This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft File: FION2NTh_gMXFCZnF24W4KW2hlE.mft (raw, json) Hash identifier: 8b9eHYLy9If2U2+Obgi699ep+JLkGaOKQf7HZY9r6+8= Subject key identifier: 4A:8C:66:2C:59:DE:26:38:B6:7D:7E:9E:8A:0D:C6:E6:0E:21:BC:92 Authority key identifier: 14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 Certificate issuer: /CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Certificate serial: 0E4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft Manifest number: 0E47 Signing time: Thu 18 Dec 2025 17:35:35 +0000 Manifest this update: Thu 18 Dec 2025 17:35:34 +0000 Manifest next update: Thu 25 Dec 2025 17:35:34 +0000 Files and hashes: 1: FION2NTh_gMXFCZnF24W4KW2hlE.crl (hash: 5gE7FwBhiDcIrOCdpwPhxFDxUUmP1Ccev7eS9EzssXc=) 2: 14E68648B42D11E9A44FF25BC4F9AE02.roa (hash: aOcvKXW2OwUSyFzRq5Kiuga5ndEep1PmMp0UDb+8XIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3663 (0xe4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D9, serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Validity Not Before: Dec 18 17:35:34 2025 GMT Not After : Dec 25 17:35:34 2025 GMT Subject: CN=69443b67-c245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8e:72:15:c2:51:07:89:fd:f9:08:b9:c2:0c: 8d:e9:7b:bd:59:86:04:b4:04:44:b5:d8:bc:67:67: 04:f7:f9:c6:a9:93:3a:69:54:7b:20:91:af:d9:73: 41:18:66:92:32:c3:16:bb:fc:91:a4:29:88:00:f1: b2:e0:da:44:ef:c0:c9:47:72:12:ee:e0:b2:e8:44: 5b:e6:c1:76:55:99:1c:6f:d1:c6:14:79:9b:5a:18: 25:77:6e:53:09:26:4d:5d:80:5a:d8:66:01:78:2a: d0:d2:d2:c7:54:6b:45:cc:6e:0c:db:4b:76:e9:20: f8:98:5a:2b:e0:2f:cc:22:85:7e:33:1f:1d:a6:26: cd:b5:d6:ba:94:45:8e:f4:33:d1:0b:9c:85:7c:46: d7:50:fc:7a:3d:90:97:3f:9a:60:ed:17:1e:fe:76: 54:de:c4:e2:16:ae:16:23:a8:21:92:0d:00:ea:84: f6:5e:53:4f:f4:51:dc:7c:34:2b:35:c5:1b:84:f3: 0d:dc:e8:b6:9c:4a:5c:44:af:be:77:d4:0d:9a:93: f4:f3:ba:a9:70:c8:30:a1:dd:78:15:13:d3:58:fb: fc:4f:5f:22:a9:2b:ce:bc:2b:40:3f:af:07:99:b3: ed:56:08:57:5b:15:ac:bb:c3:fc:7f:4e:54:48:3e: 27:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:8C:66:2C:59:DE:26:38:B6:7D:7E:9E:8A:0D:C6:E6:0E:21:BC:92 X509v3 Authority Key Identifier: keyid:14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:3f:00:aa:3c:ea:c3:ee:32:8a:3c:8c:22:42:1b:4b:9b:f3: 3b:52:2a:9b:fd:7b:03:bd:6d:6f:85:11:1e:30:cb:27:bd:d9: 83:22:fd:d2:f6:3c:2a:f0:9c:cb:f0:ce:12:d9:17:e1:5e:fb: 3f:b5:49:5a:a8:80:7c:7a:c7:de:68:1c:25:fe:ad:f9:1d:b7: 6a:d3:99:29:74:a9:09:be:a1:2d:0f:1f:0d:01:9e:80:92:cf: ad:d7:60:33:2b:4d:a2:56:0b:38:f1:fe:55:46:06:0c:dc:77: 6f:e4:e7:ed:fb:3c:e2:88:43:62:85:e6:6d:8a:05:ec:0c:80: da:4d:49:99:7f:0e:06:6a:9a:48:b6:5c:81:da:32:76:70:ce: 28:e8:24:dc:c8:3b:87:a9:2a:fc:c3:4e:15:32:59:6e:44:4f: 35:8d:8b:92:d4:e9:45:38:09:2b:07:35:5c:94:16:ad:3e:57: dc:6b:e1:ee:c0:0c:8a:d2:ad:a2:65:55:15:71:11:a1:c4:34: dd:91:ed:25:a0:df:0f:42:7e:a2:49:e8:ec:bb:0a:4d:6e:2d: af:0b:16:7b:d5:3c:7c:1b:8e:0c:9f:ac:cb:6f:2e:2b:5d:07: ca:66:00:49:4c:89:b6:bd:65:3a:bb:e4:54:94:e5:a7:b2:99: 65:ce:7e:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDkxMTAvBgNVBAUTKDE0ODM4REQ4RDRFMUZFMDMxNzE0MjY2NzE3NkUxNkUw QTVCNjg2NTEwHhcNMjUxMjE4MTczNTM0WhcNMjUxMjI1MTczNTM0WjAYMRYwFAYD VQQDDA02OTQ0M2I2Ny1jMjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxo5yFcJRB4n9+Qi5wgyN6Xu9WYYEtAREtdi8Z2cE9/nGqZM6aVR7IJGv2XNB GGaSMsMWu/yRpCmIAPGy4NpE78DJR3IS7uCy6ERb5sF2VZkcb9HGFHmbWhgld25T CSZNXYBa2GYBeCrQ0tLHVGtFzG4M20t26SD4mFor4C/MIoV+Mx8dpibNtda6lEWO 9DPRC5yFfEbXUPx6PZCXP5pg7Rce/nZU3sTiFq4WI6ghkg0A6oT2XlNP9FHcfDQr NcUbhPMN3Oi2nEpcRK++d9QNmpP087qpcMgwod14FRPTWPv8T18iqSvOvCtAP68H mbPtVghXWxWsu8P8f05USD4nAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqMZixZ 3iY4tn1+nooNxuYOIbySMB8GA1UdIwQYMBaAFBSDjdjU4f4DFxQmZxduFuCltoZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEOS8xQzNERDk2NkI0 MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9nTVhGQ1puRjI0VzRLVzJo bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZJT04yTlRoX2dNWEZDWm5GMjRXNEtXMmhsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEOS8xQzNERDk2NkI0MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9n TVhGQ1puRjI0VzRLVzJobEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWPwCqPOrD7jKKPIwiQhtLm/M7Uiqb/XsDvW1vhREeMMsnvdmDIv3S 9jwq8JzL8M4S2RfhXvs/tUlaqIB8esfeaBwl/q35Hbdq05kpdKkJvqEtDx8NAZ6A ks+t12AzK02iVgs48f5VRgYM3Hdv5Oft+zziiENiheZtigXsDIDaTUmZfw4GappI tlyB2jJ2cM4o6CTcyDuHqSr8w04VMlluRE81jYuS1OlFOAkrBzVclBatPlfca+Hu wAyK0q2iZVUVcRGhxDTdke0loN8PQn6iSejsuwpNbi2vCxZ71Tx8G44Mn6zLby4r XQfKZgBJTIm2vWU6u+RUlOWnspllzn4n -----END CERTIFICATE-----Generated at Fri Dec 19 11:38:22 2025 by rpki-client