This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft File: ipvaaFOfcVjLATcgqZNvJkuaU3s.mft (raw, json) Hash identifier: yI3gwOJsqD7qSSsiAeMZHATt45UeqjwMfGz8BJyLydY= Subject key identifier: 8B:BB:34:4D:53:04:9C:45:00:1E:83:34:97:13:89:5D:27:75:F4:43 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0DA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft Manifest number: 0D90 Signing time: Mon 22 Dec 2025 17:34:54 +0000 Manifest this update: Mon 22 Dec 2025 17:34:53 +0000 Manifest next update: Mon 29 Dec 2025 17:34:53 +0000 Files and hashes: 1: ipvaaFOfcVjLATcgqZNvJkuaU3s.crl (hash: yUa/NeNyeidrfcnoF/YLNLCJS8D8eqVtXnjZ3XF4NGo=) 2: F23EB988E9A811E9864E3674C4F9AE02.roa (hash: H71fhd8JZc5XXH6DNUerfJbZNQyJaOd/VCkFhoBssG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3488 (0xda0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Dec 22 17:34:53 2025 GMT Not After : Dec 29 17:34:53 2025 GMT Subject: CN=6949813e-99cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5f:00:e3:f7:f3:db:65:16:c3:4d:2b:b7:2e: 9e:d9:9f:46:b8:7b:7f:c4:bf:40:7e:c6:d3:83:63: a6:3d:8f:dc:8c:a1:1c:11:9e:b7:8f:b6:d0:c5:e0: fa:26:74:19:97:dc:65:b5:37:cb:ba:25:99:5b:5d: 93:ac:20:00:c3:c7:cb:28:df:93:f9:55:d0:ca:9f: 0e:13:e1:f0:33:0e:19:31:e1:d8:be:14:6e:61:1a: 2d:82:2d:79:a9:eb:8a:f9:97:71:ce:a4:1c:34:1c: 59:0d:31:fb:11:de:d0:32:e7:de:ae:db:2c:88:a7: 6c:9f:0e:e4:62:15:b8:8d:8a:ea:19:34:29:ec:26: c2:97:14:70:c9:3b:cb:3f:5e:57:97:66:3c:38:26: 01:b1:07:16:e3:90:57:d5:06:52:28:1d:bc:50:76: a0:32:9c:c7:3d:c5:0d:4d:c5:5f:f5:ae:f0:a7:3a: de:a7:86:03:21:c0:01:e6:ce:08:1f:09:66:ff:10: d3:64:89:40:c4:bf:90:a0:93:eb:db:ed:58:7f:8a: 6f:56:88:f3:7f:9f:aa:27:de:35:11:a2:a5:1a:ce: d9:c6:05:06:25:3a:eb:6c:95:6a:46:f9:7a:7b:33: d9:38:52:ee:b7:db:c0:b9:f2:fd:0f:92:27:a7:94: 3c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:BB:34:4D:53:04:9C:45:00:1E:83:34:97:13:89:5D:27:75:F4:43 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:14:7f:fd:58:32:17:40:d9:c3:bd:fe:43:10:44:f5:5c:df: e2:b2:f6:eb:a8:6b:3e:60:29:42:2d:c4:1c:e5:dd:3e:05:65: 0d:f2:08:de:9e:0e:8a:12:3e:19:b4:1c:da:41:b5:d1:aa:61: 4f:e7:bb:77:0f:d1:52:25:3e:db:00:dc:fa:87:7c:12:6f:22: 7a:a6:6c:72:50:1d:01:01:5b:5c:a5:d1:61:96:80:7a:b1:24: 5e:73:77:8d:90:39:ca:88:53:71:89:2a:a7:fc:4a:71:d1:db: 48:ba:84:09:6e:8f:a9:c7:c2:f8:f9:d0:b2:fc:b5:f5:0f:c8: a4:9f:99:4e:ad:cf:12:e3:7f:1b:07:7e:f7:3a:73:71:b9:d0: 26:ad:ce:d0:46:95:b0:13:63:bf:41:aa:b5:d3:d1:86:e1:71: 01:c3:c1:01:6f:de:57:82:99:9f:ba:a8:56:37:1b:64:cb:f8: a7:67:53:f2:99:6b:08:d8:aa:bc:dc:64:2a:bd:3e:6b:0c:15: c1:a1:5e:ef:b7:66:5e:3b:45:ea:b7:c9:23:46:1a:bf:4f:b2: 09:a4:56:dc:4d:ae:06:58:f8:0c:fa:2f:a2:0c:d2:3d:0d:46: f4:41:e5:07:a8:33:bf:be:7f:17:ef:1b:9b:b5:54:5f:85:e3: e0:0d:6d:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUxMjIyMTczNDUzWhcNMjUxMjI5MTczNDUzWjAYMRYwFAYD VQQDDA02OTQ5ODEzZS05OWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsF8A4/fz22UWw00rty6e2Z9GuHt/xL9AfsbTg2OmPY/cjKEcEZ63j7bQxeD6 JnQZl9xltTfLuiWZW12TrCAAw8fLKN+T+VXQyp8OE+HwMw4ZMeHYvhRuYRotgi15 qeuK+ZdxzqQcNBxZDTH7Ed7QMufertssiKdsnw7kYhW4jYrqGTQp7CbClxRwyTvL P15Xl2Y8OCYBsQcW45BX1QZSKB28UHagMpzHPcUNTcVf9a7wpzrep4YDIcAB5s4I Hwlm/xDTZIlAxL+QoJPr2+1Yf4pvVojzf5+qJ941EaKlGs7ZxgUGJTrrbJVqRvl6 ezPZOFLut9vAufL9D5Inp5Q8lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIu7NE1T BJxFAB6DNJcTiV0ndfRDMB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg1Ny9GMTMwN0I3NERBRDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNW akxBVGNncVpOdkprdWFVM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhFH/9WDIXQNnDvf5DEET1XN/isvbrqGs+YClCLcQc5d0+BWUN8gje ng6KEj4ZtBzaQbXRqmFP57t3D9FSJT7bANz6h3wSbyJ6pmxyUB0BAVtcpdFhloB6 sSRec3eNkDnKiFNxiSqn/Epx0dtIuoQJbo+px8L4+dCy/LX1D8ikn5lOrc8S438b B373OnNxudAmrc7QRpWwE2O/Qaq109GG4XEBw8EBb95XgpmfuqhWNxtky/inZ1Py mWsI2Kq83GQqvT5rDBXBoV7vt2ZeO0Xqt8kjRhq/T7IJpFbcTa4GWPgM+i+iDNI9 DUb0QeUHqDO/vn8X7xubtVRfhePgDW32 -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:22 2025 by rpki-client