This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: Z27S6ZOsBaMo1xUOP0q9erqBV8R+xh7FM9ocCL0FUm0= Subject key identifier: 25:4A:F6:91:4E:35:0D:C6:E1:28:58:52:0A:82:3E:96:88:1B:19:21 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 086A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 0841 Signing time: Thu 18 Dec 2025 20:23:25 +0000 Manifest this update: Thu 18 Dec 2025 20:23:25 +0000 Manifest next update: Thu 25 Dec 2025 20:23:25 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: DIgaGGGMXH+aXXHD4HN95HiYPsurggrF2vTVsB/PchA=) 2: 0C64C6B2821011F0B329B866C4F9AE02.roa (hash: D2PIDDhjMLrJzP//kuZEMaof293KC1FejYs4Z1FlT9g=) 3: C3738F60A78511F0B1D3342CC4F9AE02.roa (hash: doeraFCMJ4YY06qP/CyZ7CStviCw2H65v541coUCoQs=) 4: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: vJqvl3p3GZGjPo1+bFOu/lz3UGNmQtiNtsOQmfP7QoU=) 5: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: AjNKnPWs+wQxA57p7oeqhPGR6IMIStHtSJ7A+NHTTwU=) 6: 7F9EB0A28CF111F09EC8727CC4F9AE02.roa (hash: BxPajmDdLGfIydsWc2EIPgDs9jrVdPhKlvGIPc4xwYE=) 7: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: RVujGjgRtNml2s4B1MbyglZHc1wuuQ8z+GSwbNfvR2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2154 (0x86a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Dec 18 20:23:25 2025 GMT Not After : Dec 25 20:23:25 2025 GMT Subject: CN=694462bd-bdfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:76:c5:b6:9d:f7:89:d8:3e:a3:dd:e1:e8:b3: c0:cf:e3:e0:97:b6:de:81:2b:fc:ed:97:a6:43:fd: 30:89:4f:96:17:32:0d:27:94:f2:de:a7:d4:89:c3: 9a:7d:03:a8:0a:f8:ea:85:a6:6d:2f:ec:16:3f:9c: f5:c0:90:f0:9f:7d:ff:c0:ec:b3:bd:74:e1:67:26: 19:30:35:09:5e:e6:bb:6e:82:bc:d7:15:ad:7f:1e: f3:06:8b:07:80:d0:93:a8:17:17:8b:6f:b6:19:2f: b1:1b:b9:9e:c6:f1:49:96:4a:d2:7d:b0:b6:42:b5: eb:95:cd:46:ce:23:4b:e1:49:e5:7a:8c:ee:8b:b4: c5:e6:98:77:c8:40:4f:4a:73:07:4a:c6:7d:f1:1f: ff:b6:5b:33:07:23:45:c6:41:25:8a:65:9e:b1:33: 8f:67:51:28:1c:9f:e7:71:75:14:9f:50:31:9a:10: 83:9a:5e:ff:f1:69:82:36:b7:e9:9c:96:99:83:8f: b5:a4:c6:30:ec:c2:97:23:63:40:38:50:f1:3c:14: 42:94:7f:8b:0a:49:d0:be:d8:bd:c9:5d:31:91:9e: 9b:f1:4b:fa:2d:33:cd:b0:a7:cc:3a:ab:5f:c7:c7: 35:65:5a:bb:af:50:60:2c:92:96:f2:be:7b:d8:78: 60:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4A:F6:91:4E:35:0D:C6:E1:28:58:52:0A:82:3E:96:88:1B:19:21 X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:c3:7f:70:fc:54:d1:68:13:11:dc:25:3e:8b:c7:c9:a7:98: b3:3b:e6:39:80:9f:78:a7:04:77:0c:45:97:0b:25:89:0a:12: ed:35:64:38:fb:58:81:2d:74:fb:03:79:ce:f9:19:bb:e3:fe: e2:fe:89:6e:3e:a9:3b:cd:38:7b:81:0f:84:df:fb:d7:a6:01: ed:ab:d9:65:94:d5:1b:f9:06:40:13:c7:31:48:55:43:ba:a3: 81:7c:5e:a3:63:ec:2d:15:bd:3b:a5:3d:ba:18:91:42:f0:9b: 88:9c:fd:a0:05:c6:d5:35:62:c8:cf:b5:3f:c0:1a:85:3b:84: 25:a8:c2:83:11:c5:6b:a9:53:90:48:f6:69:e0:9f:34:fc:2b: 1f:71:8b:93:56:21:e6:c8:9a:b5:e9:24:93:7c:2f:4f:80:cd: 9d:a5:14:d4:5f:d4:25:26:32:1f:7f:d4:cf:c9:b2:bd:6e:0e: 39:9f:3c:00:74:9c:78:b2:af:f7:86:87:ed:56:54:50:f4:1f: 56:62:80:48:2a:2d:8e:98:e3:c9:ff:f8:8e:de:66:de:9c:73: 4e:8e:ac:82:91:cc:57:05:cc:a5:fa:64:bd:c9:3b:a0:03:5f: 9c:74:00:78:3d:80:c6:04:ae:5a:f8:42:e3:e4:6d:11:25:69: 4c:7d:0b:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjUxMjE4MjAyMzI1WhcNMjUxMjI1MjAyMzI1WjAYMRYwFAYD VQQDDA02OTQ0NjJiZC1iZGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3bFtp33idg+o93h6LPAz+Pgl7begSv87ZemQ/0wiU+WFzINJ5Ty3qfUicOa fQOoCvjqhaZtL+wWP5z1wJDwn33/wOyzvXThZyYZMDUJXua7boK81xWtfx7zBosH gNCTqBcXi2+2GS+xG7mexvFJlkrSfbC2QrXrlc1GziNL4Unleozui7TF5ph3yEBP SnMHSsZ98R//tlszByNFxkElimWesTOPZ1EoHJ/ncXUUn1AxmhCDml7/8WmCNrfp nJaZg4+1pMYw7MKXI2NAOFDxPBRClH+LCknQvti9yV0xkZ6b8Uv6LTPNsKfMOqtf x8c1ZVq7r1BgLJKW8r572HhgUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVK9pFO NQ3G4ShYUgqCPpaIGxkhMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPw39w/FTRaBMR3CU+i8fJp5izO+Y5gJ94pwR3DEWXCyWJChLtNWQ4 +1iBLXT7A3nO+Rm74/7i/oluPqk7zTh7gQ+E3/vXpgHtq9lllNUb+QZAE8cxSFVD uqOBfF6jY+wtFb07pT26GJFC8JuInP2gBcbVNWLIz7U/wBqFO4QlqMKDEcVrqVOQ SPZp4J80/CsfcYuTViHmyJq16SSTfC9PgM2dpRTUX9QlJjIff9TPybK9bg45nzwA dJx4sq/3hoftVlRQ9B9WYoBIKi2OmOPJ//iO3mbenHNOjqyCkcxXBcyl+mS9yTug A1+cdAB4PYDGBK5a+ELj5G0RJWlMfQs8 -----END CERTIFICATE-----Generated at Sat Dec 20 17:32:26 2025 by rpki-client