This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft File: DB8k6eYChXae9hTPqBPuUayemP4.mft (raw, json) Hash identifier: XrKKL+0skr7cDjDYK67edYJUNeAJDDT7TGgoMljGO4g= Subject key identifier: 79:A0:34:9C:9B:45:CB:F1:BD:EB:EC:5E:C2:D4:71:54:B7:ED:03:29 Authority key identifier: 0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE Certificate issuer: /CN=A91E754F/serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE Certificate serial: 06CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft Manifest number: 06C3 Signing time: Mon 22 Dec 2025 21:24:22 +0000 Manifest this update: Mon 22 Dec 2025 21:24:21 +0000 Manifest next update: Mon 29 Dec 2025 21:24:21 +0000 Files and hashes: 1: DB8k6eYChXae9hTPqBPuUayemP4.crl (hash: Zl9i9h8bKCfIMBEooovGNeKTPbTf+yaQcdR4TInsk5E=) 2: 26F67E0A842011EB8A4C635AC4F9AE02.roa (hash: /0E6jZ4+7bqUYrWrcsn+EsmkQL/Ndn9BT+YgQs7TIDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1738 (0x6ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E754F, serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE Validity Not Before: Dec 22 21:24:21 2025 GMT Not After : Dec 29 21:24:21 2025 GMT Subject: CN=6949b706-a1cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6b:52:67:69:48:bf:82:1e:0e:7f:e8:c3:aa: 37:6e:22:4f:92:22:26:a5:c8:8d:1d:fc:2c:22:6a: 92:b0:c4:7b:22:68:f7:12:5b:79:7b:aa:13:82:d0: 64:29:9b:69:80:61:25:d0:1f:46:cc:d0:59:df:02: 78:57:df:84:a1:a8:0a:e9:d2:76:55:a3:96:96:0b: 78:54:84:c9:59:49:da:68:fc:59:67:7e:b9:d3:d1: 38:1f:b9:ab:78:dc:bc:1c:2e:55:af:84:fd:58:73: c4:bd:dc:da:6c:49:0a:09:6f:16:a3:e4:1f:c9:a8: d0:38:40:b4:95:ea:b7:42:72:cf:f8:42:83:89:fd: 85:53:47:03:37:7b:68:d9:e4:c1:93:58:84:42:3d: fe:eb:4b:fb:a0:71:8b:29:7f:56:a5:54:f5:3c:55: 6d:04:e9:0a:d2:7a:1f:56:58:84:59:0b:a6:a7:28: 4c:ad:43:1d:db:91:1d:32:04:48:96:ef:92:6a:2b: 10:c6:cb:12:a9:cf:e9:b3:2f:75:f6:c6:4c:45:33: db:e3:ed:ed:85:e3:26:77:64:1e:24:f4:33:8a:65: b6:78:68:eb:46:dd:e7:7b:c9:9d:65:6d:6f:fe:eb: cf:8d:3a:cb:b0:a6:37:24:57:9c:e5:e5:8b:5a:56: c2:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A0:34:9C:9B:45:CB:F1:BD:EB:EC:5E:C2:D4:71:54:B7:ED:03:29 X509v3 Authority Key Identifier: keyid:0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:3f:33:8a:f9:be:41:3e:1e:c9:ee:00:8e:e3:83:9a:09:1c: f9:1f:a8:12:df:f8:a4:df:96:b5:a4:bb:c4:24:10:6b:f6:53: ab:43:e0:66:4e:c9:93:70:97:0f:eb:80:a4:83:69:b1:3a:2d: e9:1e:84:40:30:0e:78:17:12:9a:64:29:75:69:fe:be:8f:c5: e1:99:6b:af:d9:b5:6e:7c:80:f9:f7:a1:82:46:16:99:7a:74: 43:4a:cb:e0:d1:4b:e5:e9:5f:3b:5c:db:86:c4:1f:fd:72:9a: 42:77:8c:c4:c6:42:15:43:f6:9d:bb:bd:f0:f5:a7:23:34:13: 89:a8:19:28:fc:73:ef:9b:f3:08:7e:1e:fe:9b:6b:c4:c3:40: 29:18:5d:af:db:54:6c:3f:4d:c6:e9:2c:55:81:6c:eb:8d:01: 00:de:15:e0:2f:b5:6f:f2:02:2b:57:20:a6:97:39:f9:1a:35: 51:2f:f5:7b:77:46:a1:36:69:ce:8c:92:9e:70:a6:e6:49:26: 16:a9:81:12:b3:5c:54:73:00:40:e4:97:bc:fd:be:30:11:2d: a2:de:74:2e:0f:bf:2c:ae:6e:72:84:da:f9:90:73:33:9c:fd: 0e:5c:d1:1c:56:18:78:bf:d2:06:42:ed:d8:fd:c0:d6:8a:e2: 7f:b3:9a:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NEYxMTAvBgNVBAUTKDBDMUYyNEU5RTYwMjg1NzY5RUY2MTRDRkE4MTNFRTUx QUM5RTk4RkUwHhcNMjUxMjIyMjEyNDIxWhcNMjUxMjI5MjEyNDIxWjAYMRYwFAYD VQQDDA02OTQ5YjcwNi1hMWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWtSZ2lIv4IeDn/ow6o3biJPkiImpciNHfwsImqSsMR7Imj3Elt5e6oTgtBk KZtpgGEl0B9GzNBZ3wJ4V9+EoagK6dJ2VaOWlgt4VITJWUnaaPxZZ36509E4H7mr eNy8HC5Vr4T9WHPEvdzabEkKCW8Wo+QfyajQOEC0leq3QnLP+EKDif2FU0cDN3to 2eTBk1iEQj3+60v7oHGLKX9WpVT1PFVtBOkK0nofVliEWQumpyhMrUMd25EdMgRI lu+SaisQxssSqc/psy919sZMRTPb4+3theMmd2QeJPQzimW2eGjrRt3ne8mdZW1v /uvPjTrLsKY3JFec5eWLWlbCbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmgNJyb RcvxvevsXsLUcVS37QMpMB8GA1UdIwQYMBaAFAwfJOnmAoV2nvYUz6gT7lGsnpj+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU0Ri9CNDUyQkY4Qzg0 MUQxMUVCQTA4N0JGMzFDNEY5QUUwMi9EQjhrNmVZQ2hYYWU5aFRQcUJQdVVheWVt UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RCOGs2ZVlDaFhhZTloVFBxQlB1VWF5ZW1QNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzU0Ri9CNDUyQkY4Qzg0MUQxMUVCQTA4N0JGMzFDNEY5QUUwMi9EQjhrNmVZQ2hY YWU5aFRQcUJQdVVheWVtUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZPzOK+b5BPh7J7gCO44OaCRz5H6gS3/ik35a1pLvEJBBr9lOrQ+Bm TsmTcJcP64Ckg2mxOi3pHoRAMA54FxKaZCl1af6+j8XhmWuv2bVufID596GCRhaZ enRDSsvg0Uvl6V87XNuGxB/9cppCd4zExkIVQ/adu73w9acjNBOJqBko/HPvm/MI fh7+m2vEw0ApGF2v21RsP03G6SxVgWzrjQEA3hXgL7Vv8gIrVyCmlzn5GjVRL/V7 d0ahNmnOjJKecKbmSSYWqYESs1xUcwBA5Je8/b4wES2i3nQuD78srm5yhNr5kHMz nP0OXNEcVhh4v9IGQu3Y/cDWiuJ/s5rT -----END CERTIFICATE-----Generated at Wed Dec 24 18:13:43 2025 by rpki-client