOUE0D6wEP3qLYB1mkzvKsXTHfBnzjWxVB71wZ 7MOP+ue0z4ET4gO5fJhS/kxZA+G/4Bh96IHKVdI0zScJJAde39PYichLj4OyqlgH oihoJohVGVUfPbJG+4R0lXI7S1y9KP+p -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:12 2025 by rpki-client