This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft File: 089k1dsXYfy2pVLwaAkTMMW19Ts.mft (raw, json) Hash identifier: WEakr/lgy0tHbu/OY2NDkgAWDnfydNi6mlwCYDbFewI= Subject key identifier: A3:CE:95:8A:59:11:1A:91:AE:AB:08:02:72:CC:48:6F:2C:71:27:D6 Authority key identifier: D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B Certificate issuer: /CN=A91A25DF/serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft Manifest number: 54 Signing time: Fri 19 Dec 2025 06:11:54 +0000 Manifest this update: Fri 19 Dec 2025 06:11:54 +0000 Manifest next update: Fri 26 Dec 2025 06:11:54 +0000 Files and hashes: 1: 089k1dsXYfy2pVLwaAkTMMW19Ts.crl (hash: 0avfDxqjl+ZMi7phiObLYwzdnEaPl4Jxhsug0kqbPMs=) 2: C54DD1F45EDA11F0A5EAB579C4F9AE02.roa (hash: yvTiS/oFSBojbCtB284WFEZBM+3n1uqQBo+L9aW7vLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Validity Not Before: Dec 19 06:11:54 2025 GMT Not After : Dec 26 06:11:54 2025 GMT Subject: CN=6944ecaa-dc90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:77:b1:37:9e:7b:4b:c2:e5:2c:74:d6:8e:7c: 2f:67:d6:2b:f7:9f:53:b8:68:ad:73:37:8a:8f:c1: 78:51:33:6f:da:a5:f1:62:a6:37:e4:07:c0:6a:0e: c6:14:48:5e:1c:9d:28:78:b4:3e:87:d2:dd:b5:9f: b9:90:81:7d:2d:42:39:d2:5e:bb:b0:41:fc:3c:d9: f1:e0:ff:bb:62:e3:35:50:95:a8:09:cb:bb:ec:d3: 8b:8f:74:01:71:dc:6d:f7:d3:1d:98:ce:18:a4:98: fb:5d:ed:33:1b:8c:58:98:19:ab:be:46:67:00:56: e1:69:cc:40:0f:f6:c1:e3:23:80:b1:b4:c3:5c:38: f6:f7:53:39:8e:f9:c6:21:e4:66:05:e2:52:db:7e: 92:dc:be:98:9b:85:19:45:fb:50:c8:e1:1a:3d:46: df:b2:d7:c0:24:29:d4:47:5a:a0:30:17:a7:3f:c0: bf:b5:f7:95:b4:bd:6a:e5:e3:f8:9f:a4:5a:f7:2c: 0e:fe:65:22:51:c6:18:ca:87:2f:8f:43:d1:b2:5b: fe:a7:26:0a:c0:64:13:20:2e:12:1d:88:b0:74:f1: a4:f7:55:50:38:d7:02:b9:c3:d5:29:88:07:09:2b: e2:94:bd:58:60:8a:6b:b5:01:a7:ed:ac:b5:87:88: cf:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CE:95:8A:59:11:1A:91:AE:AB:08:02:72:CC:48:6F:2C:71:27:D6 X509v3 Authority Key Identifier: keyid:D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:f6:83:ee:fa:74:79:d8:1b:8a:e8:1d:89:ab:3f:47:15:3a: ec:7d:57:38:7c:0f:29:5d:fa:d3:1e:2f:31:98:3f:a2:e6:56: fd:15:b0:8f:5b:6a:8c:cf:60:40:38:c3:c5:7c:cf:fb:f1:02: 98:41:b2:e7:c1:1b:5e:66:60:d4:96:ae:85:14:1f:05:1b:f7: 27:e4:29:e9:98:c0:c3:c2:de:a8:12:97:fb:93:48:37:35:11: 63:37:91:d9:17:7b:d9:f1:79:af:43:55:26:cb:91:96:03:49: 81:f5:a4:a0:b3:97:fb:65:c1:58:08:11:94:61:a8:ae:3d:64: 15:86:e1:cc:0a:e3:36:9e:b3:dc:31:55:91:2c:dd:45:db:af: 90:21:6d:23:bf:eb:1e:e4:ea:88:83:9c:0b:d0:37:2b:78:c2: bc:e8:8b:06:fa:b3:5b:56:58:99:60:7c:07:ac:c5:a2:67:48: 95:1c:48:dc:02:6d:c0:b2:8c:4d:32:d0:f5:19:f4:fc:71:d9: 28:e9:6d:ea:cb:1d:8c:96:aa:da:91:58:bc:19:86:3e:96:1f: 2e:2b:b4:28:90:d8:f1:4b:d6:a5:b1:66:e6:91:9a:eb:02:42: 38:24:c5:67:bc:b3:d6:fa:2c:93:e2:4a:f7:4c:be:7a:dd:e7: 1c:31:af:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoRDNDRjY0RDVEQjE3NjFGQ0I2QTU1MkYwNjgwOTEzMzBD NUI1RjUzQjAeFw0yNTEyMTkwNjExNTRaFw0yNTEyMjYwNjExNTRaMBgxFjAUBgNV BAMMDTY5NDRlY2FhLWRjOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbd7E3nntLwuUsdNaOfC9n1iv3n1O4aK1zN4qPwXhRM2/apfFipjfkB8BqDsYU SF4cnSh4tD6H0t21n7mQgX0tQjnSXruwQfw82fHg/7ti4zVQlagJy7vs04uPdAFx 3G330x2YzhikmPtd7TMbjFiYGau+RmcAVuFpzEAP9sHjI4CxtMNcOPb3UzmO+cYh 5GYF4lLbfpLcvpibhRlF+1DI4Ro9Rt+y18AkKdRHWqAwF6c/wL+195W0vWrl4/if pFr3LA7+ZSJRxhjKhy+PQ9GyW/6nJgrAZBMgLhIdiLB08aT3VVA41wK5w9UpiAcJ K+KUvVhgimu1AaftrLWHiM+fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUo86VilkR GpGuqwgCcsxIbyxxJ9YwHwYDVR0jBBgwFoAU089k1dsXYfy2pVLwaAkTMMW19Tsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0U2MTI0MDgyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5MnBWTHdhQWtUTU1XMTlU cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDg5azFkc1hZZnkycFZMd2FBa1RNTVcxOVRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0U2MTI0MDgyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5 MnBWTHdhQWtUTU1XMTlUcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIP2g+76dHnYG4roHYmrP0cVOux9Vzh8Dyld+tMeLzGYP6LmVv0VsI9b aozPYEA4w8V8z/vxAphBsufBG15mYNSWroUUHwUb9yfkKemYwMPC3qgSl/uTSDc1 EWM3kdkXe9nxea9DVSbLkZYDSYH1pKCzl/tlwVgIEZRhqK49ZBWG4cwK4zaes9wx VZEs3UXbr5AhbSO/6x7k6oiDnAvQNyt4wrzoiwb6s1tWWJlgfAesxaJnSJUcSNwC bcCyjE0y0PUZ9Pxx2SjpberLHYyWqtqRWLwZhj6WHy4rtCiQ2PFL1qWxZuaRmusC QjgkxWe8s9b6LJPiSvdMvnrd5xwxr7A= -----END CERTIFICATE-----Generated at Sat Dec 20 00:58:48 2025 by rpki-client