This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft File: 4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft (raw, json) Hash identifier: 9c4t7ZAH7wfOrO1ransXbTZnlIqEzu412ATwbPbYfL8= Subject key identifier: 6C:76:54:2A:9D:67:3E:AF:D4:B1:8F:19:6D:AB:9E:64:C2:83:29:73 Authority key identifier: E0:39:8D:54:AC:D9:DB:33:ED:4F:CA:A8:D2:28:05:D4:5E:80:CB:B6 Certificate issuer: /CN=A91BBA4F/serialNumber=E0398D54ACD9DB33ED4FCAA8D22805D45E80CBB6 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft Manifest number: 6A Signing time: Sun 21 Dec 2025 05:59:49 +0000 Manifest this update: Sun 21 Dec 2025 05:59:49 +0000 Manifest next update: Sun 28 Dec 2025 05:59:49 +0000 Files and hashes: 1: 4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl (hash: KUvH3QkhPSoT80suaMUUAFdJABoyh2DZP25bNqRnhU8=) 2: 58C16E043B7811F099AF3F55C4F9AE02.roa (hash: EdyHrGdK241FduLFJE474YipzEeOWQ4qQLPgbqAJOd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA4F, serialNumber=E0398D54ACD9DB33ED4FCAA8D22805D45E80CBB6 Validity Not Before: Dec 21 05:59:49 2025 GMT Not After : Dec 28 05:59:49 2025 GMT Subject: CN=69478cd5-317f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b1:75:36:56:c0:99:81:9f:93:df:86:9e:1e: 43:12:2a:9f:68:b6:04:d1:8c:0c:fe:85:2e:a5:3a: bd:a8:71:28:b5:66:50:16:b6:a8:5a:b6:65:36:87: 0b:36:d4:bf:7a:08:7e:c6:5c:f7:6d:51:73:97:14: 31:eb:54:10:fb:c9:b8:fc:23:00:0b:78:4a:7f:68: e1:c0:8a:3c:7a:05:dd:33:2b:27:f8:59:8a:29:bb: ff:63:dd:05:76:4f:c9:86:34:76:7d:d8:55:cb:27: 02:b3:58:16:f4:52:80:73:f2:22:83:93:e4:8a:71: 2f:46:e9:ee:f2:94:c0:51:5d:07:2b:94:c9:10:e0: a1:ea:58:7e:8c:d9:99:13:ab:63:9b:e1:5f:03:6c: 1c:70:b8:5b:57:fb:34:7a:e2:4f:77:bc:53:73:9d: a0:cb:96:6d:11:c2:23:cf:92:95:ae:c6:3b:a5:ec: 53:cc:5a:10:c8:73:52:90:66:89:57:f2:62:65:3e: 4f:3c:00:a6:77:61:16:85:6f:73:0d:75:20:11:9f: 61:c1:9f:32:22:ef:d9:eb:6f:35:bf:37:59:bd:47: c2:24:24:7c:a1:d3:ba:42:f5:ae:80:1a:ec:b6:59: 34:aa:08:d5:95:64:d9:06:5b:12:df:9d:f6:d8:ee: b2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:76:54:2A:9D:67:3E:AF:D4:B1:8F:19:6D:AB:9E:64:C2:83:29:73 X509v3 Authority Key Identifier: keyid:E0:39:8D:54:AC:D9:DB:33:ED:4F:CA:A8:D2:28:05:D4:5E:80:CB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:b6:e5:db:ba:8a:03:9b:10:27:0e:ca:9c:93:bb:5c:f1:2b: 6e:ac:de:bf:8a:11:df:be:f6:4d:ec:0b:8b:19:32:c7:b4:2b: f8:51:a4:7d:2b:63:77:fc:b2:4a:31:01:e7:28:05:e9:ad:88: e9:da:af:62:ba:d2:2a:ca:18:94:3d:04:f7:2d:fe:67:a6:ae: 70:48:02:4e:ee:07:80:fc:1b:38:df:01:d1:1a:07:fb:6e:e7: 6f:8a:2b:95:91:ba:ce:75:e9:0f:a6:40:8a:bd:2b:0f:c9:e8: dd:27:f1:12:aa:54:ac:03:63:86:c2:8c:0a:11:ae:07:da:f4: 89:6e:16:76:4f:d3:86:2f:f4:93:ec:06:d1:53:c0:e6:2b:09: fd:19:7c:86:39:fb:27:a1:11:9c:4c:f0:12:70:e4:af:a7:8a: 8d:e9:16:76:90:9a:ad:b2:78:30:6c:37:5f:36:da:16:2f:4c: cb:37:a3:89:bb:3f:8e:4e:26:a3:0e:28:e9:5d:e9:05:a2:02: 9e:2c:5c:69:dc:2d:75:41:1b:0a:9d:a6:da:77:9a:5a:07:ce: 0c:d0:dc:44:6f:6c:6d:4a:1d:52:64:0f:7c:e8:03:e2:20:4b: f2:a2:ed:8e:0d:3a:83:d4:fc:f0:80:48:66:23:a1:ea:82:54: 6a:48:cd:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkE0RjExMC8GA1UEBRMoRTAzOThENTRBQ0Q5REIzM0VENEZDQUE4RDIyODA1RDQ1 RTgwQ0JCNjAeFw0yNTEyMjEwNTU5NDlaFw0yNTEyMjgwNTU5NDlaMBgxFjAUBgNV BAMMDTY5NDc4Y2Q1LTMxN2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwsXU2VsCZgZ+T34aeHkMSKp9otgTRjAz+hS6lOr2ocSi1ZlAWtqhatmU2hws2 1L96CH7GXPdtUXOXFDHrVBD7ybj8IwALeEp/aOHAijx6Bd0zKyf4WYopu/9j3QV2 T8mGNHZ92FXLJwKzWBb0UoBz8iKDk+SKcS9G6e7ylMBRXQcrlMkQ4KHqWH6M2ZkT q2Ob4V8DbBxwuFtX+zR64k93vFNznaDLlm0RwiPPkpWuxjul7FPMWhDIc1KQZolX 8mJlPk88AKZ3YRaFb3MNdSARn2HBnzIi79nrbzW/N1m9R8IkJHyh07pC9a6AGuy2 WTSqCNWVZNkGWxLfnfbY7rJXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbHZUKp1n Pq/UsY8ZbaueZMKDKXMwHwYDVR0jBBgwFoAU4DmNVKzZ2zPtT8qo0igF1F6Ay7Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQTRGLzU4N0YzNURBM0I3 NzExRjA5N0E4QkIyNEM0RjlBRTAyLzREbU5WS3paMnpQdFQ4cW8waWdGMUY2QXk3 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNERtTlZLeloyelB0VDhxbzBpZ0YxRjZBeTdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC QTRGLzU4N0YzNURBM0I3NzExRjA5N0E4QkIyNEM0RjlBRTAyLzREbU5WS3paMnpQ dFQ4cW8waWdGMUY2QXk3WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ225du6igObECcOypyTu1zxK26s3r+KEd++9k3sC4sZMse0K/hRpH0r Y3f8skoxAecoBemtiOnar2K60irKGJQ9BPct/memrnBIAk7uB4D8GzjfAdEaB/tu 52+KK5WRus516Q+mQIq9Kw/J6N0n8RKqVKwDY4bCjAoRrgfa9IluFnZP04Yv9JPs BtFTwOYrCf0ZfIY5+yehEZxM8BJw5K+nio3pFnaQmq2yeDBsN1822hYvTMs3o4m7 P45OJqMOKOld6QWiAp4sXGncLXVBGwqdptp3mloHzgzQ3ERvbG1KHVJkD3zoA+Ig S/Ki7Y4NOoPU/PCASGYjoeqCVGpIzfM= -----END CERTIFICATE-----Generated at Sun Dec 21 12:41:40 2025 by rpki-client