This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: dd809LnwwYYmssnjo/J4gzfWh+en8UJy44GRHLy8viY= Subject key identifier: B9:F4:4F:F3:86:83:39:0E:C3:CC:2F:84:B2:8A:8C:0F:5A:79:6C:49 Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 03A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 0399 Signing time: Fri 19 Dec 2025 00:01:38 +0000 Manifest this update: Fri 19 Dec 2025 00:01:38 +0000 Manifest next update: Fri 26 Dec 2025 00:01:38 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: kqiUofEHD+uFCOcVapYhbQR7zNcdKUfHO3YMY5drYLg=) 2: A047A07AD56811EFB57A5D33C4F9AE02.roa (hash: hW5FiSV5239AbImQE/mYJwi40OATdFzGCdVUMZFhemo=) 3: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (hash: SFUw1crOwEdM2KZGmzmI0Y/ekMkiUyOErHqNpQ3ZimY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9, serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: Dec 19 00:01:38 2025 GMT Not After : Dec 26 00:01:38 2025 GMT Subject: CN=694495e2-ffb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:5a:92:b7:59:91:52:92:df:0c:61:9d:50:19: c5:39:da:5e:5f:fb:51:b2:75:ef:fe:80:af:59:e9: f4:90:d9:d4:b4:3f:fa:6a:62:6d:b5:66:4a:19:9a: ef:e1:1e:ce:3c:5b:3c:2c:9d:e2:b5:80:44:fb:7e: 71:d5:86:41:4b:49:4d:a7:5a:17:96:1b:c8:3c:c9: 2d:bb:14:66:62:96:b0:58:25:d9:c7:e6:ac:b9:4c: 8a:b4:7d:c3:f3:bf:ba:55:71:73:ba:35:0d:ad:b1: 4d:a3:04:fd:31:6e:ef:bd:b4:6e:6f:bb:a3:7e:e9: 84:6e:10:c3:02:2e:2a:26:b2:f8:e6:b4:02:2e:87: 07:5e:5c:3c:30:fe:27:73:e9:34:a3:70:c8:93:50: 44:08:3d:97:22:2d:a3:9e:17:92:43:91:7f:ff:ac: 11:68:88:7d:a1:15:38:74:38:8f:68:53:d0:f6:06: 31:de:eb:47:36:ce:b8:1b:39:18:15:30:a7:48:55: c8:41:7e:a9:1f:89:d6:8e:4a:59:04:39:7d:5a:be: 1d:ba:80:de:91:2b:c6:a2:7f:61:9a:8b:74:5c:42: c9:3f:b7:b7:cd:79:c0:d9:6c:1d:a9:be:0c:b0:53: 41:37:c4:74:c3:6f:2b:d1:81:7f:98:2f:88:22:ab: c7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:F4:4F:F3:86:83:39:0E:C3:CC:2F:84:B2:8A:8C:0F:5A:79:6C:49 X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:ac:b4:8d:b9:0d:36:9b:d0:64:e9:61:c6:02:f6:2b:a3:e6: 53:4a:fb:bf:08:bf:5b:1c:cc:11:3f:ca:b6:1b:b4:e6:f8:7d: 74:89:88:b5:11:fb:de:8b:8f:71:64:21:1e:74:ed:fb:cb:74: e6:c9:4c:fa:93:40:c3:ed:8b:d4:ac:f2:fe:ed:de:26:2a:57: ea:3b:25:11:da:91:c1:f3:7e:08:d2:42:0c:e0:3f:2e:a3:d1: 8f:54:39:f5:dc:7f:0a:48:1a:6a:b7:fb:60:30:0f:de:36:04: bb:6a:02:6b:64:18:cf:cf:b0:06:34:34:ea:7c:5f:56:7b:88: ab:9e:44:2c:c5:07:f2:ad:ef:f5:1e:6c:5c:8a:d1:4a:9b:42: 91:2d:38:e7:c1:65:af:2d:85:64:fc:ad:52:b7:99:b6:86:59: a5:1d:dd:7b:cb:69:27:f4:ef:09:41:a5:2a:eb:c3:1d:29:f3: e0:39:d4:a2:33:1c:10:87:94:8c:17:f6:fe:47:a2:fe:a2:53: 0a:18:11:87:0c:5b:1e:5f:64:a4:e7:dc:93:7c:86:93:82:53: d1:c0:8f:83:21:a9:89:23:bc:bd:36:a9:b7:98:ff:00:45:da: 7d:ee:c8:ed:4b:b8:6c:fc:57:01:8d:a4:02:78:d0:ab:7d:60: 2b:99:59:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjUxMjE5MDAwMTM4WhcNMjUxMjI2MDAwMTM4WjAYMRYwFAYD VQQDDA02OTQ0OTVlMi1mZmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9lqSt1mRUpLfDGGdUBnFOdpeX/tRsnXv/oCvWen0kNnUtD/6amJttWZKGZrv 4R7OPFs8LJ3itYBE+35x1YZBS0lNp1oXlhvIPMktuxRmYpawWCXZx+asuUyKtH3D 87+6VXFzujUNrbFNowT9MW7vvbRub7ujfumEbhDDAi4qJrL45rQCLocHXlw8MP4n c+k0o3DIk1BECD2XIi2jnheSQ5F//6wRaIh9oRU4dDiPaFPQ9gYx3utHNs64GzkY FTCnSFXIQX6pH4nWjkpZBDl9Wr4duoDekSvGon9hmot0XELJP7e3zXnA2Wwdqb4M sFNBN8R0w28r0YF/mC+IIqvHFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLn0T/OG gzkOw8wvhLKKjA9aeWxJMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOrLSNuQ02m9Bk6WHGAvYro+ZTSvu/CL9bHMwRP8q2G7Tm+H10iYi1 Efvei49xZCEedO37y3TmyUz6k0DD7YvUrPL+7d4mKlfqOyUR2pHB834I0kIM4D8u o9GPVDn13H8KSBpqt/tgMA/eNgS7agJrZBjPz7AGNDTqfF9We4irnkQsxQfyre/1 HmxcitFKm0KRLTjnwWWvLYVk/K1St5m2hlmlHd17y2kn9O8JQaUq68MdKfPgOdSi MxwQh5SMF/b+R6L+olMKGBGHDFseX2Sk59yTfIaTglPRwI+DIamJI7y9Nqm3mP8A Rdp97sjtS7hs/FcBjaQCeNCrfWArmVnN -----END CERTIFICATE-----Generated at Fri Dec 19 18:36:42 2025 by rpki-client