This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft File: 0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json) Hash identifier: kfpEFyQCtl1HYajSqNQaBg4Jj2y2U3ygu4C2af4V3jE= Subject key identifier: 5F:A4:1B:66:B6:AD:EE:C7:52:EA:AD:FD:3F:56:0F:A1:26:B8:06:09 Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft Manifest number: E4 Signing time: Sun 21 Dec 2025 04:37:51 +0000 Manifest this update: Sun 21 Dec 2025 04:37:51 +0000 Manifest next update: Sun 28 Dec 2025 04:37:51 +0000 Files and hashes: 1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: jkUAnwWheF8bNraSfFN1jrSkclgC0iK0NNPl/ZKC/J0=) 2: 1E0CBABEC99B11F0BD75C310C4F9AE02.roa (hash: XDvsXiWUoJu9EmBSYtQ7IbkY7zSchFzyP33LQZcvmOQ=) 3: 1D9F5104C99B11F092A1C310C4F9AE02.roa (hash: evldymlGQQ93kubL9WmbF3u0cvNdxXaSZqcfpd5v03k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD, serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: Dec 21 04:37:51 2025 GMT Not After : Dec 28 04:37:51 2025 GMT Subject: CN=6947799f-42d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c5:42:40:b0:5f:3e:2b:db:12:74:5b:24:5e: 09:3a:16:0b:fe:4e:4e:ef:7f:1b:e3:5a:b8:c0:ae: a4:ab:c3:21:d1:ca:ab:28:dc:34:9c:d1:2d:12:3a: 46:cb:df:c5:d0:9b:56:c7:aa:87:c4:9f:66:5b:b9: 01:9e:73:1b:fb:c9:7a:14:b2:66:fb:f6:32:d9:13: 44:fb:45:e2:ad:c9:d2:c0:2e:db:76:24:7e:08:0f: 94:fd:68:39:9d:91:80:cf:e0:ad:19:17:03:67:3c: 87:0c:9b:b7:95:21:3f:cd:5c:df:b9:ee:8b:48:b5: c3:27:0e:35:28:99:b0:26:92:e8:96:c2:7e:d0:d4: 67:49:1f:9e:5f:3a:06:93:91:5f:ce:0e:4b:27:96: c9:d1:37:e1:fa:2b:19:1d:43:b0:d7:4f:b6:3f:3a: ba:73:2c:b9:b9:0b:3c:31:b7:ba:0d:7c:7a:55:ba: 5f:54:43:96:32:b5:6f:80:9d:e2:67:ed:f2:18:3f: 1a:91:41:de:85:45:a5:8a:dd:dd:d3:8f:ea:41:19: 39:46:ed:ed:33:12:e7:b8:ab:52:e2:b7:7b:38:bb: d5:6b:e7:69:aa:e0:4c:28:44:bc:2e:7d:d4:27:a2: 18:06:6d:57:a8:2f:7a:1b:a9:ee:a6:3b:87:73:22: 75:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:A4:1B:66:B6:AD:EE:C7:52:EA:AD:FD:3F:56:0F:A1:26:B8:06:09 X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:8f:af:fe:d7:ed:e1:06:73:c9:f1:40:ea:19:3a:08:dc:b5: 95:c3:6a:89:63:a5:7d:e4:bf:a1:83:8b:1b:ec:77:cf:82:ab: 89:e7:03:a7:79:da:71:03:72:72:79:45:9a:7e:b6:2d:e6:3c: 46:e1:74:51:3e:b3:20:76:fb:df:d9:32:46:26:34:bf:8a:01: 56:6f:9f:ce:b3:91:ad:ac:2a:18:9d:6d:96:e3:86:d2:bd:2e: 27:fe:42:a9:55:59:02:60:c7:d0:1b:62:22:ad:c7:31:4e:ef: 1c:c6:fc:de:9e:34:cd:23:b6:4b:3f:e2:dd:ad:3d:72:0e:d1: a5:e7:9b:65:19:0b:26:53:ec:2f:4a:7c:1b:cf:6e:65:87:2b: 66:20:cb:1e:b6:8d:2c:2c:66:18:3e:54:d6:6d:82:e5:d2:d1: 78:32:df:ec:08:18:70:7f:e7:1e:91:21:df:53:f6:ce:12:04: 31:8c:d6:2e:52:1f:63:ef:a7:45:ba:74:cd:e0:17:ab:5a:0c: 3d:95:f4:de:9a:92:9b:56:4a:ee:9c:29:e3:7d:0f:75:30:1d: af:eb:83:96:75:d8:30:ff:b4:3c:01:9b:b1:ca:ff:38:5f:c6: 1c:ab:28:ed:c3:83:25:38:b8:00:b4:80:6c:a2:50:ab:de:40: 11:d1:7d:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4QUQxMTAvBgNVBAUTKEQxMEMyMDk2RkI1REIzMDRBQkQyRjk5RjQ1QTI5NDg4 MjkyRDM3MjEwHhcNMjUxMjIxMDQzNzUxWhcNMjUxMjI4MDQzNzUxWjAYMRYwFAYD VQQDDA02OTQ3Nzk5Zi00MmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocVCQLBfPivbEnRbJF4JOhYL/k5O738b41q4wK6kq8Mh0cqrKNw0nNEtEjpG y9/F0JtWx6qHxJ9mW7kBnnMb+8l6FLJm+/Yy2RNE+0XircnSwC7bdiR+CA+U/Wg5 nZGAz+CtGRcDZzyHDJu3lSE/zVzfue6LSLXDJw41KJmwJpLolsJ+0NRnSR+eXzoG k5Ffzg5LJ5bJ0Tfh+isZHUOw10+2Pzq6cyy5uQs8Mbe6DXx6VbpfVEOWMrVvgJ3i Z+3yGD8akUHehUWlit3d04/qQRk5Ru3tMxLnuKtS4rd7OLvVa+dpquBMKES8Ln3U J6IYBm1XqC96G6nupjuHcyJ1RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+kG2a2 re7HUuqt/T9WD6EmuAYJMB8GA1UdIwQYMBaAFNEMIJb7XbMEq9L5n0WilIgpLTch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjhBRC9ERUJBMjM4MDg2 QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3U3Iwdm1mUmFLVWlDa3RO eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjhBRC9ERUJBMjM4MDg2QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3 U3Iwdm1mUmFLVWlDa3ROeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAj6/+1+3hBnPJ8UDqGToI3LWVw2qJY6V95L+hg4sb7HfPgquJ5wOn edpxA3JyeUWafrYt5jxG4XRRPrMgdvvf2TJGJjS/igFWb5/Os5GtrCoYnW2W44bS vS4n/kKpVVkCYMfQG2IirccxTu8cxvzenjTNI7ZLP+LdrT1yDtGl55tlGQsmU+wv Snwbz25lhytmIMseto0sLGYYPlTWbYLl0tF4Mt/sCBhwf+cekSHfU/bOEgQxjNYu Uh9j76dFunTN4BerWgw9lfTempKbVkrunCnjfQ91MB2v64OWddgw/7Q8AZuxyv84 X8Ycqyjtw4MlOLgAtIBsolCr3kAR0X3o -----END CERTIFICATE-----Generated at Mon Dec 22 16:00:11 2025 by rpki-client