This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft File: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft (raw, json) Hash identifier: UbQLyy/cuA90eSkhZmJDq2aenvfKvUYxkXFKCfrMkSQ= Subject key identifier: B4:1E:35:0E:29:0E:D5:B0:B3:41:75:75:2A:B6:EE:6A:22:35:32:AF Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 104A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft Manifest number: 0FC5 Signing time: Thu 18 Dec 2025 17:23:13 +0000 Manifest this update: Thu 18 Dec 2025 17:23:12 +0000 Manifest next update: Thu 25 Dec 2025 17:23:12 +0000 Files and hashes: 1: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl (hash: quY7IChIyEU26RuooOGEDdKUWPOyYBGUVh0Z7TDpeJs=) 2: B1F39E9C334111EF9770A542C4F9AE02.roa (hash: ZKO21v7I5AsbeHedpQVwlDjC0YYOzEud39SdbR3CgmA=) 3: B35E5B46334111EF9770A542C4F9AE02.roa (hash: eo1b+Yq2Qt1v8H4Ltid7fTu6HkQPul0DLMpDr+LxnZs=) 4: 2F787ACA71DC11F0B648E61EC4F9AE02.roa (hash: wE9Ja7ZzAfw7/oCX8jXb3Mmdvu+AmH7Xr6q2xftQxQg=) 5: B2AB6010721811F09FD98A22C4F9AE02.roa (hash: zq3r2bqYk5JoyYAxGmuwDEsSoCRJP0AIOXoJJj3slFs=) 6: 2EFFC95471DC11F0B648E61EC4F9AE02.roa (hash: IrKqf3WwcP3c1t/kdOeFbTBkd7MIU0BN08Rqrji/qUU=) 7: B2A71CE2334111EF9770A542C4F9AE02.roa (hash: 05k3Et6L9d2nE0FPEy+35+jv6KXbsZR/t8jrPFetuWc=) 8: 6AB0F2A2892611EEB5E27D69C4F9AE02.roa (hash: nicSmvXStk5YSg3xIJcJaFbSV0F719Jx8dhmknr9Hs0=) 9: 7BD12E3A480811EE8C512B0DC4F9AE02.roa (hash: PTHJR1ja6PHKnchzMzvjSZlwBo+yBYxt/AqG4ozJw5A=) 10: 931E0F7681C911EFA5B1D80BC4F9AE02.roa (hash: HvCeCNMd3cDYBcsUNmnAZgRE0yTF+p8FgFeiy4l06fs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4170 (0x104a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Dec 18 17:23:12 2025 GMT Not After : Dec 25 17:23:12 2025 GMT Subject: CN=69443881-67b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5f:c4:fe:c2:69:55:80:6e:cd:2e:1e:f3:57: 48:4c:ac:02:c6:af:49:90:3d:33:8c:4e:24:07:4b: e5:f8:5e:98:92:af:5e:8a:e8:62:55:59:8e:bc:50: 3a:fa:3b:fe:19:a1:ad:c8:af:e8:8e:ee:54:56:67: c0:86:06:96:0b:d6:f6:f7:77:3a:2e:8a:98:f3:a1: b6:de:e5:be:42:d7:b7:7f:96:ca:29:29:6b:b6:76: 0f:28:34:2b:9b:3e:a2:f5:5f:99:e2:69:1c:3b:9d: 9c:19:3b:57:71:9e:67:03:53:ed:cc:3f:89:ba:82: cd:4a:40:36:6d:fa:32:98:03:b2:89:df:a6:9a:68: 7a:ca:f2:20:1e:90:db:88:34:d9:55:9f:9f:0f:2f: 84:68:05:28:4c:e1:7d:31:10:b8:fa:bc:ff:73:73: 75:1c:07:34:c5:fa:4f:9f:5c:1a:3f:80:8f:02:ad: d2:85:28:80:ba:b1:bb:66:df:14:e0:43:11:ba:1c: 23:a7:48:10:03:96:21:2e:11:0c:55:0c:4e:5d:fc: 38:37:84:c9:b3:11:99:20:17:e9:ef:5b:2d:16:99: d0:40:02:a1:f6:1d:28:36:ee:32:4e:42:50:58:7c: 91:22:30:1b:1d:c5:8d:63:b5:0c:75:b5:91:7c:ea: f6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:1E:35:0E:29:0E:D5:B0:B3:41:75:75:2A:B6:EE:6A:22:35:32:AF X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ea:3b:34:af:90:04:b7:fc:bb:10:ea:31:54:34:53:43:19:54: c8:2b:1f:53:7b:d6:83:16:4a:54:50:ed:0b:4b:dc:2e:c7:95: 22:59:75:bc:a1:c5:71:31:f0:a8:23:bc:2e:06:60:01:90:f1: 9f:f1:8c:66:40:f6:24:34:fe:dc:e6:e9:a3:a6:82:1e:9e:29: 47:70:56:cb:df:5e:68:60:19:3e:d0:28:4b:70:f9:70:d9:f5: 22:0f:e2:0d:98:a3:b4:59:2f:13:19:26:c4:2a:7d:97:22:04: 81:84:9b:1e:be:bc:4f:24:0f:93:a7:b7:2d:57:ff:42:d6:40: f9:18:f5:ed:71:1b:1f:85:f2:dc:87:b2:76:f1:4e:73:cf:85: c4:6b:e7:cb:3d:77:14:d7:17:d0:87:ef:25:63:eb:0b:86:79: 5c:82:85:22:72:d9:20:cb:41:c6:2e:4f:cc:9f:0f:f1:38:ec: 22:fd:f8:40:81:65:66:bf:25:7f:e5:6a:75:56:74:f3:f3:16: 4e:46:98:3c:62:99:90:f1:ec:bf:84:dc:79:a2:ef:1a:64:5a: 72:8e:61:8e:bd:c0:98:3e:b8:63:72:5c:d3:27:8b:ba:3a:49: 4d:d3:39:a6:6a:b8:40:d9:d1:8e:56:41:fe:b3:ce:26:ac:e9: f6:63:01:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjUxMjE4MTcyMzEyWhcNMjUxMjI1MTcyMzEyWjAYMRYwFAYD VQQDDA02OTQ0Mzg4MS02N2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01/E/sJpVYBuzS4e81dITKwCxq9JkD0zjE4kB0vl+F6Ykq9eiuhiVVmOvFA6 +jv+GaGtyK/oju5UVmfAhgaWC9b293c6LoqY86G23uW+Qte3f5bKKSlrtnYPKDQr mz6i9V+Z4mkcO52cGTtXcZ5nA1PtzD+JuoLNSkA2bfoymAOyid+mmmh6yvIgHpDb iDTZVZ+fDy+EaAUoTOF9MRC4+rz/c3N1HAc0xfpPn1waP4CPAq3ShSiAurG7Zt8U 4EMRuhwjp0gQA5YhLhEMVQxOXfw4N4TJsxGZIBfp71stFpnQQAKh9h0oNu4yTkJQ WHyRIjAbHcWNY7UMdbWRfOr2xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQeNQ4p DtWws0F1dSq27moiNTKvMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDNy83OTFDNkEzNDdCMzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91 dmFqeVZjVUJRUnNCOFlfMGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDqOzSvkAS3/LsQ6jFUNFNDGVTIKx9Te9aDFkpUUO0LS9wux5UiWXW8 ocVxMfCoI7wuBmABkPGf8YxmQPYkNP7c5umjpoIenilHcFbL315oYBk+0ChLcPlw 2fUiD+INmKO0WS8TGSbEKn2XIgSBhJsevrxPJA+Tp7ctV/9C1kD5GPXtcRsfhfLc h7J28U5zz4XEa+fLPXcU1xfQh+8lY+sLhnlcgoUictkgy0HGLk/Mnw/xOOwi/fhA gWVmvyV/5Wp1VnTz8xZORpg8YpmQ8ey/hNx5ou8aZFpyjmGOvcCYPrhjclzTJ4u6 OklN0zmmarhA2dGOVkH+s84mrOn2YwHH -----END CERTIFICATE-----Generated at Fri Dec 19 18:58:10 2025 by rpki-client