This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft File: pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft (raw, json) Hash identifier: BCWt+ldPk1bRuGFY+5LBSadmIkCUQcBDg39CO+Dis8c= Subject key identifier: CD:B2:C5:93:B7:79:2F:F4:33:9C:58:8E:02:CD:0F:55:08:11:59:D2 Authority key identifier: A4:CD:3E:67:D1:B2:24:F3:25:04:7E:9F:5E:48:4A:CD:C4:F6:63:EC Certificate issuer: /CN=A91F81AD/serialNumber=A4CD3E67D1B224F325047E9F5E484ACDC4F663EC Certificate serial: 0298 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft Manifest number: 0290 Signing time: Sun 21 Dec 2025 00:45:14 +0000 Manifest this update: Sun 21 Dec 2025 00:45:14 +0000 Manifest next update: Sun 28 Dec 2025 00:45:14 +0000 Files and hashes: 1: pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.crl (hash: KWxJEv6Dnq+Qmm1E/+dZ81iAz+oNaKHq/I4LGAeFHek=) 2: FA957D0A80FA11ED9B35954DC4F9AE02.roa (hash: L4odGfnpE1M8mP9qfK5ZT0cdoELj5+fPbxZ/a/GNs1U=) 3: F9F81E3480FA11ED9B35954DC4F9AE02.roa (hash: ZALG6qqy4VUNzS8JmJufwht3vQHiEFKz2LACrRimhuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.crl rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81AD, serialNumber=A4CD3E67D1B224F325047E9F5E484ACDC4F663EC Validity Not Before: Dec 21 00:45:14 2025 GMT Not After : Dec 28 00:45:14 2025 GMT Subject: CN=6947431a-36d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b3:53:e0:10:61:d5:ef:bc:7e:23:2b:ce:09: 85:a2:46:7c:a8:d9:75:5e:b3:64:9b:f4:46:c6:9c: 9c:a9:20:8e:3d:7d:69:6a:95:2f:27:2d:f6:66:af: 18:33:b7:62:02:7b:48:88:5f:8f:3b:20:1c:9c:04: 3d:42:5d:37:16:b6:27:02:68:f8:d4:72:07:87:93: b8:9f:88:bc:0a:5f:2f:4a:d4:4d:78:28:08:e9:86: a4:5e:6a:d4:3f:b5:9c:d2:56:f3:8c:6f:6a:32:e2: 2b:2a:01:2a:37:97:93:b1:cf:c8:0c:83:e3:a6:de: 69:b0:12:34:ea:c3:9c:fd:9f:5b:d6:2b:cc:f3:a2: 98:d8:26:04:f9:a3:ab:51:38:b1:12:fa:f9:02:c9: 78:99:22:d8:23:01:9a:cc:ce:db:c9:ee:56:3d:01: 5b:c2:dc:bc:bf:3b:24:6a:32:d7:b8:cc:ca:59:b1: c1:e4:f4:9d:89:f4:42:29:2e:7b:2b:05:4b:d2:53: a1:ec:23:c4:fd:8e:6b:9b:e5:ee:21:f1:b4:20:f5: 90:3d:d4:0d:3d:1f:62:48:c7:1d:9a:0f:f6:1e:cf: 01:85:77:ee:c4:ba:31:29:05:ad:ca:4e:6a:c5:0d: 96:25:2c:1a:ff:b9:12:07:f3:74:c2:db:c4:a6:ac: d3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B2:C5:93:B7:79:2F:F4:33:9C:58:8E:02:CD:0F:55:08:11:59:D2 X509v3 Authority Key Identifier: keyid:A4:CD:3E:67:D1:B2:24:F3:25:04:7E:9F:5E:48:4A:CD:C4:F6:63:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:96:76:93:de:b6:7a:5e:1d:54:fa:78:81:a6:95:28:93:fa: 34:f9:d1:5f:a5:f4:0e:47:52:4d:70:bf:84:3d:06:31:3f:ca: d0:46:74:fd:46:3f:04:d4:d9:53:33:f3:2d:68:d4:08:ae:c4: 8e:89:b2:e8:8f:72:73:15:0c:90:e4:2e:bf:6f:af:c8:e9:05: d9:6d:82:62:e6:a4:78:02:0f:82:c7:63:11:ca:cc:f6:a2:2c: 19:2d:54:83:ee:28:2e:40:33:7b:39:45:6e:71:00:8c:9e:58: 99:95:36:2e:69:aa:97:3b:88:49:aa:31:05:68:11:90:df:c9: c3:36:e3:24:77:70:7d:94:92:46:3c:1b:ba:0c:89:ce:b9:df: 93:45:8f:84:72:64:ac:b3:80:29:aa:61:49:d2:bd:3a:9c:bf: c1:96:92:fd:55:5d:e7:1f:38:31:fe:d9:94:2d:14:df:f4:3e: 24:61:d9:c4:f8:35:f0:28:8c:d6:ac:b8:d7:c8:be:39:5f:b9: d7:9a:c2:4a:23:67:1e:a3:d3:d2:e1:ca:d3:b4:aa:fb:63:00: 0f:59:40:7c:9a:d0:a2:52:d7:e1:96:12:3d:81:12:a3:b7:5b: 02:90:e8:e3:d2:06:35:70:f4:95:59:2a:a6:78:8d:a1:62:d5: 10:e9:67:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxQUQxMTAvBgNVBAUTKEE0Q0QzRTY3RDFCMjI0RjMyNTA0N0U5RjVFNDg0QUNE QzRGNjYzRUMwHhcNMjUxMjIxMDA0NTE0WhcNMjUxMjI4MDA0NTE0WjAYMRYwFAYD VQQDDA02OTQ3NDMxYS0zNmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrNT4BBh1e+8fiMrzgmFokZ8qNl1XrNkm/RGxpycqSCOPX1papUvJy32Zq8Y M7diAntIiF+POyAcnAQ9Ql03FrYnAmj41HIHh5O4n4i8Cl8vStRNeCgI6YakXmrU P7Wc0lbzjG9qMuIrKgEqN5eTsc/IDIPjpt5psBI06sOc/Z9b1ivM86KY2CYE+aOr UTixEvr5Asl4mSLYIwGazM7bye5WPQFbwty8vzskajLXuMzKWbHB5PSdifRCKS57 KwVL0lOh7CPE/Y5rm+XuIfG0IPWQPdQNPR9iSMcdmg/2Hs8BhXfuxLoxKQWtyk5q xQ2WJSwa/7kSB/N0wtvEpqzT+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2yxZO3 eS/0M5xYjgLND1UIEVnSMB8GA1UdIwQYMBaAFKTNPmfRsiTzJQR+n15ISs3E9mPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFBRC80Q0NCMDA5MDJD QkUxMUVEOTk4MjRCNENDNEY5QUUwMi9wTTAtWjlHeUpQTWxCSDZmWGtoS3pjVDJZ LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BNMC1aOUd5SlBNbEJINmZYa2hLemNUMlktdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFBRC80Q0NCMDA5MDJDQkUxMUVEOTk4MjRCNENDNEY5QUUwMi9wTTAtWjlHeUpQ TWxCSDZmWGtoS3pjVDJZLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwlnaT3rZ6Xh1U+niBppUok/o0+dFfpfQOR1JNcL+EPQYxP8rQRnT9 Rj8E1NlTM/MtaNQIrsSOibLoj3JzFQyQ5C6/b6/I6QXZbYJi5qR4Ag+Cx2MRysz2 oiwZLVSD7iguQDN7OUVucQCMnliZlTYuaaqXO4hJqjEFaBGQ38nDNuMkd3B9lJJG PBu6DInOud+TRY+EcmSss4ApqmFJ0r06nL/BlpL9VV3nHzgx/tmULRTf9D4kYdnE +DXwKIzWrLjXyL45X7nXmsJKI2ceo9PS4crTtKr7YwAPWUB8mtCiUtfhlhI9gRKj t1sCkOjj0gY1cPSVWSqmeI2hYtUQ6Wce -----END CERTIFICATE-----Generated at Sun Dec 21 14:39:27 2025 by rpki-client