This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft File: AfBcfqXyou38GDiX9YNZgrLPA78.mft (raw, json) Hash identifier: aHy7fDMIXA/Cg4LLIbFq25QvcQBEydv3Zt8CPGs1Bpo= Subject key identifier: E8:E1:4B:97:FB:DB:02:67:DD:42:BA:91:F7:24:59:0E:61:BC:FD:3C Authority key identifier: 01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF Certificate issuer: /CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft Manifest number: CA Signing time: Sun 21 Dec 2025 04:54:54 +0000 Manifest this update: Sun 21 Dec 2025 04:54:53 +0000 Manifest next update: Sun 28 Dec 2025 04:54:53 +0000 Files and hashes: 1: AfBcfqXyou38GDiX9YNZgrLPA78.crl (hash: sOLxYUe6t01xbVj+3x+hl39g6iI68HsmbSCsrlmKf3k=) 2: A69DB4ACA70811EFB1511445C4F9AE02.roa (hash: ve1sSgZ6oct5AOmrySo9DC5xQlX3NPwVMFkq6CjA+1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:54:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09BC, serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Validity Not Before: Dec 21 04:54:53 2025 GMT Not After : Dec 28 04:54:53 2025 GMT Subject: CN=69477d9e-7d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e8:4c:8b:de:6b:21:f9:75:fb:5b:40:83:d8: c2:90:7c:bc:2d:d6:5c:e3:27:91:ff:07:82:fb:ff: 93:8b:52:7f:11:31:2c:cc:d8:5e:70:01:02:e4:8e: c5:1b:ba:90:ed:1d:66:3a:2b:d8:a2:e5:cb:77:44: 61:80:34:85:78:ac:76:14:f8:1f:db:95:cc:bf:00: 29:72:3f:fa:b6:64:1c:b8:96:c6:34:19:66:c6:65: 30:74:7f:ca:b2:5d:ce:65:81:c1:cd:80:8e:7e:c3: 56:f1:82:10:05:a3:a9:9d:44:c2:50:89:46:fa:29: 6f:45:ae:23:f6:4f:45:53:3d:bb:66:bb:19:93:5c: 63:aa:8d:1d:df:40:ad:86:a6:30:a5:ca:b8:2d:ff: c8:57:23:26:9d:a5:5b:dc:f3:56:71:df:7d:e4:45: 84:df:aa:82:18:6b:a3:f8:7b:0d:66:33:48:97:0f: 5c:26:7e:02:48:25:b8:23:64:25:b1:ba:e3:f3:3a: e8:e9:d2:04:9e:73:ec:6c:dd:76:c6:13:89:96:43: ff:7d:10:68:ea:d3:38:6e:93:b0:ed:d6:c6:b4:eb: 6d:12:37:67:97:66:35:34:a7:52:40:13:ee:f8:54: 4d:78:36:43:fb:3b:76:dd:0c:78:92:a5:20:10:a1: 3f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:E1:4B:97:FB:DB:02:67:DD:42:BA:91:F7:24:59:0E:61:BC:FD:3C X509v3 Authority Key Identifier: keyid:01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:6c:ef:dd:89:27:fe:48:29:f7:26:be:4a:62:3e:9e:16:77: 50:33:8f:b6:90:40:8a:b1:2a:22:36:63:1d:b6:be:12:cc:e0: ab:95:74:41:1e:40:55:8b:85:2c:bf:ba:7f:4d:16:12:14:8c: 75:df:c4:1d:43:bd:65:7a:29:a5:a1:17:85:a5:a8:ac:39:54: 09:cf:40:c0:9d:e0:bf:14:39:57:22:46:01:4c:28:13:9a:87: 3e:a1:b3:f9:48:0b:2e:f5:14:62:87:20:95:88:0f:8f:eb:8a: 76:b3:1c:66:41:aa:0a:96:5c:1a:e9:32:1b:0c:30:d9:f0:b9: c1:f2:be:0e:76:8c:aa:08:36:1e:cd:8f:02:09:dd:50:62:42: b9:14:06:7a:b7:10:e3:07:98:86:22:e7:39:90:5c:db:66:0f: 0b:b3:25:17:ad:11:2e:5e:1b:df:f2:78:7f:a0:75:7b:6a:23: 42:cc:a6:64:cc:dd:30:78:bd:92:ce:9e:f0:54:93:27:db:28: 41:31:f8:24:fe:e0:2f:17:41:af:bf:9c:65:60:45:bd:37:79: 21:cb:f7:65:88:1e:f4:42:c9:03:0d:5d:fa:e1:85:b7:75:93: 19:f4:c3:5d:0c:65:6a:1f:ed:71:e7:83:9d:85:c1:8a:b4:ca: 4d:f5:d7:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QkMxMTAvBgNVBAUTKDAxRjA1QzdFQTVGMkEyRURGQzE4Mzg5N0Y1ODM1OTgy QjJDRjAzQkYwHhcNMjUxMjIxMDQ1NDUzWhcNMjUxMjI4MDQ1NDUzWjAYMRYwFAYD VQQDDA02OTQ3N2Q5ZS03ZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOhMi95rIfl1+1tAg9jCkHy8LdZc4yeR/weC+/+Ti1J/ETEszNhecAEC5I7F G7qQ7R1mOivYouXLd0RhgDSFeKx2FPgf25XMvwApcj/6tmQcuJbGNBlmxmUwdH/K sl3OZYHBzYCOfsNW8YIQBaOpnUTCUIlG+ilvRa4j9k9FUz27ZrsZk1xjqo0d30Ct hqYwpcq4Lf/IVyMmnaVb3PNWcd995EWE36qCGGuj+HsNZjNIlw9cJn4CSCW4I2Ql sbrj8zro6dIEnnPsbN12xhOJlkP/fRBo6tM4bpOw7dbGtOttEjdnl2Y1NKdSQBPu +FRNeDZD+zt23Qx4kqUgEKE/uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjhS5f7 2wJn3UK6kfckWQ5hvP08MB8GA1UdIwQYMBaAFAHwXH6l8qLt/Bg4l/WDWYKyzwO/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlCQy9EMzVCMDgyRUE3 MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi9BZkJjZnFYeW91MzhHRGlYOVlOWmdyTFBB NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmQmNmcVh5b3UzOEdEaVg5WU5aZ3JMUEE3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlCQy9EMzVCMDgyRUE3MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi9BZkJjZnFYeW91 MzhHRGlYOVlOWmdyTFBBNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMbO/diSf+SCn3Jr5KYj6eFndQM4+2kECKsSoiNmMdtr4SzOCrlXRB HkBVi4Usv7p/TRYSFIx138QdQ71leimloReFpaisOVQJz0DAneC/FDlXIkYBTCgT moc+obP5SAsu9RRihyCViA+P64p2sxxmQaoKllwa6TIbDDDZ8LnB8r4OdoyqCDYe zY8CCd1QYkK5FAZ6txDjB5iGIuc5kFzbZg8LsyUXrREuXhvf8nh/oHV7aiNCzKZk zN0weL2Szp7wVJMn2yhBMfgk/uAvF0Gvv5xlYEW9N3khy/dliB70QskDDV364YW3 dZMZ9MNdDGVqH+1x54OdhcGKtMpN9ddr -----END CERTIFICATE-----Generated at Mon Dec 22 15:46:32 2025 by rpki-client