This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: 22Qc3o4UIxrjACMaZVcVSg7ll7V/LloldHLdk1dWZRc= Subject key identifier: 04:60:4C:01:93:25:FD:56:76:29:85:E4:3A:18:F6:C1:16:72:89:23 Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 0856 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 0847 Signing time: Wed 24 Dec 2025 20:11:32 +0000 Manifest this update: Wed 24 Dec 2025 20:11:31 +0000 Manifest next update: Wed 31 Dec 2025 20:11:31 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: y4CrriEiMQ0vuXGr7gLG3BQgpL9lIFE0VTTcZUQVjfw=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 20:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2134 (0x856) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Dec 24 20:11:31 2025 GMT Not After : Dec 31 20:11:31 2025 GMT Subject: CN=694c48f4-8817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:f4:85:7d:4b:1f:b7:3d:78:8d:d9:e6:68:ef: ef:bb:e1:f9:56:89:95:37:29:87:80:1c:9f:44:26: ca:ee:be:85:55:de:bf:89:e9:16:07:e3:8f:cd:55: ca:45:e7:ad:67:f1:9c:9d:cb:48:93:cd:89:f5:ec: c6:db:80:78:69:e2:f8:14:65:1f:b9:ba:ef:f7:95: c4:e9:43:94:83:4c:50:66:f4:13:ab:0a:e5:42:ec: ed:85:b2:df:63:f8:ea:c7:79:2b:26:ba:30:dd:56: 76:6f:8d:2d:19:3f:38:6f:42:3b:fe:ad:a6:5d:b5: 4e:f4:ef:85:33:25:ca:12:f8:dc:68:f9:b0:17:14: 4e:c5:fb:fd:25:33:86:78:b7:57:e1:fc:d0:70:b0: 24:8d:f8:43:90:ca:48:02:77:5b:85:82:dd:a4:29: d8:69:c5:dc:3f:71:ee:c9:4e:2a:2b:11:ac:86:1f: 15:f4:d9:68:25:b1:5f:ab:7f:74:2d:1d:64:51:8e: 5e:0b:cf:8b:18:b2:8d:05:18:80:59:77:c9:7e:1d: ce:90:96:f5:7c:cd:d0:30:b8:1d:aa:04:4b:b0:ff: 13:fc:45:4b:b1:cd:8a:21:59:ba:4b:a3:36:59:b9: d9:17:fe:c7:49:cc:9f:6c:8f:45:5e:35:74:48:61: 25:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:60:4C:01:93:25:FD:56:76:29:85:E4:3A:18:F6:C1:16:72:89:23 X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:7a:25:b4:05:8d:b1:9a:d5:b0:83:dc:e4:c0:85:bf:ff:8b: e5:dc:f9:7e:91:72:cf:17:75:73:d2:90:73:11:11:88:e0:19: a2:18:f4:6a:13:12:90:a4:3e:92:85:33:2a:e5:13:f6:61:95: f2:b5:85:f6:8d:b0:21:da:34:4a:d5:56:c3:35:7f:ff:60:05: ec:b6:dc:27:96:2f:e7:b4:e7:c5:54:16:40:b3:62:3c:03:4a: 38:ca:6d:c5:7c:c2:1a:dd:32:74:f2:91:7b:2c:3d:3e:42:c4: 3c:04:41:4b:3b:b1:ec:28:84:d4:ab:10:8f:2f:14:1d:2f:18: 30:7b:b7:16:f5:29:f1:26:f9:09:b2:86:37:73:91:d1:57:e3: b0:21:20:21:be:ca:1b:4e:14:86:75:78:8f:8a:f0:38:d6:80: 29:1c:bf:82:ef:0f:e6:ea:cf:88:39:a0:59:04:f2:43:e3:1c: 85:b7:0d:6f:1c:ca:77:c5:f5:87:f5:13:dd:4b:15:41:50:18: cd:97:0d:a4:1b:f2:8b:ac:95:b5:b0:ab:ad:83:bf:bc:2f:6c: fc:5f:be:5f:60:b7:01:10:97:11:c7:3a:45:51:0b:bc:9a:47: f9:63:10:d3:33:ed:ed:be:0e:f9:9f:a3:da:ea:81:8c:ae:1f: 93:bb:e4:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUxMjI0MjAxMTMxWhcNMjUxMjMxMjAxMTMxWjAYMRYwFAYD VQQDDA02OTRjNDhmNC04ODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk/SFfUsftz14jdnmaO/vu+H5VomVNymHgByfRCbK7r6FVd6/iekWB+OPzVXK ReetZ/GcnctIk82J9ezG24B4aeL4FGUfubrv95XE6UOUg0xQZvQTqwrlQuzthbLf Y/jqx3krJrow3VZ2b40tGT84b0I7/q2mXbVO9O+FMyXKEvjcaPmwFxROxfv9JTOG eLdX4fzQcLAkjfhDkMpIAndbhYLdpCnYacXcP3HuyU4qKxGshh8V9NloJbFfq390 LR1kUY5eC8+LGLKNBRiAWXfJfh3OkJb1fM3QMLgdqgRLsP8T/EVLsc2KIVm6S6M2 WbnZF/7HScyfbI9FXjV0SGElqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARgTAGT Jf1WdimF5DoY9sEWcokjMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkeiW0BY2xmtWwg9zkwIW//4vl3Pl+kXLPF3Vz0pBzERGI4BmiGPRq ExKQpD6ShTMq5RP2YZXytYX2jbAh2jRK1VbDNX//YAXsttwnli/ntOfFVBZAs2I8 A0o4ym3FfMIa3TJ08pF7LD0+QsQ8BEFLO7HsKITUqxCPLxQdLxgwe7cW9SnxJvkJ soY3c5HRV+OwISAhvsobThSGdXiPivA41oApHL+C7w/m6s+IOaBZBPJD4xyFtw1v HMp3xfWH9RPdSxVBUBjNlw2kG/KLrJW1sKutg7+8L2z8X75fYLcBEJcRxzpFUQu8 mkf5YxDTM+3tvg75n6Pa6oGMrh+Tu+Sw -----END CERTIFICATE-----Generated at Thu Dec 25 03:14:34 2025 by rpki-client