This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: QmhBr2ZI4Sbhz3vCZfW5d1zwdsVP/ofvxICl9+XfW2A= Subject key identifier: 3A:17:B1:98:0C:31:61:50:5A:B1:06:CF:A4:B0:32:90:22:E4:79:2A Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0CA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0C95 Signing time: Sat 20 Dec 2025 18:04:01 +0000 Manifest this update: Sat 20 Dec 2025 18:04:01 +0000 Manifest next update: Sat 27 Dec 2025 18:04:01 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: a0qwbN3aTYtYvAk2pyBgOlqBubyYYL9LIiJuouX5GE0=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: u6PjzNYcnOXcXRJn9HLyhk2+LGVsDog450i4Tie6o0k=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: sXqVXr7ZHzH2JmpUEnTy5shMtTPK9xhXC3ul6iYq9+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3237 (0xca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Dec 20 18:04:01 2025 GMT Not After : Dec 27 18:04:01 2025 GMT Subject: CN=6946e511-2e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:67:c7:e1:f5:e5:1d:88:51:6f:57:ef:83:4f: 47:c2:ba:8b:d2:c8:fc:79:bc:58:fd:10:e4:16:1e: 56:62:aa:46:a2:2c:e7:41:5c:fc:47:42:3d:1c:de: 0c:bb:71:0d:a6:f7:bd:42:22:67:56:db:01:d2:78: a2:a5:09:34:08:08:34:54:c7:49:38:61:86:13:de: ad:a2:58:a8:48:7a:3a:10:b8:a0:dd:56:fa:44:e5: 96:ee:95:76:d9:89:94:91:14:33:11:35:db:5e:cf: d1:bd:5a:fd:6b:9b:02:f7:b1:06:cc:1f:eb:5b:60: fa:71:c3:1f:8e:c4:f4:db:f9:e9:cc:fb:f4:f6:0c: 6c:d0:17:18:18:2a:ee:a1:7a:cd:3f:e2:25:df:73: 00:25:16:f6:12:b2:ae:0b:71:d2:88:07:3e:ce:89: de:91:3b:0f:db:64:ba:c5:29:42:f2:ce:a2:16:50: d1:8d:3e:fb:30:32:6d:4e:86:cd:c6:aa:53:97:22: ac:2c:c0:2b:45:98:e4:18:26:c5:ab:f8:32:cf:21: eb:44:5e:9e:b4:7b:6c:c5:c3:26:c9:4c:d3:fa:38: bb:4b:7f:16:c7:62:66:9d:e3:19:9b:fe:fd:dc:1b: 43:ea:b0:34:3e:9d:91:87:69:7f:e8:52:c1:96:e0: 06:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:17:B1:98:0C:31:61:50:5A:B1:06:CF:A4:B0:32:90:22:E4:79:2A X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:4b:e2:85:79:40:87:fe:44:fb:62:d8:cc:d4:83:04:b7:39: 2b:b5:f9:c8:64:6e:2b:42:e8:82:4d:4f:8d:df:16:82:de:b0: 21:f8:70:be:a8:16:c9:95:7c:96:c9:6b:3d:51:67:e3:92:90: 59:e8:e3:15:b1:8b:b0:f8:7e:76:26:5d:5c:9c:db:8a:c0:e4: 54:92:1a:6c:0d:73:71:5b:cd:7f:3a:d3:48:ff:12:bc:5d:c1: 7d:11:76:90:63:ee:a1:50:9d:ad:18:9d:cf:88:66:05:2d:00: 10:18:06:60:89:01:55:af:26:fc:37:0b:08:47:46:25:72:71: 16:8b:d4:7b:23:66:f2:6b:61:66:d7:e0:3a:25:4c:9f:ae:8d: d6:9e:de:b5:f4:18:64:94:2e:74:62:e1:14:ca:47:71:d8:bb: 2f:49:ca:c6:7d:11:aa:b9:2f:7c:b7:75:0b:7a:82:5f:bc:44: a4:af:13:59:fb:f1:92:a8:22:14:02:c3:24:50:b8:26:2c:57: f0:c6:77:39:f3:6a:6c:02:62:fb:f3:76:44:8c:63:56:07:6e: f4:03:a8:61:61:8a:ea:7a:a6:ac:15:1e:81:57:48:40:37:9e: 94:9b:e3:78:54:d0:fe:e5:e6:bb:96:d5:65:1e:06:0e:06:6c: c0:6e:21:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUxMjIwMTgwNDAxWhcNMjUxMjI3MTgwNDAxWjAYMRYwFAYD VQQDDA02OTQ2ZTUxMS0yZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGfH4fXlHYhRb1fvg09HwrqL0sj8ebxY/RDkFh5WYqpGoiznQVz8R0I9HN4M u3ENpve9QiJnVtsB0niipQk0CAg0VMdJOGGGE96tolioSHo6ELig3Vb6ROWW7pV2 2YmUkRQzETXbXs/RvVr9a5sC97EGzB/rW2D6ccMfjsT02/npzPv09gxs0BcYGCru oXrNP+Il33MAJRb2ErKuC3HSiAc+zonekTsP22S6xSlC8s6iFlDRjT77MDJtTobN xqpTlyKsLMArRZjkGCbFq/gyzyHrRF6etHtsxcMmyUzT+ji7S38Wx2JmneMZm/79 3BtD6rA0Pp2Rh2l/6FLBluAGwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDoXsZgM MWFQWrEGz6SwMpAi5HkqMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMS+KFeUCH/kT7YtjM1IMEtzkrtfnIZG4rQuiCTU+N3xaC3rAh+HC+ qBbJlXyWyWs9UWfjkpBZ6OMVsYuw+H52Jl1cnNuKwORUkhpsDXNxW81/OtNI/xK8 XcF9EXaQY+6hUJ2tGJ3PiGYFLQAQGAZgiQFVryb8NwsIR0YlcnEWi9R7I2bya2Fm 1+A6JUyfro3Wnt619BhklC50YuEUykdx2LsvScrGfRGquS98t3ULeoJfvESkrxNZ +/GSqCIUAsMkULgmLFfwxnc582psAmL783ZEjGNWB270A6hhYYrqeqasFR6BV0hA N56Um+N4VND+5ea7ltVlHgYOBmzAbiE2 -----END CERTIFICATE-----Generated at Sun Dec 21 12:02:06 2025 by rpki-client