This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: CgPTnGJvTLH/PY/7NmtxaaF4s4dmkIU8xf5SlzvHoko= Subject key identifier: 54:2F:06:E3:0C:F0:C1:45:1F:18:D9:BB:1F:75:30:C7:14:80:15:A7 Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 0895 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 088B Signing time: Sat 06 Dec 2025 19:42:12 +0000 Manifest this update: Sat 06 Dec 2025 19:42:11 +0000 Manifest next update: Sat 13 Dec 2025 19:42:11 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: MNik3dKuruMxLXf8KZFW/Nat3YFfpn4fwNAoJso70GY=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: xQNJE/wFi8JMz2ss0ss1yj9BAf/VPU6rBNzmi8uV9UI=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: j94hdqhS8hEZkUNMK0Gy0/wMaWkISNSvPZJQcef/86U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:42:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2197 (0x895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Dec 6 19:42:11 2025 GMT Not After : Dec 13 19:42:11 2025 GMT Subject: CN=69348714-38e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:32:2f:28:45:a7:71:93:4c:76:18:de:ba:96: 92:6c:08:66:0d:19:30:2c:de:d9:75:42:de:ca:26: b5:01:39:7d:06:d2:7b:d9:cf:a4:03:1b:ce:a1:96: 61:f9:30:ed:47:be:5f:6a:81:26:21:a1:b7:95:15: 3f:ef:80:6a:5e:df:d5:33:09:d0:9d:cb:b0:65:8f: d9:4a:9e:18:cd:26:d0:dd:7a:26:d6:3a:0e:19:d9: e7:80:59:1c:d4:a9:a3:91:2d:66:dd:e9:bb:79:a5: bc:45:32:82:59:5d:04:08:ee:ef:68:43:f6:7a:de: 90:06:71:5d:63:0a:98:c9:b1:df:80:4e:f1:83:e9: 95:8a:37:f7:2f:8c:be:c7:f4:f5:6e:9f:b4:8e:96: 6f:e2:e7:46:d4:c8:19:63:9c:3f:73:e0:1b:70:f9: 44:a6:72:9c:b5:40:ac:9d:ba:34:55:29:47:e8:63: 40:63:fa:4a:07:a5:e6:17:d7:e4:18:8e:6e:62:58: 61:56:ac:d3:fc:41:c7:78:92:49:c4:81:bc:2c:ea: a7:4b:44:a0:2f:81:83:bf:ae:73:4e:23:c3:f0:6d: a8:0c:b0:e2:4e:6c:64:d6:a0:ec:89:ba:b4:9c:c9: 8c:b9:17:fc:9b:93:6e:d0:af:c0:8f:b4:a0:23:e2: cd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2F:06:E3:0C:F0:C1:45:1F:18:D9:BB:1F:75:30:C7:14:80:15:A7 X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:27:be:ee:b5:91:d6:99:92:ff:3e:e9:dd:6c:b3:90:a1:07: f8:62:8b:68:b3:b1:16:86:0d:f2:9e:74:b4:67:cb:ab:c0:09: 29:22:cf:c9:69:5d:c0:43:ce:4f:d9:c2:bb:53:3a:57:6c:7f: dd:98:8d:ba:5e:e8:e3:d3:7d:93:d6:3b:a8:f0:e8:4b:bf:8b: 58:4e:6c:0f:01:7f:85:2b:90:20:63:36:83:b5:c9:9c:85:e2: 51:3c:42:0b:c4:f5:e9:f9:6f:30:d8:4a:c1:08:62:cb:88:b3: cb:79:b7:ef:28:9b:04:1f:ff:74:c6:ab:7d:a3:d2:9e:29:f9: 4f:81:43:96:10:54:b1:0b:2a:54:53:0c:5c:23:9d:0d:26:be: ab:63:bc:f7:e8:39:c3:f8:07:27:f5:de:5d:e8:d9:03:8d:bc: d6:6e:94:2f:a8:7b:20:a4:97:6e:4c:7a:09:7d:2e:8c:8f:45: 3b:5c:b7:62:8e:9b:e0:32:14:bb:85:ac:df:bd:14:1a:2b:87: a0:09:91:e7:f3:ef:f7:ae:73:83:01:a8:fe:59:64:ec:6d:cc: a6:71:91:ee:6d:b7:10:83:c5:ba:ce:cb:48:8d:aa:10:a5:b4: 23:37:b7:fc:8b:dc:ea:3e:9c:84:9b:ec:98:ca:18:e2:16:3f: 3a:63:e4:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjUxMjA2MTk0MjExWhcNMjUxMjEzMTk0MjExWjAYMRYwFAYD VQQDEw02OTM0ODcxNC0zOGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9TIvKEWncZNMdhjeupaSbAhmDRkwLN7ZdULeyia1ATl9BtJ72c+kAxvOoZZh +TDtR75faoEmIaG3lRU/74BqXt/VMwnQncuwZY/ZSp4YzSbQ3Xom1joOGdnngFkc 1KmjkS1m3em7eaW8RTKCWV0ECO7vaEP2et6QBnFdYwqYybHfgE7xg+mVijf3L4y+ x/T1bp+0jpZv4udG1MgZY5w/c+AbcPlEpnKctUCsnbo0VSlH6GNAY/pKB6XmF9fk GI5uYlhhVqzT/EHHeJJJxIG8LOqnS0SgL4GDv65zTiPD8G2oDLDiTmxk1qDsibq0 nMmMuRf8m5Nu0K/Aj7SgI+LN8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQvBuMM 8MFFHxjZux91MMcUgBWnMB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZJ77utZHWmZL/PundbLOQoQf4Yotos7EWhg3ynnS0Z8urwAkpIs/J aV3AQ85P2cK7UzpXbH/dmI26Xujj032T1juo8OhLv4tYTmwPAX+FK5AgYzaDtcmc heJRPEILxPXp+W8w2ErBCGLLiLPLebfvKJsEH/90xqt9o9KeKflPgUOWEFSxCypU UwxcI50NJr6rY7z36DnD+Acn9d5d6NkDjbzWbpQvqHsgpJduTHoJfS6Mj0U7XLdi jpvgMhS7hazfvRQaK4egCZHn8+/3rnODAaj+WWTsbcymcZHubbcQg8W6zstIjaoQ pbQjN7f8i9zqPpyEm+yYyhjiFj86Y+Sp -----END CERTIFICATE-----Generated at Mon Dec 8 06:24:27 2025 by rpki-client