This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: VKQXlNLH1dP8zad2ZFht0CB/1X24JziCvBbdJG7YL+E= Subject key identifier: 49:54:15:05:4F:E8:05:D4:74:5B:CA:32:87:1E:6F:57:92:11:E2:F4 Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0EA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0E98 Signing time: Sun 28 Dec 2025 17:22:15 +0000 Manifest this update: Sun 28 Dec 2025 17:22:15 +0000 Manifest next update: Sun 04 Jan 2026 17:22:15 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: 87XD49BYrGmcVV/GN3Va7k7/X6wGkgP3xFl4fF0nC+8=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: pWiGa9e3CsBZCkEfjYxSv/AY6FwzKhNWqEBfC5Rt5as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 17:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3746 (0xea2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Dec 28 17:22:15 2025 GMT Not After : Jan 4 17:22:15 2026 GMT Subject: CN=69516747-bae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bb:f4:53:7e:9b:1d:26:cc:07:b7:08:62:76: 43:13:cb:23:14:f0:0c:c7:ca:03:3b:08:b9:d1:34: f1:f2:53:79:8b:7f:96:da:b9:07:a1:31:9a:51:38: 73:98:38:93:c0:b7:97:77:42:82:1d:1e:17:f7:57: 36:2e:f7:6a:7b:b7:e4:b3:72:8c:97:f5:ce:36:64: 18:f5:0f:05:d8:30:73:5a:7a:20:72:32:57:aa:91: 68:cd:fb:be:1e:18:fd:9d:a0:3a:24:49:66:dc:94: b5:3d:d7:26:ca:d9:bc:44:f1:fa:13:8e:5d:20:cf: 10:e1:66:45:e0:cb:ea:6b:71:11:df:ab:c8:c3:bf: 64:c1:65:4c:4f:63:c1:68:ed:2a:20:f0:c0:d2:1b: 15:8d:d8:e4:7d:07:a8:af:a5:57:66:c6:8a:73:ec: 34:cd:6b:64:6e:36:49:dc:c3:b5:be:ea:f4:04:b4: 13:dc:ac:2b:c5:d7:b0:d9:d8:ae:80:79:a1:7c:58: 2c:aa:0d:d6:46:90:29:af:25:0f:94:7c:3b:a0:e5: 71:aa:7a:b8:db:ba:91:ce:48:56:09:84:91:50:5d: d8:bc:2b:70:e7:ba:5f:c7:45:d4:18:79:ab:fd:51: 9a:5f:17:fe:0e:e0:ff:b2:4b:da:9b:c5:cd:2c:38: 18:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:54:15:05:4F:E8:05:D4:74:5B:CA:32:87:1E:6F:57:92:11:E2:F4 X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:40:7d:b4:b9:13:64:f0:d4:89:d8:0c:bc:5d:46:9a:80:01: 77:7b:a3:73:9f:f5:72:ac:21:f2:21:6f:f9:d4:e3:8c:90:85: 09:a6:1b:cc:2f:ce:93:6d:d9:7f:4a:e4:bf:d2:1d:dc:93:c5: bd:55:99:cb:ff:12:6d:d0:17:cd:4d:e2:e0:3e:73:22:64:36: d0:b8:28:32:05:d0:29:84:5c:27:d7:15:1a:42:7c:ed:9b:f3: 09:1c:52:92:c7:0b:f3:c2:f8:71:ff:93:43:5c:ec:66:79:62: cf:b2:bc:1c:06:d8:43:3f:57:c4:4d:df:7c:65:81:f9:d6:fc: 57:5d:b1:07:57:0c:7d:ea:63:62:eb:10:f0:26:89:86:9d:b5: 7c:57:93:73:71:55:59:db:a4:62:6a:73:89:22:23:51:3c:15: 11:76:a5:79:9e:71:fd:8e:96:7f:4e:0b:cc:ff:3f:d8:47:fe: 09:2d:05:d7:5b:4f:5b:1d:34:aa:39:e6:33:6f:7f:8f:76:ff: 36:87:4b:cd:d9:5b:2e:c4:f5:34:4b:f6:26:b3:bf:54:68:9d: 73:1b:10:78:83:06:b4:e8:46:d4:b8:11:23:f8:fb:43:01:6e: 2e:29:1b:9c:f8:ff:6e:e4:24:32:09:53:9b:c7:e1:0a:3c:1c: 31:87:e8:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjUxMjI4MTcyMjE1WhcNMjYwMTA0MTcyMjE1WjAYMRYwFAYD VQQDDA02OTUxNjc0Ny1iYWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbv0U36bHSbMB7cIYnZDE8sjFPAMx8oDOwi50TTx8lN5i3+W2rkHoTGaUThz mDiTwLeXd0KCHR4X91c2Lvdqe7fks3KMl/XONmQY9Q8F2DBzWnogcjJXqpFozfu+ Hhj9naA6JElm3JS1Pdcmytm8RPH6E45dIM8Q4WZF4Mvqa3ER36vIw79kwWVMT2PB aO0qIPDA0hsVjdjkfQeor6VXZsaKc+w0zWtkbjZJ3MO1vur0BLQT3Kwrxdew2diu gHmhfFgsqg3WRpApryUPlHw7oOVxqnq427qRzkhWCYSRUF3YvCtw57pfx0XUGHmr /VGaXxf+DuD/skvam8XNLDgYKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElUFQVP 6AXUdFvKMoceb1eSEeL0MB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAQH20uRNk8NSJ2Ay8XUaagAF3e6Nzn/VyrCHyIW/51OOMkIUJphvM L86Tbdl/SuS/0h3ck8W9VZnL/xJt0BfNTeLgPnMiZDbQuCgyBdAphFwn1xUaQnzt m/MJHFKSxwvzwvhx/5NDXOxmeWLPsrwcBthDP1fETd98ZYH51vxXXbEHVwx96mNi 6xDwJomGnbV8V5NzcVVZ26RianOJIiNRPBURdqV5nnH9jpZ/TgvM/z/YR/4JLQXX W09bHTSqOeYzb3+Pdv82h0vN2VsuxPU0S/Yms79UaJ1zGxB4gwa06EbUuBEj+PtD AW4uKRuc+P9u5CQyCVObx+EKPBwxh+hk -----END CERTIFICATE-----Generated at Mon Dec 29 22:21:15 2025 by rpki-client