This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft File: fJ9yIp7REllMdyLTwhtRBeKfxIo.mft (raw, json) Hash identifier: ZAkIrmwF5XglVcfjvVccb3qejrGkrhpI2cPkPtOEMD4= Subject key identifier: 32:5B:5E:EC:18:FB:15:55:28:21:80:99:FD:81:2B:AE:A3:FF:FA:4C Authority key identifier: 7C:9F:72:22:9E:D1:12:59:4C:77:22:D3:C2:1B:51:05:E2:9F:C4:8A Certificate issuer: /CN=A91F77AD/serialNumber=7C9F72229ED112594C7722D3C21B5105E29FC48A Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft Manifest number: 01D1 Signing time: Fri 19 Dec 2025 02:06:44 +0000 Manifest this update: Fri 19 Dec 2025 02:06:43 +0000 Manifest next update: Fri 26 Dec 2025 02:06:43 +0000 Files and hashes: 1: fJ9yIp7REllMdyLTwhtRBeKfxIo.crl (hash: eUegq1iPkANnftil6zbLVHvQx47tYKXxo/tbU1P9d1c=) 2: 0D99319006F011EFA8C8D445C4F9AE02.roa (hash: A4DVK+hVAcm077tOI0UtMRITW1ft4Rq073mjOE1b4lQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.crl rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F77AD, serialNumber=7C9F72229ED112594C7722D3C21B5105E29FC48A Validity Not Before: Dec 19 02:06:43 2025 GMT Not After : Dec 26 02:06:43 2025 GMT Subject: CN=6944b334-e434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:af:6a:bd:b1:55:5c:32:4f:9a:9d:a8:3b:ef: 51:f8:6b:e1:75:e0:53:91:c1:a8:4b:d8:d6:5d:1c: 32:62:d6:b7:f7:f9:a9:c6:0c:16:1b:78:71:f5:92: 17:72:a2:67:28:bd:a8:19:97:b7:a1:e3:57:17:a4: c8:1e:24:f1:ac:bd:ef:c2:65:6a:84:97:b7:75:df: 83:20:57:68:cf:15:56:c0:67:ac:65:4f:55:7e:9d: 2a:8c:c9:4b:d1:6d:12:c6:2a:de:e3:17:f2:37:41: 10:93:dc:a6:70:c6:5c:63:ce:6c:3b:72:81:8a:af: 04:46:4f:4b:00:b7:bb:17:6b:8b:d7:17:bd:67:f3: f8:ee:85:82:99:ba:13:b0:b4:69:97:49:00:30:3f: e8:15:8e:48:84:e3:90:a9:c5:01:5e:7c:ee:79:11: 5d:c3:7b:18:00:0b:23:4a:15:6f:7c:6d:03:a4:aa: f7:f8:43:3f:0e:f2:a3:6e:2a:96:b4:d5:d3:b6:c2: ba:6a:d4:e6:53:f7:d6:97:a0:f7:e5:7c:83:10:f0: b0:ef:c9:ec:9d:23:8e:18:de:b6:72:05:9d:eb:5e: 23:b7:88:c7:d4:da:e8:46:7c:53:59:1f:14:e1:94: 4a:41:de:2d:90:96:19:fc:9c:ce:5d:8d:8e:21:72: 0f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:5B:5E:EC:18:FB:15:55:28:21:80:99:FD:81:2B:AE:A3:FF:FA:4C X509v3 Authority Key Identifier: keyid:7C:9F:72:22:9E:D1:12:59:4C:77:22:D3:C2:1B:51:05:E2:9F:C4:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:f3:6b:35:27:a3:1b:25:a8:6f:99:13:61:34:6e:f9:4c:06: 40:19:e4:2f:fb:d3:31:f4:3b:3e:67:5f:59:e7:c2:3e:6b:f4: dd:be:79:c9:f8:7f:6c:ab:7e:51:f8:48:07:34:ca:55:d4:0a: 31:70:e5:f2:c8:d7:cb:8a:60:e3:c2:e5:1f:e4:61:88:3f:5b: 04:5b:1e:44:c1:1f:0c:41:a6:70:43:a3:c4:a0:90:8f:cb:9d: 5a:ba:a3:fb:79:81:9a:de:eb:e2:2a:9d:2f:30:2e:ae:5c:34: cc:81:c0:6e:22:c6:c7:69:d5:2d:f2:fb:94:f3:f6:35:58:79: 81:10:8d:d5:e1:54:f9:77:24:44:3a:00:31:b6:6f:f9:55:c5: 97:46:de:c2:b2:dc:15:b2:e7:63:97:f6:ae:9f:69:af:cf:dc: 34:1e:e3:ff:3c:96:e9:e2:2b:94:53:6f:4b:ea:7c:cf:c4:f5: 9a:5a:a5:4f:d9:cf:d0:96:92:82:15:c5:60:3f:41:3d:c1:26: fd:66:24:1a:1e:37:63:3e:19:b7:9e:38:c0:cf:5b:c1:79:8b: c6:f8:20:6d:87:cd:ed:33:60:03:ee:a9:19:3c:0b:db:8d:31: 8f:aa:6a:03:fd:b2:d7:f5:3f:d3:61:c6:b1:10:3e:47:c2:a2: 74:cc:2c:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc3QUQxMTAvBgNVBAUTKDdDOUY3MjIyOUVEMTEyNTk0Qzc3MjJEM0MyMUI1MTA1 RTI5RkM0OEEwHhcNMjUxMjE5MDIwNjQzWhcNMjUxMjI2MDIwNjQzWjAYMRYwFAYD VQQDDA02OTQ0YjMzNC1lNDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr69qvbFVXDJPmp2oO+9R+GvhdeBTkcGoS9jWXRwyYta39/mpxgwWG3hx9ZIX cqJnKL2oGZe3oeNXF6TIHiTxrL3vwmVqhJe3dd+DIFdozxVWwGesZU9Vfp0qjMlL 0W0Sxire4xfyN0EQk9ymcMZcY85sO3KBiq8ERk9LALe7F2uL1xe9Z/P47oWCmboT sLRpl0kAMD/oFY5IhOOQqcUBXnzueRFdw3sYAAsjShVvfG0DpKr3+EM/DvKjbiqW tNXTtsK6atTmU/fWl6D35XyDEPCw78nsnSOOGN62cgWd614jt4jH1NroRnxTWR8U 4ZRKQd4tkJYZ/JzOXY2OIXIPAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJbXuwY +xVVKCGAmf2BK66j//pMMB8GA1UdIwQYMBaAFHyfciKe0RJZTHci08IbUQXin8SK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzdBRC9DRTZDMjM3QTIw QTgxMUVFOTg2MzdGMjNDNEY5QUUwMi9mSjl5SXA3UkVsbE1keUxUd2h0UkJlS2Z4 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZKOXlJcDdSRWxsTWR5TFR3aHRSQmVLZnhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzdBRC9DRTZDMjM3QTIwQTgxMUVFOTg2MzdGMjNDNEY5QUUwMi9mSjl5SXA3UkVs bE1keUxUd2h0UkJlS2Z4SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA382s1J6MbJahvmRNhNG75TAZAGeQv+9Mx9Ds+Z19Z58I+a/TdvnnJ +H9sq35R+EgHNMpV1AoxcOXyyNfLimDjwuUf5GGIP1sEWx5EwR8MQaZwQ6PEoJCP y51auqP7eYGa3uviKp0vMC6uXDTMgcBuIsbHadUt8vuU8/Y1WHmBEI3V4VT5dyRE OgAxtm/5VcWXRt7CstwVsudjl/aun2mvz9w0HuP/PJbp4iuUU29L6nzPxPWaWqVP 2c/QlpKCFcVgP0E9wSb9ZiQaHjdjPhm3njjAz1vBeYvG+CBth83tM2AD7qkZPAvb jTGPqmoD/bLX9T/TYcaxED5HwqJ0zCxp -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:46 2025 by rpki-client