This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft File: vvMhsD2CRd537IDdAzG_uo0IWdg.mft (raw, json) Hash identifier: Pz+KGKAVdh6XehotmEx8+CCXgUEb8nTnVdQhILV283o= Subject key identifier: F7:FB:F1:01:F6:3B:73:22:D5:13:39:20:50:8B:99:F9:A2:C5:A2:25 Authority key identifier: BE:F3:21:B0:3D:82:45:DE:77:EC:80:DD:03:31:BF:BA:8D:08:59:D8 Certificate issuer: /CN=A91EE8AC/serialNumber=BEF321B03D8245DE77EC80DD0331BFBA8D0859D8 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft Manifest number: 037F Signing time: Fri 19 Dec 2025 01:13:42 +0000 Manifest this update: Fri 19 Dec 2025 01:13:41 +0000 Manifest next update: Fri 26 Dec 2025 01:13:41 +0000 Files and hashes: 1: vvMhsD2CRd537IDdAzG_uo0IWdg.crl (hash: bdIyWLbgIqnyQtQYZoGP7gNBElMpSDOk/nKCa/xRrgA=) 2: 5F3C0F26EAEF11EE8CCDB375C4F9AE02.roa (hash: Ds7R3+sBBZEG01JWJaEnAvs9QgVWz9hGRIlkayRqHKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=BEF321B03D8245DE77EC80DD0331BFBA8D0859D8 Validity Not Before: Dec 19 01:13:41 2025 GMT Not After : Dec 26 01:13:41 2025 GMT Subject: CN=6944a6c6-24a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:26:e7:be:8d:b7:b5:dd:54:ea:b6:21:5a:f4: b2:39:57:29:06:10:59:da:a0:fa:8c:f9:f5:5b:b8: c1:d7:1c:d2:5a:8e:1e:02:ec:d1:da:7d:1a:e3:30: d0:09:0d:7d:91:f1:f7:09:f9:73:43:4a:70:10:25: 30:ed:96:29:ca:69:60:fa:48:7d:11:6e:5e:a6:66: 6e:90:06:5e:ae:9d:1b:94:49:eb:9a:1d:e6:d5:d0: e9:8a:d4:5f:02:5d:01:1b:84:5b:fb:da:cf:4c:6e: ab:68:c1:ba:a4:66:8e:2b:b2:43:f9:62:5e:d4:4b: af:ec:24:b7:ae:5f:76:21:a1:ec:cc:eb:a1:05:d1: 0a:4a:15:5b:16:de:7a:6a:1c:64:d4:b2:d3:92:46: 2b:8c:6d:ba:d5:7d:c0:5b:9c:2a:9f:2a:85:bd:87: f3:fa:e8:60:de:3f:61:60:14:96:1a:de:3a:6f:72: ff:b0:df:57:fe:e0:69:c1:39:e5:0d:6f:7d:45:97: f1:55:3a:0c:01:8e:7e:99:9d:05:9e:94:f0:25:eb: 3c:8a:fb:d2:3f:3a:46:ab:41:38:98:e8:b9:fd:9b: 65:cb:39:ed:d1:c5:3e:56:c8:61:1e:20:a5:9b:20: 42:6d:85:eb:c9:86:62:f8:34:2e:42:9c:58:5e:c6: 06:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:FB:F1:01:F6:3B:73:22:D5:13:39:20:50:8B:99:F9:A2:C5:A2:25 X509v3 Authority Key Identifier: keyid:BE:F3:21:B0:3D:82:45:DE:77:EC:80:DD:03:31:BF:BA:8D:08:59:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:cb:16:fe:9c:c3:65:bc:30:df:b4:1d:e4:a1:e6:58:39:79: a6:38:21:e2:58:be:25:bc:43:06:af:64:a6:29:1e:a1:0a:b2: e2:71:be:b3:46:3c:a3:77:23:a7:b3:d0:fd:84:0a:ff:00:da: 89:05:5e:11:11:db:2d:ca:0f:18:c8:9d:4d:7e:2e:d4:65:2d: 56:21:54:a4:2a:f9:5b:a3:21:da:e8:e6:95:f8:0e:14:4d:f7: 84:20:7a:c2:55:51:20:09:fd:e0:c3:e8:39:b4:8f:a6:6d:8f: 24:a6:bd:cc:47:eb:f1:f2:d9:24:81:39:0f:bf:78:40:bc:e1: e4:6b:73:9e:c9:1b:6a:dd:05:0a:8f:52:88:fb:35:26:ac:57: a2:01:4f:51:5e:c4:3a:2b:3c:40:94:28:fd:ec:f6:2c:5e:c3: 78:53:fa:a0:2f:7f:23:eb:44:b5:22:85:97:75:a3:bd:13:27: bc:61:c5:74:60:52:7a:2b:9b:f4:6b:80:1a:9a:9d:ea:f4:fe: 0c:bf:11:db:87:f2:2d:e6:0d:ec:2f:e5:30:be:fa:a9:be:2a: 2b:74:1d:cf:17:4f:7f:a7:c7:a4:b8:f8:53:7b:fb:a8:05:a2: 42:45:d7:5c:7d:f0:9e:50:4b:bc:9e:a2:ea:04:5e:21:45:bd: dc:6c:3a:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKEJFRjMyMUIwM0Q4MjQ1REU3N0VDODBERDAzMzFCRkJB OEQwODU5RDgwHhcNMjUxMjE5MDExMzQxWhcNMjUxMjI2MDExMzQxWjAYMRYwFAYD VQQDDA02OTQ0YTZjNi0yNGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyybnvo23td1U6rYhWvSyOVcpBhBZ2qD6jPn1W7jB1xzSWo4eAuzR2n0a4zDQ CQ19kfH3CflzQ0pwECUw7ZYpymlg+kh9EW5epmZukAZerp0blEnrmh3m1dDpitRf Al0BG4Rb+9rPTG6raMG6pGaOK7JD+WJe1Euv7CS3rl92IaHszOuhBdEKShVbFt56 ahxk1LLTkkYrjG261X3AW5wqnyqFvYfz+uhg3j9hYBSWGt46b3L/sN9X/uBpwTnl DW99RZfxVToMAY5+mZ0FnpTwJes8ivvSPzpGq0E4mOi5/Ztlyznt0cU+VshhHiCl myBCbYXryYZi+DQuQpxYXsYGJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPf78QH2 O3Mi1RM5IFCLmfmixaIlMB8GA1UdIwQYMBaAFL7zIbA9gkXed+yA3QMxv7qNCFnY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi92dk1oc0QyQ1JkNTM3SURkQXpHX3VvMElX ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z2TWhzRDJDUmQ1MzdJRGRBekdfdW8wSVdkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi92dk1oc0QyQ1Jk NTM3SURkQXpHX3VvMElXZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuyxb+nMNlvDDftB3koeZYOXmmOCHiWL4lvEMGr2SmKR6hCrLicb6z RjyjdyOns9D9hAr/ANqJBV4REdstyg8YyJ1Nfi7UZS1WIVSkKvlboyHa6OaV+A4U TfeEIHrCVVEgCf3gw+g5tI+mbY8kpr3MR+vx8tkkgTkPv3hAvOHka3OeyRtq3QUK j1KI+zUmrFeiAU9RXsQ6KzxAlCj97PYsXsN4U/qgL38j60S1IoWXdaO9Eye8YcV0 YFJ6K5v0a4Aamp3q9P4MvxHbh/It5g3sL+UwvvqpviordB3PF09/p8ekuPhTe/uo BaJCRddcffCeUEu8nqLqBF4hRb3cbDq8 -----END CERTIFICATE-----Generated at Sat Dec 20 10:00:19 2025 by rpki-client