This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: ctFkNK+zJOask2J3wLxVxxcd3IUj3xB76rsE6KtcUbw= Subject key identifier: 48:EB:32:12:D6:18:79:FB:7C:03:96:90:70:DC:06:F2:C9:75:DC:16 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 061E Signing time: Sat 20 Dec 2025 23:36:04 +0000 Manifest this update: Sat 20 Dec 2025 23:36:03 +0000 Manifest next update: Sat 27 Dec 2025 23:36:03 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: 7miHuDKxaX1FBLuB+FxWoytcgLV2qCfzG9Rx2BviOjE=) 2: E6756550C83811F089D6851DC4F9AE02.roa (hash: A4bQGhgPn2H3R7PaUJwYvKcF6NULuVGo1rYsJHMJQUY=) 3: 5A9E4C18BC8F11F0B6A8C33AC4F9AE02.roa (hash: UQRcjs2yvbvqQgs7ssF1xkGQJJT000wm/4Z2n6tb2p8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Dec 20 23:36:03 2025 GMT Not After : Dec 27 23:36:03 2025 GMT Subject: CN=694732e3-f874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:59:a1:cd:39:c0:9d:9d:ce:f0:6e:f8:e4:84: 32:54:dc:8c:16:c9:47:cf:aa:3b:b2:fd:e2:43:3f: 98:e3:ee:3d:e7:8e:3b:2c:4a:8c:5f:2f:98:65:b3: c7:90:4a:27:0e:1c:51:cb:b4:e7:94:9a:33:3a:0f: 66:3d:17:9c:95:2b:eb:7c:30:bb:44:63:62:92:9b: 20:c6:f3:bc:b9:1f:38:57:01:b3:6b:03:ed:f0:dc: da:8e:48:99:09:bb:b8:a0:73:2e:b6:98:af:10:ce: 75:c7:fa:e2:e7:40:8f:b3:aa:9a:b8:14:52:54:1b: 9a:9a:4a:1d:9a:e3:2f:d3:b4:f8:f0:ba:2e:f3:3b: 48:4b:54:06:39:71:85:f6:52:f6:a5:26:b7:66:95: 6b:5e:31:06:4a:0f:39:a7:89:e2:5c:eb:7d:9c:8a: 2f:05:b0:77:ff:01:33:49:6a:f5:34:d9:c1:0c:2a: 57:a6:0a:5e:7c:e9:9c:80:f2:a0:38:ec:a9:98:7f: 62:f3:17:e8:eb:43:5a:0d:73:48:48:a2:01:a8:9a: e3:c5:42:a3:1a:9f:6c:4b:12:f7:34:d4:fb:e9:e2: ce:ea:4d:a0:54:3e:de:2d:db:72:f2:9d:0a:71:65: 26:be:48:bb:49:f5:ba:8a:61:64:63:27:62:78:0b: 6a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:EB:32:12:D6:18:79:FB:7C:03:96:90:70:DC:06:F2:C9:75:DC:16 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:b0:29:26:be:56:0b:96:57:f9:3c:e0:4c:21:f3:d4:b1:87: 03:eb:89:95:80:7d:8e:a5:ce:17:fa:f0:ff:e5:54:52:bf:2a: 80:75:b3:16:1a:25:a5:f5:af:ec:cb:10:a0:bc:2f:98:5c:58: 28:1e:99:0e:2c:a5:3c:36:62:71:2c:f2:46:64:95:24:4a:8f: 35:30:fd:73:cb:1c:e8:60:72:2a:69:9f:98:4b:ac:4c:e0:f3: 30:7d:cf:ab:be:32:a1:c3:b1:33:bf:4d:7b:2d:84:e1:4f:8e: a3:e4:35:8a:13:23:2e:6c:55:fa:34:4c:7e:19:91:82:cb:7e: 77:09:66:58:8d:a1:f1:e4:e0:9d:0e:27:ea:78:00:33:5f:73: 4a:c9:a5:0a:ae:fb:2d:d7:be:bb:b2:44:cc:ad:3a:d6:c0:c6: 02:33:3b:6d:5b:6d:cd:d2:fb:96:4c:53:c0:94:a5:7c:66:4c: ed:5b:62:ad:14:ac:b5:22:e8:c8:8c:10:99:3f:68:8a:1b:fb: 37:cc:03:31:a6:22:9f:c2:db:87:ae:2a:ce:6e:e3:6c:d0:4c: b7:90:a9:03:12:49:33:3c:8d:33:0b:8e:78:8e:31:98:57:eb: 3e:69:0c:f1:e4:19:75:08:46:48:0e:f9:00:57:09:f1:6d:91: 45:26:f2:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUxMjIwMjMzNjAzWhcNMjUxMjI3MjMzNjAzWjAYMRYwFAYD VQQDDA02OTQ3MzJlMy1mODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FmhzTnAnZ3O8G745IQyVNyMFslHz6o7sv3iQz+Y4+495447LEqMXy+YZbPH kEonDhxRy7TnlJozOg9mPReclSvrfDC7RGNikpsgxvO8uR84VwGzawPt8NzajkiZ Cbu4oHMutpivEM51x/ri50CPs6qauBRSVBuamkodmuMv07T48Lou8ztIS1QGOXGF 9lL2pSa3ZpVrXjEGSg85p4niXOt9nIovBbB3/wEzSWr1NNnBDCpXpgpefOmcgPKg OOypmH9i8xfo60NaDXNISKIBqJrjxUKjGp9sSxL3NNT76eLO6k2gVD7eLdty8p0K cWUmvki7SfW6imFkYydieAtqrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjrMhLW GHn7fAOWkHDcBvLJddwWMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAysCkmvlYLllf5POBMIfPUsYcD64mVgH2Opc4X+vD/5VRSvyqAdbMW GiWl9a/syxCgvC+YXFgoHpkOLKU8NmJxLPJGZJUkSo81MP1zyxzoYHIqaZ+YS6xM 4PMwfc+rvjKhw7Ezv017LYThT46j5DWKEyMubFX6NEx+GZGCy353CWZYjaHx5OCd DifqeAAzX3NKyaUKrvst1767skTMrTrWwMYCMzttW23N0vuWTFPAlKV8ZkztW2Kt FKy1IujIjBCZP2iKG/s3zAMxpiKfwtuHrirObuNs0Ey3kKkDEkkzPI0zC454jjGY V+s+aQzx5Bl1CEZIDvkAVwnxbZFFJvKB -----END CERTIFICATE-----Generated at Sun Dec 21 15:53:02 2025 by rpki-client