This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: h0BSSTih/3B8A/nF5VZLFLJcfLVRygucIL2Pc68NqcI= Subject key identifier: FA:2A:8C:92:FA:F4:A4:F3:AF:3A:61:4E:8C:9F:3B:84:B7:6B:6E:B0 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 0974 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 096B Signing time: Thu 18 Dec 2025 19:40:51 +0000 Manifest this update: Thu 18 Dec 2025 19:40:50 +0000 Manifest next update: Thu 25 Dec 2025 19:40:50 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: lkV/fUPNQmOGihYQyXX/YaKo8pN5UuOmAKC4wHE8DQQ=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2420 (0x974) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Dec 18 19:40:50 2025 GMT Not After : Dec 25 19:40:50 2025 GMT Subject: CN=694458c3-e087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:19:a5:80:b8:90:9d:03:53:a9:b4:4d:24:c7: 05:a8:82:de:a4:f8:bb:d7:9f:b6:ff:d0:9a:f8:01: 82:5a:9c:41:7f:ba:6f:15:19:41:54:53:30:bb:68: fe:ee:fc:a2:37:2e:ae:50:2a:7f:3c:97:9e:32:90: e0:c0:16:aa:73:67:db:f4:28:86:45:7f:d0:0e:d2: 99:d5:72:5e:7a:37:16:0a:88:26:5c:10:b7:b2:74: 94:19:37:9b:65:42:39:08:c0:c7:61:9b:ee:96:9f: 98:fa:cd:b1:9b:aa:96:99:b7:d6:0d:2b:c4:f4:a4: 58:1c:ae:a7:25:36:41:53:af:50:b1:51:36:96:f9: 5f:7f:e2:18:ce:eb:b1:00:9b:9c:25:35:31:38:7a: 4b:2e:66:f6:27:d4:ee:45:b2:8f:a7:85:3a:f0:90: 80:b7:e1:31:f7:5e:36:09:51:0f:58:11:58:33:c8: a0:5f:ea:15:47:aa:58:cd:2e:83:13:c2:42:d9:e3: 04:af:29:6c:0f:1b:78:26:2f:c3:a1:3a:ec:51:9f: 09:8f:73:99:61:b7:c6:41:70:78:9d:34:26:c5:38: c0:de:1e:d2:71:b5:82:7e:a5:34:a8:97:16:74:be: 4b:72:35:8f:90:84:43:a3:aa:d4:5d:36:a5:83:52: dd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2A:8C:92:FA:F4:A4:F3:AF:3A:61:4E:8C:9F:3B:84:B7:6B:6E:B0 X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:d7:ff:c2:2f:31:c1:b9:27:ef:2a:54:9d:c7:79:eb:ff:76: d6:86:f4:a9:6a:5c:0f:0b:26:15:da:89:c1:4b:ad:46:65:cf: ec:84:12:52:75:4d:9c:2e:c5:f2:25:07:b6:f2:3e:4a:74:88: 55:f3:49:ff:17:d6:fd:fd:0b:61:8b:5d:5a:50:6b:35:6d:ae: d1:00:f4:cf:66:37:3c:47:51:1a:ba:26:fe:31:aa:2d:6f:8b: e4:c0:bb:8b:6c:55:40:ff:a8:c9:d4:47:e9:00:10:aa:57:4c: 5f:2c:9a:c9:7e:75:f7:46:4b:54:44:da:8b:2a:70:78:bd:0c: d6:9b:06:3e:73:b4:c6:2b:0d:26:79:ec:3b:e4:6c:a6:8d:da: 7c:6c:e5:c4:d9:8e:e5:41:e3:6f:47:43:20:ef:c9:e1:53:e1: 31:bf:d7:c1:b0:74:78:67:57:19:86:85:22:c0:f0:63:0e:c1: 5f:52:3f:65:9e:09:05:cc:64:c6:62:b1:ac:41:90:1c:23:21: 3a:5f:72:88:80:3a:1b:e0:45:32:78:ba:fc:13:dd:c9:33:f5: 83:13:36:86:fc:16:45:6b:df:5d:7e:ac:5a:8f:8d:39:12:26: c1:5f:a6:41:63:21:5e:be:00:61:6d:7f:af:a3:43:59:92:ff: eb:8a:d2:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUxMjE4MTk0MDUwWhcNMjUxMjI1MTk0MDUwWjAYMRYwFAYD VQQDDA02OTQ0NThjMy1lMDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthmlgLiQnQNTqbRNJMcFqILepPi715+2/9Ca+AGCWpxBf7pvFRlBVFMwu2j+ 7vyiNy6uUCp/PJeeMpDgwBaqc2fb9CiGRX/QDtKZ1XJeejcWCogmXBC3snSUGTeb ZUI5CMDHYZvulp+Y+s2xm6qWmbfWDSvE9KRYHK6nJTZBU69QsVE2lvlff+IYzuux AJucJTUxOHpLLmb2J9TuRbKPp4U68JCAt+Ex9142CVEPWBFYM8igX+oVR6pYzS6D E8JC2eMErylsDxt4Ji/DoTrsUZ8Jj3OZYbfGQXB4nTQmxTjA3h7ScbWCfqU0qJcW dL5LcjWPkIRDo6rUXTalg1LdzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPoqjJL6 9KTzrzphToyfO4S3a26wMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL1//CLzHBuSfvKlSdx3nr/3bWhvSpalwPCyYV2onBS61GZc/shBJS dU2cLsXyJQe28j5KdIhV80n/F9b9/Qthi11aUGs1ba7RAPTPZjc8R1Eauib+Maot b4vkwLuLbFVA/6jJ1EfpABCqV0xfLJrJfnX3RktURNqLKnB4vQzWmwY+c7TGKw0m eew75Gymjdp8bOXE2Y7lQeNvR0Mg78nhU+Exv9fBsHR4Z1cZhoUiwPBjDsFfUj9l ngkFzGTGYrGsQZAcIyE6X3KIgDob4EUyeLr8E93JM/WDEzaG/BZFa99dfqxaj405 EibBX6ZBYyFevgBhbX+vo0NZkv/ritL2 -----END CERTIFICATE-----Generated at Fri Dec 19 20:31:10 2025 by rpki-client