This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: dEJfJShtD4X5XzA8rPjdlZQ2IsZGBX7Y7UPm2X9h9pU= Subject key identifier: EF:87:92:15:88:A4:73:29:D4:07:86:42:A1:4E:A7:55:3A:98:C5:90 Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0F0A Signing time: Thu 18 Dec 2025 17:35:15 +0000 Manifest this update: Thu 18 Dec 2025 17:35:14 +0000 Manifest next update: Thu 25 Dec 2025 17:35:14 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: w2E0TliMjDxWDr3YC7dlLAc/QTI+5QfaegzVV1UInMY=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: Dfnpdx7fQvQO0Rh8jNA5Tx09pBgCccW2N8IKNsboZGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:35:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: Dec 18 17:35:14 2025 GMT Not After : Dec 25 17:35:14 2025 GMT Subject: CN=69443b52-0aa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2c:b0:e2:6c:a1:4a:49:41:48:e3:71:03:62: 32:35:6a:72:a5:40:7e:73:3e:85:07:1a:d8:a3:cd: 5f:90:f8:d6:9f:4c:19:66:4e:25:87:00:7a:4e:0d: 79:e9:4c:22:d8:c5:f2:ef:43:0f:1f:c7:cb:42:b7: 2c:e5:1c:48:69:33:85:8d:b7:69:24:3b:37:23:bf: d5:01:df:f6:45:d4:4a:e5:ca:6a:82:ce:ca:67:3d: 15:69:2b:67:b8:34:f6:7e:3c:3a:1a:d0:7f:8f:0c: 48:1f:1c:e0:0b:e7:0f:44:cc:48:02:23:df:63:23: 6a:1e:4b:52:cd:59:6b:dd:b7:44:49:a1:57:82:43: de:a0:2b:69:27:9d:f4:d4:13:eb:de:12:d2:04:24: 71:75:d6:74:4e:16:86:64:ef:93:00:db:8c:f0:35: e8:30:bf:1d:40:7a:87:ec:89:37:d9:63:d9:91:d1: af:f9:29:40:e4:a1:6c:3a:1f:58:82:5a:97:be:3d: 30:40:1b:a0:0d:e6:5e:52:dc:84:6a:81:a2:fc:2a: 80:c4:37:bb:91:8a:24:52:f6:45:0d:e1:9e:b4:74: 64:dd:02:d7:71:36:4b:f7:08:bd:ab:a5:40:33:c5: 4b:f5:d3:63:2d:46:26:44:ef:62:4e:9d:9d:a7:99: d3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:87:92:15:88:A4:73:29:D4:07:86:42:A1:4E:A7:55:3A:98:C5:90 X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:72:78:b5:b1:b7:79:a3:f1:4c:91:cf:83:82:7b:f8:3e:04: 7c:20:39:42:38:b6:6a:35:34:64:7c:ba:e7:f7:31:28:08:64: 50:fc:7e:46:0e:b7:99:51:3d:32:8c:e1:d4:9f:27:73:e4:b8: 65:4e:10:d9:30:31:bf:46:d4:94:47:45:66:89:5a:07:f7:45: b1:b1:81:83:cc:51:0e:a8:35:ee:33:52:df:ce:9b:36:28:3b: 0a:2d:99:5b:5d:d6:46:8c:20:8d:1a:ca:2d:67:95:69:7c:fd: ca:66:bd:c7:c5:dd:f8:30:53:87:41:63:8f:26:aa:23:ab:35: 43:53:59:99:c4:2a:03:ea:bd:97:68:09:3b:2c:f1:90:3b:f3: 3d:70:64:1d:89:d5:d3:1d:83:f8:c7:4c:d6:0c:97:5e:7a:31: e9:8c:f6:bb:19:13:6b:15:6d:1f:49:0e:2a:70:d3:7e:fb:df: 16:56:a2:6a:a3:c8:e1:24:d5:6f:6a:2d:1e:fe:b6:e7:22:9b: 98:1e:a0:4f:ca:a6:ca:68:d4:5e:8c:69:c2:91:9d:5e:05:80: 45:13:53:3f:42:b7:c2:64:5e:cf:6f:22:dd:a2:d4:b2:4e:37: f2:b2:8c:57:86:52:7e:15:ae:36:df:57:ca:c7:e4:39:39:27: b6:59:a7:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKERCNzhEOUY5MzU4RTU2N0QzMDZFRTNCRDFFQUM3NDhF OTYwNkJGOEYwHhcNMjUxMjE4MTczNTE0WhcNMjUxMjI1MTczNTE0WjAYMRYwFAYD VQQDDA02OTQ0M2I1Mi0wYWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yyw4myhSklBSONxA2IyNWpypUB+cz6FBxrYo81fkPjWn0wZZk4lhwB6Tg15 6Uwi2MXy70MPH8fLQrcs5RxIaTOFjbdpJDs3I7/VAd/2RdRK5cpqgs7KZz0VaStn uDT2fjw6GtB/jwxIHxzgC+cPRMxIAiPfYyNqHktSzVlr3bdESaFXgkPeoCtpJ530 1BPr3hLSBCRxddZ0ThaGZO+TANuM8DXoML8dQHqH7Ik32WPZkdGv+SlA5KFsOh9Y glqXvj0wQBugDeZeUtyEaoGi/CqAxDe7kYokUvZFDeGetHRk3QLXcTZL9wi9q6VA M8VL9dNjLUYmRO9iTp2dp5nTLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+HkhWI pHMp1AeGQqFOp1U6mMWQMB8GA1UdIwQYMBaAFNt42fk1jlZ9MG7jvR6sdI6WBr+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1ZuMHdidU85SHF4MGpwWUd2 NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1Zu MHdidU85SHF4MGpwWUd2NDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADcni1sbd5o/FMkc+Dgnv4PgR8IDlCOLZqNTRkfLrn9zEoCGRQ/H5G DreZUT0yjOHUnydz5LhlThDZMDG/RtSUR0VmiVoH90WxsYGDzFEOqDXuM1Lfzps2 KDsKLZlbXdZGjCCNGsotZ5VpfP3KZr3Hxd34MFOHQWOPJqojqzVDU1mZxCoD6r2X aAk7LPGQO/M9cGQdidXTHYP4x0zWDJdeejHpjPa7GRNrFW0fSQ4qcNN++98WVqJq o8jhJNVvai0e/rbnIpuYHqBPyqbKaNRejGnCkZ1eBYBFE1M/QrfCZF7PbyLdotSy TjfysoxXhlJ+Fa4231fKx+Q5OSe2Waf2 -----END CERTIFICATE-----Generated at Fri Dec 19 19:13:25 2025 by rpki-client