This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: Jiy1ywml3Szl2aEw7hqu7QwpC+CwZbARIJkCzNzErlQ= Subject key identifier: 39:F7:01:0F:1B:C3:8D:C0:DE:0A:7C:12:56:70:75:32:56:31:1A:90 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 08F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 08BF Signing time: Sun 14 Dec 2025 19:57:36 +0000 Manifest this update: Sun 14 Dec 2025 19:57:36 +0000 Manifest next update: Sun 21 Dec 2025 19:57:36 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: 7EtK8H6oWv13Z7FDN5akZ+GvYQiZo7wKHKBD7R7DZwY=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) 3: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) 4: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: 50ACgx85pKWBSdecvm1PzIpRWx2Le1Y9DodxHydptpU=) 5: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 19:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2291 (0x8f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Dec 14 19:57:36 2025 GMT Not After : Dec 21 19:57:36 2025 GMT Subject: CN=693f16b0-20f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:da:ba:78:44:4f:5b:08:6f:d3:0a:d3:d3:8f: 33:de:fa:c3:b3:61:fa:c8:e5:44:7b:5c:0c:55:31: aa:b9:8d:fd:21:24:9f:8d:e7:90:78:e8:4e:34:8a: 28:43:fd:5e:81:c9:d8:aa:51:a1:81:a3:e7:0a:47: bd:49:7c:6b:21:39:14:0c:9a:32:f7:8d:75:8b:13: 00:22:5d:49:15:0e:25:ed:8d:a2:48:6a:c1:ae:10: bc:58:5e:19:b1:74:b3:ef:d2:f1:9e:f6:06:a2:99: 51:6a:3d:68:17:4b:03:e8:eb:38:1d:33:3d:57:a9: c5:32:9e:61:d8:b1:10:58:4c:d6:a5:cf:e8:63:fb: 06:73:3e:10:ef:c0:20:7f:bb:54:81:20:0a:b5:d5: aa:a2:4e:b5:88:43:66:51:b0:93:85:52:8c:e6:62: 76:c7:4c:53:fd:dc:59:d9:82:ff:92:08:f4:cb:91: 48:13:31:b6:aa:27:7e:36:bb:46:13:f0:f5:d3:e8: 56:92:2b:54:32:6f:3f:48:c7:07:7f:50:a4:f7:2b: 59:30:a0:80:a9:74:a2:52:78:fe:f3:3a:bb:f4:d3: b5:04:a7:7b:6d:d4:e9:ec:af:93:dc:74:be:59:47: 5b:34:a4:0a:92:c9:05:b5:87:da:00:f3:e2:f5:92: fa:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F7:01:0F:1B:C3:8D:C0:DE:0A:7C:12:56:70:75:32:56:31:1A:90 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:a6:95:53:42:58:4d:64:b7:40:b5:f1:54:d3:ca:d1:fd:3a: f3:56:60:39:5f:be:70:f7:2b:3c:8d:ff:94:a0:70:98:61:8f: 66:ad:fc:f2:c5:25:c8:90:9a:c6:01:af:a3:8a:25:2b:83:b1: 56:86:5e:2d:27:5b:69:2a:e2:eb:41:45:ac:66:fd:17:96:08: 16:0f:f3:a8:32:b6:e6:f5:02:24:55:cd:96:80:2d:cf:d7:80: 99:ef:09:43:aa:83:0a:b1:4a:63:ab:8f:11:6c:a5:5f:0f:c0: 8c:82:e4:df:99:95:bf:74:25:3f:79:17:12:1e:93:2b:58:90: 52:7e:78:74:aa:4c:46:06:d1:7e:05:75:2f:75:e1:7a:6d:f7: 9e:4a:fc:fe:5c:67:29:87:db:d0:11:5f:78:f6:51:9d:31:3e: 91:ee:a1:44:be:64:41:f8:09:6b:eb:a9:99:f0:c0:83:2c:1d: b6:ae:62:80:b4:46:45:5c:2b:9d:6f:95:a1:26:36:86:06:d4: 3a:e7:a7:66:3e:ce:95:7e:9d:4a:38:6e:b0:8b:66:71:e8:00: 03:64:1b:0e:6b:02:92:f8:18:a0:a0:10:0e:18:53:d7:83:a6: f9:5f:dc:91:68:ef:35:c3:c7:40:fd:fa:60:3a:56:8b:b0:ed: c8:3c:7b:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUxMjE0MTk1NzM2WhcNMjUxMjIxMTk1NzM2WjAYMRYwFAYD VQQDDA02OTNmMTZiMC0yMGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotq6eERPWwhv0wrT048z3vrDs2H6yOVEe1wMVTGquY39ISSfjeeQeOhONIoo Q/1egcnYqlGhgaPnCke9SXxrITkUDJoy9411ixMAIl1JFQ4l7Y2iSGrBrhC8WF4Z sXSz79LxnvYGoplRaj1oF0sD6Os4HTM9V6nFMp5h2LEQWEzWpc/oY/sGcz4Q78Ag f7tUgSAKtdWqok61iENmUbCThVKM5mJ2x0xT/dxZ2YL/kgj0y5FIEzG2qid+NrtG E/D10+hWkitUMm8/SMcHf1Ck9ytZMKCAqXSiUnj+8zq79NO1BKd7bdTp7K+T3HS+ WUdbNKQKkskFtYfaAPPi9ZL6vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDn3AQ8b w43A3gp8ElZwdTJWMRqQMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmppVTQlhNZLdAtfFU08rR/TrzVmA5X75w9ys8jf+UoHCYYY9mrfzy xSXIkJrGAa+jiiUrg7FWhl4tJ1tpKuLrQUWsZv0XlggWD/OoMrbm9QIkVc2WgC3P 14CZ7wlDqoMKsUpjq48RbKVfD8CMguTfmZW/dCU/eRcSHpMrWJBSfnh0qkxGBtF+ BXUvdeF6bfeeSvz+XGcph9vQEV949lGdMT6R7qFEvmRB+Alr66mZ8MCDLB22rmKA tEZFXCudb5WhJjaGBtQ656dmPs6Vfp1KOG6wi2Zx6AADZBsOawKS+BigoBAOGFPX g6b5X9yRaO81w8dA/fpgOlaLsO3IPHuT -----END CERTIFICATE-----Generated at Sun Dec 14 22:57:51 2025 by rpki-client