This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft File: rRapGbMt65RQ0upjx51QMV2RgVU.mft (raw, json) Hash identifier: fatiN33SA2yx8W1SrvHpBZDuz1mobZV7Ud97iBVPNaU= Subject key identifier: 58:F9:B4:69:68:09:4F:22:2A:17:F9:5A:63:A3:1F:49:18:8F:2D:B1 Authority key identifier: AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 Certificate issuer: /CN=A91DBA0F/serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Certificate serial: 0B4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft Manifest number: 0B40 Signing time: Thu 18 Dec 2025 18:53:53 +0000 Manifest this update: Thu 18 Dec 2025 18:53:53 +0000 Manifest next update: Thu 25 Dec 2025 18:53:53 +0000 Files and hashes: 1: rRapGbMt65RQ0upjx51QMV2RgVU.crl (hash: DZDK3GzM/ohFhmYKuHCj1cOtKT4S8gqlFl7AnPo0T9o=) 2: D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa (hash: TavcsNbKSaSDXkcGP72u+jTcP48G3Su8SEY/uwppPwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2891 (0xb4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA0F, serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Validity Not Before: Dec 18 18:53:53 2025 GMT Not After : Dec 25 18:53:53 2025 GMT Subject: CN=69444dc1-2b3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:62:82:f3:a7:85:8f:98:cb:0b:ff:d6:8d:5a: d6:97:61:a7:2b:23:37:a0:16:86:35:6b:cd:f5:3f: 34:63:e8:ae:7d:29:da:db:df:dc:1f:3b:85:87:cc: 41:45:41:5c:2a:3d:d5:8e:7c:b1:74:0a:68:83:9a: 07:1a:01:d4:77:5f:7b:27:a7:9d:bb:a4:c4:e0:6a: ad:7d:e8:b6:5e:36:b9:ab:34:73:5f:e0:65:80:56: 55:b0:93:d6:cc:77:72:55:7f:cf:81:96:6a:c4:b6: 59:3f:71:4d:43:74:dd:63:ad:ac:13:c2:e1:5b:46: 11:c6:dc:3f:3e:5a:8b:87:53:8c:17:8f:db:de:64: b6:0d:c0:61:d9:94:2b:36:4e:5a:2a:63:10:9b:a2: 79:f5:76:4e:d5:4e:fe:e2:22:64:a7:48:82:ab:d8: 10:49:99:4d:d8:15:2c:a6:da:b0:86:c8:1e:31:19: 3a:bd:77:1c:d9:94:aa:20:e9:3a:1f:3e:c4:6f:4e: c2:fa:b2:2b:87:55:d5:6c:6d:8c:ea:56:f3:13:46: 22:2a:e1:55:78:fb:d4:7a:0f:d7:e2:f2:d3:0a:d6: 08:6b:42:9e:9f:6c:42:d6:22:40:3d:00:df:0f:b1: 66:8f:b4:42:2f:94:70:20:b9:07:fd:de:cf:a0:35: e9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F9:B4:69:68:09:4F:22:2A:17:F9:5A:63:A3:1F:49:18:8F:2D:B1 X509v3 Authority Key Identifier: keyid:AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:d6:f9:93:9e:a8:8b:ca:ad:a9:cb:e0:25:67:21:bc:42:e1: 7c:62:4f:9c:ef:f3:ae:cc:56:a3:58:0e:98:17:83:f6:c6:9a: df:98:70:d3:2d:43:a5:02:39:4d:36:a9:a7:5c:d5:95:5b:33: 41:18:25:3c:e9:66:05:92:43:04:7a:10:58:cb:5e:53:22:bc: 8a:09:e7:10:b2:3f:f0:87:a0:34:de:c5:6d:52:42:8d:91:9d: 72:c5:6b:0f:07:4b:9b:17:8d:6c:91:8b:8e:96:c7:09:d9:33: 36:b0:86:b3:36:47:cc:ff:68:d5:d2:32:9f:3c:77:1c:48:ec: bf:58:02:80:65:56:f1:6d:3b:b7:43:59:85:0b:55:8d:83:ff: 9e:fb:b8:95:46:48:45:65:7c:a5:57:cc:f0:e0:33:98:c8:19: bf:1a:7d:d2:57:77:a5:54:76:88:1b:43:2c:6f:ca:6d:88:d8: 8b:b9:0a:d2:f4:9e:d7:72:b7:25:d0:36:fb:67:00:32:b1:e0: 38:08:8d:eb:50:e4:61:2d:34:7e:c9:23:90:07:f0:ba:13:be: 45:00:e5:37:b3:27:cc:6f:9e:16:c1:1b:28:21:d4:ae:a0:11: 68:ee:70:69:07:53:74:93:a3:df:82:9f:6a:a6:22:f6:c8:64: 3c:85:27:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBMEYxMTAvBgNVBAUTKEFEMTZBOTE5QjMyREVCOTQ1MEQyRUE2M0M3OUQ1MDMx NUQ5MTgxNTUwHhcNMjUxMjE4MTg1MzUzWhcNMjUxMjI1MTg1MzUzWjAYMRYwFAYD VQQDDA02OTQ0NGRjMS0yYjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WKC86eFj5jLC//WjVrWl2GnKyM3oBaGNWvN9T80Y+iufSna29/cHzuFh8xB RUFcKj3VjnyxdApog5oHGgHUd197J6edu6TE4Gqtfei2Xja5qzRzX+BlgFZVsJPW zHdyVX/PgZZqxLZZP3FNQ3TdY62sE8LhW0YRxtw/PlqLh1OMF4/b3mS2DcBh2ZQr Nk5aKmMQm6J59XZO1U7+4iJkp0iCq9gQSZlN2BUsptqwhsgeMRk6vXcc2ZSqIOk6 Hz7Eb07C+rIrh1XVbG2M6lbzE0YiKuFVePvUeg/X4vLTCtYIa0Ken2xC1iJAPQDf D7Fmj7RCL5RwILkH/d7PoDXpdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFj5tGlo CU8iKhf5WmOjH0kYjy2xMB8GA1UdIwQYMBaAFK0WqRmzLeuUUNLqY8edUDFdkYFV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkEwRi9EOTAwNjdGRTRD RDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1UlEwdXBqeDUxUU1WMlJn VlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JSYXBHYk10NjVSUTB1cGp4NTFRTVYyUmdWVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkEwRi9EOTAwNjdGRTRDRDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1 UlEwdXBqeDUxUU1WMlJnVlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF1vmTnqiLyq2py+AlZyG8QuF8Yk+c7/OuzFajWA6YF4P2xprfmHDT LUOlAjlNNqmnXNWVWzNBGCU86WYFkkMEehBYy15TIryKCecQsj/wh6A03sVtUkKN kZ1yxWsPB0ubF41skYuOlscJ2TM2sIazNkfM/2jV0jKfPHccSOy/WAKAZVbxbTu3 Q1mFC1WNg/+e+7iVRkhFZXylV8zw4DOYyBm/Gn3SV3elVHaIG0Msb8ptiNiLuQrS 9J7Xcrcl0Db7ZwAyseA4CI3rUORhLTR+ySOQB/C6E75FAOU3syfMb54WwRsoIdSu oBFo7nBpB1N0k6Pfgp9qpiL2yGQ8hSfw -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:18 2025 by rpki-client