This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft File: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft (raw, json) Hash identifier: 7oipGM+ilYdIHJVRcTSlF4hi5n0TOW7yTBCZ8G2JZM0= Subject key identifier: 1D:ED:EA:55:02:1B:6D:EC:D9:D3:F9:F5:58:D5:59:04:F2:A0:E0:AE Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 08FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft Manifest number: 08F2 Signing time: Sun 14 Dec 2025 19:48:14 +0000 Manifest this update: Sun 14 Dec 2025 19:48:13 +0000 Manifest next update: Sun 21 Dec 2025 19:48:13 +0000 Files and hashes: 1: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl (hash: gmg436UotsssNSgHBaDvptTbMmEyPaqZVaKEgXIvzTw=) 2: 6E038820BF6211EA94C2957CC4F9AE02.roa (hash: PLkHHx8GaTekc9dmC5heFwXjJ3zz86/8Y8QSgJQ+mrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 19:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2301 (0x8fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E, serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: Dec 14 19:48:13 2025 GMT Not After : Dec 21 19:48:13 2025 GMT Subject: CN=693f147d-7e2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b2:8a:be:dd:3e:51:7e:c1:c4:18:f1:85:c0: 7b:26:af:7f:96:60:40:b9:2b:97:21:cd:98:72:51: 24:68:1d:90:c4:38:81:3f:ba:15:95:28:62:33:2e: a6:94:25:8e:31:b1:07:2b:f1:de:29:b3:db:6a:e1: a3:47:1d:e6:65:fb:a9:ca:46:f2:0e:e8:28:f3:ff: 2e:ce:80:bd:0f:8c:5b:ee:f0:48:5d:7a:87:ef:c1: e1:68:85:11:c5:7e:c0:a1:f5:ea:c2:d6:ce:bb:eb: e5:cc:4f:b2:9c:48:69:db:11:6e:eb:4a:20:0b:bf: ae:55:b3:5b:83:ea:24:96:b0:9f:07:bd:c5:1f:90: 5b:15:51:40:60:3f:f6:ce:22:7f:da:19:30:32:df: 9e:59:01:6a:d7:d0:70:d7:c5:b7:fe:b9:55:0f:48: a3:76:9e:5a:65:5b:5d:29:e4:4a:36:38:25:7e:1a: 67:4d:e8:55:50:60:88:ff:63:0c:1d:0c:ab:b2:0a: cd:80:33:05:87:a1:c8:ee:60:de:d8:d3:33:4b:9d: 3f:65:56:8d:9a:97:f9:a8:66:b0:8f:98:e8:09:f4: 21:5a:4f:57:fc:93:cb:71:cc:7c:a3:66:31:0e:03: a0:54:5c:76:67:77:bf:e0:01:cf:24:5d:d7:6d:21: 5f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:ED:EA:55:02:1B:6D:EC:D9:D3:F9:F5:58:D5:59:04:F2:A0:E0:AE X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:e5:b4:44:1c:1f:95:37:ca:68:36:fa:1c:c5:b7:01:96:f0: 51:05:2c:71:24:db:89:d1:d0:6d:10:50:e7:6e:99:71:34:97: 96:83:f9:42:aa:62:be:9d:78:21:44:dd:10:d8:49:cd:21:e8: 4d:3d:a7:8d:30:88:2c:f6:6b:e5:18:19:0e:f7:0d:80:f5:98: 5e:a0:98:fa:77:67:6c:c7:c7:19:81:0b:04:40:be:fb:99:3f: 48:e6:7f:c9:5e:26:64:22:52:a9:0e:cc:85:5f:d3:ee:7f:8f: 12:61:83:04:33:1d:f9:d3:50:13:0a:96:74:56:30:94:3d:31: 13:02:1d:7c:c5:0c:ad:00:e8:e0:e1:3c:33:de:04:fa:bd:81: 8e:8d:71:e7:37:bf:84:15:76:a2:a4:22:f9:8f:0a:df:b6:f3: 60:cc:8c:e0:9e:34:42:42:df:0d:80:75:5a:12:97:75:40:7d: 81:25:5a:97:eb:fd:8d:d6:c9:eb:38:88:85:03:ef:55:60:9a: e4:50:a1:5a:1c:18:27:71:59:07:ab:f3:94:3f:cc:b1:e3:df: e5:71:7a:59:6b:a6:91:3c:fa:af:d1:6b:56:9b:51:6b:f4:2b: 95:09:3b:20:6a:35:02:92:46:6d:3c:1b:92:10:23:0f:37:00: 88:c9:88:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjUxMjE0MTk0ODEzWhcNMjUxMjIxMTk0ODEzWjAYMRYwFAYD VQQDDA02OTNmMTQ3ZC03ZTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17KKvt0+UX7BxBjxhcB7Jq9/lmBAuSuXIc2YclEkaB2QxDiBP7oVlShiMy6m lCWOMbEHK/HeKbPbauGjRx3mZfupykbyDugo8/8uzoC9D4xb7vBIXXqH78HhaIUR xX7AofXqwtbOu+vlzE+ynEhp2xFu60ogC7+uVbNbg+oklrCfB73FH5BbFVFAYD/2 ziJ/2hkwMt+eWQFq19Bw18W3/rlVD0ijdp5aZVtdKeRKNjglfhpnTehVUGCI/2MM HQyrsgrNgDMFh6HI7mDe2NMzS50/ZVaNmpf5qGawj5joCfQhWk9X/JPLccx8o2Yx DgOgVFx2Z3e/4AHPJF3XbSFfawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3t6lUC G23s2dP59VjVWQTyoOCuMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTA4RS9CMkEzQzIzQ0JGNEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1 c1RUNEhsSl9BaTJGN2ZJX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr5bREHB+VN8poNvocxbcBlvBRBSxxJNuJ0dBtEFDnbplxNJeWg/lC qmK+nXghRN0Q2EnNIehNPaeNMIgs9mvlGBkO9w2A9ZheoJj6d2dsx8cZgQsEQL77 mT9I5n/JXiZkIlKpDsyFX9Puf48SYYMEMx3501ATCpZ0VjCUPTETAh18xQytAOjg 4Twz3gT6vYGOjXHnN7+EFXaipCL5jwrftvNgzIzgnjRCQt8NgHVaEpd1QH2BJVqX 6/2N1snrOIiFA+9VYJrkUKFaHBgncVkHq/OUP8yx49/lcXpZa6aRPPqv0WtWm1Fr 9CuVCTsgajUCkkZtPBuSECMPNwCIyYhV -----END CERTIFICATE-----Generated at Tue Dec 16 05:01:37 2025 by rpki-client