This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: thXeD2aLglGc1+vo+QkiWmAkbxxDevoZHXHOMqxj3kE= Subject key identifier: 2F:B1:32:6F:62:FB:C6:F3:D6:7E:7B:75:5F:38:2D:C2:2D:D9:3B:4F Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 0A26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 0A1E Signing time: Mon 22 Dec 2025 19:12:42 +0000 Manifest this update: Mon 22 Dec 2025 19:12:41 +0000 Manifest next update: Mon 29 Dec 2025 19:12:41 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: +0b50Nh5guI66rb+TcXsIpF3rjk9o3bgXFgYsb1TkgM=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: 3hay+KNg/2l74ymUeo3rJ7DbBbo6k73NfQvBnuqkfBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2598 (0xa26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2, serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: Dec 22 19:12:41 2025 GMT Not After : Dec 29 19:12:41 2025 GMT Subject: CN=6949982a-150f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:68:db:46:c7:86:72:41:bb:88:4d:50:fa:62: 2e:a5:b4:48:5b:35:b4:12:62:64:46:72:b9:9f:07: 3d:24:dc:4c:f0:3e:08:d4:3d:d0:d9:3e:6b:01:d9: 7f:c5:33:5d:0c:3d:91:9b:13:01:35:e6:69:a3:d6: 60:22:69:6b:a3:fb:ee:06:56:13:0d:b6:1a:cd:00: 49:20:c2:bf:37:19:ec:35:0e:60:95:ac:26:0f:b2: 7e:95:2f:cd:3c:84:8c:f8:a1:8e:9f:1e:20:be:94: d3:70:59:d3:e9:92:5f:17:4e:5c:48:c8:bb:46:57: 73:19:c4:0e:b5:10:e9:6c:e9:41:88:55:24:e9:92: 2e:fb:6f:86:ef:21:75:36:c2:f2:8f:f3:47:9e:04: 45:23:38:cb:b0:9f:00:e5:69:70:a5:b3:02:4e:10: 76:7c:27:e0:20:5f:17:b6:52:f4:d6:c4:36:d1:c2: 48:99:19:e4:a6:ce:51:32:30:18:d7:ae:ea:de:af: da:a6:52:fb:ab:82:91:f0:8f:e6:61:cc:7c:3d:1e: e6:89:d0:00:46:85:fe:2b:ae:42:a8:4f:ea:42:c7: 51:b5:c1:9a:b0:f4:97:0d:5f:b9:4c:e8:26:3a:fa: 8e:cd:dd:40:d9:05:d9:d8:df:84:ea:59:d7:dc:44: d9:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B1:32:6F:62:FB:C6:F3:D6:7E:7B:75:5F:38:2D:C2:2D:D9:3B:4F X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:9b:1e:e1:a8:6e:37:a4:68:2e:14:d8:df:56:9e:8a:ec:30: 44:61:2b:04:af:61:30:2c:2e:dc:54:a0:76:c3:d6:f1:27:c9: 1b:35:5e:74:93:87:f7:cd:ac:2b:fb:b3:b4:9e:0d:05:5e:86: c1:23:a6:0c:d3:5d:cd:f7:cf:94:e8:26:26:7d:d0:73:ec:82: 11:60:6c:67:35:7b:c2:68:77:c7:bc:b1:73:51:6f:bc:7c:e7: 46:fa:bd:6c:6b:b2:b0:75:7a:80:11:74:26:1a:bd:db:e8:57: f4:6a:ae:ec:3c:33:6a:92:ff:f7:48:59:18:35:8b:f7:56:84: f5:0b:5c:c2:7a:5b:d8:7d:d6:f7:7f:1d:bd:54:31:13:00:ab: 19:23:f1:17:8e:f1:b7:fe:d9:03:f2:8d:4f:d0:4c:58:98:b9: 95:8f:d1:aa:7e:31:9f:ce:df:2c:dc:41:ac:ab:ee:5e:a7:9b: fc:db:a2:9a:eb:c3:b1:ce:41:88:51:bc:19:c4:a6:46:d5:47: 78:d4:ea:24:f3:10:81:10:19:77:3a:aa:69:39:10:af:7c:05: 22:82:42:46:23:60:d0:a8:84:24:0c:da:d2:91:42:ba:da:47: be:30:88:26:68:b5:05:42:79:af:47:21:f8:11:58:d9:60:24: 48:3d:0c:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjUxMjIyMTkxMjQxWhcNMjUxMjI5MTkxMjQxWjAYMRYwFAYD VQQDDA02OTQ5OTgyYS0xNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mjbRseGckG7iE1Q+mIupbRIWzW0EmJkRnK5nwc9JNxM8D4I1D3Q2T5rAdl/ xTNdDD2RmxMBNeZpo9ZgImlro/vuBlYTDbYazQBJIMK/NxnsNQ5glawmD7J+lS/N PISM+KGOnx4gvpTTcFnT6ZJfF05cSMi7RldzGcQOtRDpbOlBiFUk6ZIu+2+G7yF1 NsLyj/NHngRFIzjLsJ8A5WlwpbMCThB2fCfgIF8XtlL01sQ20cJImRnkps5RMjAY 167q3q/aplL7q4KR8I/mYcx8PR7midAARoX+K65CqE/qQsdRtcGasPSXDV+5TOgm OvqOzd1A2QXZ2N+E6lnX3ETZPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+xMm9i +8bz1n57dV84LcIt2TtPMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAimx7hqG43pGguFNjfVp6K7DBEYSsEr2EwLC7cVKB2w9bxJ8kbNV50 k4f3zawr+7O0ng0FXobBI6YM013N98+U6CYmfdBz7IIRYGxnNXvCaHfHvLFzUW+8 fOdG+r1sa7KwdXqAEXQmGr3b6Ff0aq7sPDNqkv/3SFkYNYv3VoT1C1zCelvYfdb3 fx29VDETAKsZI/EXjvG3/tkD8o1P0ExYmLmVj9GqfjGfzt8s3EGsq+5ep5v826Ka 68OxzkGIUbwZxKZG1Ud41Ook8xCBEBl3OqppORCvfAUigkJGI2DQqIQkDNrSkUK6 2ke+MIgmaLUFQnmvRyH4EVjZYCRIPQwH -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:12 2025 by rpki-client