This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft File: _D97sEVCVvMfJcoAhkvDpr11X5Y.mft (raw, json) Hash identifier: k+QECukBPL5gKtLmjBRxAlG7kalkCJgTB3DS3/3lCMQ= Subject key identifier: CE:CD:31:BF:CA:4A:69:F1:1A:A4:5A:57:04:08:CC:BE:87:B0:BF:77 Authority key identifier: FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 Certificate issuer: /CN=A91CE2DE/serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Certificate serial: 027B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft Manifest number: 0276 Signing time: Tue 23 Dec 2025 00:35:47 +0000 Manifest this update: Tue 23 Dec 2025 00:35:46 +0000 Manifest next update: Tue 30 Dec 2025 00:35:46 +0000 Files and hashes: 1: _D97sEVCVvMfJcoAhkvDpr11X5Y.crl (hash: qQB2ZspD0Yl5/YDJ6FD05JG+aNTaB/f79jxvrb9cNac=) 2: 97B4F5603B3D11ED822BB46CC4F9AE02.roa (hash: 31J9yBONwQ0Slze1cZAXabZLSH29F7mH7omWRFxw8QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:35:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE2DE, serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Validity Not Before: Dec 23 00:35:46 2025 GMT Not After : Dec 30 00:35:46 2025 GMT Subject: CN=6949e3e2-1e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d0:1d:1d:be:de:18:e6:87:67:2f:70:1a:d8: 14:95:3b:7f:1a:91:58:14:18:47:6d:da:d2:f1:2e: 7c:73:2c:14:6c:31:aa:f1:0e:3e:71:3a:6a:6c:08: c3:f3:43:d2:a6:2e:d8:ac:52:f4:65:2c:61:79:6b: be:3d:e7:9c:05:23:b2:98:03:15:2a:75:89:7f:7e: 2b:3f:97:42:99:ba:69:4f:0c:d4:8c:a9:e6:65:5e: 86:11:aa:4f:de:71:90:ef:42:69:10:cd:41:bb:cc: b6:55:1d:cd:f7:56:ad:44:19:fc:81:df:ec:fd:4b: 0c:1b:2c:d6:d6:82:7b:94:4f:33:de:dc:cf:14:df: 7e:9e:e5:52:b3:cd:be:8f:f3:33:f4:ae:a8:d4:ce: 33:08:af:05:f4:f2:bf:e1:e5:17:4f:34:4c:a5:54: a1:32:ec:82:fc:5f:ed:5e:91:ea:aa:ef:db:fc:2d: a7:c4:7f:b5:6b:da:2d:2a:6c:76:ca:4a:e4:24:6a: c6:a1:8a:82:dc:2e:10:1b:40:45:31:f9:27:3b:1b: fa:50:97:f7:73:f1:b2:f0:86:2f:7d:67:ad:7d:3e: 43:86:03:82:77:5a:9e:9e:5e:15:fd:4b:ea:43:d8: 5e:54:21:9f:ba:1f:48:aa:f6:de:1e:fa:c9:5e:08: 89:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:CD:31:BF:CA:4A:69:F1:1A:A4:5A:57:04:08:CC:BE:87:B0:BF:77 X509v3 Authority Key Identifier: keyid:FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:f2:13:20:db:53:7c:08:cb:d3:62:4f:2e:80:85:21:0a:a8: b3:74:e0:3e:91:f8:ba:b4:63:98:0a:a1:b1:be:81:5d:bb:d7: c0:64:1a:62:e5:49:29:81:a8:6c:3f:2d:e1:fe:47:5b:1e:c3: 2a:e4:c8:75:84:56:26:5f:f1:72:1c:81:da:a3:98:80:2f:8c: 02:23:19:e5:de:96:0f:bb:01:96:17:86:c1:eb:0d:28:ff:41: 99:38:c0:1e:a6:0e:cf:80:d4:f8:11:7b:58:88:64:5c:43:37: cc:83:18:e3:57:d5:65:11:0f:dc:a4:58:85:f7:fb:0d:48:a8: f5:86:f3:e7:9d:7f:bc:50:e3:b0:2c:2c:db:a7:5d:d1:e8:f2: 1e:1a:28:ca:a2:d2:3f:a5:87:99:7e:c1:7c:df:06:07:41:4b: 81:70:39:3a:74:f6:3b:96:c5:c0:76:14:74:99:65:2c:cf:52: 78:ce:9d:3d:83:4f:31:c7:c5:58:90:02:14:3b:9e:e9:e3:d0: e9:52:2d:ff:9d:5d:b3:3c:29:41:2e:eb:b4:71:d7:89:f9:f7: 7b:cd:15:84:8f:ea:3b:c3:00:ee:d5:76:eb:30:57:32:26:41: 2b:8e:c3:59:50:df:37:3c:da:4b:60:8c:e9:84:ac:84:33:62: 1f:a5:1d:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyREUxMTAvBgNVBAUTKEZDM0Y3QkIwNDU0MjU2RjMxRjI1Q0EwMDg2NEJDM0E2 QkQ3NTVGOTYwHhcNMjUxMjIzMDAzNTQ2WhcNMjUxMjMwMDAzNTQ2WjAYMRYwFAYD VQQDDA02OTQ5ZTNlMi0xZTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNAdHb7eGOaHZy9wGtgUlTt/GpFYFBhHbdrS8S58cywUbDGq8Q4+cTpqbAjD 80PSpi7YrFL0ZSxheWu+PeecBSOymAMVKnWJf34rP5dCmbppTwzUjKnmZV6GEapP 3nGQ70JpEM1Bu8y2VR3N91atRBn8gd/s/UsMGyzW1oJ7lE8z3tzPFN9+nuVSs82+ j/Mz9K6o1M4zCK8F9PK/4eUXTzRMpVShMuyC/F/tXpHqqu/b/C2nxH+1a9otKmx2 ykrkJGrGoYqC3C4QG0BFMfknOxv6UJf3c/Gy8IYvfWetfT5DhgOCd1qenl4V/Uvq Q9heVCGfuh9IqvbeHvrJXgiJfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7NMb/K SmnxGqRaVwQIzL6HsL93MB8GA1UdIwQYMBaAFPw/e7BFQlbzHyXKAIZLw6a9dV+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTJERS9BQkRFRTg3QTM3 RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2TWZKY29BaGt2RHByMTFY NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19EOTdzRVZDVnZNZkpjb0Foa3ZEcHIxMVg1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTJERS9BQkRFRTg3QTM3RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2 TWZKY29BaGt2RHByMTFYNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ8hMg21N8CMvTYk8ugIUhCqizdOA+kfi6tGOYCqGxvoFdu9fAZBpi 5UkpgahsPy3h/kdbHsMq5Mh1hFYmX/FyHIHao5iAL4wCIxnl3pYPuwGWF4bB6w0o /0GZOMAepg7PgNT4EXtYiGRcQzfMgxjjV9VlEQ/cpFiF9/sNSKj1hvPnnX+8UOOw LCzbp13R6PIeGijKotI/pYeZfsF83wYHQUuBcDk6dPY7lsXAdhR0mWUsz1J4zp09 g08xx8VYkAIUO57p49DpUi3/nV2zPClBLuu0cdeJ+fd7zRWEj+o7wwDu1XbrMFcy JkErjsNZUN83PNpLYIzphKyEM2IfpR35 -----END CERTIFICATE-----Generated at Tue Dec 23 22:26:11 2025 by rpki-client