This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: /8a1oJuZe8YLIB/psGGP3XVwASZlN0yj6t4iZfyVnZ0= Subject key identifier: 75:5B:7F:D6:5E:46:D0:E2:E8:8D:11:06:23:77:23:0A:E8:53:BD:82 Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 08A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 0896 Signing time: Sun 28 Dec 2025 19:55:38 +0000 Manifest this update: Sun 28 Dec 2025 19:55:37 +0000 Manifest next update: Sun 04 Jan 2026 19:55:37 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: S5WrWLcwTT83RbA/arYJ47MvbHAhg5B5rlZeKajRQZY=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: xQNJE/wFi8JMz2ss0ss1yj9BAf/VPU6rBNzmi8uV9UI=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: j94hdqhS8hEZkUNMK0Gy0/wMaWkISNSvPZJQcef/86U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 19:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2208 (0x8a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Dec 28 19:55:37 2025 GMT Not After : Jan 4 19:55:37 2026 GMT Subject: CN=69518b39-f896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3e:a8:f8:5a:38:27:50:a1:cc:62:53:e8:3f: 05:d9:0c:9e:29:fa:bf:f9:1c:69:af:0e:6f:94:ed: 79:e6:00:01:b1:90:3b:99:6d:c8:e5:59:f4:34:e0: 1a:b2:38:31:8d:5f:26:1b:6b:02:8e:71:f3:f3:a7: 58:49:93:95:ed:2c:b9:83:a7:8e:1e:23:e0:15:19: 6c:8c:c7:db:0c:e3:e1:ee:8e:c3:cc:92:d1:1a:25: b1:b5:65:a1:b8:50:99:64:4d:d4:33:0b:32:1b:e9: 9c:bf:1e:dc:1c:07:41:0c:64:ea:57:89:c5:b2:7b: 47:2e:94:2a:6b:86:14:82:f3:d0:22:0e:7c:aa:37: c3:bf:8e:90:b0:d6:58:ef:7a:0b:eb:14:5e:87:be: b2:ff:76:82:f8:99:78:50:57:cd:e3:5f:93:9b:74: d6:cf:61:6c:e7:69:59:6d:57:28:1a:05:82:75:a1: 74:12:54:e1:9f:02:d5:62:05:50:26:29:bc:e4:ec: 06:61:b1:ce:55:7a:57:f7:2e:d0:12:c1:7b:af:59: 3a:05:f4:89:9b:f4:30:25:72:a4:fa:09:ff:5d:06: 26:2a:60:7e:08:39:c6:57:e0:37:bf:39:84:aa:39: 8f:95:79:1f:2c:b1:ad:d7:74:e2:e5:83:5b:5f:c7: d5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:5B:7F:D6:5E:46:D0:E2:E8:8D:11:06:23:77:23:0A:E8:53:BD:82 X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:45:6b:58:74:17:12:91:fe:dc:2e:ed:ab:9d:7f:2f:68:38: e4:85:02:d6:a4:55:74:4c:53:d8:26:c1:82:ae:09:f5:6d:44: df:4d:ea:0a:2a:50:4f:fd:11:a0:45:47:b5:81:21:6a:8f:f6: 9f:21:72:d7:d1:6b:67:ea:84:ee:b5:88:67:d2:5d:f1:15:49: 07:51:55:50:02:d5:9f:f8:85:64:55:87:66:86:aa:45:9c:fe: 51:25:83:81:3c:75:ef:18:4e:a4:85:f4:a1:79:aa:64:8a:2a: f7:5c:db:72:52:38:b9:1a:83:2e:49:de:ce:ea:98:04:15:91: eb:ea:e9:8e:5d:24:a4:a8:da:63:4c:f4:d6:4e:51:0d:27:25: 72:0e:13:12:dc:6b:68:78:66:8d:bf:1f:49:61:75:d1:1d:d3: ad:94:66:30:50:9c:92:9e:dd:ac:b7:c5:71:9c:e5:98:5d:31: 08:b1:85:9d:8b:11:91:6a:87:d3:54:52:1f:4d:05:f3:52:10: 09:42:cf:cc:ec:c1:ae:e2:6a:fa:eb:4a:39:35:2a:b1:5d:44: 6f:7b:68:cc:03:67:49:00:68:e1:b3:58:1d:9f:df:10:81:b9: d5:f0:85:7a:47:0e:7e:47:71:20:64:08:0a:d9:59:d7:a0:71: bd:17:8b:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjUxMjI4MTk1NTM3WhcNMjYwMTA0MTk1NTM3WjAYMRYwFAYD VQQDDA02OTUxOGIzOS1mODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2D6o+Fo4J1ChzGJT6D8F2QyeKfq/+Rxprw5vlO155gABsZA7mW3I5Vn0NOAa sjgxjV8mG2sCjnHz86dYSZOV7Sy5g6eOHiPgFRlsjMfbDOPh7o7DzJLRGiWxtWWh uFCZZE3UMwsyG+mcvx7cHAdBDGTqV4nFsntHLpQqa4YUgvPQIg58qjfDv46QsNZY 73oL6xReh76y/3aC+Jl4UFfN41+Tm3TWz2Fs52lZbVcoGgWCdaF0ElThnwLVYgVQ Jim85OwGYbHOVXpX9y7QEsF7r1k6BfSJm/QwJXKk+gn/XQYmKmB+CDnGV+A3vzmE qjmPlXkfLLGt13Ti5YNbX8fVRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVbf9Ze RtDi6I0RBiN3IwroU72CMB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByRWtYdBcSkf7cLu2rnX8vaDjkhQLWpFV0TFPYJsGCrgn1bUTfTeoK KlBP/RGgRUe1gSFqj/afIXLX0Wtn6oTutYhn0l3xFUkHUVVQAtWf+IVkVYdmhqpF nP5RJYOBPHXvGE6khfSheapkiir3XNtyUji5GoMuSd7O6pgEFZHr6umOXSSkqNpj TPTWTlENJyVyDhMS3GtoeGaNvx9JYXXRHdOtlGYwUJySnt2st8VxnOWYXTEIsYWd ixGRaofTVFIfTQXzUhAJQs/M7MGu4mr660o5NSqxXURve2jMA2dJAGjhs1gdn98Q gbnV8IV6Rw5+R3EgZAgK2VnXoHG9F4ug -----END CERTIFICATE-----Generated at Mon Dec 29 01:52:15 2025 by rpki-client