This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: FWERbJEM4iZ2IEh6rplQtvmd+CbJje4cCDfywcvxODs= Subject key identifier: 3A:52:90:EC:17:3F:C6:9B:38:56:52:6B:2A:48:15:1F:8D:AD:5D:1F Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0E9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0E95 Signing time: Mon 22 Dec 2025 17:21:44 +0000 Manifest this update: Mon 22 Dec 2025 17:21:43 +0000 Manifest next update: Mon 29 Dec 2025 17:21:43 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: G0V66Rx7uv1/pXb/JQX0ldo5Apmr/gOqVJYEeG4QWgI=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: pWiGa9e3CsBZCkEfjYxSv/AY6FwzKhNWqEBfC5Rt5as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:21:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3743 (0xe9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Dec 22 17:21:43 2025 GMT Not After : Dec 29 17:21:43 2025 GMT Subject: CN=69497e28-55af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bf:08:cd:6f:4c:4f:f5:fc:f3:13:da:5d:38: 54:a3:8f:3a:e1:9f:52:4c:0d:78:80:93:9c:a9:f5: cd:ca:18:1e:7c:73:06:7f:34:54:60:73:2d:00:40: 1c:08:eb:f6:2e:9f:48:8e:47:4d:0c:1b:95:93:06: 7a:5f:39:73:d7:28:d3:ea:4c:7b:e1:20:ca:68:95: 69:6b:c1:15:a7:41:cd:48:17:21:2d:66:02:91:c9: 9e:99:da:a5:ee:ce:1c:af:bf:88:f8:bc:ee:60:61: 58:a6:11:32:e9:43:88:fd:df:7e:53:31:f4:56:6b: 30:e0:5a:3e:71:2c:d1:e7:80:7d:cd:f8:2f:27:98: 64:ee:cb:f9:e5:15:6c:a7:7d:ec:d3:04:0a:aa:67: 7b:4f:14:f5:d3:3a:75:05:7c:3e:be:a4:97:6b:22: 3d:6e:5a:2e:70:3d:99:b2:f9:c2:eb:b4:70:77:5e: 78:b6:9d:84:f1:13:ca:8c:a3:c6:04:cf:0c:91:7a: 08:72:dd:c2:f4:bc:4f:59:51:fd:bc:be:2d:61:ad: e0:79:c2:47:7d:af:fe:5e:b9:fb:f1:63:3e:11:c5: 93:f0:75:0b:57:5c:47:89:e4:bb:e9:9f:78:86:b9: 8f:07:36:41:97:c9:d2:53:2b:58:5d:d2:9d:7b:70: d0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:52:90:EC:17:3F:C6:9B:38:56:52:6B:2A:48:15:1F:8D:AD:5D:1F X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:fd:81:d4:ba:0b:13:dc:70:78:b5:fb:1d:eb:05:f3:b5:94: 03:b8:a4:b9:71:4e:0d:ff:eb:a4:b5:6a:3f:07:00:4e:a2:4f: 3a:b0:db:73:38:17:17:51:0b:8d:a0:60:73:68:37:12:00:d9: fd:1f:8a:52:b4:1e:d3:25:0a:af:d4:ab:a9:b7:28:49:b4:c6: 91:25:b9:ce:0f:d5:90:49:be:99:03:bc:60:d8:be:f5:ca:0c: 0f:70:26:ef:d9:9e:48:55:bf:35:8c:c7:d9:07:50:59:24:f3: 7e:4e:3d:1b:22:32:00:f4:e7:cb:2d:68:2a:5b:1a:2d:4c:37: cf:18:61:4c:a5:70:00:39:dd:68:2c:ca:4a:ad:63:6b:f5:0b: e1:da:ab:b5:55:36:cb:25:2d:15:4a:d3:a4:fb:db:60:4a:50: ba:76:8c:02:25:33:7c:37:5a:5a:d5:36:e4:24:8c:52:a5:86: 21:dd:82:f1:51:b2:eb:79:37:37:05:0a:f9:d1:b2:7a:bc:ca: e3:2d:d7:1a:ec:54:f8:33:1d:51:03:fa:25:6a:66:07:aa:9e: c6:1d:7b:a7:40:c7:5f:aa:61:0b:5a:c6:46:06:45:80:b2:f3: 31:39:d7:4e:f7:6f:b5:c5:32:62:34:4a:72:f3:e5:5a:d6:4f: cb:f5:fb:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjUxMjIyMTcyMTQzWhcNMjUxMjI5MTcyMTQzWjAYMRYwFAYD VQQDDA02OTQ5N2UyOC01NWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApr8IzW9MT/X88xPaXThUo4864Z9STA14gJOcqfXNyhgefHMGfzRUYHMtAEAc COv2Lp9IjkdNDBuVkwZ6Xzlz1yjT6kx74SDKaJVpa8EVp0HNSBchLWYCkcmemdql 7s4cr7+I+LzuYGFYphEy6UOI/d9+UzH0Vmsw4Fo+cSzR54B9zfgvJ5hk7sv55RVs p33s0wQKqmd7TxT10zp1BXw+vqSXayI9bloucD2ZsvnC67Rwd154tp2E8RPKjKPG BM8MkXoIct3C9LxPWVH9vL4tYa3gecJHfa/+Xrn78WM+EcWT8HULV1xHieS76Z94 hrmPBzZBl8nSUytYXdKde3DQTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpSkOwX P8abOFZSaypIFR+NrV0fMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG/YHUugsT3HB4tfsd6wXztZQDuKS5cU4N/+uktWo/BwBOok86sNtz OBcXUQuNoGBzaDcSANn9H4pStB7TJQqv1KuptyhJtMaRJbnOD9WQSb6ZA7xg2L71 ygwPcCbv2Z5IVb81jMfZB1BZJPN+Tj0bIjIA9OfLLWgqWxotTDfPGGFMpXAAOd1o LMpKrWNr9Qvh2qu1VTbLJS0VStOk+9tgSlC6dowCJTN8N1pa1TbkJIxSpYYh3YLx UbLreTc3BQr50bJ6vMrjLdca7FT4Mx1RA/olamYHqp7GHXunQMdfqmELWsZGBkWA svMxOddO92+1xTJiNEpy8+Va1k/L9fty -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:40 2025 by rpki-client