This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: MCws4CdZgxTkrpRLXS9HOMpEsi+QtbALCTE5aZK+MuA= Subject key identifier: 40:40:FF:AF:4E:3C:46:71:3D:84:8A:D0:C2:75:C6:FB:C6:85:DF:15 Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2E44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2E2B Signing time: Wed 24 Dec 2025 15:22:35 +0000 Manifest this update: Wed 24 Dec 2025 15:22:35 +0000 Manifest next update: Wed 31 Dec 2025 15:22:35 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: JSIE2ysVpwjvKt3503FSCgNY4BPYC8HGxPzKYuMsr8k=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: dVMsL8EJuwFThJbot7dFtq6YNUkqPMYmgPIcaOtsyp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11844 (0x2e44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Dec 24 15:22:35 2025 GMT Not After : Dec 31 15:22:35 2025 GMT Subject: CN=694c053b-861c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:33:56:e2:95:93:1a:97:a0:7f:c4:c6:ee:55: a2:c6:4e:b4:1b:3b:83:3d:57:ab:3b:1b:14:88:cc: 2e:11:b6:3f:7a:eb:9c:c7:da:fe:a2:95:6c:d8:1c: 6b:a2:fc:1e:67:74:ad:ff:c5:45:26:a7:5e:38:32: 7a:ca:bd:cf:3d:7d:06:f4:e1:da:ab:f2:ee:41:6d: a9:db:f3:05:b6:f1:32:74:6c:23:1d:30:87:cb:b9: 70:c3:e3:94:54:78:93:11:05:15:f4:61:f9:3f:4a: a1:8a:29:6f:d9:93:cb:2a:d9:d5:d5:cb:fe:42:66: 5b:57:a4:f3:ab:ee:81:f7:73:bb:9f:10:7a:69:d0: 5d:e3:9c:aa:f7:64:3e:6e:c0:e8:44:65:e0:6a:40: a5:95:85:bb:b9:f4:e4:8b:ac:76:9c:78:ac:0b:eb: 48:1c:3b:57:89:80:f4:e0:39:34:a8:da:c5:2c:16: ab:1a:0f:64:79:be:e0:cb:f1:64:a6:4d:13:8e:18: 94:ba:4b:6a:dd:8c:f2:a3:9b:be:7e:19:df:e3:56: 06:ba:7c:7b:de:ac:e8:a6:69:a5:2a:4b:4b:c2:b7: 10:be:01:69:fb:57:89:d8:f4:2c:92:75:55:85:07: 7b:3b:fc:aa:1e:11:94:ab:69:fa:27:53:e0:58:da: b9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:40:FF:AF:4E:3C:46:71:3D:84:8A:D0:C2:75:C6:FB:C6:85:DF:15 X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:53:33:cf:59:59:2e:22:cf:9f:dd:26:56:e9:9e:a7:78:2a: 0d:24:b4:ac:22:79:b1:3b:17:71:eb:b8:3d:b8:ef:cb:c1:23: 5d:26:7f:7b:0f:63:dd:76:5e:60:8f:61:f9:14:ef:ce:ed:43: d4:be:02:1b:3e:f9:94:0b:1c:3f:a5:c4:94:7b:58:3a:e6:c0: b7:7b:e7:1a:4f:d3:12:a9:28:17:58:73:15:db:b9:12:2f:bf: 8a:ec:10:0d:f6:c3:0b:09:76:f5:6d:f7:a3:ee:3b:28:fd:d6: 86:42:7f:0f:87:6d:2a:c0:ce:5c:10:4c:8a:65:48:7d:1a:38: e2:47:70:f6:48:c2:3b:88:52:ac:fd:37:7a:67:ad:65:6d:40: 7e:4d:b2:1a:de:d4:8a:78:46:0f:c8:72:8f:c1:6f:84:3d:48: 1e:ea:22:15:fe:6b:6f:a8:67:34:4f:b5:a5:41:a2:b5:15:bb: ce:a7:a2:ff:97:68:1b:9c:19:58:df:4e:18:20:c3:8d:db:b4: 27:71:9b:96:2b:37:8a:4d:e2:03:6a:0c:18:f1:53:52:e7:a3: 0c:7e:f4:24:49:d6:9f:9f:b5:4e:91:26:ac:07:e8:09:ff:5a: f3:fb:3f:15:dc:13:e6:d2:eb:78:50:c9:32:ae:40:9d:77:b8: db:67:6f:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjUxMjI0MTUyMjM1WhcNMjUxMjMxMTUyMjM1WjAYMRYwFAYD VQQDDA02OTRjMDUzYi04NjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDNW4pWTGpegf8TG7lWixk60GzuDPVerOxsUiMwuEbY/euucx9r+opVs2Bxr ovweZ3St/8VFJqdeODJ6yr3PPX0G9OHaq/LuQW2p2/MFtvEydGwjHTCHy7lww+OU VHiTEQUV9GH5P0qhiilv2ZPLKtnV1cv+QmZbV6Tzq+6B93O7nxB6adBd45yq92Q+ bsDoRGXgakCllYW7ufTki6x2nHisC+tIHDtXiYD04Dk0qNrFLBarGg9keb7gy/Fk pk0TjhiUuktq3Yzyo5u+fhnf41YGunx73qzopmmlKktLwrcQvgFp+1eJ2PQsknVV hQd7O/yqHhGUq2n6J1PgWNq5JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBA/69O PEZxPYSK0MJ1xvvGhd8VMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmUzPPWVkuIs+f3SZW6Z6neCoNJLSsInmxOxdx67g9uO/LwSNdJn97 D2Pddl5gj2H5FO/O7UPUvgIbPvmUCxw/pcSUe1g65sC3e+caT9MSqSgXWHMV27kS L7+K7BAN9sMLCXb1bfej7jso/daGQn8Ph20qwM5cEEyKZUh9GjjiR3D2SMI7iFKs /Td6Z61lbUB+TbIa3tSKeEYPyHKPwW+EPUge6iIV/mtvqGc0T7WlQaK1FbvOp6L/ l2gbnBlY304YIMON27QncZuWKzeKTeIDagwY8VNS56MMfvQkSdafn7VOkSasB+gJ /1rz+z8V3BPm0ut4UMkyrkCdd7jbZ29E -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:59 2025 by rpki-client