This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft File: -mfVMKhwCqjrfU9svpZHvlN_X84.mft (raw, json) Hash identifier: 1gwnNjt+r3veflEzaYHyFLIUEwD+IOhCDGsUJ2H6xvs= Subject key identifier: 3A:CB:B3:8C:DF:98:72:0A:C4:50:54:E2:78:29:EA:95:6C:E7:18:81 Authority key identifier: FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE Certificate issuer: /CN=A91CD056/serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft Manifest number: 038C Signing time: Mon 22 Dec 2025 23:49:14 +0000 Manifest this update: Mon 22 Dec 2025 23:49:14 +0000 Manifest next update: Mon 29 Dec 2025 23:49:14 +0000 Files and hashes: 1: -mfVMKhwCqjrfU9svpZHvlN_X84.crl (hash: hEVvVjbGQoTeALMlZNrMDnpLIsUSO7IKh2OW8KQzuKA=) 2: 3E62F2ECC9EA11ECB6295B34C4F9AE02.roa (hash: mfXzwKGY7gUqiLkJW1SqazxLmJ2CAU7Yff9kCtQmKuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD056, serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE Validity Not Before: Dec 22 23:49:14 2025 GMT Not After : Dec 29 23:49:14 2025 GMT Subject: CN=6949d8fa-d63a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1b:e4:e3:32:5c:e6:d5:fb:74:b2:ea:7c:33: 0f:a0:2f:de:30:68:51:5d:0a:8c:28:af:88:b1:c5: 64:9e:67:e0:cd:54:a9:10:59:01:4a:bf:04:23:f2: 7e:de:5d:14:b5:87:a1:5f:88:d3:ef:43:5d:d2:d3: 2f:da:47:26:71:fe:75:bd:f4:04:a7:67:3e:94:a3: 7a:c8:a1:ba:b8:f2:7b:35:40:ee:9b:03:cf:66:b9: 53:93:4b:0a:6e:6d:0e:8c:7e:0e:5b:12:4d:5a:b1: b7:7b:a2:39:f1:48:16:a8:df:42:4c:dd:14:8f:b0: a5:f9:5d:42:ca:5c:2b:30:a6:55:d2:7b:c8:9e:05: ee:55:99:25:24:19:4b:5c:36:e5:0f:59:91:39:dd: a9:ca:39:29:fb:e8:b9:25:dd:ee:b0:a3:63:44:a7: 6f:d4:f2:de:59:0b:b3:77:4e:ac:5a:f8:c9:d7:7a: 32:26:73:0c:fa:e2:be:81:37:b5:71:86:06:cb:f2: 44:97:3e:db:a2:91:8a:6d:11:d2:4f:1e:e4:a7:a1: 66:eb:6d:cd:83:52:e7:4c:3f:b8:9c:c1:c8:aa:8a: bc:e7:4f:ae:a1:3e:0b:aa:28:ea:e3:ee:86:51:31: fc:e8:c9:61:8c:86:d0:69:45:f2:30:eb:cf:99:5b: 14:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:CB:B3:8C:DF:98:72:0A:C4:50:54:E2:78:29:EA:95:6C:E7:18:81 X509v3 Authority Key Identifier: keyid:FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e9:ca:58:a4:84:7c:f1:50:2e:0f:ec:ef:32:88:66:be:03: bb:1f:a3:31:ea:0d:42:ef:91:1e:72:a5:71:58:cb:94:20:d2: db:f3:92:d9:19:60:a4:eb:65:37:d7:b0:c2:a9:e3:d3:c5:28: 6e:06:bb:25:0c:6f:3e:5c:39:64:da:2f:1c:81:49:b9:d1:2c: fc:89:8d:c7:d2:9a:ed:bc:0a:01:f4:7b:2a:54:1e:a5:09:10: f6:da:89:95:d8:81:66:f5:b3:06:e5:91:1e:09:a8:71:15:bf: af:42:8e:da:c5:26:d6:05:68:7c:4c:81:f1:35:cf:e3:c7:ee: 9d:81:ee:e0:85:56:4f:2a:3d:f6:86:7f:b7:9b:8d:17:67:46: 4a:7e:79:7a:76:b4:1a:5a:50:06:01:c2:15:7e:3a:24:17:5f: c9:b8:64:09:9b:2e:5e:99:5f:9c:d7:1a:3e:b1:05:42:6e:44: 41:3e:c7:7c:28:06:31:57:c4:7e:3e:82:be:a7:68:ba:b4:48: a4:42:75:89:a0:0f:6b:5c:47:5f:66:84:77:77:38:81:8a:b7: 09:90:17:bc:f6:84:36:d4:1c:62:5e:ee:11:7f:5d:12:9b:60: 04:3d:4b:9b:d5:25:d2:b5:0a:47:12:5c:ce:57:4d:00:b7:5d: 09:b4:45:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwNTYxMTAvBgNVBAUTKEZBNjdENTMwQTg3MDBBQThFQjdENEY2Q0JFOTY0N0JF NTM3RjVGQ0UwHhcNMjUxMjIyMjM0OTE0WhcNMjUxMjI5MjM0OTE0WjAYMRYwFAYD VQQDDA02OTQ5ZDhmYS1kNjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhvk4zJc5tX7dLLqfDMPoC/eMGhRXQqMKK+IscVknmfgzVSpEFkBSr8EI/J+ 3l0UtYehX4jT70Nd0tMv2kcmcf51vfQEp2c+lKN6yKG6uPJ7NUDumwPPZrlTk0sK bm0OjH4OWxJNWrG3e6I58UgWqN9CTN0Uj7Cl+V1CylwrMKZV0nvIngXuVZklJBlL XDblD1mROd2pyjkp++i5Jd3usKNjRKdv1PLeWQuzd06sWvjJ13oyJnMM+uK+gTe1 cYYGy/JElz7bopGKbRHSTx7kp6Fm623Ng1LnTD+4nMHIqoq850+uoT4Lqijq4+6G UTH86MlhjIbQaUXyMOvPmVsUswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrLs4zf mHIKxFBU4ngp6pVs5xiBMB8GA1UdIwQYMBaAFPpn1TCocAqo631PbL6WR75Tf1/O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA1Ni9ENzAyNjRBQUM5 RTYxMUVDQUMyMjhEMzBDNEY5QUUwMi8tbWZWTUtod0NxanJmVTlzdnBaSHZsTl9Y ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1tZlZNS2h3Q3FqcmZVOXN2cFpIdmxOX1g4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA1Ni9ENzAyNjRBQUM5RTYxMUVDQUMyMjhEMzBDNEY5QUUwMi8tbWZWTUtod0Nx anJmVTlzdnBaSHZsTl9YODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh6cpYpIR88VAuD+zvMohmvgO7H6Mx6g1C75EecqVxWMuUINLb85LZ GWCk62U317DCqePTxShuBrslDG8+XDlk2i8cgUm50Sz8iY3H0prtvAoB9HsqVB6l CRD22omV2IFm9bMG5ZEeCahxFb+vQo7axSbWBWh8TIHxNc/jx+6dge7ghVZPKj32 hn+3m40XZ0ZKfnl6drQaWlAGAcIVfjokF1/JuGQJmy5emV+c1xo+sQVCbkRBPsd8 KAYxV8R+PoK+p2i6tEikQnWJoA9rXEdfZoR3dziBircJkBe89oQ21BxiXu4Rf10S m2AEPUub1SXStQpHElzOV00At10JtEX8 -----END CERTIFICATE-----Generated at Wed Dec 24 15:59:12 2025 by rpki-client