This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft File: 0DacIB93rzjycCn7IkbEOF0njKI.mft (raw, json) Hash identifier: PfRmsm5WShOobZ3EPhr4RfGMYF8GBemYWl2MnocOgqA= Subject key identifier: C7:C1:46:30:49:AC:50:FE:A4:CD:2D:0E:14:38:DB:AF:0F:8B:27:73 Authority key identifier: D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 Certificate issuer: /CN=A91EBF27/serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Certificate serial: 065A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft Manifest number: 065A Signing time: Mon 22 Dec 2025 21:47:28 +0000 Manifest this update: Mon 22 Dec 2025 21:47:27 +0000 Manifest next update: Mon 29 Dec 2025 21:47:27 +0000 Files and hashes: 1: 0DacIB93rzjycCn7IkbEOF0njKI.crl (hash: p90G7NMiFpv943r7xmDjxwueS3tMQnslFl3YwXcvh9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:47:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1626 (0x65a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF27, serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Validity Not Before: Dec 22 21:47:27 2025 GMT Not After : Dec 29 21:47:27 2025 GMT Subject: CN=6949bc6f-d83d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e2:84:20:81:a0:f8:c6:2c:5b:5a:a0:73:5d: a1:1b:50:61:0e:01:b6:9e:5f:4d:78:dd:1d:8d:eb: 4f:ff:91:d2:4a:a7:a0:d2:7f:61:a9:4b:98:60:f6: 85:4b:b2:f1:3a:10:c8:65:9c:19:1b:3d:1f:fa:77: 44:a2:08:25:8c:dd:54:7b:57:88:dc:a6:50:06:77: 40:47:0a:f3:a0:fa:bc:38:09:64:50:70:04:24:18: 02:ed:b2:c8:a7:08:06:c1:8c:88:8d:ae:40:d3:f1: 0b:48:ac:8a:55:67:16:f2:44:26:e4:82:2e:b1:86: fb:11:24:04:5d:fe:7d:20:51:2e:fa:d8:ab:f9:f3: 2f:a4:d4:10:15:cf:5c:42:48:11:5e:72:a9:bf:25: 07:28:84:41:3e:9c:6f:dc:b4:80:bc:c5:39:1f:99: b3:d5:7a:09:13:c9:52:fe:c7:83:18:9b:e4:f4:21: 3a:ed:d4:74:ba:93:51:bb:15:26:d5:87:ee:6c:16: 74:c0:ad:ce:ea:73:67:f0:91:bd:b2:ec:a2:b8:99: 02:dc:1e:b6:f5:13:16:d5:e7:34:c0:60:1e:5b:52: 8e:ea:b0:29:81:87:42:3d:ac:03:5b:eb:ad:25:d8: 0c:ee:50:c8:76:d3:f0:37:49:1c:7b:8b:a5:9e:62: 11:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C1:46:30:49:AC:50:FE:A4:CD:2D:0E:14:38:DB:AF:0F:8B:27:73 X509v3 Authority Key Identifier: keyid:D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:d4:54:b8:84:fe:58:31:4e:c1:ba:8f:65:f2:61:8c:8a:6a: c2:fd:b3:e1:11:4a:29:72:a0:8d:8f:92:d7:59:fd:08:41:92: 88:2e:2a:dc:c3:bc:c3:fb:ad:40:91:f6:d0:5f:50:3d:75:40: f3:23:b1:90:9e:17:b4:4b:af:dc:b0:86:5a:d8:fb:67:13:d2: dc:3d:60:3f:a4:2a:06:11:6e:c2:94:70:b3:a5:b0:26:dc:d1: 05:ca:21:fa:3f:ab:21:b6:18:36:68:eb:1b:7c:c4:15:e5:a6: f1:05:58:35:55:87:9e:5f:65:c0:28:75:63:ed:6a:9b:fe:af: f4:12:8f:59:39:fe:85:d5:86:07:5e:1a:e1:f4:13:f1:c6:a4: c6:d4:d1:d4:8f:fd:de:08:3c:19:02:19:9e:62:e9:ac:57:50: 2a:dc:e8:91:eb:91:00:08:39:e2:cf:bd:c7:05:60:b6:d9:73: 52:2f:2e:cd:40:c5:ac:d0:da:3d:10:bb:21:48:84:fd:b5:a4: 59:48:a3:1c:34:0b:b1:32:ed:c5:7d:d8:3c:2b:8a:68:50:2a: cd:b8:e9:47:e8:5c:9c:00:4b:f6:f2:44:b2:1c:50:c9:8d:a9: b5:9b:d3:c5:f0:5e:5d:ac:06:40:cd:55:75:03:8e:8d:07:61: db:3a:1f:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGMjcxMTAvBgNVBAUTKEQwMzY5QzIwMUY3N0FGMzhGMjcwMjlGQjIyNDZDNDM4 NUQyNzhDQTIwHhcNMjUxMjIyMjE0NzI3WhcNMjUxMjI5MjE0NzI3WjAYMRYwFAYD VQQDDA02OTQ5YmM2Zi1kODNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqeKEIIGg+MYsW1qgc12hG1BhDgG2nl9NeN0djetP/5HSSqeg0n9hqUuYYPaF S7LxOhDIZZwZGz0f+ndEoggljN1Ue1eI3KZQBndARwrzoPq8OAlkUHAEJBgC7bLI pwgGwYyIja5A0/ELSKyKVWcW8kQm5IIusYb7ESQEXf59IFEu+tir+fMvpNQQFc9c QkgRXnKpvyUHKIRBPpxv3LSAvMU5H5mz1XoJE8lS/seDGJvk9CE67dR0upNRuxUm 1YfubBZ0wK3O6nNn8JG9suyiuJkC3B629RMW1ec0wGAeW1KO6rApgYdCPawDW+ut JdgM7lDIdtPwN0kce4ulnmIRQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfBRjBJ rFD+pM0tDhQ4268PiydzMB8GA1UdIwQYMBaAFNA2nCAfd6848nAp+yJGxDhdJ4yi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkYyNy9GMUQzRTMyNkFC RTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6anljQ243SWtiRU9GMG5q S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBEYWNJQjkzcnpqeWNDbjdJa2JFT0YwbmpLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkYyNy9GMUQzRTMyNkFCRTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6 anljQ243SWtiRU9GMG5qS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv1FS4hP5YMU7Buo9l8mGMimrC/bPhEUopcqCNj5LXWf0IQZKILirc w7zD+61AkfbQX1A9dUDzI7GQnhe0S6/csIZa2PtnE9LcPWA/pCoGEW7ClHCzpbAm 3NEFyiH6P6shthg2aOsbfMQV5abxBVg1VYeeX2XAKHVj7Wqb/q/0Eo9ZOf6F1YYH Xhrh9BPxxqTG1NHUj/3eCDwZAhmeYumsV1Aq3OiR65EACDniz73HBWC22XNSLy7N QMWs0No9ELshSIT9taRZSKMcNAuxMu3Ffdg8K4poUCrNuOlH6FycAEv28kSyHFDJ jam1m9PF8F5drAZAzVV1A46NB2HbOh99 -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:36 2025 by rpki-client