This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft File: _SqdXvq5ERsKWjAT80wsva_QH8I.mft (raw, json) Hash identifier: xS80XA3IYh2cPXMbz4A8Dk2Gdwt/8XhBprIVdXGSGio= Subject key identifier: C5:6C:DA:66:E7:2B:D2:15:3C:73:E5:A4:C0:1D:B2:DC:67:D9:FA:F4 Authority key identifier: FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 Certificate issuer: /CN=A91B189B/serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Certificate serial: 0789 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft Manifest number: 0784 Signing time: Mon 22 Dec 2025 20:50:03 +0000 Manifest this update: Mon 22 Dec 2025 20:50:03 +0000 Manifest next update: Mon 29 Dec 2025 20:50:03 +0000 Files and hashes: 1: _SqdXvq5ERsKWjAT80wsva_QH8I.crl (hash: AgWa7kdB39F+MuxOhIoH2Y4VgbKv8JuCRJNMtoA6Sk8=) 2: DFCE0CFC387311EBA0AC593EC4F9AE02.roa (hash: OHqpc630iPDrvxa3JYL+djk/kcEwI5eOHtscWctQIpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1929 (0x789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B189B, serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Validity Not Before: Dec 22 20:50:03 2025 GMT Not After : Dec 29 20:50:03 2025 GMT Subject: CN=6949aefb-3b47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:47:ad:54:59:75:0d:e4:b1:b0:89:1a:68:d3: 8b:a7:9b:30:91:51:61:64:cd:81:05:81:ea:3f:38: 7b:62:5d:d2:a0:d0:e3:dc:c1:0f:70:b8:d2:29:c3: 51:d8:bd:40:e5:f6:1f:2a:df:0d:17:01:43:ed:16: 22:00:5d:4e:f2:93:5d:79:47:44:5a:1c:2e:15:69: 53:df:dd:25:c7:dd:0b:02:3b:13:4c:82:01:a4:f8: df:96:f3:7e:0a:15:da:ba:0b:aa:b5:51:ed:de:a7: a0:98:87:e9:79:1e:21:e8:fa:82:46:92:ad:54:7d: 43:63:91:6c:ba:ab:cc:1f:b7:2a:7f:c1:19:fc:94: 60:ca:42:97:98:f1:a5:69:ea:fe:be:b0:a6:89:87: 42:b2:3f:65:23:ee:ce:22:d7:b2:9b:54:6a:75:4f: e7:06:76:2d:60:eb:98:40:8b:b4:21:24:d3:42:be: 69:eb:45:b2:3a:8b:97:67:53:0f:ca:d8:3a:18:ed: c1:85:38:e1:6f:6b:f0:84:13:da:5a:30:74:7c:a7: 95:e3:a0:57:c2:cf:ee:2b:94:9a:ea:6b:b5:6f:d8: f3:1a:a1:fc:fc:69:13:b6:f9:f2:2e:ac:38:8f:93: fc:44:8d:ae:78:02:38:50:27:20:e7:4a:2f:0b:f7: 1f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6C:DA:66:E7:2B:D2:15:3C:73:E5:A4:C0:1D:B2:DC:67:D9:FA:F4 X509v3 Authority Key Identifier: keyid:FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:72:e3:7e:d8:fd:54:df:41:97:f7:68:f2:f7:26:e1:97:f9: 33:c8:62:b6:cc:cf:48:21:ed:9a:da:f9:37:f0:f0:b7:67:bc: 70:59:70:b8:d7:0e:6a:9f:59:f7:a9:d2:87:a4:53:fd:bf:9c: 29:a4:f7:53:47:c7:33:e6:0a:54:34:d0:1d:c6:79:cd:63:da: da:98:e6:c5:10:31:8b:ce:ed:61:a9:c5:d7:3e:ed:12:a1:6a: 0f:98:85:c3:9e:4a:ed:98:3d:71:15:b5:d5:37:3d:83:5d:d7: 3c:3d:43:45:55:0d:72:64:83:de:69:08:7f:42:7d:b0:62:d5: 62:98:3e:f1:bd:05:27:d1:95:31:0d:9d:4f:34:df:ed:57:cd: 16:06:33:94:7e:cf:28:cf:34:5a:76:76:b7:f7:32:58:b0:b5: b3:2a:20:bc:e9:0d:6c:de:29:e4:fa:42:1c:49:4e:76:6d:7f: f1:98:00:94:36:a5:ae:52:e9:74:d3:62:94:17:d4:50:da:9e: 96:8b:21:99:44:fa:06:63:8b:6d:62:7f:1f:9d:5c:47:4c:2d: 9e:59:f6:d3:75:44:e8:9c:d0:ac:da:db:75:65:64:8d:7b:be: 05:c8:e0:76:18:e1:f3:d7:8c:9c:ac:0c:29:0a:3d:9b:5e:87: 1d:b9:d1:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE4OUIxMTAvBgNVBAUTKEZEMkE5RDVFRkFCOTExMUIwQTVBMzAxM0YzNEMyQ0JE QUZEMDFGQzIwHhcNMjUxMjIyMjA1MDAzWhcNMjUxMjI5MjA1MDAzWjAYMRYwFAYD VQQDDA02OTQ5YWVmYi0zYjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjEetVFl1DeSxsIkaaNOLp5swkVFhZM2BBYHqPzh7Yl3SoNDj3MEPcLjSKcNR 2L1A5fYfKt8NFwFD7RYiAF1O8pNdeUdEWhwuFWlT390lx90LAjsTTIIBpPjflvN+ ChXauguqtVHt3qegmIfpeR4h6PqCRpKtVH1DY5FsuqvMH7cqf8EZ/JRgykKXmPGl aer+vrCmiYdCsj9lI+7OIteym1RqdU/nBnYtYOuYQIu0ISTTQr5p60WyOouXZ1MP ytg6GO3BhTjhb2vwhBPaWjB0fKeV46BXws/uK5Sa6mu1b9jzGqH8/GkTtvnyLqw4 j5P8RI2ueAI4UCcg50ovC/cfzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVs2mbn K9IVPHPlpMAdstxn2fr0MB8GA1UdIwQYMBaAFP0qnV76uREbClowE/NMLL2v0B/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTg5Qi8zMjhCREQ0MDM4 NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVSc0tXakFUODB3c3ZhX1FI OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19TcWRYdnE1RVJzS1dqQVQ4MHdzdmFfUUg4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTg5Qi8zMjhCREQ0MDM4NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVS c0tXakFUODB3c3ZhX1FIOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6cuN+2P1U30GX92jy9ybhl/kzyGK2zM9IIe2a2vk38PC3Z7xwWXC4 1w5qn1n3qdKHpFP9v5wppPdTR8cz5gpUNNAdxnnNY9ramObFEDGLzu1hqcXXPu0S oWoPmIXDnkrtmD1xFbXVNz2DXdc8PUNFVQ1yZIPeaQh/Qn2wYtVimD7xvQUn0ZUx DZ1PNN/tV80WBjOUfs8ozzRadna39zJYsLWzKiC86Q1s3ink+kIcSU52bX/xmACU NqWuUul002KUF9RQ2p6WiyGZRPoGY4ttYn8fnVxHTC2eWfbTdUTonNCs2tt1ZWSN e74FyOB2GOHz14ycrAwpCj2bXocdudGL -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:32 2025 by rpki-client