This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: Y3+uUXPRATEeMKgKmGxz8SJhOLSkwTzmchaB6YuwhYM= Subject key identifier: AE:ED:07:AE:C3:23:89:49:A0:B6:1C:06:E1:F2:3C:B2:F0:80:01:77 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0B8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0B86 Signing time: Thu 18 Dec 2025 18:43:23 +0000 Manifest this update: Thu 18 Dec 2025 18:43:22 +0000 Manifest next update: Thu 25 Dec 2025 18:43:22 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: eJuLhrWD475FnqjaxyRl6dNJ7LHTm86L44zbARUYNqQ=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: 3BW+6nymo9tOkRv2HmgjHdbdXck1fJ3/WU7dqQPErF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2958 (0xb8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB, serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Dec 18 18:43:22 2025 GMT Not After : Dec 25 18:43:22 2025 GMT Subject: CN=69444b4b-6eb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ff:ed:f2:6c:e4:e1:f6:05:0c:92:81:73:ad: ed:2d:b3:c5:d5:4e:30:c9:a9:67:0b:f7:f5:52:fe: 68:31:83:3e:12:11:4f:62:89:a2:4b:24:64:68:d6: fa:12:7f:e6:ab:ba:ea:2d:da:5b:db:b8:b2:36:a2: 27:3b:71:49:fe:36:fa:75:15:12:41:77:9d:4d:f7: bc:1b:4e:bd:25:65:9f:8f:9d:b5:97:07:bf:80:84: 94:2e:0c:bf:2a:f3:d0:5d:e9:12:f3:04:d4:3b:54: ce:da:49:fd:57:87:06:03:c6:f4:f7:f2:08:d8:d2: 2d:a7:47:96:d4:a1:81:94:cc:3e:3a:93:b5:07:75: 3b:ee:65:7f:61:63:b7:b3:51:01:ba:6d:9e:1c:23: 15:f0:de:89:23:ad:c0:c7:ba:e4:be:26:9b:3a:45: e2:43:91:6c:aa:93:82:9a:82:0b:49:1d:32:67:6d: 44:84:f0:ee:06:af:9c:fa:10:93:ca:d4:db:24:54: ad:b3:0e:a3:ea:bc:d2:bd:ea:7b:9b:d7:2d:5b:36: f5:df:d0:2f:7d:80:c9:6b:3a:53:8a:8b:52:d6:b8: 44:24:ce:04:1d:ba:36:62:b6:f6:ee:91:6f:8f:da: 7a:f5:fd:c9:87:81:3c:a6:0c:88:ea:fc:68:d7:0f: 44:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:ED:07:AE:C3:23:89:49:A0:B6:1C:06:E1:F2:3C:B2:F0:80:01:77 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:64:b4:f0:3b:ee:d4:df:90:89:9f:04:e4:8f:d7:9a:9c:1e: 56:23:7f:88:a7:04:a7:aa:76:bb:d2:2f:29:44:8d:c7:34:54: 4f:dc:7a:54:cc:5e:b8:76:f7:0c:d7:76:4e:56:09:04:29:6a: 84:6b:dd:7a:3f:c4:b3:49:3c:4e:74:22:44:be:ba:50:42:4f: ff:66:d7:bc:f6:08:f6:20:7c:bc:bb:d1:6a:7f:95:4a:3d:1c: 42:e8:3d:c2:f2:66:8f:36:80:3a:42:93:a3:41:38:c0:fc:fb: 1b:25:ed:e8:0b:3e:47:ca:a3:e5:26:80:24:d6:0e:b4:fa:08: ed:4d:82:fc:df:a2:36:34:16:00:50:2d:8d:aa:8a:22:8a:48: e4:ca:98:ee:cd:42:74:2b:0a:50:90:b8:b8:f6:31:2e:72:e0: 15:32:6e:02:8f:5b:37:31:ab:0d:49:4f:b1:d5:77:5b:38:7b: f3:90:52:67:69:8f:10:4a:2d:d0:fa:cd:2b:80:5e:6e:bc:53: 4e:0b:e5:58:25:1f:db:5d:5a:ae:64:71:36:a1:8d:29:68:02: 4b:76:5f:81:ab:b8:00:09:c1:f2:7e:56:52:e8:a4:21:d2:28: 2d:22:8e:7f:08:9a:ee:e1:d4:88:15:44:67:86:14:33:64:5b: a2:cb:55:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjUxMjE4MTg0MzIyWhcNMjUxMjI1MTg0MzIyWjAYMRYwFAYD VQQDDA02OTQ0NGI0Yi02ZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk//t8mzk4fYFDJKBc63tLbPF1U4wyalnC/f1Uv5oMYM+EhFPYomiSyRkaNb6 En/mq7rqLdpb27iyNqInO3FJ/jb6dRUSQXedTfe8G069JWWfj521lwe/gISULgy/ KvPQXekS8wTUO1TO2kn9V4cGA8b09/II2NItp0eW1KGBlMw+OpO1B3U77mV/YWO3 s1EBum2eHCMV8N6JI63Ax7rkviabOkXiQ5FsqpOCmoILSR0yZ21EhPDuBq+c+hCT ytTbJFStsw6j6rzSvep7m9ctWzb139AvfYDJazpTiotS1rhEJM4EHbo2Yrb27pFv j9p69f3Jh4E8pgyI6vxo1w9EgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7tB67D I4lJoLYcBuHyPLLwgAF3MB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClZLTwO+7U35CJnwTkj9eanB5WI3+IpwSnqna70i8pRI3HNFRP3HpU zF64dvcM13ZOVgkEKWqEa916P8SzSTxOdCJEvrpQQk//Zte89gj2IHy8u9Fqf5VK PRxC6D3C8maPNoA6QpOjQTjA/PsbJe3oCz5HyqPlJoAk1g60+gjtTYL836I2NBYA UC2NqooiikjkypjuzUJ0KwpQkLi49jEucuAVMm4Cj1s3MasNSU+x1XdbOHvzkFJn aY8QSi3Q+s0rgF5uvFNOC+VYJR/bXVquZHE2oY0paAJLdl+Bq7gACcHyflZS6KQh 0igtIo5/CJru4dSIFURnhhQzZFuiy1Uy -----END CERTIFICATE-----Generated at Fri Dec 19 06:25:36 2025 by rpki-client