This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft File: p_mvKNJKQySTtLK6m1Vym8CXfMg.mft (raw, json) Hash identifier: soe1pcAQEsZsXQ9jiXb0QlQr6JGBVOAg1ErEdZWka9o= Subject key identifier: E1:E9:97:41:85:6E:F5:A2:D6:2D:EE:26:8B:B4:A8:EA:28:86:E3:B3 Authority key identifier: A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 Certificate issuer: /CN=A91AF9A1/serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Certificate serial: 0DBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft Manifest number: 0DB0 Signing time: Thu 18 Dec 2025 17:41:54 +0000 Manifest this update: Thu 18 Dec 2025 17:41:54 +0000 Manifest next update: Thu 25 Dec 2025 17:41:54 +0000 Files and hashes: 1: p_mvKNJKQySTtLK6m1Vym8CXfMg.crl (hash: ltlg475fohOE8pe3ym3v40MWwDQNSC9iIN7CMzM5L0E=) 2: 6DDABFB26CD511ED9EC9CF83C4F9AE02.roa (hash: SkBXJ2Cg15YTINlEK8cWxPkVEnzJM9DWZ0n7aJtqwN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3517 (0xdbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF9A1, serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Validity Not Before: Dec 18 17:41:54 2025 GMT Not After : Dec 25 17:41:54 2025 GMT Subject: CN=69443ce2-93b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d8:aa:b1:ca:1d:cd:e9:52:03:e6:23:b7:9b: 38:22:9d:55:2a:76:f2:e7:8e:54:55:6c:ae:c4:50: c9:53:81:f1:e2:01:40:89:a7:62:b6:d2:35:10:c7: e9:74:16:b5:6d:ac:b2:c7:07:d1:e4:28:6e:f9:c0: 08:ee:d3:79:3d:ad:e8:60:3e:d9:1f:fa:62:b6:51: ea:34:0a:a8:33:3d:e2:3b:8d:0e:9f:77:61:51:4f: ad:49:d8:9f:a4:39:36:20:87:be:60:76:8a:12:f3: a7:eb:42:de:0c:20:83:66:ba:43:f8:86:a4:ca:f9: d7:4a:a3:99:34:87:99:dc:1a:ed:01:b7:ad:d3:ea: 9f:95:bb:98:1d:d1:75:34:cc:22:20:0c:f6:a0:e7: 07:8f:36:83:77:dd:f0:f4:e7:a5:73:c3:38:b3:92: 90:94:31:e1:6d:97:5e:e3:82:a5:2e:ae:21:69:86: c7:ae:51:5b:b1:d0:18:5f:74:77:dc:71:d8:fb:3a: b4:ec:7a:6c:ea:95:1f:b4:6c:02:83:6e:68:ca:b9: f4:9f:bb:5f:01:4a:c5:ff:08:cd:a0:8e:e3:ad:c7: 91:9b:e2:ff:82:60:e0:e6:b4:3c:00:92:17:b4:a7: 01:a2:d6:c7:cc:1c:3d:d2:8c:13:4f:fb:98:0f:31: c0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E9:97:41:85:6E:F5:A2:D6:2D:EE:26:8B:B4:A8:EA:28:86:E3:B3 X509v3 Authority Key Identifier: keyid:A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e4:25:0c:2c:6f:42:d8:a9:31:26:df:5a:a6:c4:c1:e0:29:48: 88:cc:8e:32:e3:12:af:08:24:62:bc:af:d4:f0:ad:83:7b:b2: 50:4e:28:17:c3:bb:9e:00:3b:ff:70:75:05:64:f4:79:e5:13: 20:c6:19:3a:8a:41:1c:16:41:2a:b8:af:81:15:ed:06:79:a6: 27:c1:d2:3d:51:1c:5c:3e:dd:c8:8b:13:0b:95:b5:b3:66:60: 06:41:06:58:43:35:47:66:5f:88:43:0e:53:d3:93:9b:5c:37: ea:31:bb:d0:05:c8:6b:e2:0e:03:e0:c8:ee:b8:3d:2f:a2:8e: 49:3c:22:cf:39:55:fe:60:bf:b1:de:40:90:a3:32:2e:de:f2: 0b:70:d9:df:ea:79:d7:55:c5:80:a4:92:e3:07:a6:e2:f3:ad: 61:9f:96:ba:f6:62:57:2a:b9:f1:c1:dd:a7:c4:e6:88:9f:b5: 97:37:6c:4a:bd:de:8b:da:dd:49:3f:89:71:b8:78:7a:17:dd: e0:c1:8d:00:a2:d5:2e:a1:d0:48:42:13:c3:66:c3:5b:8b:6c: 36:d4:aa:2b:12:57:0c:b3:46:28:37:6f:db:02:0f:94:d8:29: d4:5b:8c:6f:e2:e4:e8:9a:9a:1e:5e:3c:b4:ce:96:bf:bd:81: 1e:bc:94:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY5QTExMTAvBgNVBAUTKEE3RjlBRjI4RDI0QTQzMjQ5M0I0QjJCQTlCNTU3MjlC QzA5NzdDQzgwHhcNMjUxMjE4MTc0MTU0WhcNMjUxMjI1MTc0MTU0WjAYMRYwFAYD VQQDDA02OTQ0M2NlMi05M2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NiqscodzelSA+Yjt5s4Ip1VKnby545UVWyuxFDJU4Hx4gFAiadittI1EMfp dBa1bayyxwfR5Chu+cAI7tN5Pa3oYD7ZH/pitlHqNAqoMz3iO40On3dhUU+tSdif pDk2IIe+YHaKEvOn60LeDCCDZrpD+IakyvnXSqOZNIeZ3BrtAbet0+qflbuYHdF1 NMwiIAz2oOcHjzaDd93w9Oelc8M4s5KQlDHhbZde44KlLq4haYbHrlFbsdAYX3R3 3HHY+zq07Hps6pUftGwCg25oyrn0n7tfAUrF/wjNoI7jrceRm+L/gmDg5rQ8AJIX tKcBotbHzBw90owTT/uYDzHAPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHpl0GF bvWi1i3uJou0qOoohuOzMB8GA1UdIwQYMBaAFKf5ryjSSkMkk7SyuptVcpvAl3zI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjlBMS9EMjYwMTVDQUQz N0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5U1R0TEs2bTFWeW04Q1hm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfbXZLTkpLUXlTVHRMSzZtMVZ5bThDWGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjlBMS9EMjYwMTVDQUQzN0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5 U1R0TEs2bTFWeW04Q1hmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDkJQwsb0LYqTEm31qmxMHgKUiIzI4y4xKvCCRivK/U8K2De7JQTigX w7ueADv/cHUFZPR55RMgxhk6ikEcFkEquK+BFe0GeaYnwdI9URxcPt3IixMLlbWz ZmAGQQZYQzVHZl+IQw5T05ObXDfqMbvQBchr4g4D4MjuuD0voo5JPCLPOVX+YL+x 3kCQozIu3vILcNnf6nnXVcWApJLjB6bi861hn5a69mJXKrnxwd2nxOaIn7WXN2xK vd6L2t1JP4lxuHh6F93gwY0AotUuodBIQhPDZsNbi2w21KorElcMs0YoN2/bAg+U 2CnUW4xv4uTompoeXjy0zpa/vYEevJQE -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:36 2025 by rpki-client