This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft File: 36hgRQpvzrHG57jU_1SxVBobabM.mft (raw, json) Hash identifier: wj/t9nIrbM470mKy2trZDwzkIK0XtlePXUD8qmWbLWA= Subject key identifier: D8:9C:FD:58:20:76:BB:66:6F:62:2B:E7:30:FE:65:F4:D4:85:96:1A Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 0302 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft Manifest number: 02F8 Signing time: Fri 19 Dec 2025 00:30:20 +0000 Manifest this update: Fri 19 Dec 2025 00:30:20 +0000 Manifest next update: Fri 26 Dec 2025 00:30:20 +0000 Files and hashes: 1: 36hgRQpvzrHG57jU_1SxVBobabM.crl (hash: OS+rQ89u+14bv+qIzp3Z/aHKV/rQZnEK+c7aUnVRF90=) 2: 56C4B5083DF511ED98215F18C4F9AE02.roa (hash: +v8nyn/Oe9RWJ3ghxJ4j4ajNn0CAMG8XWMdrSVotxhY=) 3: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (hash: r+OS0Knt0u9zlSwMXXIIOrgidq7fkxM7aM/OittLXrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 770 (0x302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Dec 19 00:30:20 2025 GMT Not After : Dec 26 00:30:20 2025 GMT Subject: CN=69449c9c-e678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:41:a1:f4:c9:54:35:68:bb:da:7c:e1:09:57: 42:99:8f:2c:56:82:39:e7:c3:77:d2:04:dd:8b:ac: 3d:66:f5:3d:66:ed:83:37:5a:46:fa:3d:fb:0e:4a: 86:6a:57:7e:cd:20:0f:79:29:1d:5f:57:fa:a0:e0: 3c:f9:8a:9c:ca:dd:67:47:bc:e2:0b:58:7d:f3:1c: 61:e7:fb:19:e5:ef:53:41:d1:e2:a6:0b:34:24:2c: 57:48:c7:9b:d7:ec:cb:b6:00:6a:1d:87:24:f9:76: cf:8d:4f:a1:fe:6d:29:ba:f1:bb:86:59:f4:cd:6e: da:c1:bf:24:2a:24:fb:b7:12:06:65:d8:ef:79:f1: bb:1d:35:db:14:a1:7c:e2:12:34:af:89:bc:a1:6a: 86:67:de:af:c6:d9:cc:57:17:80:6b:d1:a4:21:49: cd:0a:c3:c4:7d:55:45:10:ac:77:a5:da:1f:0b:75: 3c:cb:f5:e9:a0:71:51:b0:1f:5d:5d:16:a3:98:12: 89:af:7f:3c:b7:06:43:7e:c7:72:a1:02:7a:ca:d6: 79:6a:b3:3d:c6:e5:7d:c3:be:46:4d:77:8f:ac:20: f3:01:64:30:b0:dc:c3:08:ad:a3:7c:91:b7:1d:bd: 10:e7:ef:c6:3b:f7:5a:28:19:e3:8c:93:d0:4c:8a: af:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:9C:FD:58:20:76:BB:66:6F:62:2B:E7:30:FE:65:F4:D4:85:96:1A X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:1b:aa:d8:7d:1a:25:5b:91:88:52:bf:7a:fe:f1:7a:d2:6f: 8c:12:35:5a:fa:fc:68:8e:a5:f4:f8:65:92:00:48:5f:67:96: 81:a7:a3:75:61:af:7d:1a:02:4c:61:3b:96:00:68:69:0c:83: e8:24:13:19:b9:00:34:23:cf:f9:5a:a0:0e:ad:d4:f9:2d:b8: 56:3e:c5:a3:ae:bf:08:d6:c8:7b:ea:6c:6b:a5:bc:e7:e1:a3: c5:fe:bc:04:2c:5d:25:57:69:8b:a4:04:3a:ba:a4:8c:d0:07: 11:d6:ca:a9:0f:cc:74:f0:5a:ef:e7:3b:64:31:49:16:0d:00: 4c:9d:c7:f3:42:b5:fb:b9:da:e3:d1:66:15:b4:f4:82:bc:dd: 06:87:83:52:27:df:4c:b3:f3:8b:f3:6e:8a:35:f6:a5:6d:2d: b8:a8:0a:50:60:07:15:24:cf:39:e2:e4:d6:e7:8a:2d:04:e9: a6:2c:fd:39:42:3f:5c:d5:94:a7:84:5d:08:00:4b:c0:a1:96: b9:e1:18:23:53:27:f9:ad:d3:31:b0:04:be:2a:f5:71:28:d0: b2:83:2a:17:0c:66:03:66:90:e8:4b:ea:91:12:fc:1a:5d:5d: d4:29:06:8e:33:0c:98:72:c5:b0:57:3e:dc:9b:45:1b:42:33: bc:f9:39:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjUxMjE5MDAzMDIwWhcNMjUxMjI2MDAzMDIwWjAYMRYwFAYD VQQDDA02OTQ0OWM5Yy1lNjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUGh9MlUNWi72nzhCVdCmY8sVoI558N30gTdi6w9ZvU9Zu2DN1pG+j37DkqG ald+zSAPeSkdX1f6oOA8+Yqcyt1nR7ziC1h98xxh5/sZ5e9TQdHipgs0JCxXSMeb 1+zLtgBqHYck+XbPjU+h/m0puvG7hln0zW7awb8kKiT7txIGZdjvefG7HTXbFKF8 4hI0r4m8oWqGZ96vxtnMVxeAa9GkIUnNCsPEfVVFEKx3pdofC3U8y/XpoHFRsB9d XRajmBKJr388twZDfsdyoQJ6ytZ5arM9xuV9w75GTXePrCDzAWQwsNzDCK2jfJG3 Hb0Q5+/GO/daKBnjjJPQTIqvaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNic/Vgg drtmb2Ir5zD+ZfTUhZYaMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85RjAzQkI2MDA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpy SEc1N2pVXzFTeFZCb2JhYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWG6rYfRolW5GIUr96/vF60m+MEjVa+vxojqX0+GWSAEhfZ5aBp6N1 Ya99GgJMYTuWAGhpDIPoJBMZuQA0I8/5WqAOrdT5LbhWPsWjrr8I1sh76mxrpbzn 4aPF/rwELF0lV2mLpAQ6uqSM0AcR1sqpD8x08Frv5ztkMUkWDQBMncfzQrX7udrj 0WYVtPSCvN0Gh4NSJ99Ms/OL826KNfalbS24qApQYAcVJM854uTW54otBOmmLP05 Qj9c1ZSnhF0IAEvAoZa54RgjUyf5rdMxsAS+KvVxKNCygyoXDGYDZpDoS+qREvwa XV3UKQaOMwyYcsWwVz7cm0UbQjO8+TlB -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:37 2025 by rpki-client