This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft File: Ci5d8bLD15feoVNn-qncOITNGzM.mft (raw, json) Hash identifier: LHhIvX2OGypiGsJnWxi1MK4aw93eK6xVmiErVHRzATM= Subject key identifier: DA:88:51:65:F3:6A:6F:EA:C7:30:13:34:78:39:FA:51:36:C9:95:9E Authority key identifier: 0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 Certificate issuer: /CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Certificate serial: 0DEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft Manifest number: 0DDE Signing time: Mon 22 Dec 2025 17:30:29 +0000 Manifest this update: Mon 22 Dec 2025 17:30:29 +0000 Manifest next update: Mon 29 Dec 2025 17:30:29 +0000 Files and hashes: 1: Ci5d8bLD15feoVNn-qncOITNGzM.crl (hash: CiEncRvcrD97djUdo9n7A/IJvRRrOmnyj0BA0/Tk/Ak=) 2: 4EEE01FCE15611EF9560323EC4F9AE02.roa (hash: 9Nz/F+iPTsdfTjIzxhDauJBST5Z1hrA/MujlPAQ3LmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3562 (0xdea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD096, serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Validity Not Before: Dec 22 17:30:29 2025 GMT Not After : Dec 29 17:30:29 2025 GMT Subject: CN=69498035-6589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f8:cc:a0:58:36:1b:93:e6:cd:77:00:a3:8c: 2a:b2:82:4c:4d:1c:df:07:4f:11:ef:8d:27:62:ce: c2:14:ff:27:35:65:a0:3c:0c:52:1c:60:f5:9e:e2: 81:ee:79:a1:2f:61:bd:35:c1:4b:dd:e3:13:55:33: ae:e3:86:0e:d4:25:8f:76:a5:4a:c7:7b:91:8e:7f: 52:e2:43:58:3a:49:d1:d7:c4:c2:7d:19:6b:d0:26: 78:fe:62:02:f7:46:05:2b:31:13:cc:2d:72:ab:65: a4:b6:b0:e9:44:88:05:d8:1e:24:fa:f9:ef:b7:62: c2:ea:b7:be:75:b5:c8:c0:11:9b:cc:cb:94:04:36: 7d:04:1a:3e:be:e6:db:1a:cc:5a:e2:a7:e8:bb:e5: 95:29:d8:eb:f4:a7:ed:35:2a:0f:cd:ee:33:ee:d4: b1:98:af:dc:51:0c:c0:8e:5d:94:86:11:6b:79:bf: 90:06:23:22:2e:5f:de:58:34:32:53:eb:07:ff:02: 8e:a5:a0:0f:71:d7:1c:42:1d:3a:67:ff:f9:9c:d5: c3:28:13:53:1d:ba:4d:b1:33:8f:9c:b7:f7:aa:67: ea:3c:00:44:aa:7e:02:e8:18:12:dd:d3:ec:3d:a0: 38:2d:b6:bf:0b:05:4f:1b:03:68:fb:1d:23:a3:eb: 6e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:88:51:65:F3:6A:6F:EA:C7:30:13:34:78:39:FA:51:36:C9:95:9E X509v3 Authority Key Identifier: keyid:0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:96:ff:0f:64:2f:ac:19:78:eb:ae:ee:91:b1:dc:75:c7:b9: ab:ea:44:fa:b3:b6:ca:63:f7:1e:97:8e:53:9c:1a:b5:0d:b7: fd:33:2e:8b:aa:e0:b2:6c:b8:cc:73:5a:09:95:d9:1f:c4:b4: 5a:3f:1e:54:e4:eb:32:b1:58:f0:0f:39:99:f8:01:06:14:0b: b5:3a:00:fa:de:e8:cc:61:2e:b6:7c:83:f0:e7:3d:75:46:26: 72:f5:7a:bc:05:96:d9:63:ac:0d:79:96:55:52:9b:22:dc:3e: 99:ce:2d:15:a5:7e:04:3d:e9:f6:05:64:a8:1f:bd:a1:d9:e0: 9f:67:b3:fe:e7:3b:c2:35:8a:71:bf:1b:01:6b:1e:45:fb:b7: bb:1e:a7:82:04:e1:79:f9:64:e2:2e:d9:5c:75:27:58:f4:81: b2:b4:6d:dd:18:24:e9:69:33:70:78:ba:16:d0:41:52:a0:7b: eb:0b:0e:d4:e0:8d:dc:57:ad:4c:73:d8:b0:6c:41:01:33:c5: aa:75:04:e6:52:99:60:1f:34:45:9b:60:36:0a:0e:0d:d9:a0: 2f:c5:61:78:05:b2:76:ca:d0:06:b0:b0:b9:de:fe:72:60:73: fd:95:d3:b0:43:cd:64:0c:a9:44:ef:cb:a5:e7:71:3f:47:cf: 9f:a0:4f:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwOTYxMTAvBgNVBAUTKDBBMkU1REYxQjJDM0Q3OTdERUExNTM2N0ZBQTlEQzM4 ODRDRDFCMzMwHhcNMjUxMjIyMTczMDI5WhcNMjUxMjI5MTczMDI5WjAYMRYwFAYD VQQDDA02OTQ5ODAzNS02NTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/jMoFg2G5PmzXcAo4wqsoJMTRzfB08R740nYs7CFP8nNWWgPAxSHGD1nuKB 7nmhL2G9NcFL3eMTVTOu44YO1CWPdqVKx3uRjn9S4kNYOknR18TCfRlr0CZ4/mIC 90YFKzETzC1yq2WktrDpRIgF2B4k+vnvt2LC6re+dbXIwBGbzMuUBDZ9BBo+vubb Gsxa4qfou+WVKdjr9KftNSoPze4z7tSxmK/cUQzAjl2UhhFreb+QBiMiLl/eWDQy U+sH/wKOpaAPcdccQh06Z//5nNXDKBNTHbpNsTOPnLf3qmfqPABEqn4C6BgS3dPs PaA4Lba/CwVPGwNo+x0jo+tuzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqIUWXz am/qxzATNHg5+lE2yZWeMB8GA1UdIwQYMBaAFAouXfGyw9eX3qFTZ/qp3DiEzRsz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA5Ni9FNTA0MkMyQUNB MzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1ZmVvVk5uLXFuY09JVE5H ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpNWQ4YkxEMTVmZW9WTm4tcW5jT0lUTkd6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA5Ni9FNTA0MkMyQUNBMzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1 ZmVvVk5uLXFuY09JVE5Hek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+lv8PZC+sGXjrru6Rsdx1x7mr6kT6s7bKY/cel45TnBq1Dbf9My6L quCybLjMc1oJldkfxLRaPx5U5OsysVjwDzmZ+AEGFAu1OgD63ujMYS62fIPw5z11 RiZy9Xq8BZbZY6wNeZZVUpsi3D6Zzi0VpX4EPen2BWSoH72h2eCfZ7P+5zvCNYpx vxsBax5F+7e7HqeCBOF5+WTiLtlcdSdY9IGytG3dGCTpaTNweLoW0EFSoHvrCw7U 4I3cV61Mc9iwbEEBM8WqdQTmUplgHzRFm2A2Cg4N2aAvxWF4BbJ2ytAGsLC53v5y YHP9ldOwQ81kDKlE78ul53E/R8+foE/b -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:56 2025 by rpki-client