This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft File: AfBcfqXyou38GDiX9YNZgrLPA78.mft (raw, json) Hash identifier: Ix9vU/t5ZF1Wlf5fgTej8jOwIl/GT4oZreFdRvjUVIE= Subject key identifier: 11:5F:B8:1A:E5:5B:17:75:12:0E:46:5D:45:13:62:7A:1E:B2:F7:F1 Authority key identifier: 01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF Certificate issuer: /CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft Manifest number: CB Signing time: Tue 23 Dec 2025 04:44:05 +0000 Manifest this update: Tue 23 Dec 2025 04:44:04 +0000 Manifest next update: Tue 30 Dec 2025 04:44:04 +0000 Files and hashes: 1: AfBcfqXyou38GDiX9YNZgrLPA78.crl (hash: amyTNGmd1FfaJ3voNnGwmbOnVoF5BcREOxbkVZF5raM=) 2: A69DB4ACA70811EFB1511445C4F9AE02.roa (hash: ve1sSgZ6oct5AOmrySo9DC5xQlX3NPwVMFkq6CjA+1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09BC, serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Validity Not Before: Dec 23 04:44:04 2025 GMT Not After : Dec 30 04:44:04 2025 GMT Subject: CN=694a1e14-66cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:93:64:58:13:fc:a8:5b:d1:5a:61:ea:0f:d9: c5:af:70:f9:94:d8:74:d8:74:46:e4:ad:79:97:21: 81:f9:7e:65:5f:54:31:0f:10:86:31:42:ce:63:ac: b0:a0:84:05:28:26:dc:fb:19:87:77:03:5c:cd:e8: 56:49:66:cb:eb:6c:7e:dd:83:7f:6f:6f:59:e9:45: 1f:65:88:f8:71:42:60:e8:65:44:0d:88:cb:54:de: a4:18:60:7e:5a:14:61:53:38:d7:6c:0c:25:55:1c: 4c:04:50:59:06:5c:45:13:76:df:08:6d:d5:16:68: 72:09:9a:f3:a4:d3:14:5a:7e:ba:16:f3:54:09:ba: 89:85:02:ba:03:67:dd:93:46:75:e2:df:e6:c3:01: ff:e0:3e:e5:02:97:80:c3:e0:0e:b6:63:87:95:74: 73:23:7e:dc:9a:95:5d:02:6c:39:2a:b5:68:36:ce: 08:c6:9b:a3:19:72:dd:f7:7a:57:76:bb:30:db:f7: 62:0c:75:7e:39:78:d8:09:90:25:4b:5e:a3:ae:80: ca:db:a9:a3:bc:b3:20:c4:09:6a:2c:15:19:15:8a: b9:b8:f7:5d:78:df:d6:45:f0:17:93:de:d9:52:2f: 9e:c8:e2:52:74:7b:22:0f:b8:7e:c9:9f:3b:6d:96: b3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:5F:B8:1A:E5:5B:17:75:12:0E:46:5D:45:13:62:7A:1E:B2:F7:F1 X509v3 Authority Key Identifier: keyid:01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:e9:4f:a5:34:93:72:5a:30:3a:b7:7a:25:8d:40:c3:c6:99: dc:3b:33:b5:4d:1d:50:a2:99:65:51:09:3f:d6:89:6d:6f:5b: 4e:c5:f0:2e:bc:ec:f6:fc:7c:b2:3a:d2:a7:79:5a:c7:4c:12: 5a:6c:f0:53:1b:da:68:4e:68:67:ef:2f:80:80:34:00:32:f8: 8d:c5:7e:46:cc:1a:31:71:a2:d9:41:ff:9f:f8:9c:04:2f:fd: 01:fd:c4:a6:6d:9f:b4:d5:9c:64:bf:5c:46:b5:c7:7d:bb:26: 2a:2f:e0:a6:ad:5f:46:d8:07:69:7c:f0:4b:90:85:4a:18:c7: 79:db:44:30:0d:80:3c:2d:4a:5a:ec:1e:76:69:6f:09:30:89: 14:8c:15:d0:60:13:a5:e4:b3:c9:90:48:30:79:5c:3c:f9:dd: c8:16:93:2f:86:00:f3:5a:21:cf:5b:30:2e:21:f1:1a:ae:17: d0:ad:28:3d:c4:24:e4:23:0e:b6:70:61:06:94:db:4a:68:65: 2f:1a:43:69:af:a4:49:ad:8f:3c:37:2c:26:52:4c:8d:7c:45: d0:dc:a8:fd:57:4f:a6:eb:e7:af:27:99:e9:71:93:f7:5d:a9: 50:9b:15:59:ac:20:ee:0c:57:47:dd:3b:c2:80:84:52:58:b4: 54:16:cf:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QkMxMTAvBgNVBAUTKDAxRjA1QzdFQTVGMkEyRURGQzE4Mzg5N0Y1ODM1OTgy QjJDRjAzQkYwHhcNMjUxMjIzMDQ0NDA0WhcNMjUxMjMwMDQ0NDA0WjAYMRYwFAYD VQQDDA02OTRhMWUxNC02NmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpNkWBP8qFvRWmHqD9nFr3D5lNh02HRG5K15lyGB+X5lX1QxDxCGMULOY6yw oIQFKCbc+xmHdwNczehWSWbL62x+3YN/b29Z6UUfZYj4cUJg6GVEDYjLVN6kGGB+ WhRhUzjXbAwlVRxMBFBZBlxFE3bfCG3VFmhyCZrzpNMUWn66FvNUCbqJhQK6A2fd k0Z14t/mwwH/4D7lApeAw+AOtmOHlXRzI37cmpVdAmw5KrVoNs4IxpujGXLd93pX drsw2/diDHV+OXjYCZAlS16jroDK26mjvLMgxAlqLBUZFYq5uPddeN/WRfAXk97Z Ui+eyOJSdHsiD7h+yZ87bZaz0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFfuBrl Wxd1Eg5GXUUTYnoesvfxMB8GA1UdIwQYMBaAFAHwXH6l8qLt/Bg4l/WDWYKyzwO/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlCQy9EMzVCMDgyRUE3 MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi9BZkJjZnFYeW91MzhHRGlYOVlOWmdyTFBB NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmQmNmcVh5b3UzOEdEaVg5WU5aZ3JMUEE3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlCQy9EMzVCMDgyRUE3MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi9BZkJjZnFYeW91 MzhHRGlYOVlOWmdyTFBBNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz6U+lNJNyWjA6t3oljUDDxpncOzO1TR1QopllUQk/1oltb1tOxfAu vOz2/HyyOtKneVrHTBJabPBTG9poTmhn7y+AgDQAMviNxX5GzBoxcaLZQf+f+JwE L/0B/cSmbZ+01Zxkv1xGtcd9uyYqL+CmrV9G2AdpfPBLkIVKGMd520QwDYA8LUpa 7B52aW8JMIkUjBXQYBOl5LPJkEgweVw8+d3IFpMvhgDzWiHPWzAuIfEarhfQrSg9 xCTkIw62cGEGlNtKaGUvGkNpr6RJrY88NywmUkyNfEXQ3Kj9V0+m6+evJ5npcZP3 XalQmxVZrCDuDFdH3TvCgIRSWLRUFs/B -----END CERTIFICATE-----Generated at Tue Dec 23 22:43:27 2025 by rpki-client