This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.mft File: fmfojMQDeKlwRj3y0LBgiOZdubA.mft (raw, json) Hash identifier: pa2kjNK6YBVXpzoo+otThIzhLf2G/B1AeXGqpJ9xJAA= Subject key identifier: 21:1F:EE:4F:C5:7D:CE:06:5B:A2:E5:5F:8A:ED:34:F5:C9:2C:B9:0F Authority key identifier: 7E:67:E8:8C:C4:03:78:A9:70:46:3D:F2:D0:B0:60:88:E6:5D:B9:B0 Certificate issuer: /CN=A91C9D04/serialNumber=7E67E88CC40378A970463DF2D0B06088E65DB9B0 Certificate serial: 097E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmfojMQDeKlwRj3y0LBgiOZdubA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.mft Manifest number: 1FB1 Signing time: Thu 18 Dec 2025 16:36:43 +0000 Manifest this update: Thu 18 Dec 2025 16:36:43 +0000 Manifest next update: Thu 25 Dec 2025 16:36:43 +0000 Files and hashes: 1: fmfojMQDeKlwRj3y0LBgiOZdubA.crl (hash: 3jiUWHoid3v6ZedFfYEsgEkI+PgL7hhnotazEV0inKc=) 2: A1DFD796A65511EABDAED713C4F9AE02.roa (hash: vKmmh6WIOEqHjc9HRB9xmdHJEo2LxIyyZG3CXzn2ZyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.crl rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmfojMQDeKlwRj3y0LBgiOZdubA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2430 (0x97e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D04, serialNumber=7E67E88CC40378A970463DF2D0B06088E65DB9B0 Validity Not Before: Dec 18 16:36:43 2025 GMT Not After : Dec 25 16:36:43 2025 GMT Subject: CN=69442d9b-8a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b4:97:1d:55:50:d0:2f:c9:ed:9c:04:6c:54: 1d:35:26:6d:e9:c6:c2:b3:78:89:7f:4a:00:c0:69: e5:f7:a1:e9:27:03:1e:f0:ef:0b:18:19:68:a5:39: 41:c9:fb:f8:7c:14:04:f5:07:4a:86:c1:26:43:5e: 8b:35:5a:07:00:f4:c4:21:5a:09:eb:b8:c5:b2:20: 3c:e1:fb:eb:ab:ff:65:49:29:fb:43:8a:85:cc:df: be:dc:fc:bb:9b:70:4e:1b:ff:bf:5b:ea:ff:8c:69: 56:bf:36:c1:8d:91:62:66:6d:69:da:91:03:5d:f7: 50:d3:1c:83:3e:52:0b:9c:6f:eb:f9:03:2b:ac:63: cb:aa:de:f4:15:c3:62:5a:5b:f9:7a:40:7b:a5:f7: cc:ad:b3:69:91:d3:5e:70:de:08:3b:f4:26:aa:87: aa:95:1e:30:a1:d9:f7:47:75:9e:4b:1d:18:71:a4: 23:23:c3:b5:4c:1c:37:8d:bb:38:7a:36:8b:c9:df: 13:18:05:e0:7e:d6:c7:9f:e0:ac:22:bd:e5:77:5b: 64:13:9c:b3:de:d4:ea:b6:ac:bd:74:fa:85:34:2b: 52:a0:97:c3:74:b5:da:b2:c3:1c:17:5b:c1:96:b0: 70:44:e7:5b:c6:bc:4b:14:d1:72:35:6f:d4:c9:cd: e3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:1F:EE:4F:C5:7D:CE:06:5B:A2:E5:5F:8A:ED:34:F5:C9:2C:B9:0F X509v3 Authority Key Identifier: keyid:7E:67:E8:8C:C4:03:78:A9:70:46:3D:F2:D0:B0:60:88:E6:5D:B9:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmfojMQDeKlwRj3y0LBgiOZdubA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D04/7166F38E235C11E88812923FC4F9AE02/fmfojMQDeKlwRj3y0LBgiOZdubA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:68:ac:90:a2:7a:7e:a7:09:67:9a:16:ff:f1:fe:2f:4b:ac: cb:77:25:4c:e5:8f:30:60:95:9e:22:c0:6c:69:6a:90:ed:63: ce:a6:3c:ab:6c:9f:02:11:8d:52:c1:05:1e:aa:2a:ea:b4:36: 97:42:c3:33:52:e2:e9:e0:30:03:39:2a:0a:3b:ba:4e:81:9f: 93:69:97:4b:c4:4b:ca:0a:58:9d:71:6c:85:1b:aa:a0:e7:8e: b2:eb:49:3c:5f:02:e0:ec:83:92:a3:8f:19:1f:9a:8f:ad:9e: 00:23:b1:19:c7:5f:ab:20:c8:b2:70:13:4d:6d:f4:d0:01:71: 6b:bc:83:af:25:6c:b9:48:71:5b:aa:c1:fa:7f:6e:90:85:06: 82:09:2b:df:3f:48:b8:b7:65:b5:b7:dd:8b:25:4a:4d:d1:4e: 07:2a:00:2c:cf:95:f5:95:37:70:c3:01:52:71:55:a9:a6:bc: 71:1c:7b:15:d5:dc:f6:c8:b8:ee:1f:4f:20:47:a4:df:80:88: 3e:ab:3a:32:19:bf:ee:94:4e:20:1a:72:ce:cf:ea:7e:e9:99: 1a:47:74:3e:c5:54:60:53:89:3f:5f:72:ca:f7:2c:cd:17:e2: 07:94:7f:53:1a:60:05:e9:71:79:da:27:44:f9:c3:d2:da:aa: 4a:dd:dc:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlEMDQxMTAvBgNVBAUTKDdFNjdFODhDQzQwMzc4QTk3MDQ2M0RGMkQwQjA2MDg4 RTY1REI5QjAwHhcNMjUxMjE4MTYzNjQzWhcNMjUxMjI1MTYzNjQzWjAYMRYwFAYD VQQDDA02OTQ0MmQ5Yi04YTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LSXHVVQ0C/J7ZwEbFQdNSZt6cbCs3iJf0oAwGnl96HpJwMe8O8LGBlopTlB yfv4fBQE9QdKhsEmQ16LNVoHAPTEIVoJ67jFsiA84fvrq/9lSSn7Q4qFzN++3Py7 m3BOG/+/W+r/jGlWvzbBjZFiZm1p2pEDXfdQ0xyDPlILnG/r+QMrrGPLqt70FcNi Wlv5ekB7pffMrbNpkdNecN4IO/QmqoeqlR4wodn3R3WeSx0YcaQjI8O1TBw3jbs4 ejaLyd8TGAXgftbHn+CsIr3ld1tkE5yz3tTqtqy9dPqFNCtSoJfDdLXassMcF1vB lrBwROdbxrxLFNFyNW/Uyc3jQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEf7k/F fc4GW6LlX4rtNPXJLLkPMB8GA1UdIwQYMBaAFH5n6IzEA3ipcEY98tCwYIjmXbmw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQwNC83MTY2RjM4RTIz NUMxMUU4ODgxMjkyM0ZDNEY5QUUwMi9mbWZvak1RRGVLbHdSajN5MExCZ2lPWmR1 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZtZm9qTVFEZUtsd1JqM3kwTEJnaU9aZHViQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQwNC83MTY2RjM4RTIzNUMxMUU4ODgxMjkyM0ZDNEY5QUUwMi9mbWZvak1RRGVL bHdSajN5MExCZ2lPWmR1YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUaKyQonp+pwlnmhb/8f4vS6zLdyVM5Y8wYJWeIsBsaWqQ7WPOpjyr bJ8CEY1SwQUeqirqtDaXQsMzUuLp4DADOSoKO7pOgZ+TaZdLxEvKClidcWyFG6qg 546y60k8XwLg7IOSo48ZH5qPrZ4AI7EZx1+rIMiycBNNbfTQAXFrvIOvJWy5SHFb qsH6f26QhQaCCSvfP0i4t2W1t92LJUpN0U4HKgAsz5X1lTdwwwFScVWpprxxHHsV 1dz2yLjuH08gR6TfgIg+qzoyGb/ulE4gGnLOz+p+6ZkaR3Q+xVRgU4k/X3LK9yzN F+IHlH9TGmAF6XF52idE+cPS2qpK3dy7 -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:32 2025 by rpki-client