This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft File: 30fOzFfqiK65ajhlVgufImC6mQ4.mft (raw, json) Hash identifier: KmGXUnWFmi16OEt9DUOqV1uQRpIzm5vYE9Byy0QSg6Y= Subject key identifier: 3B:E1:D6:B0:75:A9:15:A2:9E:C1:33:51:3A:3E:48:EF:7E:9F:5A:F7 Authority key identifier: DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E Certificate issuer: /CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft Manifest number: F2 Signing time: Tue 23 Dec 2025 04:18:27 +0000 Manifest this update: Tue 23 Dec 2025 04:18:27 +0000 Manifest next update: Tue 30 Dec 2025 04:18:27 +0000 Files and hashes: 1: 30fOzFfqiK65ajhlVgufImC6mQ4.crl (hash: JMA/dXN1Kfb5mTyrmSRy3VJHh53NXobXuURKGwghfG8=) 2: 02389B7670E811EFA8DBE571C4F9AE02.roa (hash: VymoAbVW0Xjer0qffAdo09mun74sopBFqTSpIfpfxa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Validity Not Before: Dec 23 04:18:27 2025 GMT Not After : Dec 30 04:18:27 2025 GMT Subject: CN=694a1813-690d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:95:de:88:6a:16:af:c4:07:cb:81:8e:43:73: b9:8f:75:92:5f:5b:b4:9f:70:27:53:7a:a3:b6:24: 60:e0:8b:be:3d:0b:ef:0c:67:1a:b0:50:c1:b5:be: 33:84:54:2c:7b:ac:5c:ee:ba:17:02:39:f8:5f:9a: ca:4e:59:a1:7b:5d:70:31:81:af:e6:e4:d3:d5:b7: ef:d9:e2:da:19:c0:20:41:d0:39:af:56:2e:86:6c: 17:33:c0:91:c8:f9:01:a8:6d:08:1b:1a:63:17:db: 0c:26:f9:5f:1e:3f:ed:aa:01:73:ee:1e:53:3a:29: 37:2e:93:f9:f1:dc:eb:d3:ba:36:c9:63:11:e7:14: b8:a6:8e:b5:ea:86:14:e0:ea:cd:8d:d9:7f:a8:a9: 64:19:06:73:03:af:5b:e5:bf:32:ee:49:f1:9d:dc: e7:39:c0:02:68:a8:97:8c:74:08:b1:23:1e:94:9f: b2:c3:c7:17:ef:2a:32:6a:ad:0d:33:cf:37:fe:27: bd:8b:01:06:a4:dc:d8:7b:38:15:bb:39:96:1b:fa: b1:8d:91:50:b4:46:2b:e6:3f:86:35:a2:68:1d:9b: 75:2b:a5:5a:9c:87:66:d5:8f:71:f8:32:41:7e:19: 1d:cd:85:5b:1c:b9:1a:87:33:2b:26:3d:91:ad:54: e2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:E1:D6:B0:75:A9:15:A2:9E:C1:33:51:3A:3E:48:EF:7E:9F:5A:F7 X509v3 Authority Key Identifier: keyid:DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:0d:b6:19:0d:9d:56:be:85:6e:7c:f3:b6:cf:61:9b:d6:40: 63:85:bb:a4:f0:5b:05:ac:8a:fe:11:a3:87:85:95:dc:ad:0e: a7:06:62:69:34:b1:6b:70:b0:03:d7:b1:76:ee:4f:3c:26:8e: 85:86:4c:68:78:fa:79:0e:41:e1:ca:d1:b2:f6:a5:57:c7:09: be:83:9b:5c:1c:b0:dd:a3:61:c4:02:d1:55:6e:b5:7d:c5:58: 8c:36:e4:83:2a:f0:3f:fe:87:7e:0b:7d:37:6f:ef:15:18:98: 18:b9:6f:f0:16:61:86:1a:1a:24:6a:0d:df:0e:82:59:48:24: 68:9a:38:fd:ac:dc:41:36:98:80:f5:bf:3b:3c:cc:08:c0:a6: 36:d3:08:be:47:1a:77:1a:87:92:be:14:86:fc:80:01:a4:ec: 4c:b2:ed:e2:bf:93:bb:90:59:a1:1e:8d:52:01:a2:f8:4c:f3: 95:d7:dc:b6:7a:cd:c7:ee:e5:4b:70:ab:9e:ce:76:09:da:15: 79:1f:d4:a8:e8:63:37:9b:88:61:21:00:4f:b3:0a:95:96:1b: 4a:33:ae:03:19:a3:dc:1f:7f:b3:ee:d7:91:49:67:69:1e:de: 72:58:fc:75:e1:79:bf:29:c3:95:61:7a:18:b2:50:04:5d:ba: e1:fa:71:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKERGNDdDRUNDNTdFQTg4QUVCOTZBMzg2NTU2MEI5RjIy NjBCQTk5MEUwHhcNMjUxMjIzMDQxODI3WhcNMjUxMjMwMDQxODI3WjAYMRYwFAYD VQQDDA02OTRhMTgxMy02OTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiZXeiGoWr8QHy4GOQ3O5j3WSX1u0n3AnU3qjtiRg4Iu+PQvvDGcasFDBtb4z hFQse6xc7roXAjn4X5rKTlmhe11wMYGv5uTT1bfv2eLaGcAgQdA5r1YuhmwXM8CR yPkBqG0IGxpjF9sMJvlfHj/tqgFz7h5TOik3LpP58dzr07o2yWMR5xS4po616oYU 4OrNjdl/qKlkGQZzA69b5b8y7knxndznOcACaKiXjHQIsSMelJ+yw8cX7yoyaq0N M883/ie9iwEGpNzYezgVuzmWG/qxjZFQtEYr5j+GNaJoHZt1K6VanIdm1Y9x+DJB fhkdzYVbHLkahzMrJj2RrVTipwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvh1rB1 qRWinsEzUTo+SO9+n1r3MB8GA1UdIwQYMBaAFN9HzsxX6oiuuWo4ZVYLnyJgupkO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi81ODAwNEFBQTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlLNjVhamhsVmd1ZkltQzZt UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMwZk96RmZxaUs2NWFqaGxWZ3VmSW1DNm1RNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi81ODAwNEFBQTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlL NjVhamhsVmd1ZkltQzZtUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6DbYZDZ1WvoVufPO2z2Gb1kBjhbuk8FsFrIr+EaOHhZXcrQ6nBmJp NLFrcLAD17F27k88Jo6FhkxoePp5DkHhytGy9qVXxwm+g5tcHLDdo2HEAtFVbrV9 xViMNuSDKvA//od+C303b+8VGJgYuW/wFmGGGhokag3fDoJZSCRomjj9rNxBNpiA 9b87PMwIwKY20wi+Rxp3GoeSvhSG/IABpOxMsu3iv5O7kFmhHo1SAaL4TPOV19y2 es3H7uVLcKueznYJ2hV5H9So6GM3m4hhIQBPswqVlhtKM64DGaPcH3+z7teRSWdp Ht5yWPx14Xm/KcOVYXoYslAEXbrh+nF8 -----END CERTIFICATE-----Generated at Wed Dec 24 15:44:59 2025 by rpki-client