This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft File: 97sXL8rsr7-evvJQihVCZDOuyd4.mft (raw, json) Hash identifier: 9qbToCHbUGD2Hg9i1G3diFNxfpq2eP3rAx17w3HE2nk= Subject key identifier: 9B:46:37:31:D5:79:6F:2E:AD:55:E1:01:16:8B:53:E0:5F:DF:2B:4A Authority key identifier: F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE Certificate issuer: /CN=A91CEDD3/serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Certificate serial: 0246 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft Manifest number: 0240 Signing time: Tue 23 Dec 2025 00:54:54 +0000 Manifest this update: Tue 23 Dec 2025 00:54:53 +0000 Manifest next update: Tue 30 Dec 2025 00:54:53 +0000 Files and hashes: 1: 97sXL8rsr7-evvJQihVCZDOuyd4.crl (hash: f9DMPQbgc3zbizgQE5Q5SsXjeCcGctd/hFVlI2eOW1I=) 2: C714C5A6706211EDA9CCDB76C4F9AE02.roa (hash: AIFISpe4UUSb102JMnJULUVmkKzdqcMZuRuO6tOo8G0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEDD3, serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Validity Not Before: Dec 23 00:54:53 2025 GMT Not After : Dec 30 00:54:53 2025 GMT Subject: CN=6949e85e-8d45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d1:fc:52:96:4a:02:fc:1a:0f:33:ee:82:7b: 83:9d:d2:df:fe:2a:fc:1e:69:d2:d3:e4:66:52:55: d2:fe:ba:e7:47:b6:cf:ae:b4:d3:18:23:79:49:37: 58:e2:e3:b0:00:61:5e:bb:6f:5e:11:c1:dd:f7:6b: 72:90:5a:ce:66:c0:ad:4c:4c:a0:d2:48:a0:c5:c2: 3f:94:fd:88:2d:f3:2b:65:5f:70:b5:bf:07:93:ad: 65:8b:5e:62:35:07:a2:c8:eb:0c:ab:b9:6f:86:28: da:52:89:16:5f:45:d1:ec:44:e1:76:c0:28:80:99: 1d:63:3f:e2:3e:fc:e3:49:69:f5:20:b3:d3:20:ce: 1d:77:bf:32:af:d1:77:51:00:7d:d5:0f:76:6e:2b: d8:02:7e:18:1c:bb:e1:19:b7:69:8c:06:09:41:36: 4c:e3:ba:57:d7:34:55:f3:dc:fa:74:ab:11:07:67: 05:fe:63:19:7b:db:1d:a4:0a:cc:83:09:54:19:1b: c8:6e:49:cf:62:88:2a:67:ba:bf:f4:71:a4:3b:d7: 35:e6:c8:a1:c4:da:59:90:1e:cc:43:05:74:ec:49: 8f:77:aa:89:e7:f2:21:41:4a:94:70:70:0c:ad:cc: b2:c1:75:6a:97:ce:7d:9d:a5:01:b5:d6:80:99:dc: c5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:46:37:31:D5:79:6F:2E:AD:55:E1:01:16:8B:53:E0:5F:DF:2B:4A X509v3 Authority Key Identifier: keyid:F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:45:0b:56:1f:d4:5b:ca:4b:f4:fb:c4:f8:f4:f3:db:fa:43: a7:be:19:a9:a4:b6:29:c8:be:48:6a:5a:d8:82:d8:7c:7d:ab: 72:43:19:44:f8:bb:e1:09:8e:32:2b:4f:52:89:21:eb:73:57: b9:41:bd:a4:f9:bd:e8:11:e4:8b:40:f4:81:a0:d4:bc:a8:54: 12:2c:96:6e:bf:47:fa:bb:34:96:fa:a0:17:4e:7e:98:4c:b5: cf:87:90:f1:8c:8b:be:27:97:18:b6:00:51:91:c8:55:ff:85: 9b:0e:bf:c8:43:d8:d3:10:52:6c:07:81:52:17:45:f2:b7:b7: b4:3b:da:82:0c:7a:53:83:49:e8:4a:91:e8:f5:a2:cd:0f:f1: a3:98:d7:ae:d2:93:0a:9e:1a:43:af:7f:e9:2f:27:49:da:a6: 1b:85:70:51:bc:e5:48:f8:57:9c:4d:4a:bc:73:06:a3:ad:00: be:98:6c:04:d9:ef:02:97:26:df:2c:db:00:16:cb:07:99:d6: ca:78:df:4f:13:af:90:8b:e1:54:16:29:07:0f:c7:e3:8f:4c: b3:dd:15:58:8e:e9:b7:d5:69:62:ef:86:c8:9f:0c:0b:4f:1a: 23:bd:cb:f1:45:34:eb:64:d9:fb:63:b2:7e:ec:d2:50:d9:02: f8:ea:a9:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VERDMxMTAvBgNVBAUTKEY3QkIxNzJGQ0FFQ0FGQkY5RUJFRjI1MDhBMTU0MjY0 MzNBRUM5REUwHhcNMjUxMjIzMDA1NDUzWhcNMjUxMjMwMDA1NDUzWjAYMRYwFAYD VQQDDA02OTQ5ZTg1ZS04ZDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNH8UpZKAvwaDzPugnuDndLf/ir8HmnS0+RmUlXS/rrnR7bPrrTTGCN5STdY 4uOwAGFeu29eEcHd92tykFrOZsCtTEyg0kigxcI/lP2ILfMrZV9wtb8Hk61li15i NQeiyOsMq7lvhijaUokWX0XR7EThdsAogJkdYz/iPvzjSWn1ILPTIM4dd78yr9F3 UQB91Q92bivYAn4YHLvhGbdpjAYJQTZM47pX1zRV89z6dKsRB2cF/mMZe9sdpArM gwlUGRvIbknPYogqZ7q/9HGkO9c15sihxNpZkB7MQwV07EmPd6qJ5/IhQUqUcHAM rcyywXVql859naUBtdaAmdzF0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtGNzHV eW8urVXhARaLU+Bf3ytKMB8GA1UdIwQYMBaAFPe7Fy/K7K+/nr7yUIoVQmQzrsne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUREMy9EMDY2MzMyODcw NUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3LWV2dkpRaWhWQ1pET3V5 ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk3c1hMOHJzcjctZXZ2SlFpaFZDWkRPdXlkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUREMy9EMDY2MzMyODcwNUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3 LWV2dkpRaWhWQ1pET3V5ZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzRQtWH9Rbykv0+8T49PPb+kOnvhmppLYpyL5IalrYgth8fatyQxlE +LvhCY4yK09SiSHrc1e5Qb2k+b3oEeSLQPSBoNS8qFQSLJZuv0f6uzSW+qAXTn6Y TLXPh5DxjIu+J5cYtgBRkchV/4WbDr/IQ9jTEFJsB4FSF0Xyt7e0O9qCDHpTg0no SpHo9aLND/GjmNeu0pMKnhpDr3/pLydJ2qYbhXBRvOVI+FecTUq8cwajrQC+mGwE 2e8ClybfLNsAFssHmdbKeN9PE6+Qi+FUFikHD8fjj0yz3RVYjum31Wli74bInwwL TxojvcvxRTTrZNn7Y7J+7NJQ2QL46qnR -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:41 2025 by rpki-client