This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft File: -0q1qaTcN7vWXmHkKkJWz5UbjHM.mft (raw, json) Hash identifier: ATy7QZBVWH7IwyZ4Qf6N5nrYQY5Jm8QOwhL10fLKczw= Subject key identifier: 93:FE:05:31:50:6A:B7:EF:E8:C9:5D:3F:ED:50:7A:F6:4E:03:2C:CC Authority key identifier: FB:4A:B5:A9:A4:DC:37:BB:D6:5E:61:E4:2A:42:56:CF:95:1B:8C:73 Certificate issuer: /CN=A91AE567/serialNumber=FB4AB5A9A4DC37BBD65E61E42A4256CF951B8C73 Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft Manifest number: 0425 Signing time: Sat 20 Dec 2025 23:36:51 +0000 Manifest this update: Sat 20 Dec 2025 23:36:50 +0000 Manifest next update: Sat 27 Dec 2025 23:36:50 +0000 Files and hashes: 1: -0q1qaTcN7vWXmHkKkJWz5UbjHM.crl (hash: /r8wMFNndQP5lSlg4asxGjXHDUP2yl2QuKz2/f1lVjU=) 2: C657777835BD11EEBBA15F71C4F9AE02.roa (hash: dBKzmRV5kLqxEgnT/9vEMvol4LmNVdPd79i3sVZVmJg=) 3: B1B6929CCFD611ED8BEF6866C4F9AE02.roa (hash: 9DfUOxvFR13SpwnP9dE6JJ+qwtWuEZ4XB8tC3ndW1gI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.crl rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE567, serialNumber=FB4AB5A9A4DC37BBD65E61E42A4256CF951B8C73 Validity Not Before: Dec 20 23:36:50 2025 GMT Not After : Dec 27 23:36:50 2025 GMT Subject: CN=69473313-30fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ff:fe:38:d6:b8:ef:4b:1c:a2:cb:50:f0:c4: 9f:83:e5:35:6c:04:4a:be:c0:85:37:9a:ad:b5:3b: 1b:c2:3e:dd:c7:a5:51:57:3a:6f:b3:36:eb:95:3c: dd:4a:dd:03:a3:3a:6e:dd:bf:42:a9:14:ad:63:92: 68:47:75:20:bd:35:b0:e3:60:b5:32:7e:67:c1:d6: f1:21:ff:24:7b:fc:c4:74:4a:42:f8:b7:c3:5f:69: 30:c7:af:6f:eb:1c:58:18:3e:a8:a2:d5:46:f8:39: fe:36:22:2d:d8:68:98:39:af:e7:e9:96:9b:95:fd: 38:44:be:0c:9d:ae:67:88:57:27:d5:4d:8c:70:11: 50:bf:a3:42:6c:0b:27:19:9f:cf:24:1b:55:49:bd: 9b:ea:4b:34:9b:6a:8e:7b:e2:60:68:d5:fe:f7:da: 4a:e6:be:e5:c5:9c:fb:f4:a9:f9:3d:0b:a2:a6:42: b7:04:b1:5d:9a:39:d5:cf:b6:1f:58:fa:7f:20:e2: 15:92:18:c1:1e:e5:26:2c:f5:fd:01:8b:09:8b:32: 15:ab:64:dc:2b:47:51:a2:6d:75:44:7a:4d:cf:e6: 41:12:dc:c6:d9:6f:9e:6c:bf:23:07:b0:2b:a7:3e: 8f:43:31:01:0f:75:27:ed:78:76:d7:6e:86:7f:e3: d3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:FE:05:31:50:6A:B7:EF:E8:C9:5D:3F:ED:50:7A:F6:4E:03:2C:CC X509v3 Authority Key Identifier: keyid:FB:4A:B5:A9:A4:DC:37:BB:D6:5E:61:E4:2A:42:56:CF:95:1B:8C:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:e4:57:9a:5b:b7:68:68:07:85:f2:01:cc:88:8b:1e:56:aa: 23:bf:f4:58:bf:2a:54:8c:13:d5:33:5f:1c:63:9a:df:11:ad: 61:da:03:59:18:f3:ae:6e:c5:f6:93:6c:d4:1f:77:d0:2d:c7: 21:6f:10:93:1c:e1:5a:03:10:74:90:43:bd:64:c7:b2:db:30: a8:c7:a5:d4:0a:8e:e3:b9:c6:ba:30:b7:64:9a:10:68:23:d8: a3:84:b8:5f:b8:5d:fc:02:61:bf:c4:07:df:36:3d:6f:6a:6e: 42:19:96:f6:a9:b1:da:23:8c:f0:67:85:0a:0a:5e:68:b3:f8: 0a:d0:b9:5e:0d:3a:55:dc:f3:d0:eb:ed:a0:77:b7:99:67:f8: ff:91:12:03:0f:68:31:7b:bb:e1:86:20:19:ce:f4:27:af:2f: 12:0d:aa:2a:8d:15:bf:a0:ae:d8:b4:7e:09:60:df:84:e5:5e: c2:f6:0d:b6:a2:c6:fc:df:26:49:8a:cd:b6:40:28:da:d5:e0: b2:e3:e9:da:44:fb:e3:68:83:2e:84:61:bc:4a:61:75:f7:6f: 70:de:e6:83:31:81:97:0b:78:fd:c2:eb:25:bc:58:5b:89:27: 57:8e:46:29:1e:17:bc:90:a7:fb:a8:2e:8a:27:b8:37:53:cf: d3:80:2b:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU1NjcxMTAvBgNVBAUTKEZCNEFCNUE5QTREQzM3QkJENjVFNjFFNDJBNDI1NkNG OTUxQjhDNzMwHhcNMjUxMjIwMjMzNjUwWhcNMjUxMjI3MjMzNjUwWjAYMRYwFAYD VQQDDA02OTQ3MzMxMy0zMGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0v/+ONa470scostQ8MSfg+U1bARKvsCFN5qttTsbwj7dx6VRVzpvszbrlTzd St0Dozpu3b9CqRStY5JoR3UgvTWw42C1Mn5nwdbxIf8ke/zEdEpC+LfDX2kwx69v 6xxYGD6ootVG+Dn+NiIt2GiYOa/n6Zablf04RL4Mna5niFcn1U2McBFQv6NCbAsn GZ/PJBtVSb2b6ks0m2qOe+JgaNX+99pK5r7lxZz79Kn5PQuipkK3BLFdmjnVz7Yf WPp/IOIVkhjBHuUmLPX9AYsJizIVq2TcK0dRom11RHpNz+ZBEtzG2W+ebL8jB7Ar pz6PQzEBD3Un7Xh2126Gf+PTswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJP+BTFQ arfv6MldP+1QevZOAyzMMB8GA1UdIwQYMBaAFPtKtamk3De71l5h5CpCVs+VG4xz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTU2Ny9FNjc5OTRERThG RjQxMUVDOTA0NzJGN0RDNEY5QUUwMi8tMHExcWFUY043dldYbUhrS2tKV3o1VWJq SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0wcTFxYVRjTjd2V1htSGtLa0pXejVVYmpITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTU2Ny9FNjc5OTRERThGRjQxMUVDOTA0NzJGN0RDNEY5QUUwMi8tMHExcWFUY043 dldYbUhrS2tKV3o1VWJqSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt5FeaW7doaAeF8gHMiIseVqojv/RYvypUjBPVM18cY5rfEa1h2gNZ GPOubsX2k2zUH3fQLcchbxCTHOFaAxB0kEO9ZMey2zCox6XUCo7juca6MLdkmhBo I9ijhLhfuF38AmG/xAffNj1vam5CGZb2qbHaI4zwZ4UKCl5os/gK0LleDTpV3PPQ 6+2gd7eZZ/j/kRIDD2gxe7vhhiAZzvQnry8SDaoqjRW/oK7YtH4JYN+E5V7C9g22 osb83yZJis22QCja1eCy4+naRPvjaIMuhGG8SmF1929w3uaDMYGXC3j9wuslvFhb iSdXjkYpHhe8kKf7qC6KJ7g3U8/TgCux -----END CERTIFICATE-----Generated at Sun Dec 21 02:09:32 2025 by rpki-client