This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: izVaB6PzCcQgPL6eNWycagGN41mpXZuNBeJ2SyKLOdc= Subject key identifier: BD:F5:9E:F7:29:93:7C:39:34:7E:E8:BC:D9:CA:F5:56:D7:0C:17:93 Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 09E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 09D7 Signing time: Mon 22 Dec 2025 19:21:24 +0000 Manifest this update: Mon 22 Dec 2025 19:21:23 +0000 Manifest next update: Mon 29 Dec 2025 19:21:23 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: ohzc8Pvnyh1HrTu7RXHfFHo1MdMLeFGKdmbIxGyh8os=) 2: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=) 3: 7AEEA290829E11F0975FC440C4F9AE02.roa (hash: ylXeGQVKEpyBpdJm+bvsrD7tk3lV9xXY1bBsN7fiPY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2537 (0x9e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Dec 22 19:21:23 2025 GMT Not After : Dec 29 19:21:23 2025 GMT Subject: CN=69499a33-d991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:75:58:1b:84:3b:97:2f:c6:f6:fe:5d:61:d4: c2:77:ad:04:6c:7d:87:52:51:85:98:9b:ac:ea:b5: 62:e0:ec:57:9a:84:ed:49:fa:53:de:7c:f1:dc:bf: 34:97:0d:23:1b:e4:45:94:8e:70:68:ef:12:2a:68: 16:9c:24:02:e7:2b:93:77:2c:c2:89:58:a3:cb:f2: c3:1b:31:fb:3e:57:53:b4:5f:b0:6d:54:ac:58:0c: 65:82:f0:ed:83:d7:8c:2c:34:c8:a4:a7:22:7a:83: 78:53:b3:4a:27:4b:c3:66:7c:19:26:b0:78:97:89: 38:f3:a1:ce:b2:57:85:e2:b9:24:94:a9:d8:30:67: 3c:bc:69:1e:e5:72:4c:bd:4d:33:a1:19:5a:42:0b: 39:db:34:12:db:38:79:08:cd:06:bc:ef:50:cc:aa: b4:b2:89:19:e6:d0:a6:55:0e:ad:ca:f1:81:71:8c: 4a:38:df:c4:d5:46:94:e6:53:46:9d:c5:3c:00:cf: ac:0c:3d:3a:0b:b3:e3:d7:66:7b:be:83:5b:28:85: b3:07:4f:fb:d1:44:1c:09:3b:29:75:47:5e:fa:e8: 57:63:60:0e:5c:17:81:01:d9:ad:4a:9f:da:9c:5e: 2d:87:19:01:5e:aa:4f:43:dd:5f:9e:e3:d9:65:41: 90:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F5:9E:F7:29:93:7C:39:34:7E:E8:BC:D9:CA:F5:56:D7:0C:17:93 X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:f6:bf:ba:0f:a3:b5:00:d1:56:0e:d3:96:35:0b:56:4f:2c: 41:63:cf:2b:46:b3:54:d4:1c:55:c5:fd:6f:55:07:1e:40:e2: b7:c6:61:3f:13:23:5f:f4:a4:ca:1a:75:dc:cb:b4:93:0a:6f: 2d:d8:7b:20:a3:7c:5f:84:79:b4:06:fe:57:f6:22:2a:27:e7: 01:98:76:c2:17:bf:03:ea:e1:78:72:9b:12:56:3f:8c:6f:5e: 46:c6:03:a3:54:0f:1f:35:56:d6:17:cf:3a:13:75:87:25:f6: 0a:c4:c0:21:b4:5c:42:83:b8:28:40:df:ab:ef:75:f8:1b:0e: 00:64:e5:d0:f9:f5:9e:11:c6:bf:6e:a3:5b:eb:9f:38:33:b2: 25:2f:54:31:29:22:5c:a7:56:9a:55:d8:be:a2:e2:8e:ac:74: 13:1e:61:68:88:d2:3a:b3:28:c1:de:a5:b1:60:eb:89:0f:7a: b1:3c:98:fc:01:12:2f:e1:10:a4:38:47:f2:28:c8:59:87:d8: b7:81:a9:d5:b3:2c:a4:26:b3:1d:ac:a3:f0:a5:c4:32:00:1b: 65:76:db:d8:e8:55:00:2c:33:83:3d:25:5a:31:a9:bb:83:b7: f8:db:d4:be:85:a6:c8:7e:7e:cc:1b:69:8a:13:c1:68:b7:3e: c2:14:20:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjUxMjIyMTkyMTIzWhcNMjUxMjI5MTkyMTIzWjAYMRYwFAYD VQQDDA02OTQ5OWEzMy1kOTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HVYG4Q7ly/G9v5dYdTCd60EbH2HUlGFmJus6rVi4OxXmoTtSfpT3nzx3L80 lw0jG+RFlI5waO8SKmgWnCQC5yuTdyzCiVijy/LDGzH7PldTtF+wbVSsWAxlgvDt g9eMLDTIpKcieoN4U7NKJ0vDZnwZJrB4l4k486HOsleF4rkklKnYMGc8vGke5XJM vU0zoRlaQgs52zQS2zh5CM0GvO9QzKq0sokZ5tCmVQ6tyvGBcYxKON/E1UaU5lNG ncU8AM+sDD06C7Pj12Z7voNbKIWzB0/70UQcCTspdUde+uhXY2AOXBeBAdmtSp/a nF4thxkBXqpPQ91fnuPZZUGQWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL31nvcp k3w5NH7ovNnK9VbXDBeTMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP9r+6D6O1ANFWDtOWNQtWTyxBY88rRrNU1BxVxf1vVQceQOK3xmE/ EyNf9KTKGnXcy7STCm8t2Hsgo3xfhHm0Bv5X9iIqJ+cBmHbCF78D6uF4cpsSVj+M b15GxgOjVA8fNVbWF886E3WHJfYKxMAhtFxCg7goQN+r73X4Gw4AZOXQ+fWeEca/ bqNb6584M7IlL1QxKSJcp1aaVdi+ouKOrHQTHmFoiNI6syjB3qWxYOuJD3qxPJj8 ARIv4RCkOEfyKMhZh9i3ganVsyykJrMdrKPwpcQyABtldtvY6FUALDODPSVaMam7 g7f429S+habIfn7MG2mKE8Fotz7CFCBg -----END CERTIFICATE-----Generated at Wed Dec 24 19:30:38 2025 by rpki-client