This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft File: wQgOZhsN-mIOsJqrLerWA0uCjrw.mft (raw, json) Hash identifier: j2e8jHcMGuWvB51uGidm3Nyp1wsOvNJEG2OvVHP0JuU= Subject key identifier: 16:2C:95:F0:FB:82:8D:33:4E:72:B5:D6:D6:64:91:A7:B3:93:93:82 Authority key identifier: C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC Certificate issuer: /CN=A91DB0C1/serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Certificate serial: 1955 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft Manifest number: 194C Signing time: Wed 24 Dec 2025 16:13:31 +0000 Manifest this update: Wed 24 Dec 2025 16:13:30 +0000 Manifest next update: Wed 31 Dec 2025 16:13:30 +0000 Files and hashes: 1: wQgOZhsN-mIOsJqrLerWA0uCjrw.crl (hash: Yx8rKO7gA8zhhTnTnxpZGh8f7MxrtvNXW3hXHs9ie+s=) 2: 35D9F1BE8A7C11E79774186BC4F9AE02.roa (hash: yM+bb0tbw3lI4O8r0K9h632lO1j6QVkb8a+ZzJmYzqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6485 (0x1955) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C1, serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Validity Not Before: Dec 24 16:13:30 2025 GMT Not After : Dec 31 16:13:30 2025 GMT Subject: CN=694c112b-28c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:04:4c:65:d4:20:7b:bc:81:3f:6e:fa:a4:ef: a9:22:38:9b:72:54:ac:f5:e5:a4:ad:0a:4c:dd:42: 91:7b:b9:42:18:0e:f6:84:b4:bd:8f:23:d5:ad:a7: d2:ae:8e:ec:5f:cc:e5:35:5c:53:73:05:80:12:d4: 57:bb:33:80:a7:11:ca:35:71:c9:38:5b:c4:0b:6a: 1f:2b:9e:bf:f9:08:b0:14:f9:e6:23:a4:0c:11:3f: 94:3c:9c:41:ee:d6:e0:b7:61:70:81:08:26:7f:6f: 65:d2:ec:f0:10:f7:20:3d:84:a4:13:1b:36:76:d4: 0d:0e:38:90:ee:6e:e4:52:95:dc:af:ce:62:ed:56: 19:12:a4:6f:c3:fe:b7:ee:08:13:73:2b:1d:1b:cd: 19:33:6a:cd:3f:4c:d1:ca:d0:15:75:9c:09:8d:f1: b2:17:f2:37:5c:eb:78:5f:93:01:d6:d5:af:c2:74: 5f:1b:0b:8d:25:86:6a:fa:73:f0:7c:c3:3f:bf:0a: 97:60:44:a3:87:71:83:2b:9b:43:14:ff:44:98:76: c3:a6:8f:e7:06:c8:51:6b:a5:6b:e5:15:03:ca:df: ea:2a:39:a4:79:78:b6:67:cd:88:6b:b3:3a:cc:78: 6b:14:2d:5b:c5:53:19:3a:d3:6f:eb:86:16:64:70: 41:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:2C:95:F0:FB:82:8D:33:4E:72:B5:D6:D6:64:91:A7:B3:93:93:82 X509v3 Authority Key Identifier: keyid:C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:99:9b:54:a1:07:71:3e:49:4c:e8:ae:6a:65:54:0c:5e:2d: 3b:43:08:2f:cc:cc:f7:07:eb:73:c4:87:30:d3:f7:b1:29:05: fd:3e:fb:96:9d:f8:69:f6:47:9f:bb:f8:b0:30:58:b3:d7:61: 32:9c:b4:ee:73:72:5a:52:f8:20:a9:d5:bb:21:43:f0:8f:24: 94:c9:68:c2:d0:77:74:79:40:92:c3:dd:16:f8:87:33:c6:2a: d9:b7:a2:e0:40:aa:0d:f7:50:14:f1:da:43:e5:5b:22:7a:9f: a8:9f:4d:66:b1:a0:55:04:69:a1:3c:9e:f0:eb:34:c7:47:b6: a6:d8:9e:10:2b:33:73:fe:f3:47:16:f6:e1:05:18:bf:ae:56: c3:83:61:44:83:6c:b2:94:e3:b5:36:af:78:2c:2c:b1:d3:59: 61:57:25:d9:3d:5b:2b:2e:d8:79:c3:02:e8:39:ce:03:e8:72: 51:a6:96:35:f8:fb:16:d6:42:6b:68:fe:33:dd:55:c3:45:8b: 14:39:bd:b2:e1:e7:03:87:86:fb:44:9f:6b:83:a8:0d:e3:c6: d6:ce:d1:97:67:44:2e:9f:8b:18:cb:27:a0:67:d3:70:97:88: c1:50:c5:05:95:49:7e:e9:46:8d:b5:c7:9f:7b:6b:7e:b6:50: d5:c1:91:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzExMTAvBgNVBAUTKEMxMDgwRTY2MUIwREZBNjIwRUIwOUFBQjJERUFENjAz NEI4MjhFQkMwHhcNMjUxMjI0MTYxMzMwWhcNMjUxMjMxMTYxMzMwWjAYMRYwFAYD VQQDDA02OTRjMTEyYi0yOGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyARMZdQge7yBP276pO+pIjibclSs9eWkrQpM3UKRe7lCGA72hLS9jyPVrafS ro7sX8zlNVxTcwWAEtRXuzOApxHKNXHJOFvEC2ofK56/+QiwFPnmI6QMET+UPJxB 7tbgt2FwgQgmf29l0uzwEPcgPYSkExs2dtQNDjiQ7m7kUpXcr85i7VYZEqRvw/63 7ggTcysdG80ZM2rNP0zRytAVdZwJjfGyF/I3XOt4X5MB1tWvwnRfGwuNJYZq+nPw fMM/vwqXYESjh3GDK5tDFP9EmHbDpo/nBshRa6Vr5RUDyt/qKjmkeXi2Z82Ia7M6 zHhrFC1bxVMZOtNv64YWZHBBiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYslfD7 go0zTnK11tZkkaezk5OCMB8GA1UdIwQYMBaAFMEIDmYbDfpiDrCaqy3q1gNLgo68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMS84MDJDMjQzMjhB N0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1tSU9zSnFyTGVyV0EwdUNq cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dRZ09aaHNOLW1JT3NKcXJMZXJXQTB1Q2pydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMS84MDJDMjQzMjhBN0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1t SU9zSnFyTGVyV0EwdUNqcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJmZtUoQdxPklM6K5qZVQMXi07QwgvzMz3B+tzxIcw0/exKQX9PvuW nfhp9kefu/iwMFiz12EynLTuc3JaUvggqdW7IUPwjySUyWjC0Hd0eUCSw90W+Icz xirZt6LgQKoN91AU8dpD5Vsiep+on01msaBVBGmhPJ7w6zTHR7am2J4QKzNz/vNH FvbhBRi/rlbDg2FEg2yylOO1Nq94LCyx01lhVyXZPVsrLth5wwLoOc4D6HJRppY1 +PsW1kJraP4z3VXDRYsUOb2y4ecDh4b7RJ9rg6gN48bWztGXZ0Qun4sYyyegZ9Nw l4jBUMUFlUl+6UaNtcefe2t+tlDVwZEa -----END CERTIFICATE-----Generated at Wed Dec 24 17:34:54 2025 by rpki-client