This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: Sr6RPEIcCLJnNSekjkEfmqgdKXv8US+eCebG1Pz9rEU= Subject key identifier: 84:0E:09:8A:C6:6F:B4:85:E5:9D:D3:F6:ED:E3:67:EA:BE:6F:E7:1D Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 0942 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 093C Signing time: Sat 20 Dec 2025 19:37:50 +0000 Manifest this update: Sat 20 Dec 2025 19:37:50 +0000 Manifest next update: Sat 27 Dec 2025 19:37:50 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: +mfdHW49TEpaoHPVZiz5WTXiF9t6MNVoRZTzvdgMUQM=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: uh8Xk70gWxRTmNYaCNUAB+Hh9CL9zqsYHo9ULlX8dpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2370 (0x942) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23, serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Dec 20 19:37:50 2025 GMT Not After : Dec 27 19:37:50 2025 GMT Subject: CN=6946fb0e-5eed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b1:3d:bb:bb:39:50:19:e6:99:e9:86:55:1c: c5:17:77:da:a8:8a:e5:4a:e9:e2:06:d1:44:35:87: ce:be:06:61:e6:28:dd:e0:7a:a9:97:82:9b:43:a6: 1b:ab:d4:4f:ea:78:91:52:a6:55:ef:f5:e1:96:19: 97:b0:00:51:1f:db:58:56:e5:5e:3e:b8:77:27:ab: 88:5f:7b:f3:14:c1:1c:ae:3a:c2:b1:9e:a6:78:8a: bb:bb:cf:f7:40:52:24:3e:d2:40:ee:bc:f4:c0:22: e7:99:e4:1f:d7:43:2c:c6:47:29:53:b9:15:66:a8: 81:8c:6f:e0:96:73:90:b2:79:f5:19:3f:25:e4:97: 4c:a9:a6:59:b6:84:62:9d:bc:48:46:1c:51:7e:dc: a1:b7:0b:c9:0a:06:13:e7:9c:58:c5:05:e1:5b:b0: 81:26:29:fa:68:c2:21:5f:a4:a7:9f:dd:6f:e2:92: ce:2b:e2:a4:16:5e:44:e9:45:4c:6d:fb:f9:66:84: 1b:b0:a3:6f:ac:fe:8f:6d:4d:dc:80:c0:94:4b:6e: da:20:bc:0e:e8:f5:8c:7f:58:0a:af:01:c9:21:5f: 4a:ec:0e:95:7d:89:ed:d0:5e:6d:4d:db:b3:51:3f: ea:d8:f0:74:ae:7c:a0:c2:30:b1:c8:ff:aa:77:e8: 2e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:0E:09:8A:C6:6F:B4:85:E5:9D:D3:F6:ED:E3:67:EA:BE:6F:E7:1D X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:06:14:39:31:be:b8:19:c0:6a:73:4e:88:a8:f0:e0:75:7e: 2c:15:4f:57:19:ff:44:f2:0d:9a:b2:9a:d4:88:2c:99:2a:b6: 6b:7f:ab:f7:32:7c:8f:35:92:bd:0e:a6:1e:b6:69:36:b0:38: 84:cc:7e:1a:24:f8:e9:b6:55:30:e6:5e:0e:0f:47:01:94:2d: 17:f1:f6:19:bb:bc:23:42:5e:51:6a:2f:5f:d6:85:23:c1:cd: be:16:36:dd:34:72:60:b7:7d:10:a4:d1:cc:3a:93:8e:65:a8: 4d:db:58:69:2e:c6:07:ee:f6:57:13:c8:7b:29:3b:81:c5:4e: 8c:8b:3a:4a:97:db:fb:02:bc:cd:db:6e:69:c9:05:b6:3b:2d: f4:e9:74:55:b5:d6:97:20:99:4e:c5:e3:33:e1:d5:ac:7d:09: 64:59:d0:45:a5:88:d9:3e:02:46:d7:c7:b4:24:65:3c:21:8c: 27:11:35:e5:5c:12:13:da:8f:23:d1:11:dc:5d:cc:2f:60:fe: a7:17:59:12:b5:e8:a4:0a:d1:65:29:2a:67:93:31:41:f6:12: 32:9a:b7:ee:ce:b4:41:ee:1b:3e:6b:93:53:d7:b4:dc:df:9c: a1:7d:44:dc:64:6b:86:55:b7:74:26:fa:0e:2d:f1:9a:28:77: 3c:00:db:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjUxMjIwMTkzNzUwWhcNMjUxMjI3MTkzNzUwWjAYMRYwFAYD VQQDDA02OTQ2ZmIwZS01ZWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rE9u7s5UBnmmemGVRzFF3faqIrlSuniBtFENYfOvgZh5ijd4Hqpl4KbQ6Yb q9RP6niRUqZV7/XhlhmXsABRH9tYVuVePrh3J6uIX3vzFMEcrjrCsZ6meIq7u8/3 QFIkPtJA7rz0wCLnmeQf10MsxkcpU7kVZqiBjG/glnOQsnn1GT8l5JdMqaZZtoRi nbxIRhxRftyhtwvJCgYT55xYxQXhW7CBJin6aMIhX6Snn91v4pLOK+KkFl5E6UVM bfv5ZoQbsKNvrP6PbU3cgMCUS27aILwO6PWMf1gKrwHJIV9K7A6VfYnt0F5tTduz UT/q2PB0rnygwjCxyP+qd+gulQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQOCYrG b7SF5Z3T9u3jZ+q+b+cdMB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqBhQ5Mb64GcBqc06IqPDgdX4sFU9XGf9E8g2asprUiCyZKrZrf6v3 MnyPNZK9DqYetmk2sDiEzH4aJPjptlUw5l4OD0cBlC0X8fYZu7wjQl5Rai9f1oUj wc2+FjbdNHJgt30QpNHMOpOOZahN21hpLsYH7vZXE8h7KTuBxU6MizpKl9v7ArzN 225pyQW2Oy306XRVtdaXIJlOxeMz4dWsfQlkWdBFpYjZPgJG18e0JGU8IYwnETXl XBIT2o8j0RHcXcwvYP6nF1kSteikCtFlKSpnkzFB9hIymrfuzrRB7hs+a5NT17Tc 35yhfUTcZGuGVbd0JvoOLfGaKHc8ANup -----END CERTIFICATE-----Generated at Sun Dec 21 20:35:15 2025 by rpki-client