This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: kvBBUod33c6LYTJyKh8sBN1b6a4yB9f9KgukIDNlcws= Subject key identifier: 9D:C8:74:D8:46:50:92:A3:8D:B5:00:6D:D9:31:EA:CA:0A:CE:B5:66 Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2E46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2E2D Signing time: Sun 28 Dec 2025 15:21:45 +0000 Manifest this update: Sun 28 Dec 2025 15:21:44 +0000 Manifest next update: Sun 04 Jan 2026 15:21:44 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: Zg/ZLQcEgATwfW1NXQR/oA5VsLmwEYLKCU9d54kJuHg=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: dVMsL8EJuwFThJbot7dFtq6YNUkqPMYmgPIcaOtsyp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 15:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11846 (0x2e46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Dec 28 15:21:44 2025 GMT Not After : Jan 4 15:21:44 2026 GMT Subject: CN=69514b09-7ea5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:90:a1:09:3b:84:ac:57:1e:aa:0a:ea:97:91: 2d:12:ed:d6:fe:a5:09:27:6a:1a:c6:ed:82:6c:77: 16:f8:e2:cf:6f:35:e5:97:ac:f5:7a:4d:1a:37:76: 3f:b0:db:59:e3:fa:9b:a1:77:45:8e:26:10:03:7e: d2:0f:31:d6:5a:c0:d2:4c:1f:54:78:ec:50:e3:93: 46:8c:1f:87:b4:de:79:03:4f:3b:86:a5:ee:63:d3: b3:4e:4d:02:9c:97:9d:6f:dc:72:bf:28:d7:0a:9e: 8c:b5:52:54:a3:1f:19:22:30:27:fd:a3:bb:44:7a: 95:2a:91:fc:b5:f5:16:99:f3:42:e4:d5:cb:7d:62: 50:f8:cc:c0:7b:c1:c4:13:af:5d:3b:43:fd:42:e2: fd:98:73:61:5e:24:80:95:09:4d:19:44:dd:15:c1: 64:e9:d4:1a:e8:61:f8:0c:42:d3:a5:49:22:49:8b: 30:cb:a9:ea:f9:f6:c5:a5:6c:62:b0:16:62:06:67: 7e:6c:95:6d:19:18:b7:96:40:ff:71:18:44:32:c8: a0:df:d6:66:dd:8a:4f:ab:ba:49:68:f1:9b:a3:76: 03:79:a7:51:2b:ea:7c:fb:a2:54:d4:c8:13:1e:85: 41:24:2e:55:0f:63:14:33:81:40:fb:9e:4b:2e:dd: be:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C8:74:D8:46:50:92:A3:8D:B5:00:6D:D9:31:EA:CA:0A:CE:B5:66 X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:a0:1c:66:16:64:32:7c:e8:87:a3:e4:e2:aa:51:f5:45:14: 82:c8:7c:bd:3b:e5:62:47:54:0f:c6:60:6d:44:71:52:70:54: 2e:e0:f8:05:be:a6:09:05:36:bd:00:1c:9b:2b:f7:85:b1:56: 30:30:e9:f0:ba:ee:18:c4:bd:53:4d:c8:31:de:46:6e:f1:b0: 82:40:91:48:07:81:42:0d:0f:3a:10:13:50:bd:f5:81:7b:a2: 72:cd:4c:43:29:cf:99:08:96:25:0d:09:e8:18:6c:04:f6:2c: 85:b2:60:90:e6:f3:c3:fe:c4:52:51:12:32:cf:1c:f5:ca:5e: 98:5e:c0:e6:39:1e:fb:2e:56:7f:26:ae:46:db:c7:e1:d6:4e: 4f:c3:f7:fa:62:c4:d9:b5:75:97:c4:52:e6:b1:a4:9d:1e:52: e4:63:e2:cd:9a:c6:56:35:2b:40:a5:57:8a:6b:1a:08:40:7f: 75:71:c5:e6:ee:85:3c:de:38:6d:4a:e6:f9:df:eb:2e:e3:9f: 57:26:e0:6b:f2:9b:f6:12:df:12:71:83:83:50:e8:e1:36:21: 06:af:83:e8:7d:8e:96:c1:4c:fa:9b:e9:70:64:6d:6b:71:82: 5b:d0:80:8c:db:3e:88:33:f8:c1:2d:29:b5:24:16:32:d2:24: 47:3c:c8:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjUxMjI4MTUyMTQ0WhcNMjYwMTA0MTUyMTQ0WjAYMRYwFAYD VQQDDA02OTUxNGIwOS03ZWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5ChCTuErFceqgrql5EtEu3W/qUJJ2oaxu2CbHcW+OLPbzXll6z1ek0aN3Y/ sNtZ4/qboXdFjiYQA37SDzHWWsDSTB9UeOxQ45NGjB+HtN55A087hqXuY9OzTk0C nJedb9xyvyjXCp6MtVJUox8ZIjAn/aO7RHqVKpH8tfUWmfNC5NXLfWJQ+MzAe8HE E69dO0P9QuL9mHNhXiSAlQlNGUTdFcFk6dQa6GH4DELTpUkiSYswy6nq+fbFpWxi sBZiBmd+bJVtGRi3lkD/cRhEMsig39Zm3YpPq7pJaPGbo3YDeadRK+p8+6JU1MgT HoVBJC5VD2MUM4FA+55LLt2+vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3IdNhG UJKjjbUAbdkx6soKzrVmMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5oBxmFmQyfOiHo+TiqlH1RRSCyHy9O+ViR1QPxmBtRHFScFQu4PgF vqYJBTa9ABybK/eFsVYwMOnwuu4YxL1TTcgx3kZu8bCCQJFIB4FCDQ86EBNQvfWB e6JyzUxDKc+ZCJYlDQnoGGwE9iyFsmCQ5vPD/sRSURIyzxz1yl6YXsDmOR77LlZ/ Jq5G28fh1k5Pw/f6YsTZtXWXxFLmsaSdHlLkY+LNmsZWNStApVeKaxoIQH91ccXm 7oU83jhtSub53+su459XJuBr8pv2Et8ScYODUOjhNiEGr4PofY6WwUz6m+lwZG1r cYJb0ICM2z6IM/jBLSm1JBYy0iRHPMhU -----END CERTIFICATE-----Generated at Mon Dec 29 16:28:01 2025 by rpki-client