This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft File: PTiRpGy8urR0eN6kDSkI9nzOOyo.mft (raw, json) Hash identifier: rSkf/IAv/X1tCqMSDG1noEtzJVeJOQ/+NfPnOLcyJXU= Subject key identifier: 25:F2:6B:ED:6F:AB:2B:63:45:5A:39:45:7F:F6:F2:09:73:79:98:E7 Authority key identifier: 3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A Certificate issuer: /CN=A91AAEC2/serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Certificate serial: 08EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft Manifest number: 08E3 Signing time: Mon 22 Dec 2025 19:46:35 +0000 Manifest this update: Mon 22 Dec 2025 19:46:34 +0000 Manifest next update: Mon 29 Dec 2025 19:46:34 +0000 Files and hashes: 1: PTiRpGy8urR0eN6kDSkI9nzOOyo.crl (hash: WnBHKqjyG8ltB4deqKbPIqfguy5qxL3ghihf2S686XM=) 2: DFEA30745C3011EEB250DE0EC4F9AE02.roa (hash: /a+ZA2ERE3wFJg9UM9vnT7hTqkW6cEzxlPnScilW2Xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2284 (0x8ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEC2, serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Validity Not Before: Dec 22 19:46:34 2025 GMT Not After : Dec 29 19:46:34 2025 GMT Subject: CN=6949a01b-df0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:4e:88:e2:81:7c:7b:f7:c9:a7:5d:22:48:34: 5e:20:2c:bd:51:91:ec:7c:28:58:b4:ca:52:5c:97: 99:36:53:b4:be:b0:2f:2a:1a:74:74:44:f3:86:32: 3b:78:3a:e6:42:5b:f9:90:5b:58:c9:19:2f:2b:01: 4b:c1:5a:d7:fd:2e:ea:eb:13:01:7e:d2:9e:5f:7a: 4d:84:47:e8:f6:e6:27:32:3d:f3:b8:c5:bb:6b:c5: d5:72:89:9a:cd:28:eb:09:aa:3a:29:e9:fc:f8:1e: 9c:2d:94:1b:36:8f:aa:41:f4:40:6a:b3:7b:2e:51: 14:2a:82:7d:16:b8:91:46:71:ad:46:89:43:49:fe: 01:6c:76:ef:84:54:b4:90:bc:c7:63:8f:85:3c:9e: 39:c4:4f:fe:ab:b9:a2:af:e9:26:68:7a:60:58:04: e2:64:26:f2:3d:15:52:28:a8:9b:b5:b6:e7:cb:35: f3:2e:8f:47:2d:e9:ea:ab:3a:c0:7d:ea:5b:4f:88: 5d:e3:98:42:a3:92:b2:3a:0e:79:47:ae:3f:cc:93: 9e:ea:8c:2d:09:09:11:bc:fc:5a:df:25:77:3c:8a: 4f:a8:b9:55:e2:2a:6a:53:ef:b7:46:ab:cc:0e:3f: 27:a5:fe:8f:e9:61:6e:23:81:5c:0e:d2:96:31:a0: be:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F2:6B:ED:6F:AB:2B:63:45:5A:39:45:7F:F6:F2:09:73:79:98:E7 X509v3 Authority Key Identifier: keyid:3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:a8:78:ae:aa:df:73:c6:bf:c6:ad:5d:e0:fc:62:c8:90:a9: 6c:6e:1e:12:48:f0:3e:fd:19:e7:10:2f:b8:c6:1f:6b:2e:ae: 2f:88:61:2f:8b:c4:2b:bb:15:03:90:a3:c2:f2:ce:c4:dd:8d: 65:f6:b6:db:2b:54:66:ab:2f:21:3d:49:b0:eb:51:2b:42:7b: 3b:7b:a9:22:bc:93:b4:d7:00:25:4d:f0:8b:b3:6d:82:22:bb: 6b:ae:f9:db:e0:d6:d6:fd:2f:32:c9:dc:aa:59:35:57:c2:61: 7c:d9:fa:f0:d1:a5:d7:64:5b:75:9f:7d:57:9e:e4:63:e9:21: 7f:ff:f9:6c:0a:90:98:5a:be:33:e9:3c:8f:26:cc:5a:5d:7d: f4:f0:b2:c6:50:a9:1e:2e:62:e4:29:f8:1f:23:7b:5d:6a:83: 0a:ab:7e:2b:85:50:c7:44:7a:6b:4f:20:7a:21:0d:83:68:6d: 6e:87:b5:9b:7a:72:9a:cf:40:b0:15:8e:ba:01:b4:c8:ef:51: 27:40:69:ab:59:9f:c4:f4:cb:3c:26:7d:3c:5f:09:2d:99:af: 21:08:87:fc:ae:a8:25:f6:d0:39:4c:4c:d0:f0:0b:a5:fb:14: 4a:69:97:65:16:a8:cc:b4:3b:74:aa:52:bd:9a:1e:1c:df:ff: eb:96:2f:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQzIxMTAvBgNVBAUTKDNEMzg5MUE0NkNCQ0JBQjQ3NDc4REVBNDBEMjkwOEY2 N0NDRTNCMkEwHhcNMjUxMjIyMTk0NjM0WhcNMjUxMjI5MTk0NjM0WjAYMRYwFAYD VQQDDA02OTQ5YTAxYi1kZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnU6I4oF8e/fJp10iSDReICy9UZHsfChYtMpSXJeZNlO0vrAvKhp0dETzhjI7 eDrmQlv5kFtYyRkvKwFLwVrX/S7q6xMBftKeX3pNhEfo9uYnMj3zuMW7a8XVcoma zSjrCao6Ken8+B6cLZQbNo+qQfRAarN7LlEUKoJ9FriRRnGtRolDSf4BbHbvhFS0 kLzHY4+FPJ45xE/+q7mir+kmaHpgWATiZCbyPRVSKKibtbbnyzXzLo9HLenqqzrA fepbT4hd45hCo5KyOg55R64/zJOe6owtCQkRvPxa3yV3PIpPqLlV4ipqU++3RqvM Dj8npf6P6WFuI4FcDtKWMaC+SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXya+1v qytjRVo5RX/28glzeZjnMB8GA1UdIwQYMBaAFD04kaRsvLq0dHjepA0pCPZ8zjsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVDMi8yRERERDI2Q0My QzAxMUVBOTNENTg1N0ZDNEY5QUUwMi9QVGlScEd5OHVyUjBlTjZrRFNrSTluek9P eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BUaVJwR3k4dXJSMGVONmtEU2tJOW56T095by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVDMi8yRERERDI2Q0MyQzAxMUVBOTNENTg1N0ZDNEY5QUUwMi9QVGlScEd5OHVy UjBlTjZrRFNrSTluek9PeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJqHiuqt9zxr/GrV3g/GLIkKlsbh4SSPA+/RnnEC+4xh9rLq4viGEv i8QruxUDkKPC8s7E3Y1l9rbbK1Rmqy8hPUmw61ErQns7e6kivJO01wAlTfCLs22C Irtrrvnb4NbW/S8yydyqWTVXwmF82frw0aXXZFt1n31XnuRj6SF///lsCpCYWr4z 6TyPJsxaXX308LLGUKkeLmLkKfgfI3tdaoMKq34rhVDHRHprTyB6IQ2DaG1uh7Wb enKaz0CwFY66AbTI71EnQGmrWZ/E9Ms8Jn08Xwktma8hCIf8rqgl9tA5TEzQ8Aul +xRKaZdlFqjMtDt0qlK9mh4c3//rli8t -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:16 2025 by rpki-client