This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: vAofXFMHVyYd3RMO2oIXDcgcYSkAr+l3xkxRauFDmgo= Subject key identifier: 44:30:EE:62:E0:6B:D2:90:EF:C9:78:62:10:76:F4:A4:FD:62:0E:25 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 01E8 Signing time: Fri 19 Dec 2025 01:49:42 +0000 Manifest this update: Fri 19 Dec 2025 01:49:42 +0000 Manifest next update: Fri 26 Dec 2025 01:49:42 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: hJilewUF1QfoT1OZwbvi56T1ELlm2CGo76qIeJacMDo=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: INPCDc0DcqgC408Ka6XEyt5LGDqlBDYRzaUMMyrzKIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: Dec 19 01:49:42 2025 GMT Not After : Dec 26 01:49:42 2025 GMT Subject: CN=6944af36-27ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:8e:db:cd:58:05:ec:10:27:1f:d8:04:18:52: 67:b7:c0:0a:3a:79:07:46:eb:b5:94:0f:24:25:f3: 5c:ea:4a:ec:45:1c:83:9f:bd:23:54:ed:b9:ca:cb: 5f:b2:19:67:15:d3:ae:7d:47:30:9e:c1:f4:29:2a: 9b:73:e2:e6:ea:15:1d:13:99:c9:c1:c1:11:ff:2d: 75:19:4c:e6:26:fb:95:77:79:d1:b2:59:28:e4:77: cb:a3:c1:37:fb:0c:dd:fe:0d:81:cd:ee:d0:02:46: a3:c0:fe:8f:40:96:3e:de:1a:0b:3d:0e:1b:30:e9: 80:50:8c:73:43:09:b1:7f:90:43:e6:df:3e:c1:3f: ab:fb:e4:85:45:85:fc:92:9d:f6:36:b4:64:fa:83: 0b:ef:27:4b:3a:59:69:f6:02:82:af:03:37:ca:93: 7e:d7:ac:c2:af:fd:af:85:75:36:cc:39:ad:91:ce: cf:50:a8:34:17:32:f1:27:ef:e9:da:32:6e:a2:66: 76:52:c3:d4:ae:51:ea:7b:06:c7:c1:3b:74:4e:d0: 19:fb:1b:18:87:1b:12:5a:b2:11:34:4a:fe:f7:96: a0:be:48:71:c7:3b:14:48:f4:47:9e:ea:6a:7e:b1: 20:cd:9e:ac:ee:31:35:9c:0b:2a:96:be:b6:93:b4: 11:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:30:EE:62:E0:6B:D2:90:EF:C9:78:62:10:76:F4:A4:FD:62:0E:25 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:dc:ee:98:c1:90:9e:6b:bd:51:a5:ce:fa:f5:7a:5a:05:e3: 08:2d:9b:12:03:38:d1:35:04:d5:7d:f3:62:e8:4f:47:39:1b: a7:9e:17:03:28:3b:ef:65:5d:6d:42:77:5b:fc:01:76:fa:e2: 4a:fe:74:eb:00:71:d0:af:98:7e:a6:21:af:4d:56:3e:a3:5e: b8:18:6b:13:f8:df:82:8a:1e:ec:a5:16:e4:d2:9f:8e:b9:ba: aa:52:6b:46:78:46:d1:84:50:b2:b3:49:23:de:4c:96:39:b9: 00:39:5f:e9:81:84:15:41:27:5c:bf:c8:11:26:00:1b:3c:63: 9d:85:53:11:4a:58:7b:e5:9f:af:e7:ea:14:e7:f2:21:52:ae: bd:0a:2e:12:52:ca:ba:d6:a1:ea:3a:a9:e4:6d:bc:6a:49:e9: 2e:b9:68:d4:d9:b2:c2:ca:31:c5:8f:aa:ec:90:cc:0c:3b:44: 3e:9c:85:35:55:77:ec:a9:13:eb:b0:a5:5d:96:2e:37:ab:73: 2e:63:4a:6f:6d:76:39:06:04:51:56:96:7b:03:a6:ee:a7:88: 87:04:e9:04:b4:3c:7f:3e:c5:ad:51:0a:35:29:32:5b:8e:a0: 78:05:49:52:8f:20:57:2a:2d:48:42:fc:b4:02:c5:4e:6e:b2: 0c:85:95:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjUxMjE5MDE0OTQyWhcNMjUxMjI2MDE0OTQyWjAYMRYwFAYD VQQDDA02OTQ0YWYzNi0yN2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAg47bzVgF7BAnH9gEGFJnt8AKOnkHRuu1lA8kJfNc6krsRRyDn70jVO25ystf shlnFdOufUcwnsH0KSqbc+Lm6hUdE5nJwcER/y11GUzmJvuVd3nRslko5HfLo8E3 +wzd/g2Bze7QAkajwP6PQJY+3hoLPQ4bMOmAUIxzQwmxf5BD5t8+wT+r++SFRYX8 kp32NrRk+oML7ydLOllp9gKCrwM3ypN+16zCr/2vhXU2zDmtkc7PUKg0FzLxJ+/p 2jJuomZ2UsPUrlHqewbHwTt0TtAZ+xsYhxsSWrIRNEr+95agvkhxxzsUSPRHnupq frEgzZ6s7jE1nAsqlr62k7QRXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQw7mLg a9KQ78l4YhB29KT9Yg4lMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB93O6YwZCea71Rpc769XpaBeMILZsSAzjRNQTVffNi6E9HORunnhcD KDvvZV1tQndb/AF2+uJK/nTrAHHQr5h+piGvTVY+o164GGsT+N+Cih7spRbk0p+O ubqqUmtGeEbRhFCys0kj3kyWObkAOV/pgYQVQSdcv8gRJgAbPGOdhVMRSlh75Z+v 5+oU5/IhUq69Ci4SUsq61qHqOqnkbbxqSekuuWjU2bLCyjHFj6rskMwMO0Q+nIU1 VXfsqRPrsKVdli43q3MuY0pvbXY5BgRRVpZ7A6bup4iHBOkEtDx/PsWtUQo1KTJb jqB4BUlSjyBXKi1IQvy0AsVObrIMhZV2 -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:02 2025 by rpki-client