This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: hE7kgfUnZE67hfEdxi16F6aDxXRqOjprdaV1BjtSFs0= Subject key identifier: 4C:97:0C:7D:BE:21:19:B8:3E:B1:FB:D0:74:AD:52:F4:D2:3F:6E:94 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 08F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 08C2 Signing time: Sat 20 Dec 2025 19:55:58 +0000 Manifest this update: Sat 20 Dec 2025 19:55:58 +0000 Manifest next update: Sat 27 Dec 2025 19:55:58 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: mmvqb+nUMuX8Rf0dmQHE/Pm20bXC/CITsqRyrAfQQQo=) 2: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) 3: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) 4: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: 50ACgx85pKWBSdecvm1PzIpRWx2Le1Y9DodxHydptpU=) 5: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2294 (0x8f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Dec 20 19:55:58 2025 GMT Not After : Dec 27 19:55:58 2025 GMT Subject: CN=6946ff4e-1b97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4f:ce:96:d2:f0:24:36:f1:0b:41:b1:63:b6: dd:a1:a9:ec:33:70:a2:94:97:44:fb:37:83:71:78: 43:44:9c:43:91:c1:8d:e5:23:33:4e:9a:66:96:4e: 50:e6:d0:fc:35:e1:0c:9e:ac:c1:04:e4:32:6a:b6: b7:a2:4f:15:39:13:3f:8b:38:1f:73:7f:a1:1c:53: fb:2b:a6:6a:19:18:c7:99:3c:1e:12:85:38:93:2a: e6:b9:19:09:af:aa:7d:b1:c5:99:6b:3d:a5:3c:67: 57:3a:f4:67:ce:26:0f:b1:59:24:ec:c5:25:ea:df: 18:1f:f6:39:e1:34:d2:75:0c:56:80:47:ec:d1:c2: ae:46:8e:af:cc:ee:50:f4:c7:ba:35:8f:a5:1e:00: 51:03:d6:40:af:17:c5:f3:08:13:dc:39:9b:9c:cc: cb:87:94:b3:ee:34:87:23:69:56:0c:be:04:e1:68: 3b:8e:c8:af:65:f3:e2:fc:d2:96:bc:f5:21:28:67: 27:2b:b3:a8:1d:ce:6b:a1:91:b0:b0:c4:f9:65:4f: af:18:90:2a:6b:d9:99:ad:98:82:24:4c:ec:d4:37: 83:98:e7:e5:08:1d:12:6d:f9:2d:0d:8f:23:19:50: 5f:d1:4f:0e:c6:16:90:8e:5d:07:91:e5:fe:08:17: f5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:97:0C:7D:BE:21:19:B8:3E:B1:FB:D0:74:AD:52:F4:D2:3F:6E:94 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:ae:a1:af:cc:c5:5f:b8:be:f3:59:40:40:9c:2f:67:76:df: c9:ae:86:39:fa:e6:0a:7e:de:77:58:4f:76:31:4e:bf:38:4a: 1a:4c:e1:dc:bc:77:f6:a8:9d:02:12:32:ff:8f:aa:59:9d:e7: b6:8b:e0:83:21:84:fc:c0:96:2c:c6:fe:da:c7:c6:78:4c:fe: dd:50:04:5f:02:21:62:1a:87:19:fb:1e:60:bf:32:f5:2e:0b: fa:a7:50:0b:d4:c7:32:7c:45:68:95:04:6f:2e:38:ee:ce:96: c9:1c:1c:94:65:b2:ea:73:28:b3:ea:df:97:07:8c:af:f9:fe: 7c:37:db:5b:12:c2:32:32:f2:e3:83:79:66:e1:c8:85:af:ad: bb:a3:96:7e:1e:f7:2d:1c:79:0a:67:11:3e:b8:03:3d:b4:43: fe:d5:f1:60:96:07:a9:3c:71:7f:f4:a2:0c:11:e3:50:d6:cd: 8a:32:c3:e2:c5:90:02:41:34:a3:68:fc:0e:b9:b4:65:b2:5f: ae:0f:17:f9:f5:5b:5e:e7:64:08:23:1e:0d:8d:0d:77:f2:6d: fc:e8:50:e1:3a:33:27:6e:41:a3:d8:f3:a7:19:4e:ab:db:24: aa:42:c7:04:a9:19:81:d2:04:5d:44:f4:d1:93:ce:4f:d8:e0: 28:c3:28:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUxMjIwMTk1NTU4WhcNMjUxMjI3MTk1NTU4WjAYMRYwFAYD VQQDDA02OTQ2ZmY0ZS0xYjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxE/OltLwJDbxC0GxY7bdoansM3CilJdE+zeDcXhDRJxDkcGN5SMzTppmlk5Q 5tD8NeEMnqzBBOQyara3ok8VORM/izgfc3+hHFP7K6ZqGRjHmTweEoU4kyrmuRkJ r6p9scWZaz2lPGdXOvRnziYPsVkk7MUl6t8YH/Y54TTSdQxWgEfs0cKuRo6vzO5Q 9Me6NY+lHgBRA9ZArxfF8wgT3DmbnMzLh5Sz7jSHI2lWDL4E4Wg7jsivZfPi/NKW vPUhKGcnK7OoHc5roZGwsMT5ZU+vGJAqa9mZrZiCJEzs1DeDmOflCB0SbfktDY8j GVBf0U8OxhaQjl0HkeX+CBf1aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyXDH2+ IRm4PrH70HStUvTSP26UMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrrqGvzMVfuL7zWUBAnC9ndt/JroY5+uYKft53WE92MU6/OEoaTOHc vHf2qJ0CEjL/j6pZnee2i+CDIYT8wJYsxv7ax8Z4TP7dUARfAiFiGocZ+x5gvzL1 Lgv6p1AL1McyfEVolQRvLjjuzpbJHByUZbLqcyiz6t+XB4yv+f58N9tbEsIyMvLj g3lm4ciFr627o5Z+HvctHHkKZxE+uAM9tEP+1fFglgepPHF/9KIMEeNQ1s2KMsPi xZACQTSjaPwOubRlsl+uDxf59Vte52QIIx4NjQ138m386FDhOjMnbkGj2POnGU6r 2ySqQscEqRmB0gRdRPTRk85P2OAowyi6 -----END CERTIFICATE-----Generated at Sun Dec 21 09:55:35 2025 by rpki-client