This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: m5RTPRWlY31uR3ReWMwm3TSggEZr0LDzm58TJPDs+YU= Subject key identifier: 32:8F:87:11:3F:66:90:A5:0D:B5:0B:EA:BC:30:D1:8C:DB:B6:C0:F3 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0C80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0C44 Signing time: Sun 28 Dec 2025 18:23:18 +0000 Manifest this update: Sun 28 Dec 2025 18:23:17 +0000 Manifest next update: Sun 04 Jan 2026 18:23:17 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: VvwH1iNP1LlhaIkA80LRqnMbMP+lzCTdv9HsWX8oh1U=) 2: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: C5rUIoFqqclhdElugA0FvIj8IEg8cL4pnvwgzKHSew8=) 3: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: FlA8+p87RbQ6mn+Uy7n2/3i41zgTeNGWUbO12H/DP9M=) 4: 78E949B8BA2B11F091659A18C4F9AE02.roa (hash: YsiXmeBHLTVcWpQeQ+rN8puRINqRyvdIiKMOhQegReM=) 5: 336E2134D0FF11F0904A3785C4F9AE02.roa (hash: c1RpgwrUufTcQd8u+OaFuFL1aeVihxvmrVabdic0s14=) 6: 16C56390B6FF11F096DEAA71C4F9AE02.roa (hash: 9b3Uw8bnyufS/OBVXlguzfB2u169cJ4rSP2ILg6tQfU=) 7: 45DE9550BADF11F09B91D509C4F9AE02.roa (hash: XtlGtbpiO/7+xxrhoFQsSF78u6N8z3Ii288HTo+RfiM=) 8: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: x2iHWFegIFwfUv7eETVYAeYmpK9xBEA15+t682RT6r8=) 9: FD9DD964D0FE11F09871A984C4F9AE02.roa (hash: G1qGp3AbufezlzHrd+0qbgbIIfUHZdSitfvuprjoIJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 18:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3200 (0xc80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Dec 28 18:23:17 2025 GMT Not After : Jan 4 18:23:17 2026 GMT Subject: CN=69517596-41e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3d:8b:87:f9:79:45:28:0e:21:b9:70:27:17: b9:20:7e:9b:2d:6b:15:cb:0b:dd:98:64:28:9f:da: c0:d3:62:66:df:50:56:4e:7c:32:a1:e0:56:82:b9: 95:92:36:1f:02:3b:f2:33:b9:a5:7e:92:ac:2b:be: b3:f7:72:b9:11:84:46:c6:6e:61:20:a5:f0:9d:96: 43:2b:2f:ac:4f:8d:8a:30:00:45:f6:74:a0:0b:e9: 07:f5:d3:37:97:d2:30:b8:02:4b:6d:71:82:a6:de: 6a:2e:1c:9a:37:d3:d1:32:3e:31:a4:52:f7:a4:fa: a2:c8:d1:2b:b4:93:20:59:88:02:37:b7:cf:ce:d1: b1:87:2a:a6:fe:6b:e1:eb:31:26:ab:dc:5c:2b:63: 25:52:7c:16:67:c4:74:cc:77:dc:9a:11:27:66:d6: 07:8f:95:4b:a0:72:35:65:16:99:8a:fe:82:0a:98: d3:6a:55:ea:aa:02:1a:f2:a1:53:a4:ef:a0:e7:4b: 24:6c:14:10:bc:99:6c:21:b4:1d:42:b4:85:54:c1: 27:ff:6f:47:34:f1:76:3a:8c:05:68:14:5a:30:1d: 71:a9:3e:bc:d5:c9:71:d4:ea:3c:2f:37:60:38:aa: 8a:7c:42:3f:65:b6:40:87:4a:fa:d5:b9:3e:1f:b1: af:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:8F:87:11:3F:66:90:A5:0D:B5:0B:EA:BC:30:D1:8C:DB:B6:C0:F3 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:63:ad:56:3a:86:20:88:d6:fe:6c:d8:1a:69:04:53:6c:dc: f5:c5:ee:60:7b:e5:d1:1a:aa:33:ae:63:d7:97:ca:70:ae:07: 82:06:16:fc:41:17:cc:1c:e7:fc:c1:42:37:96:f6:6c:72:53: 5d:8d:b5:4b:8d:1f:c4:7c:1c:2e:32:33:bd:ec:75:d7:f8:e8: 53:74:08:7c:bf:c1:fd:76:eb:c5:83:ef:d7:5d:ab:23:c1:9a: 1c:2d:16:4a:8f:e7:97:1c:c0:1b:6d:34:5f:f1:f6:0f:d9:72: 31:99:c1:91:11:ce:a7:8a:14:8d:58:ab:5c:c3:f9:f7:20:f7: ce:45:5b:05:5d:f6:36:ec:9b:b6:6f:f1:1a:3a:0b:a1:38:58: 8a:5c:43:34:12:68:05:ce:78:6a:b6:1b:1d:f9:7e:bc:99:ad: dc:00:01:66:75:ad:18:a7:6d:fc:e6:44:68:90:08:a9:6d:f5: f4:dd:e5:5c:9c:d8:95:fd:f0:db:84:27:7e:f0:16:10:3a:ad: e2:f6:a8:9c:b5:bb:55:27:77:de:e5:0f:bf:6b:2a:1d:b7:d2: 51:f4:bf:e5:6e:19:41:a0:0a:4d:c4:f6:1e:6c:e3:c2:1f:b3: c9:79:fa:07:c7:4a:77:45:ec:dd:81:77:50:52:1a:d0:44:16: 7f:60:36:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUxMjI4MTgyMzE3WhcNMjYwMTA0MTgyMzE3WjAYMRYwFAYD VQQDDA02OTUxNzU5Ni00MWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApT2Lh/l5RSgOIblwJxe5IH6bLWsVywvdmGQon9rA02Jm31BWTnwyoeBWgrmV kjYfAjvyM7mlfpKsK76z93K5EYRGxm5hIKXwnZZDKy+sT42KMABF9nSgC+kH9dM3 l9IwuAJLbXGCpt5qLhyaN9PRMj4xpFL3pPqiyNErtJMgWYgCN7fPztGxhyqm/mvh 6zEmq9xcK2MlUnwWZ8R0zHfcmhEnZtYHj5VLoHI1ZRaZiv6CCpjTalXqqgIa8qFT pO+g50skbBQQvJlsIbQdQrSFVMEn/29HNPF2OowFaBRaMB1xqT681clx1Oo8Lzdg OKqKfEI/ZbZAh0r61bk+H7Gv9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKPhxE/ ZpClDbUL6rww0YzbtsDzMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXY61WOoYgiNb+bNgaaQRTbNz1xe5ge+XRGqozrmPXl8pwrgeCBhb8 QRfMHOf8wUI3lvZsclNdjbVLjR/EfBwuMjO97HXX+OhTdAh8v8H9duvFg+/XXasj wZocLRZKj+eXHMAbbTRf8fYP2XIxmcGREc6nihSNWKtcw/n3IPfORVsFXfY27Ju2 b/EaOguhOFiKXEM0EmgFznhqthsd+X68ma3cAAFmda0Yp2385kRokAipbfX03eVc nNiV/fDbhCd+8BYQOq3i9qictbtVJ3fe5Q+/ayodt9JR9L/lbhlBoApNxPYebOPC H7PJefoHx0p3RezdgXdQUhrQRBZ/YDb7 -----END CERTIFICATE-----Generated at Tue Dec 30 16:32:52 2025 by rpki-client