This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: 3xeF2cFpnfqjhZZ+WwVOzZl9S6G4jABLGY5gCDsoKKE= Subject key identifier: DB:3D:C1:15:7C:D5:4E:E0:B5:0C:5B:08:0C:36:2B:76:ED:58:4A:80 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0B90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0B88 Signing time: Mon 22 Dec 2025 18:33:36 +0000 Manifest this update: Mon 22 Dec 2025 18:33:35 +0000 Manifest next update: Mon 29 Dec 2025 18:33:35 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: NkOMQXsjWEqHk4K9JCpYEE/1ZUj5nr9JJ3l8L5yGI/o=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: 3BW+6nymo9tOkRv2HmgjHdbdXck1fJ3/WU7dqQPErF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:33:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB, serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Dec 22 18:33:35 2025 GMT Not After : Dec 29 18:33:35 2025 GMT Subject: CN=69498f00-57b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:37:e8:fc:8d:24:48:b0:07:7e:e4:1f:68:94: ce:23:76:5f:39:ca:70:79:9a:22:24:73:e8:60:f5: 41:a6:0c:89:8b:82:51:c5:ed:07:8b:3f:f9:cc:62: f1:dc:86:87:8a:a0:e5:a2:e8:86:06:50:17:ae:2f: 54:80:3a:97:fa:e5:25:73:61:a4:12:64:53:d7:45: e5:76:d6:07:bc:e5:ef:2a:8b:8b:6b:d8:83:33:05: b5:84:33:60:14:28:45:4c:e1:a6:58:ad:3d:b8:8f: dc:c0:9d:43:07:8c:0b:15:67:b5:88:b8:5f:a0:1d: bd:73:47:c0:05:1c:e8:d6:a7:20:d5:df:16:1a:4f: 9a:13:b4:39:0c:29:9a:a4:88:1b:c1:a7:5f:9a:c1: 4b:b3:de:12:bc:f3:27:96:14:f1:1e:6a:1d:57:36: 0e:eb:b2:1b:d2:4e:37:2c:e5:10:29:0a:c9:61:73: ff:e2:9c:5c:df:47:49:06:58:f1:38:13:15:ab:83: c0:8f:74:31:15:94:87:54:48:19:6b:69:1f:ed:5e: f1:af:20:7c:74:95:b1:1a:9e:21:64:ff:75:03:5e: f8:61:34:aa:a3:61:70:dc:2d:9a:b8:5f:a9:d6:71: 99:a1:1b:7b:d6:04:21:ea:00:2a:d3:22:97:43:62: e5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3D:C1:15:7C:D5:4E:E0:B5:0C:5B:08:0C:36:2B:76:ED:58:4A:80 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:5c:20:f9:05:8d:07:a0:39:66:45:e7:09:97:70:cb:e2:73: 55:4b:eb:d0:c6:95:cd:70:56:d4:5b:b5:f8:7a:2c:5f:bd:43: 67:d6:86:b0:4d:7e:95:5d:66:b5:88:93:8e:00:87:93:6a:cd: bc:d5:70:44:98:8d:e7:31:da:5f:95:08:8a:0f:e6:86:c6:8f: 0c:1a:ea:14:b2:dd:d4:dc:79:bf:ff:00:98:5c:1a:ba:8f:5d: 3a:0d:e0:9f:5c:d0:b2:46:4d:2e:85:71:29:fb:3a:54:cc:0f: c0:42:b7:4a:19:4f:fb:13:b6:61:5c:cb:bf:03:2f:af:1c:ed: 54:35:51:af:03:98:ba:c7:5f:bd:da:2d:ef:0c:03:c8:7e:71: 75:5d:49:36:83:37:42:a9:c2:2b:fb:16:9d:d8:83:f5:10:d4: c4:68:f0:89:08:f2:08:ef:da:f4:ae:2d:dc:c4:ec:90:c8:52: 3c:60:bd:4f:12:80:46:72:db:49:54:20:b2:e7:9b:f0:7c:8f: 30:4b:c9:7c:59:d9:01:3a:3d:d9:18:fd:26:ba:2f:48:39:5b: 7f:9c:79:09:8d:f0:18:02:19:0a:6d:31:ac:ad:cf:a5:f4:be: 7e:92:d1:d0:b9:04:0e:1f:58:c9:b7:8c:48:74:5c:c7:92:8b: 7b:33:6d:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjUxMjIyMTgzMzM1WhcNMjUxMjI5MTgzMzM1WjAYMRYwFAYD VQQDDA02OTQ5OGYwMC01N2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojfo/I0kSLAHfuQfaJTOI3ZfOcpweZoiJHPoYPVBpgyJi4JRxe0Hiz/5zGLx 3IaHiqDlouiGBlAXri9UgDqX+uUlc2GkEmRT10XldtYHvOXvKouLa9iDMwW1hDNg FChFTOGmWK09uI/cwJ1DB4wLFWe1iLhfoB29c0fABRzo1qcg1d8WGk+aE7Q5DCma pIgbwadfmsFLs94SvPMnlhTxHmodVzYO67Ib0k43LOUQKQrJYXP/4pxc30dJBljx OBMVq4PAj3QxFZSHVEgZa2kf7V7xryB8dJWxGp4hZP91A174YTSqo2Fw3C2auF+p 1nGZoRt71gQh6gAq0yKXQ2LltwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNs9wRV8 1U7gtQxbCAw2K3btWEqAMB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1XCD5BY0HoDlmRecJl3DL4nNVS+vQxpXNcFbUW7X4eixfvUNn1oaw TX6VXWa1iJOOAIeTas281XBEmI3nMdpflQiKD+aGxo8MGuoUst3U3Hm//wCYXBq6 j106DeCfXNCyRk0uhXEp+zpUzA/AQrdKGU/7E7ZhXMu/Ay+vHO1UNVGvA5i6x1+9 2i3vDAPIfnF1XUk2gzdCqcIr+xad2IP1ENTEaPCJCPII79r0ri3cxOyQyFI8YL1P EoBGcttJVCCy55vwfI8wS8l8WdkBOj3ZGP0mui9IOVt/nHkJjfAYAhkKbTGsrc+l 9L5+ktHQuQQOH1jJt4xIdFzHkot7M23g -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:14 2025 by rpki-client