This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft File: _D97sEVCVvMfJcoAhkvDpr11X5Y.mft (raw, json) Hash identifier: wThPcurHA82g4cIu8XPfx+WG+MwX9/WUFlbN1WX9yGY= Subject key identifier: 75:9C:4E:12:E5:5A:86:4E:FD:C8:58:D5:AC:EC:EE:09:32:88:28:97 Authority key identifier: FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 Certificate issuer: /CN=A91CE2DE/serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Certificate serial: 0278 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft Manifest number: 0273 Signing time: Wed 17 Dec 2025 01:01:31 +0000 Manifest this update: Wed 17 Dec 2025 01:01:30 +0000 Manifest next update: Wed 24 Dec 2025 01:01:30 +0000 Files and hashes: 1: _D97sEVCVvMfJcoAhkvDpr11X5Y.crl (hash: iuvev5C4xkOLe+ggTbt15NL1Hh1+Kg3LWoK4zdtKylA=) 2: 97B4F5603B3D11ED822BB46CC4F9AE02.roa (hash: 31J9yBONwQ0Slze1cZAXabZLSH29F7mH7omWRFxw8QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 01:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE2DE, serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Validity Not Before: Dec 17 01:01:30 2025 GMT Not After : Dec 24 01:01:30 2025 GMT Subject: CN=694200ea-29a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a2:c5:95:c2:eb:b8:37:4b:de:19:a1:b8:ab: 0c:83:e4:e9:79:06:1c:36:20:af:13:eb:26:75:a8: 87:19:43:0c:0f:6f:37:bb:27:8e:aa:b7:84:af:c5: d4:dc:a5:38:97:c5:8c:f3:b0:0d:cf:b1:bc:04:61: 6d:80:f5:d4:1f:2f:50:22:04:e7:0b:ef:e3:1f:20: 94:6b:ed:13:97:91:a6:35:ab:3a:c9:fe:b4:02:c4: 9e:bc:ab:0b:cf:51:83:b4:00:99:5a:b9:c8:c3:8b: c9:19:73:33:5c:48:e2:50:16:c1:a1:91:b7:d6:4b: 79:1b:2b:1d:19:93:ef:67:6d:95:2e:af:fc:26:f7: 19:47:80:5e:ce:90:21:ce:45:ab:c1:c1:91:1e:08: d1:01:8d:6a:58:72:82:b1:9a:db:9c:90:96:52:e9: fb:e0:8f:78:31:a1:2f:a2:60:f5:70:db:da:47:45: 79:68:f6:0a:07:fd:d0:e2:a4:0d:1c:16:6f:45:04: d8:71:d8:27:62:77:a8:9d:94:5d:9b:ea:bf:7d:d8: 9f:17:b8:08:e2:cd:20:d3:eb:52:4c:2c:85:66:88: 77:ce:1b:bb:be:a6:1e:0f:07:cd:b1:e8:83:38:86: 9c:b8:99:f3:85:2e:b1:00:97:59:35:46:49:b8:03: c4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9C:4E:12:E5:5A:86:4E:FD:C8:58:D5:AC:EC:EE:09:32:88:28:97 X509v3 Authority Key Identifier: keyid:FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:bb:41:1a:89:02:6a:98:2f:cf:72:7f:23:88:40:23:0b:5e: 0e:72:96:b1:2e:ec:ad:1e:99:16:b0:16:dd:c1:d9:41:2f:c9: d1:e3:c5:73:9a:8b:68:06:d0:b8:cb:1b:b5:d0:40:b8:6a:82: fe:02:e0:eb:36:71:eb:6d:c2:be:1b:4f:2a:7d:d7:04:61:33: 10:42:ef:3f:c3:7d:cb:6c:ab:fd:51:83:62:1b:67:24:b7:7c: 77:34:4c:d8:7b:d6:c2:8d:08:17:51:ef:f4:4e:dc:4b:e8:3b: f3:aa:51:d3:a3:8c:2c:88:4b:e8:0c:0f:e5:8d:3e:9b:8a:ee: 58:f4:55:6b:3c:ab:7e:14:6b:c2:b7:43:5b:ea:2b:16:30:5c: 6f:36:d3:67:bd:87:70:b7:d2:b4:7b:ea:2b:51:ec:71:e4:23: 4d:dc:53:d4:a3:e7:42:39:d9:2d:5a:89:7d:4b:14:ff:a7:41: a3:ac:d3:97:3a:98:fc:23:72:bb:3e:d0:e9:db:de:6b:23:9f: 4c:0c:35:60:93:28:33:9a:42:72:c9:61:df:ec:f3:0e:a1:f9: 7d:bf:90:70:e2:4f:20:e8:29:3c:05:20:e4:02:ed:d3:d2:e4: 17:cd:82:9a:e7:5d:2f:23:f9:4d:8c:7b:28:b7:be:61:b7:9f: bd:bf:6d:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyREUxMTAvBgNVBAUTKEZDM0Y3QkIwNDU0MjU2RjMxRjI1Q0EwMDg2NEJDM0E2 QkQ3NTVGOTYwHhcNMjUxMjE3MDEwMTMwWhcNMjUxMjI0MDEwMTMwWjAYMRYwFAYD VQQDDA02OTQyMDBlYS0yOWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6LFlcLruDdL3hmhuKsMg+TpeQYcNiCvE+smdaiHGUMMD283uyeOqreEr8XU 3KU4l8WM87ANz7G8BGFtgPXUHy9QIgTnC+/jHyCUa+0Tl5GmNas6yf60AsSevKsL z1GDtACZWrnIw4vJGXMzXEjiUBbBoZG31kt5GysdGZPvZ22VLq/8JvcZR4BezpAh zkWrwcGRHgjRAY1qWHKCsZrbnJCWUun74I94MaEvomD1cNvaR0V5aPYKB/3Q4qQN HBZvRQTYcdgnYneonZRdm+q/fdifF7gI4s0g0+tSTCyFZoh3zhu7vqYeDwfNseiD OIacuJnzhS6xAJdZNUZJuAPEqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWcThLl WoZO/chY1azs7gkyiCiXMB8GA1UdIwQYMBaAFPw/e7BFQlbzHyXKAIZLw6a9dV+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTJERS9BQkRFRTg3QTM3 RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2TWZKY29BaGt2RHByMTFY NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19EOTdzRVZDVnZNZkpjb0Foa3ZEcHIxMVg1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTJERS9BQkRFRTg3QTM3RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2 TWZKY29BaGt2RHByMTFYNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADu0EaiQJqmC/Pcn8jiEAjC14OcpaxLuytHpkWsBbdwdlBL8nR48Vz motoBtC4yxu10EC4aoL+AuDrNnHrbcK+G08qfdcEYTMQQu8/w33LbKv9UYNiG2ck t3x3NEzYe9bCjQgXUe/0TtxL6DvzqlHTo4wsiEvoDA/ljT6biu5Y9FVrPKt+FGvC t0Nb6isWMFxvNtNnvYdwt9K0e+orUexx5CNN3FPUo+dCOdktWol9SxT/p0GjrNOX Opj8I3K7PtDp295rI59MDDVgkygzmkJyyWHf7PMOofl9v5Bw4k8g6Ck8BSDkAu3T 0uQXzYKa510vI/lNjHsot75ht5+9v203 -----END CERTIFICATE-----Generated at Wed Dec 17 22:00:45 2025 by rpki-client