This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: nx6lq+FHxPVv5vMLBY1UqhF+Pver52Vr31NNQvJ+tyg= Subject key identifier: 86:B6:CE:F3:60:59:B3:83:DA:C0:91:B8:0B:DB:4F:6D:2C:D0:A2:89 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0DD7 Signing time: Sat 20 Dec 2025 17:35:59 +0000 Manifest this update: Sat 20 Dec 2025 17:35:58 +0000 Manifest next update: Sat 27 Dec 2025 17:35:58 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: Y6rsBVDAm5LxpWvgYvgUXFuTopBWbDeqfbDmjl2TrKE=) 2: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (hash: DtVrkChmZWRD5+fP2Qn5fAqp1kmHQeghAdi18ignO50=) 3: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: vmjmVmXjdkD0vxVvLQigcrFyWXDcETievw8r2QIVv8s=) 4: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: ZQBdoWyO873LcT1vKoBchR3Mc6PGkjTHNlXwZK5KBUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:35:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3602 (0xe12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Dec 20 17:35:58 2025 GMT Not After : Dec 27 17:35:58 2025 GMT Subject: CN=6946de7f-e787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:50:26:8a:8e:11:bb:a4:a6:d3:d6:47:2c:f1: 00:27:fe:6f:31:be:17:8a:93:45:de:b8:27:0e:45: 27:ac:a0:6d:3e:05:5f:3c:01:27:5b:14:4e:59:75: ec:6d:30:c6:35:01:cc:28:b9:93:4e:aa:3e:f3:af: d7:36:9c:77:5e:50:fb:4a:a3:c2:25:35:c6:d9:24: e8:eb:4e:4c:b9:b6:0d:9c:ca:5e:13:ec:98:95:b7: 5c:07:9e:d8:47:e5:c7:4a:d8:9f:70:f3:09:97:d7: 2d:85:a9:92:be:5b:49:58:f9:e1:dc:07:9e:02:62: 78:13:97:23:fd:e4:f6:b2:a3:b1:49:b0:ca:54:75: 75:39:35:81:ea:25:95:88:85:f5:51:dd:c8:1a:c2: fd:39:d1:a0:8a:74:dc:f3:50:80:fe:e5:a3:c0:b3: fe:ba:fb:ff:b1:7a:21:12:b6:1b:32:7a:fc:e0:f9: 8d:25:de:fc:df:70:f2:7d:17:bd:04:85:58:bc:ec: 5d:8b:6c:28:db:a4:58:d1:98:e9:cc:9c:fa:2f:71: a3:48:76:76:d4:7c:56:02:95:27:e5:e1:11:c3:17: a3:16:75:66:2e:70:10:cb:29:e6:23:f6:a1:ed:13: 95:d4:f5:57:57:3f:80:6d:aa:43:35:95:17:07:70: 9d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B6:CE:F3:60:59:B3:83:DA:C0:91:B8:0B:DB:4F:6D:2C:D0:A2:89 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:5b:73:27:d7:a1:06:3a:e6:a0:58:96:37:7c:62:d7:6c:63: 2b:fd:b4:03:67:29:6d:1f:a1:50:a9:82:bb:5e:cb:46:4b:83: 55:c9:2b:16:e5:7e:71:55:73:df:70:8b:e3:46:5e:a8:75:a1: 10:98:eb:3c:eb:fa:90:f9:78:1d:29:aa:91:be:25:3c:44:29: eb:28:94:93:b6:62:41:3d:56:0a:4c:3d:7a:22:57:62:db:f8: 0a:b3:86:2d:4f:b0:07:a3:d7:f5:c7:da:d5:98:3b:00:dd:02: ce:d3:5a:ce:79:b6:61:16:08:35:c7:b9:95:c6:54:01:a0:c5: 94:83:3d:6a:4a:79:31:3e:af:60:08:08:c5:5d:ff:e8:17:4e: ac:e9:39:f1:1c:8b:9e:7e:ed:7d:e8:39:5b:10:d9:1a:6b:e2: 23:b2:9e:51:c4:82:f3:b1:95:9f:95:5a:d0:d1:7f:ab:d8:5b: b7:cb:03:23:b2:16:a1:cb:df:a1:51:ce:bd:e3:1b:a2:aa:c9: df:50:e1:74:59:62:5f:6f:90:c9:be:44:6d:0d:cd:cf:e5:eb: e7:37:94:6e:50:cf:a1:5f:0d:fd:ff:59:6b:12:59:2b:ba:0e: 23:76:f6:39:cc:3a:92:ff:27:35:c3:fe:e6:71:83:a0:4f:37: b7:8c:94:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjUxMjIwMTczNTU4WhcNMjUxMjI3MTczNTU4WjAYMRYwFAYD VQQDDA02OTQ2ZGU3Zi1lNzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVAmio4Ru6Sm09ZHLPEAJ/5vMb4XipNF3rgnDkUnrKBtPgVfPAEnWxROWXXs bTDGNQHMKLmTTqo+86/XNpx3XlD7SqPCJTXG2STo605MubYNnMpeE+yYlbdcB57Y R+XHStifcPMJl9cthamSvltJWPnh3AeeAmJ4E5cj/eT2sqOxSbDKVHV1OTWB6iWV iIX1Ud3IGsL9OdGginTc81CA/uWjwLP+uvv/sXohErYbMnr84PmNJd7833DyfRe9 BIVYvOxdi2wo26RY0ZjpzJz6L3GjSHZ21HxWApUn5eERwxejFnVmLnAQyynmI/ah 7ROV1PVXVz+AbapDNZUXB3Cd5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIa2zvNg WbOD2sCRuAvbT20s0KKJMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZW3Mn16EGOuagWJY3fGLXbGMr/bQDZyltH6FQqYK7XstGS4NVySsW 5X5xVXPfcIvjRl6odaEQmOs86/qQ+XgdKaqRviU8RCnrKJSTtmJBPVYKTD16Ildi 2/gKs4YtT7AHo9f1x9rVmDsA3QLO01rOebZhFgg1x7mVxlQBoMWUgz1qSnkxPq9g CAjFXf/oF06s6TnxHIuefu196DlbENkaa+Ijsp5RxILzsZWflVrQ0X+r2Fu3ywMj shahy9+hUc694xuiqsnfUOF0WWJfb5DJvkRtDc3P5evnN5RuUM+hXw39/1lrElkr ug4jdvY5zDqS/yc1w/7mcYOgTze3jJRW -----END CERTIFICATE-----Generated at Sun Dec 21 12:53:47 2025 by rpki-client