This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: 1oXY5SsjIuUp+BME4qzcKXMrKo3oK/jERACt6H5KOoU= Subject key identifier: 12:5A:62:0A:2C:A1:17:62:77:76:1B:B0:E3:50:8D:D4:C9:92:95:62 Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 0549 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 0542 Signing time: Sun 28 Dec 2025 22:37:32 +0000 Manifest this update: Sun 28 Dec 2025 22:37:32 +0000 Manifest next update: Sun 04 Jan 2026 22:37:32 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: Zy+83vWKdH1S9jjXkZW2jHMyL9ecoMrCcSgfZepkBvo=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: b/ItM9VGVv0zUWnweJ6+Pz3YcBgADXF1u82bmhYCBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 22:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603, serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: Dec 28 22:37:32 2025 GMT Not After : Jan 4 22:37:32 2026 GMT Subject: CN=6951b12c-88ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:19:b4:84:10:58:60:0f:d7:08:43:21:17:f3: 2b:b8:81:dd:9f:9d:fd:17:2c:4b:ce:ff:1f:d9:d3: 47:9e:c2:dc:cb:5f:0f:85:7e:33:9f:50:b7:e0:f4: 5b:f2:92:be:8e:64:57:76:de:aa:a4:d0:21:ce:36: 11:0c:24:2c:86:79:bb:59:a4:86:fe:fc:1a:ab:11: 67:11:20:d3:0f:cb:ab:17:78:db:e6:bc:20:e7:b3: da:82:7c:9a:62:6e:ae:71:75:d8:48:d9:6d:f3:56: f1:a0:cc:bb:5b:fa:c9:78:d7:74:15:ad:f8:05:02: 18:e8:a9:72:ec:79:a5:c9:fd:5a:10:3c:e2:2e:3c: 85:97:49:f3:23:81:f7:ae:c9:38:02:73:82:6f:f8: d2:7c:83:22:94:4d:2a:eb:ce:ac:c7:f8:a6:21:b7: eb:4f:c8:3b:42:81:a4:11:f6:cb:71:9d:7e:69:3e: e1:bd:99:d2:78:b1:6f:1e:b1:5a:20:4d:0f:5d:81: a7:ba:3f:80:32:a2:f7:1a:34:16:d3:4d:61:96:cf: b6:d5:fe:9c:e7:2c:b6:48:3a:81:3c:6a:43:c1:6e: 3c:fd:bd:97:16:6b:02:95:c2:ac:4e:4d:dd:72:a2: 24:ee:f7:ae:7d:e6:af:75:2e:d2:45:4d:e1:fe:7f: e1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:5A:62:0A:2C:A1:17:62:77:76:1B:B0:E3:50:8D:D4:C9:92:95:62 X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:dd:3c:a7:74:83:5b:20:60:a8:84:50:c6:bb:88:52:54:e2: f8:ba:89:eb:ce:59:48:93:4d:f2:58:cd:cf:aa:88:c6:e0:1a: 90:ef:2b:6f:8b:7f:4e:23:eb:57:d6:f4:c5:39:f1:cb:71:0e: b3:b2:bd:74:27:39:ba:04:b0:ca:d6:09:0f:c5:90:fa:9b:dd: 14:d3:f1:9c:e3:4c:bb:19:0a:cd:76:f8:b6:57:4a:0c:5f:82: ce:ce:81:53:7a:02:11:93:b7:67:d3:e5:95:96:50:8a:52:7b: e4:de:72:77:db:2b:78:fa:f6:62:f1:da:bb:0d:e2:33:4b:55: a9:4c:84:73:04:6b:bd:7a:d8:58:64:dc:aa:15:0c:72:d6:a4: 4e:d6:d6:c7:f9:81:34:d1:2d:81:80:89:63:a9:61:03:df:02: aa:ea:c6:96:82:78:a8:8b:f7:7d:5a:95:d3:1f:b6:22:bb:28: e7:40:34:41:ef:a4:a6:58:e7:fa:a9:23:ac:5c:75:d0:1e:f0: 51:38:01:a2:5a:15:f4:03:2e:5f:fc:20:23:88:5d:cb:c2:bb: ce:24:29:3a:f2:47:72:ca:98:45:a8:10:85:c4:46:00:df:73: 52:75:24:29:bb:e9:c3:f2:d7:a0:83:c0:71:68:d7:81:b2:68: ee:01:19:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjUxMjI4MjIzNzMyWhcNMjYwMTA0MjIzNzMyWjAYMRYwFAYD VQQDDA02OTUxYjEyYy04OGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxm0hBBYYA/XCEMhF/MruIHdn539FyxLzv8f2dNHnsLcy18PhX4zn1C34PRb 8pK+jmRXdt6qpNAhzjYRDCQshnm7WaSG/vwaqxFnESDTD8urF3jb5rwg57Pagnya Ym6ucXXYSNlt81bxoMy7W/rJeNd0Fa34BQIY6Kly7Hmlyf1aEDziLjyFl0nzI4H3 rsk4AnOCb/jSfIMilE0q686sx/imIbfrT8g7QoGkEfbLcZ1+aT7hvZnSeLFvHrFa IE0PXYGnuj+AMqL3GjQW001hls+21f6c5yy2SDqBPGpDwW48/b2XFmsClcKsTk3d cqIk7veufeavdS7SRU3h/n/hCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJaYgos oRdid3YbsONQjdTJkpViMB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC3TyndINbIGCohFDGu4hSVOL4uonrzllIk03yWM3PqojG4BqQ7ytv i39OI+tX1vTFOfHLcQ6zsr10Jzm6BLDK1gkPxZD6m90U0/Gc40y7GQrNdvi2V0oM X4LOzoFTegIRk7dn0+WVllCKUnvk3nJ32yt4+vZi8dq7DeIzS1WpTIRzBGu9ethY ZNyqFQxy1qRO1tbH+YE00S2BgIljqWED3wKq6saWgnioi/d9WpXTH7YiuyjnQDRB 76SmWOf6qSOsXHXQHvBROAGiWhX0Ay5f/CAjiF3LwrvOJCk68kdyyphFqBCFxEYA 33NSdSQpu+nD8tegg8BxaNeBsmjuARlc -----END CERTIFICATE-----Generated at Mon Dec 29 08:31:31 2025 by rpki-client