This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft File: FF-_nuMXN-kcPNSE7AFq48jzgDw.mft (raw, json) Hash identifier: BuOVfbdPE0CQc/j6rx20EUMpbrmxxcaDR07zxyjXJk4= Subject key identifier: 6C:18:33:CF:58:77:36:99:00:D6:0A:26:53:06:F7:FA:39:1D:1C:20 Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 0317 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft Manifest number: 0312 Signing time: Tue 23 Dec 2025 00:07:59 +0000 Manifest this update: Tue 23 Dec 2025 00:07:58 +0000 Manifest next update: Tue 30 Dec 2025 00:07:58 +0000 Files and hashes: 1: FF-_nuMXN-kcPNSE7AFq48jzgDw.crl (hash: q8XAATGBWram2RdNKWDKigZi+4NBkfGybjy5H5hTvrw=) 2: D5D64BB0FB6811EC863B8150C4F9AE02.roa (hash: QqynXUFn2t2DwRQgssbkvYUHxaAcBlMuvOzz1OFVxaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:07:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 791 (0x317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D, serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: Dec 23 00:07:58 2025 GMT Not After : Dec 30 00:07:58 2025 GMT Subject: CN=6949dd5e-f480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3a:59:c5:5d:9c:d0:d0:eb:15:1c:b6:c0:2b: cd:3d:b1:0e:59:6a:b7:ac:21:eb:a0:fb:2c:82:7a: dd:18:23:3e:41:3d:35:1e:2f:d9:bd:74:83:ad:14: 58:d0:24:34:e8:1f:e7:43:5b:02:fd:74:18:d1:0c: e3:fe:f0:c9:ec:e5:7f:93:82:32:69:c9:3f:57:fa: 8b:aa:ce:19:76:64:42:30:f0:a2:bc:3e:39:9f:de: a2:95:9a:ec:3e:d7:c1:40:cf:13:2f:79:3c:81:bc: 13:fe:63:5c:6e:fb:85:c2:0d:30:c1:c6:d9:cd:b6: 23:16:a6:5c:fb:8d:23:d3:55:8e:41:90:41:bd:c9: b1:73:1a:58:ac:c7:69:91:b3:04:39:9f:e2:25:d6: 4b:b8:be:f4:16:5f:ea:d0:01:ab:71:a7:b9:6a:f1: 35:b2:52:3d:d0:68:58:8a:0c:9b:61:ea:52:c9:ec: 51:a4:e7:33:32:7c:48:91:74:61:32:10:71:7c:03: ad:6e:95:b1:b5:17:72:68:24:45:7c:e2:b0:3f:7b: cf:26:1a:df:cf:1b:54:5f:0a:43:44:58:b1:78:d0: b1:25:03:b3:6b:cb:1d:d6:f4:3b:fc:14:5a:6f:91: 8f:4b:0d:00:fd:c7:0b:0f:0f:6c:1b:c7:9c:75:7d: 9a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:18:33:CF:58:77:36:99:00:D6:0A:26:53:06:F7:FA:39:1D:1C:20 X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:61:2e:ff:cf:42:ae:3c:49:c5:af:47:86:c0:f9:72:01:6d: 79:49:ea:2b:1b:a5:40:64:79:25:49:cc:c4:92:75:7e:3f:4c: 13:24:63:82:cd:5d:54:06:08:c1:26:5a:ec:ce:5f:c5:91:43: 3d:79:ef:28:df:07:4d:a8:09:b7:7f:5b:63:48:2c:8d:83:3f: eb:6e:a1:58:e6:5c:84:37:50:cd:b3:98:30:f4:7f:ca:de:67: d8:b6:fe:b8:de:8e:93:9c:3f:48:27:86:1e:bb:b5:d9:bf:68: 46:e8:fd:d2:59:f3:88:3d:96:64:86:a5:24:79:af:76:72:35: 75:6f:8a:69:11:e7:ba:41:18:71:81:48:57:20:8f:12:c5:95: 48:0e:3b:50:77:0e:f8:d0:32:b3:e0:75:60:5a:9a:d7:81:e8: c9:31:f3:63:1a:91:91:98:09:6f:ed:67:e1:4c:c8:f3:8b:9d: fb:fb:f7:83:7f:d9:70:82:e4:e2:a9:d2:4f:ac:b5:a9:b0:d1: 1c:5c:55:f7:d7:bb:d8:0b:2d:52:dd:c6:44:bd:86:46:07:62: 2f:49:ed:69:8a:10:50:8c:02:9a:82:db:be:4a:d3:82:cd:83: 41:ae:6b:c2:7c:32:c3:41:cf:28:ab:09:ca:65:2b:43:3e:0b: d6:de:c0:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjUxMjIzMDAwNzU4WhcNMjUxMjMwMDAwNzU4WjAYMRYwFAYD VQQDDA02OTQ5ZGQ1ZS1mNDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTpZxV2c0NDrFRy2wCvNPbEOWWq3rCHroPssgnrdGCM+QT01Hi/ZvXSDrRRY 0CQ06B/nQ1sC/XQY0Qzj/vDJ7OV/k4Iyack/V/qLqs4ZdmRCMPCivD45n96ilZrs PtfBQM8TL3k8gbwT/mNcbvuFwg0wwcbZzbYjFqZc+40j01WOQZBBvcmxcxpYrMdp kbMEOZ/iJdZLuL70Fl/q0AGrcae5avE1slI90GhYigybYepSyexRpOczMnxIkXRh MhBxfAOtbpWxtRdyaCRFfOKwP3vPJhrfzxtUXwpDRFixeNCxJQOza8sd1vQ7/BRa b5GPSw0A/ccLDw9sG8ecdX2aCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwYM89Y dzaZANYKJlMG9/o5HRwgMB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc4RC82N0I0NDgyOEZCNjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4t a2NQTlNFN0FGcTQ4anpnRHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdYS7/z0KuPEnFr0eGwPlyAW15SeorG6VAZHklSczEknV+P0wTJGOC zV1UBgjBJlrszl/FkUM9ee8o3wdNqAm3f1tjSCyNgz/rbqFY5lyEN1DNs5gw9H/K 3mfYtv643o6TnD9IJ4Yeu7XZv2hG6P3SWfOIPZZkhqUkea92cjV1b4ppEee6QRhx gUhXII8SxZVIDjtQdw740DKz4HVgWprXgejJMfNjGpGRmAlv7WfhTMjzi537+/eD f9lwguTiqdJPrLWpsNEcXFX317vYCy1S3cZEvYZGB2IvSe1pihBQjAKagtu+StOC zYNBrmvCfDLDQc8oqwnKZStDPgvW3sBC -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:21 2025 by rpki-client