This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: bUb0/gOUjuxdN4TQoG4Wyl8+VfriLJjQxo780uXvEeM= Subject key identifier: 2A:3A:A4:3F:4F:30:02:3A:62:C4:E1:82:F9:FE:44:6E:E0:65:DA:30 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 3551 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 351D Signing time: Thu 18 Dec 2025 14:41:53 +0000 Manifest this update: Thu 18 Dec 2025 14:41:53 +0000 Manifest next update: Thu 25 Dec 2025 14:41:53 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: g2DwZJaJNfm4N8Cn23UHzh6iNAaL9LzjlQe/sr2W1pk=) 2: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (hash: gzKLnHGUVNhUy122xbHjkwFinEFr8S05RyLytJ6eVXI=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: Npaiqv8wx3x0juj2XPFP6NT15iQeinsY3d+rnK9Ipa8=) 4: 3E4759ACC8C811F0A19E0642C4F9AE02.roa (hash: ZWUUqwfw7EkvOK+3D6M6Ls8tBIP9/iOJHFpcIlGh5RM=) 5: 42DAE250C8C711F08A7B6740C4F9AE02.roa (hash: LXms9Zrbk+PXqSOcObRZdGiWL7GgK8jI8GvKqfmYMjY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13649 (0x3551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Dec 18 14:41:53 2025 GMT Not After : Dec 25 14:41:53 2025 GMT Subject: CN=694412b1-0e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e8:fc:bc:f3:7e:02:83:a0:51:75:df:17:61: 17:53:5b:dd:b5:4e:f4:fb:37:34:19:ac:8a:4b:15: 7c:78:a1:21:a5:8e:09:53:09:90:53:58:ab:bc:f5: af:f5:19:20:13:44:8c:1f:0f:93:91:97:01:cb:87: 62:1c:f1:39:28:7b:0e:0d:85:25:f0:3a:03:a4:c8: cf:dd:12:f4:d0:b3:dc:60:85:d9:f6:b3:d8:04:a0: e5:71:33:8c:e9:d6:26:db:da:cb:63:d0:2d:be:38: e5:26:7e:26:ec:55:57:5a:12:04:d0:89:55:cf:11: 7c:ba:2e:b6:c2:df:e9:99:f2:37:72:d5:5c:fe:c0: 94:77:d5:b7:f9:ae:cd:26:73:d6:7b:1d:e4:45:a5: b0:97:b2:59:21:1a:aa:05:fb:fe:4c:10:f7:44:82: 9c:cb:ca:31:0a:79:05:20:4c:e8:e3:36:f8:b1:51: ef:0c:7c:82:15:80:c3:7e:4c:ec:c1:d8:17:e8:5f: 4a:77:fc:66:fa:b2:bd:7a:e5:28:c6:d7:60:87:a7: 8a:ab:76:6e:6c:be:47:36:31:f8:fa:53:80:49:9a: ef:64:b8:7c:44:a4:c5:5e:f2:3d:04:a6:45:42:28: bb:a1:f6:82:81:08:59:ef:91:98:c1:56:cb:45:d0: 16:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:3A:A4:3F:4F:30:02:3A:62:C4:E1:82:F9:FE:44:6E:E0:65:DA:30 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:12:30:50:d7:9b:a9:83:05:46:62:a6:75:b2:27:2c:d8:d8: 47:6e:e8:1a:ee:f9:1b:d9:6a:77:23:8d:3f:01:99:b0:37:3a: aa:84:08:9f:dd:48:a0:11:45:d0:8c:da:f7:76:d6:6d:f3:5b: 4d:11:71:2d:81:93:c8:8b:5a:39:71:d0:fa:35:aa:a0:dd:4e: 1a:22:17:e2:43:85:7f:91:05:a2:5b:e0:59:11:8c:4f:ad:c9: f0:da:bb:be:23:99:42:cc:54:67:86:3a:0a:23:c3:13:81:04: 48:eb:fe:2f:5e:ac:01:a6:1d:8d:40:67:7c:1a:6f:d4:ea:74: c0:5a:f9:7b:b4:b4:f2:35:e1:05:9c:11:24:76:5d:3f:53:eb: e2:f1:1d:d3:e3:fe:fd:c5:0c:64:89:7d:c2:83:49:d7:71:9e: 09:7d:03:74:18:89:bd:2d:d2:fe:b4:a4:3c:bc:6b:74:2b:23: 2a:79:80:5f:9d:b0:d9:73:9d:5a:e2:19:69:30:1b:41:71:df: a1:eb:ef:d6:63:e6:ce:81:92:a6:f1:f1:9a:cd:46:3a:1b:7d: e6:14:e6:e7:31:d5:fb:88:8c:70:8b:36:70:97:73:b1:71:41: b1:b7:7b:20:6d:50:82:5c:1d:f0:e8:2d:76:4e:4d:6b:c9:ab: ec:fc:a4:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUxMjE4MTQ0MTUzWhcNMjUxMjI1MTQ0MTUzWjAYMRYwFAYD VQQDDA02OTQ0MTJiMS0wZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvej8vPN+AoOgUXXfF2EXU1vdtU70+zc0GayKSxV8eKEhpY4JUwmQU1irvPWv 9RkgE0SMHw+TkZcBy4diHPE5KHsODYUl8DoDpMjP3RL00LPcYIXZ9rPYBKDlcTOM 6dYm29rLY9AtvjjlJn4m7FVXWhIE0IlVzxF8ui62wt/pmfI3ctVc/sCUd9W3+a7N JnPWex3kRaWwl7JZIRqqBfv+TBD3RIKcy8oxCnkFIEzo4zb4sVHvDHyCFYDDfkzs wdgX6F9Kd/xm+rK9euUoxtdgh6eKq3ZubL5HNjH4+lOASZrvZLh8RKTFXvI9BKZF Qii7ofaCgQhZ75GYwVbLRdAWPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCo6pD9P MAI6YsThgvn+RG7gZdowMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfEjBQ15upgwVGYqZ1sics2NhHbuga7vkb2Wp3I40/AZmwNzqqhAif 3UigEUXQjNr3dtZt81tNEXEtgZPIi1o5cdD6Naqg3U4aIhfiQ4V/kQWiW+BZEYxP rcnw2ru+I5lCzFRnhjoKI8MTgQRI6/4vXqwBph2NQGd8Gm/U6nTAWvl7tLTyNeEF nBEkdl0/U+vi8R3T4/79xQxkiX3Cg0nXcZ4JfQN0GIm9LdL+tKQ8vGt0KyMqeYBf nbDZc51a4hlpMBtBcd+h6+/WY+bOgZKm8fGazUY6G33mFObnMdX7iIxwizZwl3Ox cUGxt3sgbVCCXB3w6C12Tk1ryavs/KRq -----END CERTIFICATE-----Generated at Fri Dec 19 20:25:24 2025 by rpki-client