This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft File: -rpT9D2gDiGn6veS1I_bdpV6gLw.mft (raw, json) Hash identifier: We7vKZt8znw4NPC4co2zj7oCrvVFVW8pGa/BYTl+xEI= Subject key identifier: 2C:C7:81:31:2D:0E:E9:7F:B0:68:D5:D7:7F:F8:48:6F:62:04:41:74 Authority key identifier: FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC Certificate issuer: /CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft Manifest number: 068A Signing time: Sat 20 Dec 2025 21:46:57 +0000 Manifest this update: Sat 20 Dec 2025 21:46:56 +0000 Manifest next update: Sat 27 Dec 2025 21:46:56 +0000 Files and hashes: 1: -rpT9D2gDiGn6veS1I_bdpV6gLw.crl (hash: AalUdBqRDXyHF3nY/mp/RfH6Jp86S3AxhU/T1ie1h9U=) 2: EB8DE9B49B6411EBA08FBE84C4F9AE02.roa (hash: u94MQjoE9DI5ldBDPfqmoxt1XvvR3zVSKElHRq9GZVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D25E5, serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Validity Not Before: Dec 20 21:46:56 2025 GMT Not After : Dec 27 21:46:56 2025 GMT Subject: CN=69471950-06dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:be:a8:f8:4f:6e:36:b0:27:d7:ef:3b:c2:71: d9:3e:e7:e9:dd:dc:44:06:56:5e:38:c6:b5:9b:b6: f8:78:69:5e:f0:c5:62:7a:ff:b3:76:6e:71:4d:85: ba:64:65:0c:0d:3f:82:a4:be:e5:a2:76:9a:9d:38: 2f:96:d5:4f:60:70:92:11:47:4e:53:06:a2:97:e7: 7b:b5:62:80:e6:6b:66:87:e4:27:d5:28:6b:e5:e7: 1e:fd:7a:88:9c:a3:3b:03:db:77:5e:e9:f8:63:77: bc:15:81:11:fa:ca:42:43:2d:7b:41:da:23:53:27: 57:4d:13:f6:41:e3:5d:bd:7a:b8:3b:09:76:09:06: 15:b2:04:f8:7b:bb:88:5d:22:68:af:88:60:46:9d: fb:e5:e9:94:bb:61:2e:a2:b3:eb:74:34:ab:41:40: 87:d6:2d:c4:7b:2a:97:f5:2f:ec:65:6f:b8:14:f2: cc:50:b2:9b:6a:71:ba:b7:51:e1:21:78:25:63:01: 56:21:70:3d:f1:27:10:8c:42:7a:f4:5a:4a:2c:af: 2e:0f:44:e5:78:f8:df:67:ae:a2:6f:c0:2d:9b:34: cd:1b:0e:24:8a:22:2c:79:6b:bb:ea:8c:1b:94:6b: 80:e4:89:64:a0:0a:9e:ae:2b:ff:8f:73:4d:47:50: d7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C7:81:31:2D:0E:E9:7F:B0:68:D5:D7:7F:F8:48:6F:62:04:41:74 X509v3 Authority Key Identifier: keyid:FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:3d:b8:86:4b:02:d1:7f:99:02:2f:3f:00:24:ac:4e:c7:a1: 16:0d:0b:41:7f:08:e3:f6:1a:52:eb:8f:82:c7:38:91:1e:db: e0:71:e2:8f:12:c2:61:9e:ac:50:33:fd:9b:fc:d3:12:30:78: cb:90:52:51:fe:9a:b1:8d:36:90:91:48:1f:77:3d:b6:d1:d2: 50:fc:63:fa:db:7f:73:96:90:c1:eb:37:0d:96:b0:4d:6b:9b: 76:45:20:a3:22:45:7f:c5:71:69:d6:19:d4:b1:61:4a:12:81: 7a:87:aa:88:cf:73:4a:39:21:00:e8:1c:8f:81:c5:c7:14:0c: 58:4a:6b:b2:8f:34:a6:ce:d8:79:05:3c:21:fa:61:39:f5:7d: 4c:ec:16:ff:87:bc:c0:79:40:f2:5e:8a:52:c9:33:aa:c3:a4: 08:6f:aa:2e:27:9c:b2:15:27:6c:4c:76:80:e7:d2:66:af:81: ab:44:f9:6d:46:2d:52:74:72:66:5a:09:7f:05:c2:ba:7f:a5: a3:22:cb:be:cb:a4:5d:32:86:a7:b0:04:54:f1:ab:02:ec:d4: 7c:96:5f:76:bc:40:2a:ec:15:b2:e5:1a:20:33:af:bc:62:e0: cd:39:17:be:01:a4:35:a5:b3:d7:57:a3:fb:0f:66:4f:34:09: 69:c9:a5:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI1RTUxMTAvBgNVBAUTKEZBQkE1M0Y0M0RBMDBFMjFBN0VBRjc5MkQ0OEZEQjc2 OTU3QTgwQkMwHhcNMjUxMjIwMjE0NjU2WhcNMjUxMjI3MjE0NjU2WjAYMRYwFAYD VQQDDA02OTQ3MTk1MC0wNmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlL6o+E9uNrAn1+87wnHZPufp3dxEBlZeOMa1m7b4eGle8MViev+zdm5xTYW6 ZGUMDT+CpL7lonaanTgvltVPYHCSEUdOUwail+d7tWKA5mtmh+Qn1Shr5ece/XqI nKM7A9t3Xun4Y3e8FYER+spCQy17QdojUydXTRP2QeNdvXq4Owl2CQYVsgT4e7uI XSJor4hgRp375emUu2EuorPrdDSrQUCH1i3EeyqX9S/sZW+4FPLMULKbanG6t1Hh IXglYwFWIXA98ScQjEJ69FpKLK8uD0TlePjfZ66ib8AtmzTNGw4kiiIseWu76owb lGuA5IlkoAqeriv/j3NNR1DXnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzHgTEt Dul/sGjV13/4SG9iBEF0MB8GA1UdIwQYMBaAFPq6U/Q9oA4hp+r3ktSP23aVeoC8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjVFNS9FQ0JGMDBFODlC NEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0RpR242dmVTMUlfYmRwVjZn THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ycFQ5RDJnRGlHbjZ2ZVMxSV9iZHBWNmdMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjVFNS9FQ0JGMDBFODlCNEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0Rp R242dmVTMUlfYmRwVjZnTHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8PbiGSwLRf5kCLz8AJKxOx6EWDQtBfwjj9hpS64+CxziRHtvgceKP EsJhnqxQM/2b/NMSMHjLkFJR/pqxjTaQkUgfdz220dJQ/GP6239zlpDB6zcNlrBN a5t2RSCjIkV/xXFp1hnUsWFKEoF6h6qIz3NKOSEA6ByPgcXHFAxYSmuyjzSmzth5 BTwh+mE59X1M7Bb/h7zAeUDyXopSyTOqw6QIb6ouJ5yyFSdsTHaA59Jmr4GrRPlt Ri1SdHJmWgl/BcK6f6WjIsu+y6RdMoansARU8asC7NR8ll92vEAq7BWy5RogM6+8 YuDNORe+AaQ1pbPXV6P7D2ZPNAlpyaVP -----END CERTIFICATE-----Generated at Mon Dec 22 14:01:58 2025 by rpki-client