This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft File: 10XhyGsYGPfQVj-Q6LoSvosa43g.mft (raw, json) Hash identifier: PdMw+NuChcCCKEqmyyztLnWEigasVM53gircGbSbP2M= Subject key identifier: E3:64:60:CD:53:04:62:B0:D4:7B:43:6B:B5:E9:B2:97:7E:F0:DB:CA Authority key identifier: D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 Certificate issuer: /CN=A91D97C4/serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft Manifest number: 01BD Signing time: Tue 23 Dec 2025 02:05:24 +0000 Manifest this update: Tue 23 Dec 2025 02:05:24 +0000 Manifest next update: Tue 30 Dec 2025 02:05:24 +0000 Files and hashes: 1: 10XhyGsYGPfQVj-Q6LoSvosa43g.crl (hash: XNYpnqSdKiliDKMvGmpaVp2HQuo+/JNupPywynPGKZA=) 2: 12DD779467A211EEA8239268C4F9AE02.roa (hash: tXyHZWiyLccCa4dm7RkGGfRei0ZIky7sg5whsG/aUrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D97C4, serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Validity Not Before: Dec 23 02:05:24 2025 GMT Not After : Dec 30 02:05:24 2025 GMT Subject: CN=6949f8e4-dc9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b9:7a:2a:3a:3a:eb:07:bb:54:0a:47:72:03: 61:7d:58:cc:27:6d:ad:70:71:49:92:8b:37:ec:35: 61:08:dc:7e:9c:ee:a4:9c:bb:24:43:8c:5d:8a:ff: 25:6a:22:bb:27:1c:57:bf:f5:61:00:b1:16:d8:f1: 90:69:3e:df:61:e6:cc:8e:b3:f7:62:f8:78:89:89: cc:c5:12:12:f5:8c:e6:a2:b6:85:7e:64:cb:41:9e: 36:19:b2:5a:bd:21:a5:f9:ec:18:42:4b:fd:e5:7d: 29:3f:99:92:b5:dc:5d:84:bd:91:fb:02:f1:0b:ff: 24:34:51:30:69:bb:ad:49:81:84:38:81:d5:bb:1e: 68:cd:1f:c1:65:79:86:16:66:1e:a6:32:03:d1:9b: ca:64:63:db:0d:ba:a8:50:cb:2a:ed:ec:d3:9e:da: 5b:ad:49:30:91:6c:cf:05:71:8b:9c:de:60:6e:7d: 00:f1:ce:8c:37:97:b1:aa:43:25:90:4c:ad:5c:be: fc:19:07:0f:ae:24:c4:5e:b3:41:3d:45:8b:05:d1: a0:0e:42:30:aa:ed:c7:c8:0d:3a:ab:13:78:3f:55: 8d:49:17:36:b2:81:6c:97:b9:30:45:78:0f:95:5a: a7:3d:51:69:92:51:9c:b4:4d:ed:10:33:7e:9a:7a: 69:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:64:60:CD:53:04:62:B0:D4:7B:43:6B:B5:E9:B2:97:7E:F0:DB:CA X509v3 Authority Key Identifier: keyid:D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:cb:ac:bc:82:b8:28:ad:90:7a:a9:c2:99:75:9d:34:d7:53: f0:2a:8e:2c:1d:47:4d:e6:f4:17:03:12:b4:5a:ee:bb:fe:a4: 37:8b:88:70:93:10:f7:24:20:54:a6:10:7e:d1:60:0c:eb:72: 05:bc:42:70:da:e4:4a:9c:5e:da:67:f1:97:7d:a5:5d:cc:49: 66:8a:f1:22:2c:40:5a:39:11:05:e4:23:d3:e5:b6:9b:64:b0: e3:71:10:5b:d4:ef:c2:a5:49:3c:29:75:18:77:02:a7:20:e0: 6b:de:23:21:2c:80:17:86:4e:74:80:d2:17:01:42:f3:54:5c: 00:5c:8c:03:c8:4a:a3:55:c5:cb:1d:7f:fe:91:07:a8:b9:0b: 6c:78:98:e9:c5:b9:7b:9c:ee:3e:fb:1a:e4:d6:3c:34:c5:f3: 91:47:c0:0a:38:98:3c:a2:27:1c:da:b2:70:42:87:dd:2d:df: 95:2f:d1:9b:a6:23:f0:74:b8:09:3d:7f:9d:c9:53:56:7b:3a: 76:ab:a6:3a:12:ca:f7:b3:5c:22:f4:bd:b1:40:1b:10:8a:36: 0f:db:3a:8a:07:86:f3:fa:cf:b7:bd:fc:01:9b:50:b0:ae:26: 73:5e:2c:02:41:19:9d:ae:84:67:5e:3b:a1:49:51:0f:6a:15: 2e:fe:f3:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk3QzQxMTAvBgNVBAUTKEQ3NDVFMUM4NkIxODE4RjdEMDU2M0Y5MEU4QkExMkJF OEIxQUUzNzgwHhcNMjUxMjIzMDIwNTI0WhcNMjUxMjMwMDIwNTI0WjAYMRYwFAYD VQQDDA02OTQ5ZjhlNC1kYzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8rl6Kjo66we7VApHcgNhfVjMJ22tcHFJkos37DVhCNx+nO6knLskQ4xdiv8l aiK7JxxXv/VhALEW2PGQaT7fYebMjrP3Yvh4iYnMxRIS9YzmoraFfmTLQZ42GbJa vSGl+ewYQkv95X0pP5mStdxdhL2R+wLxC/8kNFEwabutSYGEOIHVux5ozR/BZXmG FmYepjID0ZvKZGPbDbqoUMsq7ezTntpbrUkwkWzPBXGLnN5gbn0A8c6MN5exqkMl kEytXL78GQcPriTEXrNBPUWLBdGgDkIwqu3HyA06qxN4P1WNSRc2soFsl7kwRXgP lVqnPVFpklGctE3tEDN+mnppBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONkYM1T BGKw1HtDa7Xpspd+8NvKMB8GA1UdIwQYMBaAFNdF4chrGBj30FY/kOi6Er6LGuN4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTdDNC9DNjNERjIwMDND NjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQZlFWai1RNkxvU3Zvc2E0 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwWGh5R3NZR1BmUVZqLVE2TG9Tdm9zYTQzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTdDNC9DNjNERjIwMDNDNjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQ ZlFWai1RNkxvU3Zvc2E0M2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOy6y8grgorZB6qcKZdZ0011PwKo4sHUdN5vQXAxK0Wu67/qQ3i4hw kxD3JCBUphB+0WAM63IFvEJw2uRKnF7aZ/GXfaVdzElmivEiLEBaOREF5CPT5bab ZLDjcRBb1O/CpUk8KXUYdwKnIOBr3iMhLIAXhk50gNIXAULzVFwAXIwDyEqjVcXL HX/+kQeouQtseJjpxbl7nO4++xrk1jw0xfORR8AKOJg8oicc2rJwQofdLd+VL9Gb piPwdLgJPX+dyVNWezp2q6Y6Esr3s1wi9L2xQBsQijYP2zqKB4bz+s+3vfwBm1Cw riZzXiwCQRmdroRnXjuhSVEPahUu/vOr -----END CERTIFICATE-----Generated at Tue Dec 23 14:36:20 2025 by rpki-client