This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft File: rI34tAewexNnm3HFASus3eJQHnE.mft (raw, json) Hash identifier: dROQ8n8z54J45cwSX9jBohsmgYwc5qkMsvYEa3Z+dqY= Subject key identifier: 28:10:62:5C:5F:E2:51:AA:F0:BD:88:BE:CF:5F:E0:5C:CC:20:06:89 Authority key identifier: AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 Certificate issuer: /CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Certificate serial: 2313 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft Manifest number: 2304 Signing time: Mon 22 Dec 2025 15:40:17 +0000 Manifest this update: Mon 22 Dec 2025 15:40:16 +0000 Manifest next update: Mon 29 Dec 2025 15:40:16 +0000 Files and hashes: 1: rI34tAewexNnm3HFASus3eJQHnE.crl (hash: Uc/Rh6+H2pOo9Lk7ayutZIdPrRO2c8uQ4Kt/m4o+vv8=) 2: 2D55F42CB0F611E5B464E359C4F9AE02.roa (hash: +yqS5ARpGMGBWr2MyFGiajoFZUJV/KOEs+STzodgJKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8979 (0x2313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC43D, serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Validity Not Before: Dec 22 15:40:16 2025 GMT Not After : Dec 29 15:40:16 2025 GMT Subject: CN=69496661-73dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e9:f5:42:80:2d:8d:a3:01:e4:c2:39:17:2e: f1:90:ea:9f:b9:cb:6b:fb:5e:a5:6c:08:38:33:c6: 2f:a3:96:4e:dd:d6:1c:ea:5d:38:9a:19:c8:12:df: 17:4a:e7:e2:52:98:cb:50:3a:89:5d:0a:30:62:f1: a2:db:64:96:24:ce:f2:3c:1b:f2:fd:fd:a9:cd:b7: f7:39:b7:fd:26:81:5d:6e:97:fa:8e:6b:53:36:0a: a9:fa:2a:37:5f:48:ff:b6:1f:d6:64:16:1e:69:86: e0:5d:36:19:47:f8:81:38:49:3e:29:49:32:6a:01: 0a:d4:55:50:43:93:ae:2f:2d:fc:47:78:d5:00:18: ca:21:72:49:a5:bc:27:3a:f2:9c:cb:6c:7f:0a:8f: f7:15:40:5c:fe:4a:20:f7:fa:27:7c:67:db:62:da: d0:26:42:9f:0f:70:f1:ee:a2:e7:1f:17:c6:27:b4: b5:61:3d:47:e7:48:bd:83:37:f7:ef:1b:f3:a6:71: 73:4e:d4:c5:e7:59:06:5a:bb:4c:40:c5:8c:43:7e: c1:6b:24:96:50:fd:fc:52:89:12:a4:cc:e3:da:ab: 1b:a0:e5:7e:85:25:4f:ee:3b:8b:55:b7:4c:60:11: 3e:43:45:22:ba:b7:a8:1b:fb:e6:90:84:bc:cc:82: 49:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:10:62:5C:5F:E2:51:AA:F0:BD:88:BE:CF:5F:E0:5C:CC:20:06:89 X509v3 Authority Key Identifier: keyid:AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:0f:0c:67:f5:b9:09:11:48:06:94:ff:4b:b8:a3:a4:f6:3c: c2:69:87:d2:47:fe:d4:78:72:44:31:2c:da:7d:07:a9:ee:ef: 01:e0:72:2d:96:b1:07:11:2d:0c:8d:4d:33:f9:ad:28:93:b1: 3a:3a:a7:b7:d6:98:8b:95:35:b5:75:f8:45:6f:8d:a4:57:da: 4f:89:c7:21:80:55:37:d2:2d:89:ba:0a:64:9a:34:d9:11:b6: 90:ee:53:4d:3b:f6:11:39:f1:c2:81:1d:d1:c7:89:42:5e:48: f0:87:70:ec:35:0d:89:24:c5:19:a1:fc:07:c2:a0:ae:cf:2b: 56:ff:14:22:b7:b1:4f:2b:7b:e0:c7:4e:a6:48:59:ab:e9:a3: 13:39:92:91:97:24:aa:30:47:b8:54:6a:59:cd:19:51:e6:a0: 29:de:b7:07:89:5b:0d:d6:a9:4c:c0:c2:a9:fb:c3:a1:c5:43: 5d:ed:77:43:fe:0e:0f:59:c9:50:6f:3c:44:26:66:5f:30:bb: 87:8d:fa:5f:c6:5b:c8:7e:e2:bd:b1:8e:0c:2c:d6:3b:50:14: 50:8e:6d:97:9b:b2:df:93:db:ea:e2:db:94:ce:ea:17:67:b9: b9:f2:61:09:35:c1:b2:ae:ac:07:3c:71:26:73:bd:41:5c:7e: 6b:11:39:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0M0QxMTAvBgNVBAUTKEFDOERGOEI0MDdCMDdCMTM2NzlCNzFDNTAxMkJBQ0RE RTI1MDFFNzEwHhcNMjUxMjIyMTU0MDE2WhcNMjUxMjI5MTU0MDE2WjAYMRYwFAYD VQQDDA02OTQ5NjY2MS03M2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAken1QoAtjaMB5MI5Fy7xkOqfuctr+16lbAg4M8Yvo5ZO3dYc6l04mhnIEt8X SufiUpjLUDqJXQowYvGi22SWJM7yPBvy/f2pzbf3Obf9JoFdbpf6jmtTNgqp+io3 X0j/th/WZBYeaYbgXTYZR/iBOEk+KUkyagEK1FVQQ5OuLy38R3jVABjKIXJJpbwn OvKcy2x/Co/3FUBc/kog9/onfGfbYtrQJkKfD3Dx7qLnHxfGJ7S1YT1H50i9gzf3 7xvzpnFzTtTF51kGWrtMQMWMQ37BaySWUP38UokSpMzj2qsboOV+hSVP7juLVbdM YBE+Q0UiureoG/vmkIS8zIJJeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgQYlxf 4lGq8L2Ivs9f4FzMIAaJMB8GA1UdIwQYMBaAFKyN+LQHsHsTZ5txxQErrN3iUB5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQzRC9FREIyOEU3RUE0 ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4Tm5tM0hGQVN1czNlSlFI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJMzR0QWV3ZXhObm0zSEZBU3VzM2VKUUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzQzRC9FREIyOEU3RUE0ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4 Tm5tM0hGQVN1czNlSlFIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsDwxn9bkJEUgGlP9LuKOk9jzCaYfSR/7UeHJEMSzafQep7u8B4HIt lrEHES0MjU0z+a0ok7E6Oqe31piLlTW1dfhFb42kV9pPicchgFU30i2JugpkmjTZ EbaQ7lNNO/YROfHCgR3Rx4lCXkjwh3DsNQ2JJMUZofwHwqCuzytW/xQit7FPK3vg x06mSFmr6aMTOZKRlySqMEe4VGpZzRlR5qAp3rcHiVsN1qlMwMKp+8OhxUNd7XdD /g4PWclQbzxEJmZfMLuHjfpfxlvIfuK9sY4MLNY7UBRQjm2Xm7Lfk9vq4tuUzuoX Z7m58mEJNcGyrqwHPHEmc71BXH5rETl+ -----END CERTIFICATE-----Generated at Tue Dec 23 03:18:17 2025 by rpki-client