This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: ZRwVoqAMCsWgClmbMTc1TAKoOVaTUTBzfuZFRT0MtQY= Subject key identifier: 6A:BA:42:BE:07:88:D4:EF:70:13:93:B6:CF:48:72:20:94:7B:6D:BD Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: 01EC Signing time: Fri 19 Dec 2025 01:51:59 +0000 Manifest this update: Fri 19 Dec 2025 01:51:59 +0000 Manifest next update: Fri 26 Dec 2025 01:51:59 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: rvhKmAvN9h9a2NaMqOT80a/xZFJfwI5TSykvFgHVxxs=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: NxTIAEmzVEkhnPtaZCQQUJAnARHilUKNCFgj1AKD+gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: Dec 19 01:51:59 2025 GMT Not After : Dec 26 01:51:59 2025 GMT Subject: CN=6944afbf-9601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:3f:44:6f:cf:e3:f8:d7:c3:73:53:f4:19:53: 2d:6f:61:53:e9:a6:84:99:0b:f2:d0:6c:f8:a4:b3: 88:a3:65:60:ae:fb:0e:62:6c:d3:bd:85:db:c0:38: 15:c4:b9:56:76:dc:30:df:f4:d0:09:33:56:49:ec: d1:dc:23:78:7c:c2:00:a4:f0:bf:d3:63:56:53:ec: d2:35:3b:c7:38:21:6a:87:72:b2:c7:df:6c:40:4f: 33:18:61:c7:8d:47:c3:a6:09:09:e5:74:2f:73:9f: 00:8c:b9:ec:ee:c8:6e:74:5e:8d:ea:d4:12:de:94: cc:91:6c:83:31:3f:1f:05:cc:c1:36:a9:2a:bb:67: 5d:99:d0:eb:0d:02:f7:15:32:7d:b3:1b:8b:25:d5: eb:2e:c1:eb:10:85:28:de:ff:4c:7a:9b:c0:02:22: 12:cb:f4:e2:4c:9d:0c:f2:6f:1f:14:d7:b2:bc:a0: 89:b3:3c:62:69:87:d4:b6:e1:41:fd:4b:e2:d3:05: 57:1c:cb:44:37:6d:ae:46:40:ad:3e:3b:b5:62:5f: 57:8d:aa:03:b3:24:c8:40:fc:1e:bb:ee:36:1a:42: c6:f0:ce:2d:f7:eb:cf:02:ee:7f:8a:98:0d:da:19: 60:dc:81:b4:7b:b1:e1:61:4f:ef:a3:06:12:58:0e: 85:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:BA:42:BE:07:88:D4:EF:70:13:93:B6:CF:48:72:20:94:7B:6D:BD X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:f0:4a:19:86:d6:14:9b:d6:b4:ca:90:9e:79:15:9b:43:93: b0:ce:ad:1d:56:9a:85:cc:00:c4:62:07:e3:6d:71:a8:cb:00: 63:5b:ca:03:0b:70:0a:63:3c:31:84:58:34:2a:e5:a8:13:f6: c4:b4:b9:18:c2:87:ea:a8:7e:71:7a:25:00:1c:49:55:9f:a0: 4a:9b:5d:d1:f6:08:22:fe:0c:45:54:31:82:31:e9:22:69:72: 77:d5:cf:19:d8:94:6c:4f:24:58:3b:ef:34:2c:9b:b9:aa:89: d8:62:60:dc:6a:c0:81:1e:92:79:b3:39:97:47:f9:b1:31:3e: 6e:73:85:38:e5:30:c9:89:1a:bc:4c:6c:51:cb:a3:5e:02:b3: 46:86:a6:b9:6b:1f:fb:d1:31:fb:58:89:8d:97:08:27:6b:cc: 26:c6:4e:20:fb:21:e4:57:90:48:3d:a3:8b:ac:88:d7:db:20: da:b2:b0:9f:1e:e1:0d:0d:d6:4b:85:06:2a:34:ad:5d:29:3c: 00:0d:dd:36:36:c2:8d:a3:a8:cd:99:9b:bc:58:2e:dd:06:fc: ca:8f:7d:74:8a:ac:67:dd:25:05:c6:7b:c0:0a:3c:dc:f8:db: 24:3d:97:cd:cd:84:51:86:57:f2:23:1d:e5:75:67:1d:b8:a7: 3e:29:b3:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUxMjE5MDE1MTU5WhcNMjUxMjI2MDE1MTU5WjAYMRYwFAYD VQQDDA02OTQ0YWZiZi05NjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6D9Eb8/j+NfDc1P0GVMtb2FT6aaEmQvy0Gz4pLOIo2VgrvsOYmzTvYXbwDgV xLlWdtww3/TQCTNWSezR3CN4fMIApPC/02NWU+zSNTvHOCFqh3Kyx99sQE8zGGHH jUfDpgkJ5XQvc58AjLns7shudF6N6tQS3pTMkWyDMT8fBczBNqkqu2ddmdDrDQL3 FTJ9sxuLJdXrLsHrEIUo3v9MepvAAiISy/TiTJ0M8m8fFNeyvKCJszxiaYfUtuFB /Uvi0wVXHMtEN22uRkCtPju1Yl9XjaoDsyTIQPweu+42GkLG8M4t9+vPAu5/ipgN 2hlg3IG0e7HhYU/vowYSWA6F7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGq6Qr4H iNTvcBOTts9IciCUe229MB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP8EoZhtYUm9a0ypCeeRWbQ5Owzq0dVpqFzADEYgfjbXGoywBjW8oD C3AKYzwxhFg0KuWoE/bEtLkYwofqqH5xeiUAHElVn6BKm13R9ggi/gxFVDGCMeki aXJ31c8Z2JRsTyRYO+80LJu5qonYYmDcasCBHpJ5szmXR/mxMT5uc4U45TDJiRq8 TGxRy6NeArNGhqa5ax/70TH7WImNlwgna8wmxk4g+yHkV5BIPaOLrIjX2yDasrCf HuENDdZLhQYqNK1dKTwADd02NsKNo6jNmZu8WC7dBvzKj310iqxn3SUFxnvACjzc +NskPZfNzYRRhlfyIx3ldWcduKc+KbP7 -----END CERTIFICATE-----Generated at Fri Dec 19 23:53:24 2025 by rpki-client