This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: Dhl9dyio15SQwY+2VBGyE3ikvo+LJGHWv40pYrG+jrk= Subject key identifier: B1:9A:86:99:19:92:D6:D3:7B:5D:81:13:85:CD:B1:94:0B:B4:CA:C0 Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: F0 Signing time: Fri 19 Dec 2025 04:28:14 +0000 Manifest this update: Fri 19 Dec 2025 04:28:13 +0000 Manifest next update: Fri 26 Dec 2025 04:28:13 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: 1TFqaJKTkQFsn4XitUCensuCWoGmU0V9BoUprPkTqkA=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: tqumfro95QWKEzub+U10L7d/fzctz6OjGxGeZOQWgb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Dec 19 04:28:13 2025 GMT Not After : Dec 26 04:28:13 2025 GMT Subject: CN=6944d45e-bab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:83:8f:bf:ea:69:99:03:1c:23:be:0a:a2:0c: a9:6f:cc:06:b3:69:b7:69:88:2b:2f:f9:4b:d6:30: 04:0c:fb:0a:0d:e6:a3:67:8b:b4:9e:25:88:62:80: 3e:fe:c3:2a:4b:82:ed:dc:0e:d5:48:d6:5a:d5:bb: 2c:d1:df:0c:89:2f:be:39:f7:ab:c4:35:0f:19:43: 34:82:de:7f:aa:43:a2:2e:65:aa:55:50:ff:ec:ec: de:bd:3f:8f:0b:b0:db:b9:3f:9e:cb:6b:a7:62:72: 6c:4b:de:53:76:c6:55:5e:4a:26:e1:d0:07:c4:7c: 16:8d:17:7e:0d:f2:99:13:61:03:fc:2f:75:7e:9d: 19:21:cf:14:c8:bf:90:aa:50:f7:57:5f:55:be:44: a4:d6:3b:ef:b1:5a:e0:7b:32:28:65:fb:3e:ce:57: 80:9e:4f:d5:6c:13:c9:bb:c5:93:c8:16:b5:db:aa: bf:59:99:76:29:7e:eb:1d:47:0f:34:2b:3b:50:ec: d0:c8:31:9a:1a:81:82:02:59:cf:62:c8:7d:cf:8f: 6c:0b:f7:0b:58:d2:c7:3b:48:4f:ed:59:af:d1:12: e5:76:f8:f8:e2:52:ec:18:43:3a:13:1f:85:a2:73: 86:c8:47:de:f5:55:88:f1:02:6c:9a:0e:62:0e:84: bf:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:9A:86:99:19:92:D6:D3:7B:5D:81:13:85:CD:B1:94:0B:B4:CA:C0 X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:c8:ef:ba:02:f7:33:f7:a2:b1:1f:df:94:77:9c:9b:38:04: 37:24:a8:cd:8b:cc:d8:e6:99:91:e5:ca:9e:93:cd:d1:85:28: 0e:43:4e:87:d4:b7:71:da:59:a0:e3:69:ef:99:c6:7e:ad:24: 10:8d:dc:7d:1e:62:08:66:eb:99:67:06:39:20:7a:75:07:fc: 66:b3:e1:44:ab:5e:29:ab:6f:46:ba:66:37:61:a6:e4:11:24: 4f:f2:23:bc:0b:c2:3e:0b:1e:49:38:d7:f4:da:a5:b4:60:49: e9:b3:5d:92:bb:20:35:39:33:11:75:72:73:7e:02:fd:66:8c: c1:ef:92:8b:8b:ae:71:95:d6:e7:fc:72:19:b2:ab:50:2a:8a: 41:f3:ed:1b:91:e7:dc:17:9e:c8:6b:a2:29:09:c0:aa:57:76: 19:aa:26:9c:0f:36:72:6b:f1:65:e4:84:77:a2:b9:de:b8:c2: 4a:8e:9a:2a:27:0d:7c:d8:48:06:a1:00:57:81:5f:50:14:b1: e8:d5:db:bf:76:19:b3:c0:98:8c:11:65:e1:44:5e:59:45:d6: 3d:77:da:20:2d:03:64:e8:c4:b2:b2:88:9c:96:0f:2b:ff:6b: 27:bd:6e:dc:e9:06:a3:59:58:2b:af:a9:28:a0:31:f5:2a:22: 32:86:98:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjUxMjE5MDQyODEzWhcNMjUxMjI2MDQyODEzWjAYMRYwFAYD VQQDDA02OTQ0ZDQ1ZS1iYWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5oOPv+ppmQMcI74Kogypb8wGs2m3aYgrL/lL1jAEDPsKDeajZ4u0niWIYoA+ /sMqS4Lt3A7VSNZa1bss0d8MiS++OferxDUPGUM0gt5/qkOiLmWqVVD/7OzevT+P C7DbuT+ey2unYnJsS95TdsZVXkom4dAHxHwWjRd+DfKZE2ED/C91fp0ZIc8UyL+Q qlD3V19VvkSk1jvvsVrgezIoZfs+zleAnk/VbBPJu8WTyBa126q/WZl2KX7rHUcP NCs7UOzQyDGaGoGCAlnPYsh9z49sC/cLWNLHO0hP7Vmv0RLldvj44lLsGEM6Ex+F onOGyEfe9VWI8QJsmg5iDoS/CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGahpkZ ktbTe12BE4XNsZQLtMrAMB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZyO+6Avcz96KxH9+Ud5ybOAQ3JKjNi8zY5pmR5cqek83RhSgOQ06H 1Ldx2lmg42nvmcZ+rSQQjdx9HmIIZuuZZwY5IHp1B/xms+FEq14pq29GumY3Yabk ESRP8iO8C8I+Cx5JONf02qW0YEnps12SuyA1OTMRdXJzfgL9ZozB75KLi65xldbn /HIZsqtQKopB8+0bkefcF57Ia6IpCcCqV3YZqiacDzZya/Fl5IR3orneuMJKjpoq Jw182EgGoQBXgV9QFLHo1du/dhmzwJiMEWXhRF5ZRdY9d9ogLQNk6MSysoiclg8r /2snvW7c6QajWVgrr6kooDH1KiIyhpjs -----END CERTIFICATE-----Generated at Sat Dec 20 00:54:38 2025 by rpki-client