This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft File: F3JfretEo_qLMf_wpjy8UVWpB9g.mft (raw, json) Hash identifier: jOmrscVslMPkz44dSRJVRJXwoEyQHf6yhoyZHwwFu44= Subject key identifier: A5:98:A8:A5:E6:8F:E1:62:A4:2F:64:1F:B7:82:48:D1:83:31:C3:78 Authority key identifier: 17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 Certificate issuer: /CN=A91B0049/serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Certificate serial: 07F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft Manifest number: 07F3 Signing time: Mon 22 Dec 2025 20:25:54 +0000 Manifest this update: Mon 22 Dec 2025 20:25:53 +0000 Manifest next update: Mon 29 Dec 2025 20:25:53 +0000 Files and hashes: 1: F3JfretEo_qLMf_wpjy8UVWpB9g.crl (hash: 05uQroMU130Tb4TAdMZrbQQMNrEKUxFgMgeE+0jTrG8=) 2: C6591C620DFD11EBAD63A21CC4F9AE02.roa (hash: wiuGLfhX4Abp89BeKvQrP2ym0zYLw1999qfgLcOKlHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0049, serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Validity Not Before: Dec 22 20:25:53 2025 GMT Not After : Dec 29 20:25:53 2025 GMT Subject: CN=6949a952-a9ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f0:73:29:0a:2f:51:97:0e:0c:d0:a1:d5:b5: 45:d8:69:48:e4:3f:97:c9:dd:b2:e0:3a:b1:4e:bc: bb:b1:c5:1e:24:04:b4:8f:35:a2:a6:25:e0:a6:03: 9a:fb:e9:86:ab:c6:4a:12:4d:30:ac:31:f0:6e:b4: 88:f0:0f:70:9b:10:0e:5f:a7:36:93:ea:18:cc:1c: 33:ba:30:4c:84:2f:ac:bd:43:ff:69:0a:f9:21:11: e5:58:2b:8f:ee:cf:33:92:96:31:53:37:10:eb:1d: 57:e1:ca:0d:54:89:a6:a9:e8:c0:9e:4e:bd:9a:de: c8:c3:d0:7e:db:21:7b:8b:62:85:7f:89:05:84:0d: 49:50:17:e0:3d:4b:f2:67:6a:82:4e:91:f4:94:42: 6b:87:ec:df:5e:92:ac:18:ac:92:eb:86:07:d5:c8: f2:fa:66:c8:e5:79:22:c1:67:c2:df:ab:64:a4:d3: d2:0a:8c:0d:1d:f5:69:3c:bf:9b:82:5b:01:61:51: 24:84:fb:3f:17:1e:13:f3:fd:39:4f:cd:75:ed:f0: db:b9:47:67:8e:bf:ae:57:42:b2:25:e8:3f:95:38: 31:91:21:55:dc:6c:e9:d5:9c:4a:3c:08:69:e5:23: 1d:75:fb:c6:82:8a:dc:0c:51:7f:aa:3e:82:9f:c5: 65:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:98:A8:A5:E6:8F:E1:62:A4:2F:64:1F:B7:82:48:D1:83:31:C3:78 X509v3 Authority Key Identifier: keyid:17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:89:03:e1:19:b9:d4:bf:fb:06:58:4f:da:66:48:ca:bb:32: cf:6c:d2:da:7f:d2:d1:3e:19:37:28:a6:ba:b3:0d:74:f3:e1: 5f:31:93:a9:ef:0b:35:0d:20:3b:d7:d6:f9:66:aa:39:2c:76: 18:3a:03:f8:ad:56:a5:ec:78:dd:bb:a6:18:25:20:a9:36:6d: 19:f0:e4:06:de:4c:4b:ec:8f:fd:00:db:79:e8:59:90:75:8d: 13:9d:4b:54:85:6e:50:3a:46:f8:49:c8:6d:cf:62:b5:a0:92: 6e:c9:91:c6:36:9c:bd:73:d0:4e:b4:1f:04:06:a4:9a:11:c7: e7:b3:d5:95:6f:9a:84:61:42:15:c9:59:44:41:eb:bd:be:08: 89:65:20:9a:c7:61:e2:fb:f6:99:af:11:f2:8a:d9:da:6a:3b: 1c:f0:5e:b9:44:a6:d2:fc:45:f4:cc:b5:08:44:a9:dc:49:b2: f9:3f:61:da:a0:18:00:1e:2c:9d:ae:b6:93:09:cd:0f:75:bb: 15:1b:da:d9:c4:09:d1:22:7f:5b:33:9c:67:8d:bb:a8:44:20: a6:f0:dc:a1:01:ee:3f:e5:c6:a1:89:15:6a:0c:72:7f:7a:2b: 07:78:86:7c:0c:06:8e:3e:0f:31:88:20:ba:26:6e:f0:1d:62: 6e:20:87:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwNDkxMTAvBgNVBAUTKDE3NzI1RkFERUI0NEEzRkE4QjMxRkZGMEE2M0NCQzUx NTVBOTA3RDgwHhcNMjUxMjIyMjAyNTUzWhcNMjUxMjI5MjAyNTUzWjAYMRYwFAYD VQQDDA02OTQ5YTk1Mi1hOWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfBzKQovUZcODNCh1bVF2GlI5D+Xyd2y4DqxTry7scUeJAS0jzWipiXgpgOa ++mGq8ZKEk0wrDHwbrSI8A9wmxAOX6c2k+oYzBwzujBMhC+svUP/aQr5IRHlWCuP 7s8zkpYxUzcQ6x1X4coNVImmqejAnk69mt7Iw9B+2yF7i2KFf4kFhA1JUBfgPUvy Z2qCTpH0lEJrh+zfXpKsGKyS64YH1cjy+mbI5XkiwWfC36tkpNPSCowNHfVpPL+b glsBYVEkhPs/Fx4T8/05T8117fDbuUdnjr+uV0KyJeg/lTgxkSFV3Gzp1ZxKPAhp 5SMddfvGgorcDFF/qj6Cn8VlVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWYqKXm j+FipC9kH7eCSNGDMcN4MB8GA1UdIwQYMBaAFBdyX63rRKP6izH/8KY8vFFVqQfY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDA0OS83RUM5MDk3NjBE RkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9fcUxNZl93cGp5OFVWV3BC OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YzSmZyZXRFb19xTE1mX3dwank4VVZXcEI5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDA0OS83RUM5MDk3NjBERkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9f cUxNZl93cGp5OFVWV3BCOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoiQPhGbnUv/sGWE/aZkjKuzLPbNLaf9LRPhk3KKa6sw108+FfMZOp 7ws1DSA719b5Zqo5LHYYOgP4rVal7Hjdu6YYJSCpNm0Z8OQG3kxL7I/9ANt56FmQ dY0TnUtUhW5QOkb4Schtz2K1oJJuyZHGNpy9c9BOtB8EBqSaEcfns9WVb5qEYUIV yVlEQeu9vgiJZSCax2Hi+/aZrxHyitnaajsc8F65RKbS/EX0zLUIRKncSbL5P2Ha oBgAHiydrraTCc0PdbsVG9rZxAnRIn9bM5xnjbuoRCCm8NyhAe4/5cahiRVqDHJ/ eisHeIZ8DAaOPg8xiCC6Jm7wHWJuIIdm -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:14 2025 by rpki-client