This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft File: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft (raw, json) Hash identifier: 75Cs7Ucur2H2S/TwasjOGzV/6LrnGuIiuexVPIEYjQc= Subject key identifier: 05:6E:10:75:0C:4A:21:DE:42:51:8D:93:58:67:8C:68:B7:7D:4D:ED Authority key identifier: DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 Certificate issuer: /CN=A91516FF/serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft Manifest number: 92 Signing time: Fri 19 Dec 2025 05:42:51 +0000 Manifest this update: Fri 19 Dec 2025 05:42:51 +0000 Manifest next update: Fri 26 Dec 2025 05:42:51 +0000 Files and hashes: 1: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl (hash: W8ftFgBsbQGi0l5HRa7Y8WvMwSLtf/BUNttxru4pA8U=) 2: 692243D640AA11F096F2746AC4F9AE02.roa (hash: 9g7lOOD5JnVMfPoV+CkyAbWN9NrLgMODndTwuqHyDZ8=) 3: EFE35156B61811F0AEA87331C4F9AE02.roa (hash: yGF0/J4YTOhabvB6dHd/CkU6xMGpr2zyh/tO91R2r30=) 4: B2E521ACB61911F08CF0DC33C4F9AE02.roa (hash: qhmSvaZGy1wgMrEHyKh0anKTUZYqwOr3QNOLophEj2o=) 5: 572A655C6E8E11F0BC00AD68C4F9AE02.roa (hash: vb7fSe4hGTfYiR3X8s03oFhLsFFESwK0obRkUpL5Xz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91516FF, serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Validity Not Before: Dec 19 05:42:51 2025 GMT Not After : Dec 26 05:42:51 2025 GMT Subject: CN=6944e5db-e5e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:04:14:99:0d:07:fa:61:20:91:38:dc:44:c7: 61:5a:a0:1d:c3:a8:e7:28:ef:95:c2:a1:b3:00:0d: 2e:a5:91:9b:2a:9a:f0:34:f0:80:4e:67:0c:8b:dc: 76:9f:df:a7:09:64:68:d7:3c:cc:31:15:ea:de:9d: fd:5f:be:76:3b:fc:03:73:56:dc:32:11:50:d8:eb: a1:81:ee:b9:a9:05:f7:06:7b:40:06:19:e5:61:3e: 3f:97:c6:6f:79:89:3b:cc:1f:6c:c3:05:e4:8f:eb: 0d:ea:10:dd:aa:df:02:2b:03:a6:ec:0b:2c:89:67: a2:42:ac:fb:5b:d9:d0:d4:6d:55:8d:1e:7a:04:6f: 77:41:f6:bb:07:51:34:83:2c:dc:b8:39:ff:b3:91: 47:62:22:ec:8b:f2:46:25:a8:48:26:a1:63:5b:d2: 3e:dc:4f:e4:91:c1:f6:2e:1b:69:7a:95:4a:cd:c2: 41:da:70:0c:12:b9:39:a0:e4:f0:bb:ed:7b:4d:a7: c0:70:a4:de:48:36:1c:fd:5c:98:50:d0:9a:dc:f2: f5:dc:11:2a:d2:26:04:f7:3d:b1:b6:be:1a:e6:2b: 4d:31:1c:9f:34:ae:4f:bb:60:8b:86:db:ce:60:15: d6:59:ea:1e:67:83:96:fe:18:fa:2a:b3:55:5b:08: a7:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6E:10:75:0C:4A:21:DE:42:51:8D:93:58:67:8C:68:B7:7D:4D:ED X509v3 Authority Key Identifier: keyid:DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:5a:36:5a:95:78:3a:39:1f:70:e1:3f:f9:4a:0d:a1:43:06: 07:86:4d:21:10:87:89:80:b5:9e:85:72:f8:6f:db:4d:53:be: 9c:24:e0:25:f4:ee:96:9e:d1:dc:df:87:93:c2:8f:60:4e:0d: ba:74:1c:f7:6f:ce:d6:d8:7e:44:20:c2:ef:f2:b7:8a:93:29: c7:96:08:5a:93:50:8f:58:79:23:b9:ec:aa:81:48:ac:6f:c6: ea:4a:75:67:a7:43:f1:15:85:d5:8b:43:8c:55:85:93:82:e8: 07:48:da:58:17:c1:9b:d8:db:b9:69:7d:9a:f4:b3:2e:f3:67: 76:d4:98:7b:64:e7:35:b0:39:de:0e:2f:28:94:03:6b:8b:0e: 0d:53:71:ad:bd:4f:b5:d1:af:44:4d:47:7b:e0:bb:95:4e:e3: 10:3d:50:ca:0f:07:03:9e:a2:ab:e7:94:bc:a9:8d:3a:79:9b: 4a:f3:75:41:9e:19:b5:3d:77:47:da:fe:01:58:8b:ee:45:ed: f9:d0:52:45:f5:c3:49:4c:2f:d3:0c:d1:16:4c:5f:bd:8f:f7: d7:3a:0b:70:49:d9:71:ac:2f:d6:9d:2d:b8:21:0a:31:eb:f4: b6:a8:85:b4:93:46:cb:fc:31:97:79:25:0b:3b:db:36:b2:73: 86:39:90:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2RkYxMTAvBgNVBAUTKERGQ0E4RkRBQTVGRUY5NDhFMEVDRjZGOUM3MDM2MzlC NTY1MzlEOTkwHhcNMjUxMjE5MDU0MjUxWhcNMjUxMjI2MDU0MjUxWjAYMRYwFAYD VQQDDA02OTQ0ZTVkYi1lNWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwQUmQ0H+mEgkTjcRMdhWqAdw6jnKO+VwqGzAA0upZGbKprwNPCATmcMi9x2 n9+nCWRo1zzMMRXq3p39X752O/wDc1bcMhFQ2Ouhge65qQX3BntABhnlYT4/l8Zv eYk7zB9swwXkj+sN6hDdqt8CKwOm7AssiWeiQqz7W9nQ1G1VjR56BG93Qfa7B1E0 gyzcuDn/s5FHYiLsi/JGJahIJqFjW9I+3E/kkcH2LhtpepVKzcJB2nAMErk5oOTw u+17TafAcKTeSDYc/VyYUNCa3PL13BEq0iYE9z2xtr4a5itNMRyfNK5Pu2CLhtvO YBXWWeoeZ4OW/hj6KrNVWwin4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVuEHUM SiHeQlGNk1hnjGi3fU3tMB8GA1UdIwQYMBaAFN/Kj9ql/vlI4Oz2+ccDY5tWU52Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTZGRi8yREE1NTkxMjE0 MTYxMUYwQTg1MjMyMTlDNEY5QUUwMi8zOHFQMnFYLS1Vamc3UGI1eHdOam0xWlRu WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4cVAycVgtLVVqZzdQYjV4d05qbTFaVG5aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTZGRi8yREE1NTkxMjE0MTYxMUYwQTg1MjMyMTlDNEY5QUUwMi8zOHFQMnFYLS1V amc3UGI1eHdOam0xWlRuWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSWjZalXg6OR9w4T/5Sg2hQwYHhk0hEIeJgLWehXL4b9tNU76cJOAl 9O6WntHc34eTwo9gTg26dBz3b87W2H5EIMLv8reKkynHlghak1CPWHkjueyqgUis b8bqSnVnp0PxFYXVi0OMVYWTgugHSNpYF8Gb2Nu5aX2a9LMu82d21Jh7ZOc1sDne Di8olANriw4NU3GtvU+10a9ETUd74LuVTuMQPVDKDwcDnqKr55S8qY06eZtK83VB nhm1PXdH2v4BWIvuRe350FJF9cNJTC/TDNEWTF+9j/fXOgtwSdlxrC/WnS24IQox 6/S2qIW0k0bL/DGXeSULO9s2snOGOZAh -----END CERTIFICATE-----Generated at Sat Dec 20 17:33:18 2025 by rpki-client