This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: GWUJzKvxoqiEb07bKSSdJvipX8SD3hsQKwgpA6u2hBU= Subject key identifier: B9:93:EF:58:36:53:40:FB:AA:CE:00:57:CA:B3:27:9D:3A:10:1C:24 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0D88 Signing time: Sat 20 Dec 2025 17:37:02 +0000 Manifest this update: Sat 20 Dec 2025 17:37:02 +0000 Manifest next update: Sat 27 Dec 2025 17:37:02 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: VhnUmSl9Qtd4/lmqM5GnGl7B5EsCh4uUqnHEvrXY+S4=) 2: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: TU8TSmPX0pl0lGmdo+pSWKRJSfGRcwunEDD4PcVNXOE=) 3: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: u1TNJ+cS4eVAcfkpJ21oJA8p8MXvtPlstoexuvgtfIM=) 4: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: rShkEGVIbInxuwhM/D99+N9Ifro23DfGNAWpJ5dz2fM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:37:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3486 (0xd9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Dec 20 17:37:02 2025 GMT Not After : Dec 27 17:37:02 2025 GMT Subject: CN=6946debe-2d4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ee:ea:da:2b:08:f9:1d:a5:df:26:2d:87:56: c3:31:28:fd:d9:b8:cb:a8:a7:90:53:84:17:76:08: c5:bf:f7:a6:4d:80:65:91:76:b8:de:80:b0:7b:35: d0:ca:a9:56:7c:2a:87:09:c1:da:7f:78:3e:de:95: d5:ac:ca:ef:a8:d1:38:93:81:07:dc:ef:96:8d:66: e0:9f:de:d4:d7:ec:3c:a9:fc:45:a2:d8:8c:18:98: e1:9e:94:9d:0a:af:95:d2:20:ad:89:31:78:8d:13: d8:09:08:28:43:06:3e:06:8b:54:12:16:3b:c1:86: da:78:0d:27:ee:79:e8:af:b4:4f:99:ba:de:bf:bb: 7c:fe:49:36:98:e1:d9:77:0e:9a:8b:04:a1:91:44: 66:9a:0e:18:6c:49:c9:9b:32:1c:63:d0:95:69:e7: cd:4b:cb:14:75:76:2b:7b:79:15:ac:08:d5:4b:ea: 48:3c:40:98:0e:28:11:3f:02:e7:e4:8e:49:f8:75: eb:89:41:b2:bc:63:39:fb:1e:47:10:46:d7:17:94: ae:e3:d5:27:51:21:ae:cb:d9:e8:ab:09:f8:64:dd: f5:58:00:82:70:e0:32:23:a7:52:60:4f:f4:d9:a7: 83:79:22:29:6c:8b:04:31:3b:1f:52:38:0b:df:3e: 8a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:93:EF:58:36:53:40:FB:AA:CE:00:57:CA:B3:27:9D:3A:10:1C:24 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:db:c5:2c:55:f9:33:d0:f3:52:fa:1f:85:33:ed:46:ed:b6: 65:85:dc:2d:cd:56:51:bf:e4:85:90:2a:7b:8c:ee:a1:01:27: 82:07:45:f8:db:5b:f8:af:d2:18:d7:c7:65:6e:0a:cf:61:a1: 20:87:57:09:1a:ff:d2:c8:03:e0:47:20:3a:53:1d:42:0e:9e: 44:f3:e2:bf:95:7e:6b:74:a3:20:20:85:69:f2:05:4e:f3:5f: 21:5e:20:3f:3f:ec:ed:7b:af:51:1e:b5:74:95:5a:b7:86:26: ba:7b:68:45:f2:6c:ec:56:ee:6c:52:71:4a:a1:cd:1b:c0:b5: 5f:eb:d0:bd:59:45:64:73:a9:7d:a0:fa:28:b1:e2:0e:6e:49: 98:b7:94:ab:dd:1e:62:b0:c4:00:64:4a:23:d6:9b:8c:96:a1: 7c:29:a4:18:28:ab:24:78:24:bb:bf:6d:39:26:b0:9e:21:60: 87:1e:0b:0e:a8:66:0f:21:b4:ff:f9:c8:d1:c9:95:d6:86:1b: e1:a2:a2:ca:66:a8:57:8b:82:12:a9:d6:d7:6c:ec:f3:45:ed: 58:07:92:62:df:65:f9:bb:29:04:fc:d1:4f:db:50:cd:d9:f6: 35:33:86:91:1f:a4:0f:9c:1d:2e:ac:55:72:fc:6d:e4:2f:4b: 98:46:6c:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUxMjIwMTczNzAyWhcNMjUxMjI3MTczNzAyWjAYMRYwFAYD VQQDDA02OTQ2ZGViZS0yZDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0e7q2isI+R2l3yYth1bDMSj92bjLqKeQU4QXdgjFv/emTYBlkXa43oCwezXQ yqlWfCqHCcHaf3g+3pXVrMrvqNE4k4EH3O+WjWbgn97U1+w8qfxFotiMGJjhnpSd Cq+V0iCtiTF4jRPYCQgoQwY+BotUEhY7wYbaeA0n7nnor7RPmbrev7t8/kk2mOHZ dw6aiwShkURmmg4YbEnJmzIcY9CVaefNS8sUdXYre3kVrAjVS+pIPECYDigRPwLn 5I5J+HXriUGyvGM5+x5HEEbXF5Su49UnUSGuy9noqwn4ZN31WACCcOAyI6dSYE/0 2aeDeSIpbIsEMTsfUjgL3z6KhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmT71g2 U0D7qs4AV8qzJ506EBwkMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS28UsVfkz0PNS+h+FM+1G7bZlhdwtzVZRv+SFkCp7jO6hASeCB0X4 21v4r9IY18dlbgrPYaEgh1cJGv/SyAPgRyA6Ux1CDp5E8+K/lX5rdKMgIIVp8gVO 818hXiA/P+zte69RHrV0lVq3hia6e2hF8mzsVu5sUnFKoc0bwLVf69C9WUVkc6l9 oPooseIObkmYt5Sr3R5isMQAZEoj1puMlqF8KaQYKKskeCS7v205JrCeIWCHHgsO qGYPIbT/+cjRyZXWhhvhoqLKZqhXi4ISqdbXbOzzRe1YB5Ji32X5uykE/NFP21DN 2fY1M4aRH6QPnB0urFVy/G3kL0uYRmw6 -----END CERTIFICATE-----Generated at Sun Dec 21 11:27:01 2025 by rpki-client