This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: kLuDF/seOssMB1MHTQbFxD7t998bCMuXZ8HKpaPHYS0= Subject key identifier: 88:68:5F:DD:E6:8B:40:95:95:F0:51:C1:67:6B:15:50:6E:6B:7D:12 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: FC Signing time: Tue 23 Dec 2025 04:12:09 +0000 Manifest this update: Tue 23 Dec 2025 04:12:09 +0000 Manifest next update: Tue 30 Dec 2025 04:12:09 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: WfhxzRAqXXSS9UCLQkaZei80wwhJbWnB6/9er7bZL+M=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 9MXU4baBCAJAJy9aPNxn57TypL0yxNcRqoUsf2K4Xic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Dec 23 04:12:09 2025 GMT Not After : Dec 30 04:12:09 2025 GMT Subject: CN=694a1699-f38a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7c:90:af:ec:de:d6:53:e9:e7:8a:68:5c:78: d5:cd:72:e9:38:71:7d:87:05:99:15:7d:89:e0:c4: 5a:c1:00:b6:27:9e:5a:49:e9:1f:0a:2a:e5:a0:5b: 9f:a1:02:f3:e7:75:a4:45:0e:d6:ef:d3:3c:99:ad: e9:0a:72:ad:d7:25:2e:35:80:7f:27:95:95:2a:16: bb:33:69:7e:50:b2:5e:7f:72:71:16:97:5c:30:12: 03:27:ba:e3:12:c6:c1:c0:3f:35:da:14:86:06:ec: 5f:7f:9b:1d:a6:37:87:33:fb:ef:16:ce:62:34:e1: ba:e1:b7:b9:d3:00:3f:37:99:99:78:18:d2:b2:8f: cd:51:3a:2d:9c:1f:63:f5:fb:1d:e6:e1:8d:01:ba: 70:fd:b0:36:9f:e8:af:34:05:e6:4e:57:db:89:cd: 71:33:91:45:98:29:55:0c:f6:6a:b0:1a:47:b6:27: c8:6c:14:f8:4b:ca:ea:77:82:fb:be:96:82:fa:15: 6c:a7:7d:e9:5d:58:25:a0:57:b4:38:a0:c8:1b:12: 62:8f:60:7d:97:68:87:aa:c1:24:d5:77:7c:23:77: 8e:d3:39:a2:10:8c:7e:56:d2:cb:12:19:12:d4:53: 3e:83:54:90:ed:f0:5f:e1:d4:04:43:2f:ea:b9:75: 72:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:68:5F:DD:E6:8B:40:95:95:F0:51:C1:67:6B:15:50:6E:6B:7D:12 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:bd:f8:0f:97:78:e1:e8:90:c5:8c:cb:a2:ee:db:f0:26:ac: 46:b1:03:3f:5f:bb:c7:eb:c1:23:11:63:56:f8:4a:de:1d:05: 2e:97:61:45:65:e2:fa:a9:a0:35:58:bd:28:7c:66:e2:88:2c: be:b4:24:8f:9b:cf:3b:75:0c:4e:1e:4a:d9:00:14:80:7e:8e: c5:10:c5:b1:ce:2e:95:8b:7b:0d:53:29:2d:7d:0f:66:27:fe: 1a:75:0d:08:d9:a4:d3:41:05:33:f6:5c:52:80:9d:56:fb:6a: b5:bb:b7:5e:55:2d:8a:4b:0f:f0:ae:b2:71:b2:60:0f:d0:f3: b9:dd:b1:8b:b1:cf:d1:cf:5f:18:5b:d2:5c:49:92:4e:8d:50: 8b:10:9c:1d:8d:b6:12:b3:5c:d4:35:92:bc:95:4c:18:51:ba: ab:01:a6:02:f3:de:29:64:41:8d:5a:72:de:05:ab:a7:ab:bb: 17:c1:82:d9:15:dc:7a:34:79:62:27:d3:b7:43:19:90:10:f5: 0f:91:87:98:27:49:c5:d7:0b:39:2c:06:6f:49:1d:86:8e:81: 1f:60:03:56:ee:cb:57:ce:98:20:f6:92:6e:37:9d:19:7d:86: 5a:0a:be:30:07:64:36:8e:8c:e5:70:6a:5c:31:63:17:34:a9: a5:5a:86:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUxMjIzMDQxMjA5WhcNMjUxMjMwMDQxMjA5WjAYMRYwFAYD VQQDDA02OTRhMTY5OS1mMzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXyQr+ze1lPp54poXHjVzXLpOHF9hwWZFX2J4MRawQC2J55aSekfCirloFuf oQLz53WkRQ7W79M8ma3pCnKt1yUuNYB/J5WVKha7M2l+ULJef3JxFpdcMBIDJ7rj EsbBwD812hSGBuxff5sdpjeHM/vvFs5iNOG64be50wA/N5mZeBjSso/NUTotnB9j 9fsd5uGNAbpw/bA2n+ivNAXmTlfbic1xM5FFmClVDPZqsBpHtifIbBT4S8rqd4L7 vpaC+hVsp33pXVgloFe0OKDIGxJij2B9l2iHqsEk1Xd8I3eO0zmiEIx+VtLLEhkS 1FM+g1SQ7fBf4dQEQy/quXVyGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhoX93m i0CVlfBRwWdrFVBua30SMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5vfgPl3jh6JDFjMui7tvwJqxGsQM/X7vH68EjEWNW+EreHQUul2FF ZeL6qaA1WL0ofGbiiCy+tCSPm887dQxOHkrZABSAfo7FEMWxzi6Vi3sNUyktfQ9m J/4adQ0I2aTTQQUz9lxSgJ1W+2q1u7deVS2KSw/wrrJxsmAP0PO53bGLsc/Rz18Y W9JcSZJOjVCLEJwdjbYSs1zUNZK8lUwYUbqrAaYC894pZEGNWnLeBaunq7sXwYLZ Fdx6NHliJ9O3QxmQEPUPkYeYJ0nF1ws5LAZvSR2GjoEfYANW7stXzpgg9pJuN50Z fYZaCr4wB2Q2jozlcGpcMWMXNKmlWobq -----END CERTIFICATE-----Generated at Thu Dec 25 03:20:23 2025 by rpki-client