This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft File: AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft (raw, json) Hash identifier: oMtF/QoaJGiV7i3jnpCIOFH6itTwArJoYXDiFivCHsg= Subject key identifier: 57:FB:63:E7:7A:96:F9:85:FD:D6:34:83:AD:6D:E5:A5:0A:82:6C:40 Authority key identifier: 00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 Certificate issuer: /CN=A91C09EA/serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft Manifest number: A4 Signing time: Wed 17 Dec 2025 05:50:26 +0000 Manifest this update: Wed 17 Dec 2025 05:50:25 +0000 Manifest next update: Wed 24 Dec 2025 05:50:25 +0000 Files and hashes: 1: AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl (hash: 0Bp0Jv0yuSChoICjHKMDlEa6dlQBpwtO2p5UBNb8QBk=) 2: 7970EAA266DA11F084325D42C4F9AE02.roa (hash: PikBYoAiLsYP3+Plkjib3H61VZb7HfjBFcsCC14z91s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 05:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09EA, serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Validity Not Before: Dec 17 05:50:25 2025 GMT Not After : Dec 24 05:50:25 2025 GMT Subject: CN=694244a1-50c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:c3:99:1f:f1:05:89:61:a7:20:19:1e:69:12: 6e:42:31:05:19:3f:0a:44:50:4a:72:85:72:c1:99: 92:a6:a1:25:cf:75:8d:d1:f0:e2:9f:e2:11:f4:52: bd:ba:a4:0b:94:88:a0:37:d3:a4:8b:56:6a:5a:2a: 64:b7:a6:d3:92:d0:37:b1:76:35:1e:46:37:1d:63: 0e:ee:6a:09:b9:d0:d7:d8:ad:4e:0d:16:e4:a1:af: b0:ba:ba:34:de:f2:fa:08:cc:48:c1:ef:ec:8f:84: 5b:6a:bd:dd:a5:40:d9:6b:e3:e4:be:24:20:3c:57: aa:39:59:b4:b0:7b:7a:ca:33:1d:26:13:d4:64:9b: 38:8c:ac:12:cc:64:f2:7a:34:46:74:a2:b5:33:9a: 0c:1c:63:d9:27:b6:9f:c7:c0:e0:8b:58:04:a5:5d: fb:69:84:66:42:54:d9:9b:20:53:5d:14:b1:e5:c0: 07:29:58:4c:e6:eb:1f:98:fb:1f:76:19:ac:5a:89: 1a:50:13:ce:b5:8e:ff:fd:c0:9a:07:b3:99:54:62: c8:9f:f3:da:5f:55:65:bd:13:f4:14:56:5e:79:f5: bf:4d:f4:6b:d1:6e:e5:29:4f:22:cc:fb:e6:95:58: 95:ce:3e:59:19:9a:e7:6d:4a:af:0a:11:e3:1a:8e: d7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:FB:63:E7:7A:96:F9:85:FD:D6:34:83:AD:6D:E5:A5:0A:82:6C:40 X509v3 Authority Key Identifier: keyid:00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:63:12:6d:06:73:1b:98:9c:6b:4b:8c:09:00:c9:93:d3:03: df:67:32:c8:54:40:e0:a8:61:08:81:7c:45:b7:ad:fc:ab:a8: e4:9e:f1:cd:e0:76:f1:f8:69:47:78:bf:1e:82:8d:94:12:bf: d2:ab:90:dc:0a:73:30:6d:11:a1:49:53:b1:20:12:3a:c5:d7: 8c:65:89:81:c7:6d:df:f4:41:d9:dc:74:46:62:9a:69:56:01: 5c:cf:e8:83:06:5c:72:55:ce:75:a5:86:ec:a0:9d:5e:85:78: 2f:49:b9:91:d7:52:9a:a8:a9:79:e8:ef:fa:53:56:83:e5:10: bc:70:5b:0c:60:f5:73:b7:de:8c:1d:3e:d5:38:8b:64:8a:ad: ca:2b:75:7a:b7:c7:9d:a0:b0:a1:12:e8:f3:a4:96:80:23:cc: 19:f8:cf:0f:92:83:bb:bf:e3:10:bf:27:37:ec:ac:9d:fc:b3: fb:c6:31:f0:29:aa:fd:f3:71:19:fd:af:b9:de:85:36:d6:31: 89:55:1e:25:d4:6f:c3:08:47:9d:fe:3b:7c:2f:78:82:1b:c8: fe:24:d6:df:65:dd:23:02:2b:1d:c5:97:0b:36:28:10:24:dc: b2:62:86:bf:8c:78:fb:2f:52:b5:ab:6e:60:17:b5:90:72:a2: 85:64:b4:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA5RUExMTAvBgNVBAUTKDAwRkQzMUZEMDZCNDIwNEMzRERDQjYzNTA3MTg5NTMz Nzc4Q0NDRjgwHhcNMjUxMjE3MDU1MDI1WhcNMjUxMjI0MDU1MDI1WjAYMRYwFAYD VQQDDA02OTQyNDRhMS01MGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAisOZH/EFiWGnIBkeaRJuQjEFGT8KRFBKcoVywZmSpqElz3WN0fDin+IR9FK9 uqQLlIigN9Oki1ZqWipkt6bTktA3sXY1HkY3HWMO7moJudDX2K1ODRbkoa+wuro0 3vL6CMxIwe/sj4Rbar3dpUDZa+PkviQgPFeqOVm0sHt6yjMdJhPUZJs4jKwSzGTy ejRGdKK1M5oMHGPZJ7afx8Dgi1gEpV37aYRmQlTZmyBTXRSx5cAHKVhM5usfmPsf dhmsWokaUBPOtY7//cCaB7OZVGLIn/PaX1VlvRP0FFZeefW/TfRr0W7lKU8izPvm lViVzj5ZGZrnbUqvChHjGo7XvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFf7Y+d6 lvmF/dY0g61t5aUKgmxAMB8GA1UdIwQYMBaAFAD9Mf0GtCBMPdy2NQcYlTN3jMz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDlFQS84QzU5MTJGRUUx M0IxMUVGQkE3QkRGM0JDNEY5QUUwMi9BUDB4X1FhMElFdzkzTFkxQnhpVk0zZU16 UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FQMHhfUWEwSUV3OTNMWTFCeGlWTTNlTXpQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDlFQS84QzU5MTJGRUUxM0IxMUVGQkE3QkRGM0JDNEY5QUUwMi9BUDB4X1FhMElF dzkzTFkxQnhpVk0zZU16UGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8YxJtBnMbmJxrS4wJAMmT0wPfZzLIVEDgqGEIgXxFt638q6jknvHN 4Hbx+GlHeL8ego2UEr/Sq5DcCnMwbRGhSVOxIBI6xdeMZYmBx23f9EHZ3HRGYppp VgFcz+iDBlxyVc51pYbsoJ1ehXgvSbmR11KaqKl56O/6U1aD5RC8cFsMYPVzt96M HT7VOItkiq3KK3V6t8edoLChEujzpJaAI8wZ+M8PkoO7v+MQvyc37Kyd/LP7xjHw Kar983EZ/a+53oU21jGJVR4l1G/DCEed/jt8L3iCG8j+JNbfZd0jAisdxZcLNigQ JNyyYoa/jHj7L1K1q25gF7WQcqKFZLTC -----END CERTIFICATE-----Generated at Thu Dec 18 10:28:25 2025 by rpki-client