This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: XgfRhxUUCNB6WsbYc3TD/wdN0t2p7cOsUK049M13vA8= Subject key identifier: 14:8A:4A:49:0F:25:37:D6:46:18:7D:CF:5A:E7:AB:D6:F0:CC:54:F9 Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: 01EE Signing time: Tue 23 Dec 2025 01:40:11 +0000 Manifest this update: Tue 23 Dec 2025 01:40:10 +0000 Manifest next update: Tue 30 Dec 2025 01:40:10 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: BFYYIHH7sxn4yza0u9n3VINl4MXjt94XqpbVO3SHqYo=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: NxTIAEmzVEkhnPtaZCQQUJAnARHilUKNCFgj1AKD+gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: Dec 23 01:40:10 2025 GMT Not After : Dec 30 01:40:10 2025 GMT Subject: CN=6949f2fb-f2d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1c:7a:8e:1f:40:5d:ca:4f:ce:9f:35:66:ba: 72:54:76:53:b5:c0:d1:86:d8:1d:d8:21:af:fb:33: 0b:fe:2b:b5:cb:e8:9b:c5:d5:b2:73:b1:8e:d4:1f: 2d:21:61:2b:43:ff:0d:70:f8:d3:f0:1e:3a:b5:32: cf:b3:66:de:70:bd:6b:5a:3d:f0:c5:64:69:ba:4c: 50:44:54:65:cc:49:71:e6:07:3d:89:1a:2b:1c:cf: 26:14:38:b5:5d:ed:13:cb:b8:6e:f4:7f:98:09:3c: d9:3d:e3:09:62:60:fc:26:5a:43:81:91:da:b3:b7: 8b:9e:03:39:a2:69:f2:49:7b:94:a5:e4:24:83:1c: a1:59:2b:1d:36:72:a3:1e:b0:2a:c4:08:e0:f1:60: d6:27:84:5f:2c:bd:dd:33:ca:03:4b:b6:65:f1:10: 64:4b:cb:a9:91:5f:b5:8a:4c:2e:d3:30:a7:a9:f7: 83:0f:02:53:72:50:93:cc:e4:b2:d2:3b:49:f4:8c: 10:97:f5:87:87:df:62:4f:ec:da:a4:cb:a4:22:46: 7e:97:48:5d:60:73:28:83:45:3d:df:0e:32:26:49: c6:f5:8e:c1:3a:59:23:ae:77:74:0a:b9:f8:a0:90: 73:c4:77:9e:f3:9a:0a:cf:ad:1b:7f:98:21:a4:ba: e3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8A:4A:49:0F:25:37:D6:46:18:7D:CF:5A:E7:AB:D6:F0:CC:54:F9 X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:34:3b:b9:e4:3b:92:5b:8c:8f:77:26:dc:d4:29:d6:8d:20: aa:30:39:6c:3d:48:9b:42:c6:18:83:5d:6e:54:99:73:e8:46: 82:ff:2b:28:b5:2f:89:c4:2a:29:df:81:04:84:4b:39:bc:15: c1:2b:6f:e1:7d:00:1a:1f:4e:90:a4:48:9e:37:39:36:c4:3d: 77:27:ac:cf:dd:f3:26:36:69:a4:13:10:f8:54:9e:f5:dc:15: c5:75:23:0f:b0:c7:ee:79:d3:5e:54:13:6b:38:d7:28:71:3f: 07:5b:fc:3a:bb:33:ca:4d:8c:df:aa:be:5e:be:c1:72:b8:fa: 1c:1a:98:04:76:d4:e1:9a:80:fa:ac:f6:85:ac:09:e7:5a:18: a5:23:f1:2d:f4:c2:8e:37:bc:47:79:bf:d8:4e:c4:d7:8f:1f: 73:8f:50:55:14:7f:69:a6:66:e1:9e:31:a2:0b:e4:f8:3c:f2: 95:f8:ec:c8:f6:49:1b:64:3c:26:61:97:c4:04:be:05:93:55: cf:ce:39:2a:c9:c0:1c:a6:a8:12:8c:d3:d6:e1:f8:63:53:c3: 84:68:1c:5a:f5:bf:3c:f2:2a:eb:b2:3d:1e:22:7b:6e:7b:e2: d4:58:38:05:46:62:bf:95:36:77:ce:47:51:94:32:b0:e5:b9: b5:06:4d:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUxMjIzMDE0MDEwWhcNMjUxMjMwMDE0MDEwWjAYMRYwFAYD VQQDDA02OTQ5ZjJmYi1mMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxx6jh9AXcpPzp81ZrpyVHZTtcDRhtgd2CGv+zML/iu1y+ibxdWyc7GO1B8t IWErQ/8NcPjT8B46tTLPs2becL1rWj3wxWRpukxQRFRlzElx5gc9iRorHM8mFDi1 Xe0Ty7hu9H+YCTzZPeMJYmD8JlpDgZHas7eLngM5omnySXuUpeQkgxyhWSsdNnKj HrAqxAjg8WDWJ4RfLL3dM8oDS7Zl8RBkS8upkV+1ikwu0zCnqfeDDwJTclCTzOSy 0jtJ9IwQl/WHh99iT+zapMukIkZ+l0hdYHMog0U93w4yJknG9Y7BOlkjrnd0Crn4 oJBzxHee85oKz60bf5ghpLrj6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSKSkkP JTfWRhh9z1rnq9bwzFT5MB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGNDu55DuSW4yPdybc1CnWjSCqMDlsPUibQsYYg11uVJlz6EaC/yso tS+JxCop34EEhEs5vBXBK2/hfQAaH06QpEieNzk2xD13J6zP3fMmNmmkExD4VJ71 3BXFdSMPsMfuedNeVBNrONcocT8HW/w6uzPKTYzfqr5evsFyuPocGpgEdtThmoD6 rPaFrAnnWhilI/Et9MKON7xHeb/YTsTXjx9zj1BVFH9ppmbhnjGiC+T4PPKV+OzI 9kkbZDwmYZfEBL4Fk1XPzjkqycAcpqgSjNPW4fhjU8OEaBxa9b888irrsj0eIntu e+LUWDgFRmK/lTZ3zkdRlDKw5bm1Bk1f -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:14 2025 by rpki-client