This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft File: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft (raw, json) Hash identifier: c8z5IVBEVsRBfGGJOCY8zaxtHOLBLn5+PAyeYvWRq4U= Subject key identifier: 1B:C0:91:2B:52:1E:CA:7E:BE:F1:FD:FD:04:97:9B:3F:51:72:CA:F3 Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft Manifest number: 01F9 Signing time: Tue 23 Dec 2025 01:37:24 +0000 Manifest this update: Tue 23 Dec 2025 01:37:24 +0000 Manifest next update: Tue 30 Dec 2025 01:37:24 +0000 Files and hashes: 1: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl (hash: ttDucjApPsKBoo2Cc+lk4/7dH/B7bvKahXZJqpLwJsU=) 2: 2AB990CAF0A911ED80D2CB35C4F9AE02.roa (hash: 1jcnYgiH1oCe12gdnItbi9E2/n5D/nkIQyDzvjflQcQ=) 3: 1333404E5A0D11EF8810E217C4F9AE02.roa (hash: LSSqPw0m9vdH2z02yt+UwvMOawigT/2JykBCEQ4iiVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9, serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: Dec 23 01:37:24 2025 GMT Not After : Dec 30 01:37:24 2025 GMT Subject: CN=6949f254-2be6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:5e:bf:71:b7:98:f5:ba:a7:ca:d2:95:2e:c5: 94:c9:86:04:8a:3b:9a:fb:4f:4a:43:09:9b:d3:cd: a8:78:2e:26:ab:7b:9e:6c:d1:15:bd:e6:09:19:76: 7f:9e:a6:8c:dd:d7:d5:ca:2d:7e:77:5c:67:89:3a: ac:52:71:dd:8e:93:00:a7:32:ad:65:d5:cb:71:96: 16:66:9c:62:0a:07:fc:77:55:b4:d9:83:f6:b2:8a: 84:f1:12:8b:43:14:d2:0c:8b:75:98:96:34:8d:80: 9d:4b:5b:6c:76:bc:b7:5a:82:4b:ea:18:d7:fe:d3: 63:8b:81:51:00:16:a4:a9:fe:39:52:d0:14:bd:48: c8:8a:17:f6:e3:ae:7c:1f:e8:e6:77:f1:c6:27:68: f3:fb:93:07:a0:9c:03:ec:ea:ae:14:0c:ef:5a:01: 68:10:b2:12:fa:47:89:35:86:d9:2d:74:93:b0:ba: b9:8c:a4:84:b6:37:9e:d4:16:9c:bf:c0:86:86:37: 91:48:fa:8c:47:e9:56:ce:07:0e:ee:a6:48:ea:4a: 26:78:a2:e2:67:8d:c4:c3:31:ea:7d:c5:fc:ca:d2: 28:1a:37:bd:b7:8f:96:9d:11:9b:d8:4e:5b:db:51: f0:cd:00:5b:be:d3:8e:59:31:d9:36:16:e6:ac:aa: 4b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C0:91:2B:52:1E:CA:7E:BE:F1:FD:FD:04:97:9B:3F:51:72:CA:F3 X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:e0:db:69:92:70:eb:19:72:64:b1:12:15:bd:c7:fe:66:a7: 3c:b1:72:bf:b1:ad:af:6a:bc:35:9b:01:8f:5f:87:37:73:87: d7:10:1c:d6:37:f4:bf:82:3b:80:f4:42:00:4e:24:41:34:8f: e9:ee:54:99:32:3f:54:82:63:ba:d7:f5:7b:a9:22:f2:d4:ce: 12:1e:69:73:04:01:60:6f:32:2b:53:e8:d5:3a:72:63:dc:d8: 25:66:95:94:29:76:37:5c:57:14:b0:0b:fe:86:d5:4c:32:39: 73:e9:bb:5a:0c:10:07:b0:1c:5c:b0:fd:bd:93:15:b6:2c:25: b8:4a:6d:47:d3:4f:4d:a9:7e:ff:03:41:dd:c4:7e:fa:46:e3: 15:c7:91:26:32:a8:2c:ba:ef:5c:90:68:25:75:cd:b5:cd:e6: 78:db:49:8e:cc:08:d3:d4:10:e3:86:bc:93:7b:0c:f0:ad:62: 88:f6:17:10:cc:cc:0e:8a:a0:d9:4b:d6:b1:c5:59:a0:c0:2a: c2:80:2c:e2:9d:a3:9c:37:b2:9e:46:2d:1f:ff:69:74:71:d2: c3:d6:c7:b4:0f:79:40:af:f5:4a:d1:87:e0:ce:90:46:19:9e: d4:6c:3e:20:0f:13:81:c2:76:0d:88:d0:05:83:96:48:e2:d9: 8b:86:27:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjUxMjIzMDEzNzI0WhcNMjUxMjMwMDEzNzI0WjAYMRYwFAYD VQQDDA02OTQ5ZjI1NC0yYmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjF6/cbeY9bqnytKVLsWUyYYEijua+09KQwmb082oeC4mq3uebNEVveYJGXZ/ nqaM3dfVyi1+d1xniTqsUnHdjpMApzKtZdXLcZYWZpxiCgf8d1W02YP2soqE8RKL QxTSDIt1mJY0jYCdS1tsdry3WoJL6hjX/tNji4FRABakqf45UtAUvUjIihf24658 H+jmd/HGJ2jz+5MHoJwD7OquFAzvWgFoELIS+keJNYbZLXSTsLq5jKSEtjee1Bac v8CGhjeRSPqMR+lWzgcO7qZI6komeKLiZ43EwzHqfcX8ytIoGje9t4+WnRGb2E5b 21HwzQBbvtOOWTHZNhbmrKpLYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvAkStS Hsp+vvH9/QSXmz9RcsrzMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFOS9CQkNENUQyQ0VGQ0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2 WEJsYVhtMng2a1pIWTB2dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ4NtpknDrGXJksRIVvcf+Zqc8sXK/sa2varw1mwGPX4c3c4fXEBzW N/S/gjuA9EIATiRBNI/p7lSZMj9UgmO61/V7qSLy1M4SHmlzBAFgbzIrU+jVOnJj 3NglZpWUKXY3XFcUsAv+htVMMjlz6btaDBAHsBxcsP29kxW2LCW4Sm1H009NqX7/ A0HdxH76RuMVx5EmMqgsuu9ckGgldc21zeZ420mOzAjT1BDjhryTewzwrWKI9hcQ zMwOiqDZS9axxVmgwCrCgCzinaOcN7KeRi0f/2l0cdLD1se0D3lAr/VK0YfgzpBG GZ7UbD4gDxOBwnYNiNAFg5ZI4tmLhie+ -----END CERTIFICATE-----Generated at Tue Dec 23 03:20:03 2025 by rpki-client