This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: wvE9Ovy7SSuVNL8wdROK7VltMt5h2Ck0cCBD4CeDnIU= Subject key identifier: 35:C9:25:6C:BB:E6:5B:4A:7F:37:D9:66:48:61:A0:50:54:4B:E1:3E Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0AA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0A81 Signing time: Sat 20 Dec 2025 19:05:39 +0000 Manifest this update: Sat 20 Dec 2025 19:05:38 +0000 Manifest next update: Sat 27 Dec 2025 19:05:38 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: TS1LmCKxGzo/TqEQQPd9UqYTfB4lh+GdrttaoOi6UQQ=) 2: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: R50vxZrWUTgOZOulbAeHkJh7/C1wukAfa8pX0j0danc=) 3: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: uBoNIMKOZ7mdZtPmDt522sQeNo1Hui8N7OHysFbsQzg=) 4: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: yu7Gzab+ZfqH+4m4+3KIWb8qWAN7g8OtQCUYR4Hw6Qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2722 (0xaa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Dec 20 19:05:38 2025 GMT Not After : Dec 27 19:05:38 2025 GMT Subject: CN=6946f383-daf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c3:7d:3e:3b:fb:0c:dc:c0:43:0b:d6:9a:5d: ef:3b:21:04:c4:0e:4a:47:a4:56:88:1b:1e:3e:29: bf:f1:70:e4:a6:c2:2a:c0:b5:3c:39:e1:ee:63:1c: 0d:a3:90:e0:14:c4:15:60:ce:de:82:9b:7c:2f:3b: 4b:97:3a:03:31:4f:aa:da:7e:ef:03:02:be:89:97: 4f:74:5b:80:15:2d:d0:be:d1:b1:fb:86:6a:18:09: 1c:35:e8:fc:e5:16:54:68:2f:de:db:cd:0e:3c:3a: fc:89:48:4e:16:23:a9:6b:07:a3:74:bd:b3:f9:73: 1a:dc:ce:65:f6:23:3e:80:8e:65:e7:cb:37:91:7c: ec:f0:67:7f:fb:5b:2c:ed:fd:3d:ce:c5:53:c2:93: 8d:e2:84:0b:9a:22:0b:33:81:7e:08:18:5e:75:7c: 35:df:cc:3d:6d:1d:bd:d7:f4:cd:03:bb:f0:d5:11: d9:3b:4b:8f:d0:88:e9:40:fe:c3:74:de:eb:d0:f8: 7a:35:a2:94:ca:7b:7e:ff:8b:4a:0d:2a:37:e6:74: 5e:5d:f8:f6:0f:92:b5:da:ca:d0:ab:67:9e:d1:31: bc:33:20:ed:c8:7f:5f:65:30:40:cf:44:54:23:7c: ac:e9:3f:40:e8:fe:cc:d7:8d:0b:c3:37:18:44:33: 25:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:C9:25:6C:BB:E6:5B:4A:7F:37:D9:66:48:61:A0:50:54:4B:E1:3E X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:84:8a:a2:22:ee:f8:fa:c9:e5:4f:85:39:a6:38:83:a9:5d: 28:fa:93:0d:1c:0e:7f:92:2d:9e:c9:d9:70:3b:db:cc:ec:a7: af:0c:68:62:8d:3e:28:28:36:65:25:c6:1a:a6:7c:aa:aa:ac: 37:e4:b5:39:3c:39:3e:98:34:84:67:26:22:b6:e1:e5:da:93: 31:be:a7:55:0e:50:9d:1a:44:4b:9d:f0:1c:f8:a7:1d:08:02: 73:63:b6:e8:d9:a3:55:aa:36:4b:43:6a:94:38:bf:a0:8a:b6: 7e:cc:4c:c3:76:94:86:c7:32:7c:69:66:05:14:0c:a8:30:e7: 80:52:8b:ae:25:05:57:a4:ef:55:00:36:60:31:02:f2:9e:56: d1:20:f4:f2:83:67:59:c7:44:b8:a0:1b:3d:b3:c4:64:9d:7e: ed:87:50:0e:fb:94:1f:82:81:7a:93:33:e9:5c:b9:eb:ad:47: f2:bc:f6:a2:a9:bb:ce:0d:1f:fe:d9:98:44:6a:9a:29:11:f3: f1:00:47:42:8f:b4:fb:b3:45:90:f1:1c:d6:2c:e9:32:09:35: 00:ba:a8:50:2c:5b:0c:b0:31:2f:c6:3a:b7:26:57:ed:9f:4d: 82:cd:fe:e5:d0:2d:90:7e:dd:17:b7:24:f0:9f:d7:cf:0e:51: a1:d0:81:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjUxMjIwMTkwNTM4WhcNMjUxMjI3MTkwNTM4WjAYMRYwFAYD VQQDDA02OTQ2ZjM4My1kYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMN9Pjv7DNzAQwvWml3vOyEExA5KR6RWiBsePim/8XDkpsIqwLU8OeHuYxwN o5DgFMQVYM7egpt8LztLlzoDMU+q2n7vAwK+iZdPdFuAFS3QvtGx+4ZqGAkcNej8 5RZUaC/e280OPDr8iUhOFiOpawejdL2z+XMa3M5l9iM+gI5l58s3kXzs8Gd/+1ss 7f09zsVTwpON4oQLmiILM4F+CBhedXw138w9bR291/TNA7vw1RHZO0uP0IjpQP7D dN7r0Ph6NaKUynt+/4tKDSo35nReXfj2D5K12srQq2ee0TG8MyDtyH9fZTBAz0RU I3ys6T9A6P7M140LwzcYRDMlKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXJJWy7 5ltKfzfZZkhhoFBUS+E+MB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIhIqiIu74+snlT4U5pjiDqV0o+pMNHA5/ki2eydlwO9vM7KevDGhi jT4oKDZlJcYapnyqqqw35LU5PDk+mDSEZyYituHl2pMxvqdVDlCdGkRLnfAc+Kcd CAJzY7bo2aNVqjZLQ2qUOL+girZ+zEzDdpSGxzJ8aWYFFAyoMOeAUouuJQVXpO9V ADZgMQLynlbRIPTyg2dZx0S4oBs9s8RknX7th1AO+5QfgoF6kzPpXLnrrUfyvPai qbvODR/+2ZhEapopEfPxAEdCj7T7s0WQ8RzWLOkyCTUAuqhQLFsMsDEvxjq3Jlft n02Czf7l0C2Qft0XtyTwn9fPDlGh0IGh -----END CERTIFICATE-----Generated at Sun Dec 21 21:28:53 2025 by rpki-client