This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft File: D1kUy7lqcNoGsR7z3StjyeQHsxw.mft (raw, json) Hash identifier: Z39/NHWsTf60xFQ6b7NQ6C6xNMnWzf0LL3xOxrm2VXk= Subject key identifier: 48:2F:65:E3:25:EA:21:EB:E2:2B:78:40:3A:0D:62:9E:4D:26:14:BB Authority key identifier: 0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C Certificate issuer: /CN=A91D03FC/serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft Manifest number: 012D Signing time: Mon 29 Dec 2025 03:43:43 +0000 Manifest this update: Mon 29 Dec 2025 03:43:43 +0000 Manifest next update: Mon 05 Jan 2026 03:43:43 +0000 Files and hashes: 1: D1kUy7lqcNoGsR7z3StjyeQHsxw.crl (hash: kpA++TwMUENmXgBcq4dHLdH2MgtNYdLjbGD2tcTFMeI=) 2: 507C31C21D7211EFA095B25AC4F9AE02.roa (hash: c1LdcyfxBkh65MfHEWuLe4Y+neliIailfDFE8qX4bKs=) 3: 4FFFD8D41D7211EFA095B25AC4F9AE02.roa (hash: 7t/pdYKTKmwUGR/lE+qnEM4TrcYeXROZCsv49aYTSqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 03:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D03FC, serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Validity Not Before: Dec 29 03:43:43 2025 GMT Not After : Jan 5 03:43:43 2026 GMT Subject: CN=6951f8ef-5e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e4:44:7e:54:59:60:46:3d:38:0c:c7:dd:bf: fb:72:bd:2f:55:0a:ec:9b:53:54:d8:23:d3:79:b1: 67:14:51:20:39:58:8b:8d:a2:24:e5:42:be:b9:bd: e6:76:19:2a:47:91:da:2e:8b:5c:8a:44:10:5c:b3: 97:57:0f:ed:70:af:72:5f:42:33:ee:ca:9a:da:7e: 0d:95:14:c1:a0:4a:28:15:54:2f:1a:0e:ab:83:b2: 47:46:6b:8a:0d:1e:74:1b:ab:95:f0:99:28:51:5d: 6b:9d:b3:d7:64:f0:cf:15:a2:23:1e:12:5a:06:2b: 78:0a:a6:d6:c6:5c:cb:e5:6d:c9:08:fd:00:ab:36: 74:07:ba:47:f5:fd:91:7b:72:50:75:77:b8:a1:87: 8f:f1:3b:ff:fe:30:61:e9:1c:ce:47:34:04:4b:6b: 45:ac:6f:b6:94:29:0f:b6:15:3d:85:d6:f8:76:91: 02:62:36:bd:ef:41:e8:34:42:aa:99:07:ae:74:fc: 58:5c:42:fe:81:31:87:b5:f2:8f:c4:de:d2:06:f4: 04:24:d8:7f:65:c1:af:ec:b8:4e:26:02:f8:02:64: 6f:1c:52:fc:03:07:ae:0e:46:42:46:ab:58:fc:b6: 67:80:cd:fa:42:a5:b9:02:74:b1:74:c1:fe:a2:f7: 8a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2F:65:E3:25:EA:21:EB:E2:2B:78:40:3A:0D:62:9E:4D:26:14:BB X509v3 Authority Key Identifier: keyid:0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:ab:74:99:49:53:af:66:d4:89:0a:21:4c:15:1f:d9:f1:1b: 08:aa:9e:a3:72:0c:15:10:e3:7a:d0:a5:f2:7f:87:12:43:5c: 7b:16:47:db:9e:46:42:35:c4:4c:37:8d:86:da:0d:47:b1:4f: 94:2f:7a:32:83:32:5a:36:56:56:0a:5b:6c:05:14:91:0a:21: 63:5a:bc:e5:66:a5:e4:4d:1f:5f:ef:5d:04:9b:b4:26:ed:cf: c5:fa:52:8f:07:8b:61:16:e5:65:d7:59:9c:66:0a:83:7b:fd: b1:8c:dd:53:35:73:13:5f:e6:fe:f2:28:4a:0a:1b:a1:e3:66: 46:f6:85:f0:ff:47:67:50:cd:4f:c9:52:73:9f:5d:43:8c:16: 20:e0:b2:e0:d3:a2:4d:b0:72:18:58:de:b5:c8:12:12:f9:6f: 30:da:d7:a7:be:f7:61:01:c1:66:31:a5:92:48:f2:fa:14:b4: c1:3f:a6:f3:2c:76:7b:b5:24:c6:d6:f8:d3:ef:1d:1f:24:d5: 7b:6a:55:11:8c:c7:e8:fa:4d:5e:0c:0e:bc:5e:eb:c9:a2:32: c2:01:73:f0:79:88:63:62:ff:10:04:cf:67:65:e6:5c:cc:84: ef:7b:32:32:94:f4:d9:b2:67:06:90:01:bc:d6:42:23:6c:9b: 11:f8:08:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAzRkMxMTAvBgNVBAUTKDBGNTkxNENCQjk2QTcwREEwNkIxMUVGM0REMkI2M0M5 RTQwN0IzMUMwHhcNMjUxMjI5MDM0MzQzWhcNMjYwMTA1MDM0MzQzWjAYMRYwFAYD VQQDDA02OTUxZjhlZi01ZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+REflRZYEY9OAzH3b/7cr0vVQrsm1NU2CPTebFnFFEgOViLjaIk5UK+ub3m dhkqR5HaLotcikQQXLOXVw/tcK9yX0Iz7sqa2n4NlRTBoEooFVQvGg6rg7JHRmuK DR50G6uV8JkoUV1rnbPXZPDPFaIjHhJaBit4CqbWxlzL5W3JCP0AqzZ0B7pH9f2R e3JQdXe4oYeP8Tv//jBh6RzORzQES2tFrG+2lCkPthU9hdb4dpECYja970HoNEKq mQeudPxYXEL+gTGHtfKPxN7SBvQEJNh/ZcGv7LhOJgL4AmRvHFL8AweuDkZCRqtY /LZngM36QqW5AnSxdMH+oveKUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgvZeMl 6iHr4it4QDoNYp5NJhS7MB8GA1UdIwQYMBaAFA9ZFMu5anDaBrEe890rY8nkB7Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDNGQy9DN0IwOTM1NjFE NzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNOb0dzUjd6M1N0anllUUhz eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Qxa1V5N2xxY05vR3NSN3ozU3RqeWVRSHN4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDNGQy9DN0IwOTM1NjFENzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNO b0dzUjd6M1N0anllUUhzeHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBq3SZSVOvZtSJCiFMFR/Z8RsIqp6jcgwVEON60KXyf4cSQ1x7Fkfb nkZCNcRMN42G2g1HsU+UL3oygzJaNlZWCltsBRSRCiFjWrzlZqXkTR9f710Em7Qm 7c/F+lKPB4thFuVl11mcZgqDe/2xjN1TNXMTX+b+8ihKChuh42ZG9oXw/0dnUM1P yVJzn11DjBYg4LLg06JNsHIYWN61yBIS+W8w2tenvvdhAcFmMaWSSPL6FLTBP6bz LHZ7tSTG1vjT7x0fJNV7alURjMfo+k1eDA68XuvJojLCAXPweYhjYv8QBM9nZeZc zITvezIylPTZsmcGkAG81kIjbJsR+Aix -----END CERTIFICATE-----Generated at Wed Dec 31 00:04:29 2025 by rpki-client