This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: EPtMjNpODmTv1+yo2rqVuF7AT5cVmWTxnrFS5TQqR18= Subject key identifier: 48:58:F8:98:B1:30:4B:10:B1:C9:96:19:D8:C1:5D:03:68:84:CB:95 Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0C7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0C76 Signing time: Mon 22 Dec 2025 18:07:13 +0000 Manifest this update: Mon 22 Dec 2025 18:07:13 +0000 Manifest next update: Mon 29 Dec 2025 18:07:13 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: zfyheT2mtDEabNo6/aPkDWqL2r5Jyma4OWGhm+x6X8Y=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: TQZLfyrNNm4rH/joKuV/c0LtGb3rqWKsaid6lV6en3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3199 (0xc7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB, serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: Dec 22 18:07:13 2025 GMT Not After : Dec 29 18:07:13 2025 GMT Subject: CN=694988d1-b243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bc:dd:24:f2:3b:20:43:13:4b:32:ac:bb:c2: 53:17:c2:23:fa:8d:2c:1b:eb:84:19:1c:54:19:8f: 5d:f6:92:21:9f:ce:fa:91:cd:0a:d5:4c:82:1b:ed: d6:0b:3b:ed:a4:2a:a7:c7:15:b8:d5:9c:66:f5:71: dd:3a:1c:f7:59:62:e5:74:fb:7b:55:1d:f5:0c:2c: d7:fe:ab:ce:c8:77:7d:c5:7e:10:23:ee:da:cc:fa: 84:48:08:43:a6:2e:9c:dc:ae:50:47:69:24:a1:67: 10:75:2c:0c:7a:2b:60:4a:a0:be:e8:fd:04:8a:ca: 29:a4:f3:e6:53:5b:05:0a:eb:bc:9b:60:0a:75:95: d9:a2:9f:d4:59:7b:18:b8:f5:d5:50:53:b6:89:dd: 1d:28:44:4b:ef:7c:b1:33:5c:20:e0:af:95:cb:74: 2b:5a:50:f5:0a:16:e4:89:ad:28:7d:3f:54:bf:7e: 97:5b:2b:0f:b8:fa:d3:c2:6a:04:0b:66:7e:68:cf: c6:21:98:28:63:4e:00:f8:4f:cd:a3:df:4d:fc:79: ae:0b:77:da:29:e0:60:70:5e:47:c9:b1:bc:f5:fb: 23:c0:6e:88:b9:2a:66:64:72:d5:6a:e2:50:f8:6a: 69:08:95:27:c9:b6:3b:9e:7a:68:75:33:6c:1a:de: 76:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:58:F8:98:B1:30:4B:10:B1:C9:96:19:D8:C1:5D:03:68:84:CB:95 X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:04:0d:06:4d:ff:73:51:ce:76:90:6a:9e:90:95:bf:bc:dc: 33:4d:eb:1d:cb:e9:08:af:bc:84:42:44:5a:68:06:16:20:c7: 45:50:b8:0b:93:65:d6:93:cc:8d:b2:3a:3e:ae:86:b9:18:84: 92:5f:72:06:24:1a:89:35:fe:13:1c:a6:2d:a1:8c:29:4e:db: fc:f3:68:a3:8b:b2:84:7b:70:e7:6e:d7:14:ce:2f:3e:67:8d: 86:72:63:61:d4:b2:9c:37:1d:bb:a2:34:e9:99:d1:ef:15:ea: 8f:29:12:a0:c6:7a:6e:8e:f6:85:cd:d4:b2:54:cf:03:1a:04: 6b:9c:b0:93:0a:c6:70:8d:10:99:e3:8a:36:12:d1:b0:90:ca: c8:3b:5a:31:31:2f:9d:46:0e:e3:ed:1c:55:ce:7f:04:70:e9: a3:d0:7c:9b:4b:a9:3c:17:ba:81:cc:a2:95:ff:d9:29:1e:ec: d9:49:e6:54:1b:85:ac:73:82:19:2b:87:3b:dd:2c:9b:e0:a5: 8d:3e:e7:26:01:c8:42:be:5c:94:e1:d0:3c:27:1d:af:f4:10: b9:7c:35:ef:b2:b2:9c:ef:68:c9:a0:cd:79:10:9e:90:a8:03: 3f:72:fa:aa:b5:32:ab:3a:0d:e1:2c:ee:7c:45:8b:0d:ee:bf: 4f:37:7f:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjUxMjIyMTgwNzEzWhcNMjUxMjI5MTgwNzEzWjAYMRYwFAYD VQQDDA02OTQ5ODhkMS1iMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbzdJPI7IEMTSzKsu8JTF8Ij+o0sG+uEGRxUGY9d9pIhn876kc0K1UyCG+3W CzvtpCqnxxW41Zxm9XHdOhz3WWLldPt7VR31DCzX/qvOyHd9xX4QI+7azPqESAhD pi6c3K5QR2kkoWcQdSwMeitgSqC+6P0EisoppPPmU1sFCuu8m2AKdZXZop/UWXsY uPXVUFO2id0dKERL73yxM1wg4K+Vy3QrWlD1Chbkia0ofT9Uv36XWysPuPrTwmoE C2Z+aM/GIZgoY04A+E/No99N/HmuC3faKeBgcF5HybG89fsjwG6IuSpmZHLVauJQ +GppCJUnybY7nnpodTNsGt529QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhY+Jix MEsQscmWGdjBXQNohMuVMB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6BA0GTf9zUc52kGqekJW/vNwzTesdy+kIr7yEQkRaaAYWIMdFULgL k2XWk8yNsjo+roa5GISSX3IGJBqJNf4THKYtoYwpTtv882iji7KEe3DnbtcUzi8+ Z42GcmNh1LKcNx27ojTpmdHvFeqPKRKgxnpujvaFzdSyVM8DGgRrnLCTCsZwjRCZ 44o2EtGwkMrIO1oxMS+dRg7j7RxVzn8EcOmj0HybS6k8F7qBzKKV/9kpHuzZSeZU G4Wsc4IZK4c73Syb4KWNPucmAchCvlyU4dA8Jx2v9BC5fDXvsrKc72jJoM15EJ6Q qAM/cvqqtTKrOg3hLO58RYsN7r9PN38+ -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:17 2025 by rpki-client