This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: Wsg5K6HwsF2vsZVni9M1/noxlsSGuo/ksGo0pCg9+mQ= Subject key identifier: 45:98:87:D7:67:A1:B6:C9:F9:6B:70:41:BE:3E:3E:01:C5:8F:6C:B9 Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2DD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2DAD Signing time: Thu 18 Dec 2025 15:27:39 +0000 Manifest this update: Thu 18 Dec 2025 15:27:38 +0000 Manifest next update: Thu 25 Dec 2025 15:27:38 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: jcWL729i+0C38Mb/fZEmZ5XHzNWBV/pVznsSjwxFqkY=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: CwjqOoJS53tpi81tzFuwu956lUr2HE8GT6aAkGCmQ3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11730 (0x2dd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: Dec 18 15:27:38 2025 GMT Not After : Dec 25 15:27:38 2025 GMT Subject: CN=69441d6b-6f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:59:93:b6:b1:e6:c8:ff:44:40:59:06:0e:9f: 64:9c:24:75:8e:d0:17:10:d2:20:b3:f8:d6:b4:81: 73:8b:ce:b8:2b:1b:ec:c9:2d:45:b8:06:19:7e:51: ef:cb:f2:79:b7:75:c7:ec:6c:65:1a:60:46:25:94: f3:7d:de:27:32:e5:dc:58:e3:7a:5d:0f:31:f6:c2: c7:0f:50:88:37:5e:4e:0a:ed:c2:94:18:34:d0:56: f9:d9:37:4d:da:18:ae:0c:42:5f:d5:80:21:b0:8b: c4:48:cf:3c:87:3d:62:01:82:6a:91:36:00:5e:19: 97:de:8d:d7:e0:39:27:18:4d:a6:3e:3a:84:55:7f: 8c:84:f5:94:ed:e0:f8:d3:d1:02:19:90:65:e7:af: ae:14:f5:a5:b9:5d:bc:7b:ec:95:77:03:b1:d0:7f: c2:d1:45:48:87:d9:69:21:ca:0e:6c:2c:2b:31:75: 1a:3b:e3:8d:3e:ad:f9:ae:14:70:90:6a:c6:79:80: a9:85:5f:4e:65:6d:35:16:fa:8d:6a:2d:2f:3f:3b: f5:08:7c:60:43:41:29:86:94:a6:9a:0d:d6:70:88: 25:11:71:78:54:4d:15:ea:9a:fb:66:c9:cf:dd:47: d8:db:b1:dc:ec:5d:85:b6:9a:41:42:bc:72:92:0c: ed:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:98:87:D7:67:A1:B6:C9:F9:6B:70:41:BE:3E:3E:01:C5:8F:6C:B9 X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:df:7b:03:9d:58:50:a9:1a:d7:0a:6b:ed:bc:bb:4a:9d:c1: 45:c2:94:a0:8c:84:4c:b3:37:06:3e:8d:5a:2f:78:cd:7d:4c: 7e:da:d0:81:2b:f2:64:cc:6d:df:c7:92:48:f8:7e:2b:04:df: 3e:95:24:e9:c0:c7:9d:60:7f:40:48:c6:e3:28:75:db:32:a6: 7f:a4:65:84:4d:a8:a9:b8:f0:02:de:0c:33:95:c5:7a:1c:5a: 2f:cf:88:63:96:e7:91:39:20:af:70:a8:de:9d:ea:f0:ba:9b: 3d:dc:bd:de:13:ef:2d:c7:87:65:16:85:a8:e2:9e:5a:9d:95: 3e:d9:a7:a8:ce:08:fe:02:fa:3a:73:a7:7d:f4:a9:2b:2e:69: 14:96:8b:28:8e:1a:98:b9:d9:27:51:73:96:64:ab:6c:fe:73: 0f:74:15:cd:3f:b3:6c:b3:60:e1:42:87:e0:e2:1e:e3:d5:6d: 7a:64:3a:c4:b4:46:f5:b8:bc:d3:b1:57:0a:3b:12:f4:28:eb: 32:05:6a:a4:cd:a1:b6:4e:37:7d:59:3c:7e:25:23:31:f4:e1: f8:09:8e:c2:28:fe:70:13:94:c4:1c:cc:37:e3:21:1c:2e:95: 9d:d7:f2:a5:ee:34:75:dc:ca:8e:a3:e1:52:4a:ff:07:c4:f3: a4:5e:a0:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjUxMjE4MTUyNzM4WhcNMjUxMjI1MTUyNzM4WjAYMRYwFAYD VQQDDA02OTQ0MWQ2Yi02ZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1mTtrHmyP9EQFkGDp9knCR1jtAXENIgs/jWtIFzi864KxvsyS1FuAYZflHv y/J5t3XH7GxlGmBGJZTzfd4nMuXcWON6XQ8x9sLHD1CIN15OCu3ClBg00Fb52TdN 2hiuDEJf1YAhsIvESM88hz1iAYJqkTYAXhmX3o3X4DknGE2mPjqEVX+MhPWU7eD4 09ECGZBl56+uFPWluV28e+yVdwOx0H/C0UVIh9lpIcoObCwrMXUaO+ONPq35rhRw kGrGeYCphV9OZW01FvqNai0vPzv1CHxgQ0EphpSmmg3WcIglEXF4VE0V6pr7ZsnP 3UfY27Hc7F2FtppBQrxykgztGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWYh9dn obbJ+WtwQb4+PgHFj2y5MB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr33sDnVhQqRrXCmvtvLtKncFFwpSgjIRMszcGPo1aL3jNfUx+2tCB K/JkzG3fx5JI+H4rBN8+lSTpwMedYH9ASMbjKHXbMqZ/pGWETaipuPAC3gwzlcV6 HFovz4hjlueROSCvcKjenerwups93L3eE+8tx4dlFoWo4p5anZU+2aeozgj+Avo6 c6d99KkrLmkUlosojhqYudknUXOWZKts/nMPdBXNP7Nss2DhQofg4h7j1W16ZDrE tEb1uLzTsVcKOxL0KOsyBWqkzaG2Tjd9WTx+JSMx9OH4CY7CKP5wE5TEHMw34yEc LpWd1/Kl7jR13MqOo+FSSv8HxPOkXqAa -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:19 2025 by rpki-client