This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft File: fNlYoAf08OVuSo0kV2aIYiurciE.mft (raw, json) Hash identifier: ghqsKi6h1r9Yr34cXiVYHlTX6Y/KrD1kl9Sb+DoLDMw= Subject key identifier: B2:39:DE:A4:E5:FB:33:01:1F:06:2A:2C:13:CE:E5:1C:F2:1E:C3:00 Authority key identifier: 7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 Certificate issuer: /CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft Manifest number: 0191 Signing time: Tue 23 Dec 2025 02:35:01 +0000 Manifest this update: Tue 23 Dec 2025 02:35:01 +0000 Manifest next update: Tue 30 Dec 2025 02:35:01 +0000 Files and hashes: 1: fNlYoAf08OVuSo0kV2aIYiurciE.crl (hash: +Az8lKbCp0F57E1/cnWqPPyOGIUHcRtYb1+F56RYJbM=) 2: 289652667B7511F0A2592A6EC4F9AE02.roa (hash: 74iex85dEjMYqsMC503dPAfze/x+8hBe6o6Qy42zmTM=) 3: CEA08B0A7B7411F0B30B5E4FC4F9AE02.roa (hash: C44/AtE3Ze2iBhnia/62NjBLNjDmkSHhne0xCs9WJQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF2, serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Validity Not Before: Dec 23 02:35:01 2025 GMT Not After : Dec 30 02:35:01 2025 GMT Subject: CN=6949ffd5-84f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fa:c4:7b:39:f5:e4:e4:d2:25:3a:30:d3:85: f5:6b:09:6a:84:44:5c:97:f0:a9:1b:37:13:a3:33: 22:09:56:8e:b2:cd:55:56:1b:cc:d3:7a:38:1e:85: 45:52:eb:8a:e0:a7:9e:7b:82:c6:8b:4f:cf:5b:22: 87:a3:0d:1a:00:b3:a4:ea:d8:23:ea:44:30:2f:c3: ac:c1:6e:10:b0:58:ad:99:13:5c:39:75:83:b7:27: c9:6c:b3:df:4b:3d:7a:56:6e:16:18:98:90:19:f2: 0f:2d:6d:1a:cd:f0:ea:66:f3:3b:33:1f:cb:ed:86: 4d:b1:8a:09:b5:2a:b0:7c:9d:13:66:00:4a:cd:86: 58:aa:29:94:6e:98:f5:05:ca:3d:54:3e:0d:9c:be: f2:83:7e:b7:c8:64:91:bb:fc:5f:c9:61:2e:11:90: d7:6b:28:7e:8f:66:c4:2d:f9:8d:84:1a:d2:c7:59: f9:e5:ae:23:ed:b3:4c:8d:2d:87:07:5e:13:37:d9: d9:43:08:f8:ba:b6:56:cd:cd:38:5f:67:d6:04:6d: be:6c:6b:dc:1e:46:87:b5:8e:20:fd:13:3a:43:d1: 75:67:91:bf:c5:cf:1e:dd:b5:e4:e7:68:fb:cf:da: 96:21:f5:a1:dd:4b:b4:dd:5b:7e:1c:62:28:a7:12: 21:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:39:DE:A4:E5:FB:33:01:1F:06:2A:2C:13:CE:E5:1C:F2:1E:C3:00 X509v3 Authority Key Identifier: keyid:7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:c5:6b:35:50:e2:bd:50:18:3e:51:4c:68:17:4f:2a:c0:d2: 2d:66:50:84:dd:dc:dc:32:2f:f1:ac:27:8a:43:cc:7c:bd:02: db:82:76:c2:17:10:11:bb:d0:a2:9e:92:82:e3:e4:42:14:8f: cd:33:3c:91:80:09:e2:54:a9:ad:36:b9:8e:95:57:fa:ae:13: b6:a4:a8:42:46:86:61:2a:32:c2:25:d0:21:39:4c:0f:92:de: b6:2c:39:e2:90:5e:5f:f4:88:e3:b1:72:8a:fb:a4:ff:8f:aa: 0c:2d:c7:1d:05:4e:7a:b2:b2:86:cb:92:30:88:bc:78:ca:91: 50:5f:e2:3d:06:f0:17:de:c9:67:76:99:da:49:e9:98:70:3b: 52:28:8b:38:52:07:23:a6:a4:99:03:e7:33:a5:06:38:f4:94: 94:50:e3:6f:e6:28:55:f7:3e:aa:3a:55:db:81:9c:00:74:59: 27:86:72:50:20:3a:29:69:5f:29:4b:75:9d:f1:ca:76:16:71: 65:eb:1e:53:13:0b:df:94:1c:81:11:8b:e6:4b:37:0a:c7:a5: 8c:3f:b3:5a:70:81:e2:20:b4:40:5a:02:30:30:cf:7d:3f:ce: 48:da:1e:ac:de:68:d9:4c:d0:4f:2c:b9:62:7f:81:4e:8a:df: 49:f4:29:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjIxMTAvBgNVBAUTKDdDRDk1OEEwMDdGNEYwRTU2RTRBOEQyNDU3NjY4ODYy MkJBQjcyMjEwHhcNMjUxMjIzMDIzNTAxWhcNMjUxMjMwMDIzNTAxWjAYMRYwFAYD VQQDDA02OTQ5ZmZkNS04NGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPrEezn15OTSJTow04X1awlqhERcl/CpGzcTozMiCVaOss1VVhvM03o4HoVF UuuK4Keee4LGi0/PWyKHow0aALOk6tgj6kQwL8OswW4QsFitmRNcOXWDtyfJbLPf Sz16Vm4WGJiQGfIPLW0azfDqZvM7Mx/L7YZNsYoJtSqwfJ0TZgBKzYZYqimUbpj1 Bco9VD4NnL7yg363yGSRu/xfyWEuEZDXayh+j2bELfmNhBrSx1n55a4j7bNMjS2H B14TN9nZQwj4urZWzc04X2fWBG2+bGvcHkaHtY4g/RM6Q9F1Z5G/xc8e3bXk52j7 z9qWIfWh3Uu03Vt+HGIopxIhqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLI53qTl +zMBHwYqLBPO5RzyHsMAMB8GA1UdIwQYMBaAFHzZWKAH9PDlbkqNJFdmiGIrq3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGMi81NzMyQzgzODg0 NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhPVnVTbzBrVjJhSVlpdXJj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZObFlvQWYwOE9WdVNvMGtWMmFJWWl1cmNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGMi81NzMyQzgzODg0NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhP VnVTbzBrVjJhSVlpdXJjaUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZxWs1UOK9UBg+UUxoF08qwNItZlCE3dzcMi/xrCeKQ8x8vQLbgnbC FxARu9CinpKC4+RCFI/NMzyRgAniVKmtNrmOlVf6rhO2pKhCRoZhKjLCJdAhOUwP kt62LDnikF5f9IjjsXKK+6T/j6oMLccdBU56srKGy5IwiLx4ypFQX+I9BvAX3sln dpnaSemYcDtSKIs4UgcjpqSZA+czpQY49JSUUONv5ihV9z6qOlXbgZwAdFknhnJQ IDopaV8pS3Wd8cp2FnFl6x5TEwvflByBEYvmSzcKx6WMP7NacIHiILRAWgIwMM99 P85I2h6s3mjZTNBPLLlif4FOit9J9Ckf -----END CERTIFICATE-----Generated at Tue Dec 23 22:56:14 2025 by rpki-client