This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: zlhV0b1lJ63H+UhFmTEQ6ksiSluKnaiU/tcEN2kHvIk= Subject key identifier: C8:D1:C6:C4:77:38:C7:DB:24:2E:FC:7F:FC:4C:3A:CB:D3:2C:41:16 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 0901 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 08C9 Signing time: Tue 30 Dec 2025 19:55:11 +0000 Manifest this update: Tue 30 Dec 2025 19:55:11 +0000 Manifest next update: Tue 06 Jan 2026 19:55:11 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: 8gq3EHfm5d3u9wAOkNGRkWBsYt5QxscYVoEc+ja9cjg=) 2: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: lohr8A0pJoxU5YjZ4Iv+RM2sF95pgDEhCh+aZEFVj7A=) 3: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: g2Es0FtiWlI2wUZjhcKolcXm06CxccFnLzcDd+5e5mY=) 4: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: KLxFMFuExsnPKk7ehnMGot9TEXcnIXuDGRsDC/SqYdc=) 5: 4EF79184489411ED86987260C4F9AE02.roa (hash: iQNiRJndJ2EDSy4xdUwWuCF3frGlBaK+w6YY3/xBdJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 19:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2305 (0x901) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Dec 30 19:55:11 2025 GMT Not After : Jan 6 19:55:11 2026 GMT Subject: CN=69542e1f-4247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e8:45:7e:b4:f3:93:48:66:07:a9:6c:6f:7e: f1:3e:00:46:53:85:47:e1:99:d4:47:3f:a5:63:40: 24:59:70:b8:6d:de:ab:6e:f3:87:2b:cb:0f:db:47: c9:99:68:e2:63:26:ae:e2:8f:2b:40:26:69:98:0e: 14:ed:02:ea:02:b4:d3:97:35:b5:4f:2b:eb:ed:92: cc:e0:46:2b:00:b7:92:39:3b:65:0b:8c:74:12:17: 3a:ea:46:cb:1f:86:90:53:6a:4c:e9:90:b9:53:9f: 1a:3c:6e:17:8c:35:b0:7a:ca:37:c9:f0:07:4f:7f: f8:75:9a:5d:14:6b:e0:26:64:60:5b:6a:b5:65:1b: 6d:cd:6a:36:65:09:2f:12:28:48:25:7e:2e:03:06: f0:e7:c8:2d:30:96:be:f1:96:bd:24:07:23:34:50: 15:97:17:2c:ba:29:1e:c3:dc:fa:2a:28:33:57:23: 0e:c3:f6:74:94:91:9b:aa:9d:71:05:bb:5e:82:3d: d1:52:fd:86:fc:8d:16:5c:ff:ae:d4:e1:a7:d5:f3: 71:25:06:4b:fa:32:83:30:25:45:d3:b2:27:0d:b2: 95:d9:44:53:61:ee:49:96:1c:54:65:19:dc:c3:7d: 9b:a0:19:dc:6f:d2:3a:92:6c:25:34:52:bb:ea:1a: fa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D1:C6:C4:77:38:C7:DB:24:2E:FC:7F:FC:4C:3A:CB:D3:2C:41:16 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:6a:b6:e8:9a:f0:01:71:c2:e0:8d:84:5d:59:52:41:42:02: ea:62:f4:dd:41:4c:a6:ce:e1:67:5d:2e:ef:50:2a:19:d5:64: 1b:fb:66:3d:72:40:f8:7d:80:ce:d1:a1:52:ed:e6:e8:b6:e9: 2b:4d:65:ca:a4:cb:32:6d:dc:3c:83:2d:bd:26:cb:09:91:9a: f1:54:a3:35:db:ea:f5:cb:ba:46:c8:61:80:ab:15:dc:2c:b6: fa:98:9a:12:14:3a:e1:af:e2:8f:78:fd:de:7c:0d:de:fb:0d: f8:5e:f1:35:2d:0e:82:b5:d6:db:80:f3:43:97:a3:d4:09:27: 46:81:ba:ad:32:2a:cb:94:33:08:d9:18:96:94:9e:39:04:77: 53:35:6c:6a:af:a2:5c:9b:30:69:44:28:54:86:92:19:d0:f0: 15:77:a6:f4:66:29:3f:82:88:fb:3e:91:08:d9:1c:6b:fc:34: ef:09:f9:92:b8:61:60:82:57:eb:3f:ec:b1:b8:f5:0f:35:ad: fa:db:4c:66:9b:19:60:29:07:8b:de:b4:f3:a0:8c:a9:8f:ed: 37:81:a5:4e:a6:79:bf:19:8f:1b:49:a1:ea:c3:4c:29:e5:2c: 22:8f:0a:9d:f3:f3:77:f7:8b:d1:d6:f3:ec:48:60:f4:9f:43: 65:f6:07:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUxMjMwMTk1NTExWhcNMjYwMTA2MTk1NTExWjAYMRYwFAYD VQQDDA02OTU0MmUxZi00MjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ehFfrTzk0hmB6lsb37xPgBGU4VH4ZnURz+lY0AkWXC4bd6rbvOHK8sP20fJ mWjiYyau4o8rQCZpmA4U7QLqArTTlzW1Tyvr7ZLM4EYrALeSOTtlC4x0Ehc66kbL H4aQU2pM6ZC5U58aPG4XjDWweso3yfAHT3/4dZpdFGvgJmRgW2q1ZRttzWo2ZQkv EihIJX4uAwbw58gtMJa+8Za9JAcjNFAVlxcsuikew9z6KigzVyMOw/Z0lJGbqp1x Bbtegj3RUv2G/I0WXP+u1OGn1fNxJQZL+jKDMCVF07InDbKV2URTYe5JlhxUZRnc w32boBncb9I6kmwlNFK76hr6xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjRxsR3 OMfbJC78f/xMOsvTLEEWMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzarbomvABccLgjYRdWVJBQgLqYvTdQUymzuFnXS7vUCoZ1WQb+2Y9 ckD4fYDO0aFS7ebotukrTWXKpMsybdw8gy29JssJkZrxVKM12+r1y7pGyGGAqxXc LLb6mJoSFDrhr+KPeP3efA3e+w34XvE1LQ6CtdbbgPNDl6PUCSdGgbqtMirLlDMI 2RiWlJ45BHdTNWxqr6JcmzBpRChUhpIZ0PAVd6b0Zik/goj7PpEI2Rxr/DTvCfmS uGFgglfrP+yxuPUPNa3620xmmxlgKQeL3rTzoIypj+03gaVOpnm/GY8bSaHqw0wp 5Swijwqd8/N394vR1vPsSGD0n0Nl9gf4 -----END CERTIFICATE-----Generated at Wed Dec 31 07:59:51 2025 by rpki-client