This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: qEGNCj2gYvR6cH5GizC7PQQzgghlqHj/hiHPtp64L/U= Subject key identifier: D6:7A:AD:A4:F2:6A:A3:BC:C3:DF:91:41:C9:37:4F:F5:1F:4E:1B:E2 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 0976 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 096D Signing time: Mon 22 Dec 2025 19:30:50 +0000 Manifest this update: Mon 22 Dec 2025 19:30:50 +0000 Manifest next update: Mon 29 Dec 2025 19:30:50 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: /4pCtvmShzIlsDQ0Xmq65XKmay0U52K4+Kd28NBk9As=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2422 (0x976) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Dec 22 19:30:50 2025 GMT Not After : Dec 29 19:30:50 2025 GMT Subject: CN=69499c6a-4725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:68:fd:60:90:e6:ba:09:ce:77:ee:e0:f1:03: 04:0e:12:aa:9c:54:30:6d:53:aa:cf:0e:9f:52:f9: bc:fa:89:f0:66:91:47:74:7a:5b:ff:73:10:6c:53: 8d:7e:ae:09:03:93:b1:05:c9:d2:cb:d6:c7:92:2e: 18:af:94:44:ca:57:f2:52:8f:0c:77:3b:8d:1a:88: 34:7e:f9:53:8c:21:22:cc:d9:1c:fc:03:a4:b7:c6: f8:15:13:54:69:96:94:f9:17:55:59:42:dd:b1:e1: e1:f0:83:b7:81:ef:ce:88:29:08:98:9e:ee:0b:e5: b4:da:ac:3e:6b:55:06:22:4f:df:73:7a:0e:63:e9: f9:8c:34:52:67:80:b9:c9:19:f1:59:ea:c5:a0:78: f0:ca:fe:0f:6b:0f:ad:79:6f:c0:fb:2b:9c:d6:f1: e8:1a:bf:f3:21:e5:4e:bc:74:db:5e:18:1a:53:3e: 7a:de:a1:ae:a0:93:6b:73:2c:8c:dd:a6:e5:20:18: 0b:dc:44:4c:a7:2f:63:e0:2e:e0:19:55:0e:8b:0b: 1a:bb:7d:e3:ef:28:db:e7:c8:9e:09:1c:b3:3c:a3: 0c:b2:1b:35:54:42:51:17:78:e0:6e:55:2b:c0:20: 07:74:b9:26:18:69:a7:47:fc:c7:13:00:64:2a:f6: 02:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:7A:AD:A4:F2:6A:A3:BC:C3:DF:91:41:C9:37:4F:F5:1F:4E:1B:E2 X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:3a:e6:31:7c:e4:76:a2:b4:f7:d3:d6:25:f1:34:28:d2:15: b2:65:fb:95:c3:aa:e7:cd:c7:af:28:50:c9:fa:2b:03:7a:61: ff:23:a2:8d:97:a7:01:8a:06:7a:0f:4e:e3:28:bc:4a:63:3d: e1:4a:d1:aa:16:3a:52:e4:50:44:01:ac:65:b3:71:4d:b9:e0: 04:ce:b0:d2:93:2c:f5:29:1e:7c:3b:27:f0:1f:8a:ca:1f:99: 9e:bb:ab:66:de:2c:55:22:f4:73:ea:e9:2f:2a:47:cf:d6:02: 1a:15:c1:66:f7:39:b3:2a:05:62:07:b4:75:08:a9:6c:34:ef: af:49:dc:e4:0f:f4:7c:66:9c:43:31:95:56:f5:74:6e:68:8b: 97:f8:40:3f:de:4d:8d:43:86:2e:03:b1:78:a3:f1:de:fd:58: 05:cf:1c:0d:c6:b6:94:26:b9:95:2d:87:77:45:6f:41:bf:2c: de:7b:62:7f:19:a2:c5:a8:c7:2d:4a:e2:3c:20:9a:ab:33:ab: 07:2b:3a:b9:9c:43:ed:b5:6b:56:46:58:bf:b5:fb:3c:19:bb: 60:1a:66:b7:f4:85:98:63:5c:23:4f:6b:52:98:88:51:cc:26: 16:79:45:85:1b:35:90:2c:8c:87:43:70:f2:75:e4:3f:26:8d: c6:e0:18:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUxMjIyMTkzMDUwWhcNMjUxMjI5MTkzMDUwWjAYMRYwFAYD VQQDDA02OTQ5OWM2YS00NzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmj9YJDmugnOd+7g8QMEDhKqnFQwbVOqzw6fUvm8+onwZpFHdHpb/3MQbFON fq4JA5OxBcnSy9bHki4Yr5REylfyUo8MdzuNGog0fvlTjCEizNkc/AOkt8b4FRNU aZaU+RdVWULdseHh8IO3ge/OiCkImJ7uC+W02qw+a1UGIk/fc3oOY+n5jDRSZ4C5 yRnxWerFoHjwyv4Paw+teW/A+yuc1vHoGr/zIeVOvHTbXhgaUz563qGuoJNrcyyM 3ablIBgL3ERMpy9j4C7gGVUOiwsau33j7yjb58ieCRyzPKMMshs1VEJRF3jgblUr wCAHdLkmGGmnR/zHEwBkKvYCFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZ6raTy aqO8w9+RQck3T/UfThviMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXOuYxfOR2orT309Yl8TQo0hWyZfuVw6rnzcevKFDJ+isDemH/I6KN l6cBigZ6D07jKLxKYz3hStGqFjpS5FBEAaxls3FNueAEzrDSkyz1KR58OyfwH4rK H5meu6tm3ixVIvRz6ukvKkfP1gIaFcFm9zmzKgViB7R1CKlsNO+vSdzkD/R8ZpxD MZVW9XRuaIuX+EA/3k2NQ4YuA7F4o/He/VgFzxwNxraUJrmVLYd3RW9Bvyzee2J/ GaLFqMctSuI8IJqrM6sHKzq5nEPttWtWRli/tfs8GbtgGma39IWYY1wjT2tSmIhR zCYWeUWFGzWQLIyHQ3DydeQ/Jo3G4Bj5 -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:36 2025 by rpki-client