This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft File: AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft (raw, json) Hash identifier: 4nTKXe2eA1tPAOLgPkIvrl79ZSAwPYow5hju92sP/Ws= Subject key identifier: 65:2C:1F:8D:42:18:B0:3C:2A:77:E6:C9:81:50:93:60:68:26:07:7E Authority key identifier: 00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 Certificate issuer: /CN=A91C09EA/serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft Manifest number: A5 Signing time: Fri 19 Dec 2025 05:20:32 +0000 Manifest this update: Fri 19 Dec 2025 05:20:32 +0000 Manifest next update: Fri 26 Dec 2025 05:20:32 +0000 Files and hashes: 1: AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl (hash: i+WE7C9eTE+VL4HPWo8GsLtzAyXxYmT3gk4Ie1yt544=) 2: 7970EAA266DA11F084325D42C4F9AE02.roa (hash: PikBYoAiLsYP3+Plkjib3H61VZb7HfjBFcsCC14z91s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09EA, serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Validity Not Before: Dec 19 05:20:32 2025 GMT Not After : Dec 26 05:20:32 2025 GMT Subject: CN=6944e0a0-ffa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:98:21:47:60:6d:79:e0:76:d5:d5:3c:bb:fe: 05:40:84:40:7e:4a:cc:94:97:5a:0f:41:35:90:9d: 6e:54:00:a6:4e:39:bc:ec:cf:a9:a8:e6:b4:06:a8: 16:ec:3e:2e:56:36:7c:e6:80:18:0a:cd:3f:bd:c3: 59:3e:1b:21:cb:f0:1e:bd:a7:ac:d8:04:ed:33:ca: 32:a8:98:57:80:5b:6c:68:32:c8:40:10:80:ab:f8: 32:a1:d7:53:16:9e:50:ed:8e:04:5a:37:92:70:95: 52:30:ce:a4:d6:6d:ee:f3:98:81:c5:a9:75:d3:7e: 8f:f3:73:44:cd:73:c0:2c:d9:25:34:6c:b8:17:14: 18:51:02:65:ab:18:52:8b:70:8a:25:1a:57:dd:99: 8e:ae:1e:f8:60:b8:8c:af:8c:64:60:a5:44:03:b1: 06:c8:20:2a:b6:27:b5:93:76:33:cc:13:a8:50:8d: b7:ba:69:6d:73:b5:07:55:a6:c8:7d:43:db:a2:1a: 51:d7:b7:34:9e:52:0c:c6:dd:e8:86:ed:4d:f9:76: 40:f3:a5:29:f2:d7:47:fa:b9:a7:9d:1b:70:49:f9: 44:10:66:34:51:55:d3:63:ae:e1:f1:9c:9d:91:de: 87:8b:a0:40:1e:8b:ad:00:3d:fd:e0:7c:12:2a:0e: eb:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:2C:1F:8D:42:18:B0:3C:2A:77:E6:C9:81:50:93:60:68:26:07:7E X509v3 Authority Key Identifier: keyid:00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:43:7c:5c:85:e7:d4:1d:00:6d:ed:76:5b:06:32:12:1c:3d: 44:a9:58:5d:64:51:59:db:d6:dd:17:73:2a:69:92:56:c5:10: 5a:77:b0:29:55:35:00:15:65:b6:1d:b9:d0:d1:5e:57:29:4f: 2e:a0:94:90:1b:77:ea:a6:4b:fc:b6:d0:d7:8b:b6:42:14:e3: 62:df:c4:44:31:ae:0c:1f:cd:6c:fe:65:ac:04:43:97:7e:89: 7a:98:98:52:30:da:0b:97:a2:4e:e5:d8:8c:00:f6:5b:d0:dc: 73:16:8d:32:c1:f9:fa:a8:26:a0:40:0b:fe:d9:96:c4:96:f3: 0b:54:2e:8c:bb:37:7d:f6:fe:0d:18:d8:26:3c:f2:ad:ac:f7: 6c:4c:33:d9:b3:6e:f7:31:5a:25:d2:c6:2c:00:40:f5:bb:b9: 57:25:fc:cb:2c:64:6a:33:3b:41:a3:22:11:bf:65:4d:57:14: fb:27:5b:59:ca:ba:b0:84:8e:8a:32:78:fb:19:9a:86:e5:50: 80:21:c4:22:81:c7:ad:51:4a:ad:18:14:4e:6e:86:7d:f8:44: 13:0c:44:65:c1:9d:9a:05:f0:50:ec:03:52:2d:43:3a:c7:c2: ff:cb:48:c9:f3:42:ce:6c:83:f9:3d:96:bf:30:ec:0a:3d:d6: 12:d3:ed:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA5RUExMTAvBgNVBAUTKDAwRkQzMUZEMDZCNDIwNEMzRERDQjYzNTA3MTg5NTMz Nzc4Q0NDRjgwHhcNMjUxMjE5MDUyMDMyWhcNMjUxMjI2MDUyMDMyWjAYMRYwFAYD VQQDDA02OTQ0ZTBhMC1mZmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpghR2BteeB21dU8u/4FQIRAfkrMlJdaD0E1kJ1uVACmTjm87M+pqOa0BqgW 7D4uVjZ85oAYCs0/vcNZPhshy/Aevaes2ATtM8oyqJhXgFtsaDLIQBCAq/gyoddT Fp5Q7Y4EWjeScJVSMM6k1m3u85iBxal1036P83NEzXPALNklNGy4FxQYUQJlqxhS i3CKJRpX3ZmOrh74YLiMr4xkYKVEA7EGyCAqtie1k3YzzBOoUI23umltc7UHVabI fUPbohpR17c0nlIMxt3ohu1N+XZA86Up8tdH+rmnnRtwSflEEGY0UVXTY67h8Zyd kd6Hi6BAHoutAD394HwSKg7rTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUsH41C GLA8KnfmyYFQk2BoJgd+MB8GA1UdIwQYMBaAFAD9Mf0GtCBMPdy2NQcYlTN3jMz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDlFQS84QzU5MTJGRUUx M0IxMUVGQkE3QkRGM0JDNEY5QUUwMi9BUDB4X1FhMElFdzkzTFkxQnhpVk0zZU16 UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FQMHhfUWEwSUV3OTNMWTFCeGlWTTNlTXpQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDlFQS84QzU5MTJGRUUxM0IxMUVGQkE3QkRGM0JDNEY5QUUwMi9BUDB4X1FhMElF dzkzTFkxQnhpVk0zZU16UGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZQ3xchefUHQBt7XZbBjISHD1EqVhdZFFZ29bdF3MqaZJWxRBad7Ap VTUAFWW2HbnQ0V5XKU8uoJSQG3fqpkv8ttDXi7ZCFONi38REMa4MH81s/mWsBEOX fol6mJhSMNoLl6JO5diMAPZb0NxzFo0ywfn6qCagQAv+2ZbElvMLVC6Muzd99v4N GNgmPPKtrPdsTDPZs273MVol0sYsAED1u7lXJfzLLGRqMztBoyIRv2VNVxT7J1tZ yrqwhI6KMnj7GZqG5VCAIcQigcetUUqtGBROboZ9+EQTDERlwZ2aBfBQ7ANSLUM6 x8L/y0jJ80LObIP5PZa/MOwKPdYS0+3x -----END CERTIFICATE-----Generated at Sat Dec 20 08:41:14 2025 by rpki-client