This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: 5L7+E8McpxOgBq8XenXcm8giE/5BB9yE69ciGycD8yE= Subject key identifier: 09:2B:4D:EF:D0:AE:F1:0E:38:E5:12:AE:91:C9:C7:94:B4:DE:97:23 Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 3529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 3510 Signing time: Sat 20 Dec 2025 14:44:22 +0000 Manifest this update: Sat 20 Dec 2025 14:44:22 +0000 Manifest next update: Sat 27 Dec 2025 14:44:22 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: zpoU1OG4I+ubs+C9TRp8OXhIsHz67XT+lITKh/CcOEM=) 2: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: Ia/j0/zm2+DZmW6lBQa66nn1YakkPhVuWJjGJSOQHIU=) 3: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: AsLmLNpdLhba6hfcYMLpd0sVqrUh2auGXL+sqK0hCjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13609 (0x3529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Dec 20 14:44:22 2025 GMT Not After : Dec 27 14:44:22 2025 GMT Subject: CN=6946b646-f4fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:73:4a:89:94:38:b8:1e:12:f4:47:36:f5:17: 74:77:6c:9f:56:72:fc:d8:c8:ab:25:8e:d3:b9:60: 81:48:9f:fc:c8:18:41:6d:2f:4b:7f:50:19:07:ec: bd:75:19:cc:c3:79:32:d7:88:6e:bf:83:77:d6:ed: e4:a6:c9:1d:68:ab:2e:5d:47:ff:ce:37:93:39:73: ac:b0:28:23:05:7f:c1:bd:f6:2e:ff:bf:34:51:6a: bc:db:83:25:38:8f:dc:1e:43:13:36:05:64:00:97: c7:5f:c9:db:9e:f4:d0:10:ae:e9:ab:4a:1f:61:55: aa:e8:4a:56:d9:86:78:59:f9:b0:a0:af:c2:a9:e1: 63:52:74:04:d8:b2:76:ef:05:0c:01:7c:84:57:f2: 50:e2:a0:fa:cd:32:69:6a:15:13:ad:71:64:e1:aa: 7b:0f:8f:b0:66:88:4d:4c:60:df:e2:2e:bc:8e:31: 42:1b:12:9e:f3:10:9e:a1:bb:16:8e:3b:a2:06:12: bf:56:eb:60:05:16:5d:1a:88:b7:e1:74:75:9f:0b: d2:21:e3:b3:cf:cb:eb:1d:5f:0c:36:99:39:62:1a: 03:c9:1b:c2:3c:59:ae:7e:42:0f:5d:75:a0:0e:bc: bd:c6:2c:69:00:de:2c:41:9d:a6:80:ca:55:c6:bf: 2e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:2B:4D:EF:D0:AE:F1:0E:38:E5:12:AE:91:C9:C7:94:B4:DE:97:23 X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:66:4f:ef:71:82:fc:ee:c2:53:24:33:88:f5:e6:1f:72:34: b2:dc:ea:4f:6a:b1:e2:d2:17:83:99:e9:ae:8a:69:6c:c9:f3: fa:6b:f4:92:32:d0:f9:e7:35:ed:89:25:c2:dd:76:49:a6:af: d6:0b:e5:03:c2:19:92:c3:f1:67:1e:03:22:6e:a9:96:a5:f0: de:9f:6d:44:a6:28:ce:ac:d5:5d:e3:93:5d:1d:8e:0f:a2:13: ab:32:fb:4c:92:b9:5e:45:01:75:f9:bd:7f:06:3a:18:40:85: ba:60:8a:bd:e0:6e:6a:ad:7e:9f:41:c8:7f:f3:67:5a:c5:d8: 34:a2:44:d7:d7:02:b5:fd:4f:d7:f0:25:9e:81:48:9f:70:c7: 7f:05:6c:1d:e4:76:a3:af:eb:8d:92:b2:4d:04:4a:ba:ca:e3: 1c:52:51:82:f8:79:f7:dd:6b:9e:b9:09:bd:f1:7a:21:94:c2: 2c:20:96:30:2a:b1:62:fc:ae:1e:e7:a9:66:c3:20:f8:20:cd: 62:d7:d8:79:e6:fd:30:1a:b6:1f:f5:46:a1:1f:b0:ab:a9:75: 07:5f:e3:e8:1c:47:98:28:58:6e:b5:75:96:2c:81:e8:f4:b1: ef:e3:56:4a:d7:8e:77:6f:94:b1:de:17:1b:e4:14:45:7e:a0: 8b:ff:9a:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjUxMjIwMTQ0NDIyWhcNMjUxMjI3MTQ0NDIyWjAYMRYwFAYD VQQDDA02OTQ2YjY0Ni1mNGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XNKiZQ4uB4S9Ec29Rd0d2yfVnL82MirJY7TuWCBSJ/8yBhBbS9Lf1AZB+y9 dRnMw3ky14huv4N31u3kpskdaKsuXUf/zjeTOXOssCgjBX/BvfYu/780UWq824Ml OI/cHkMTNgVkAJfHX8nbnvTQEK7pq0ofYVWq6EpW2YZ4WfmwoK/CqeFjUnQE2LJ2 7wUMAXyEV/JQ4qD6zTJpahUTrXFk4ap7D4+wZohNTGDf4i68jjFCGxKe8xCeobsW jjuiBhK/VutgBRZdGoi34XR1nwvSIeOzz8vrHV8MNpk5YhoDyRvCPFmufkIPXXWg Dry9xixpAN4sQZ2mgMpVxr8uPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkrTe/Q rvEOOOUSrpHJx5S03pcjMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYZk/vcYL87sJTJDOI9eYfcjSy3OpParHi0heDmemuimlsyfP6a/SS MtD55zXtiSXC3XZJpq/WC+UDwhmSw/FnHgMibqmWpfDen21EpijOrNVd45NdHY4P ohOrMvtMkrleRQF1+b1/BjoYQIW6YIq94G5qrX6fQch/82daxdg0okTX1wK1/U/X 8CWegUifcMd/BWwd5Hajr+uNkrJNBEq6yuMcUlGC+Hn33WueuQm98XohlMIsIJYw KrFi/K4e56lmwyD4IM1i19h55v0wGrYf9UahH7CrqXUHX+PoHEeYKFhutXWWLIHo 9LHv41ZK1453b5Sx3hcb5BRFfqCL/5oj -----END CERTIFICATE-----Generated at Sun Dec 21 15:46:43 2025 by rpki-client