This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft File: CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft (raw, json) Hash identifier: mj43RAFkBZxMIx0/J98GUCzWs7gHZQIILc4wu00ZPAM= Subject key identifier: 96:ED:96:E5:EC:8D:99:F5:49:0F:1B:DF:E7:50:AE:D0:46:2D:E2:CA Authority key identifier: 08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F Certificate issuer: /CN=A91FF7FC/serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Certificate serial: 052A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft Manifest number: 0524 Signing time: Sat 20 Dec 2025 22:48:54 +0000 Manifest this update: Sat 20 Dec 2025 22:48:54 +0000 Manifest next update: Sat 27 Dec 2025 22:48:54 +0000 Files and hashes: 1: CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl (hash: 1eD8yWLYNg0OEt19pzOsxT4GqJQIfhh7ZKWKqXRH5oQ=) 2: 5CA72CF82A6911EC94518740C4F9AE02.roa (hash: 0jqnSn+Cm10EtK5JT/NKDy8k+JGjQ6fCGa+uxrmRYyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1322 (0x52a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF7FC, serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Validity Not Before: Dec 20 22:48:54 2025 GMT Not After : Dec 27 22:48:54 2025 GMT Subject: CN=694727d6-12f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3c:dd:5c:98:ce:78:3d:79:a2:b9:ae:af:07: 33:64:6a:41:fb:d1:dd:1a:58:c5:66:97:79:eb:c9: 62:19:04:00:3d:a9:54:53:3f:93:bf:39:6f:c5:21: d0:47:c5:0d:b6:6b:85:25:11:37:dd:6c:a8:f4:1d: 59:88:e0:ae:6e:f1:34:6c:a8:8b:6e:e9:86:3a:61: 79:f1:d0:55:6c:ba:97:7a:1b:00:a3:b3:15:af:a3: f5:31:fa:1c:7f:bf:a3:15:6f:d5:c1:10:50:63:b6: b9:35:e4:ce:9c:be:5e:2c:47:7b:06:60:ca:15:c7: b1:be:e2:b6:ca:1f:30:7e:f9:9a:68:c9:ce:68:a9: 71:f2:39:aa:ed:5d:af:c8:07:5f:df:77:10:cb:fc: 0e:6f:9d:18:21:b8:8b:ef:96:99:2c:9a:b5:85:52: 24:91:3d:03:2d:9b:1e:8b:7f:3e:d9:4a:42:f0:0a: 60:20:84:49:be:c4:a2:6a:75:79:c3:07:46:8a:25: 1a:a0:7a:7d:8c:72:90:0c:f9:ee:e5:01:a6:6a:74: ef:be:5e:73:f9:52:87:d3:d7:32:50:42:0b:2a:65: b6:7c:cc:ab:15:0d:09:dc:51:70:57:78:ac:a1:94: d7:c2:fb:19:83:0e:8a:f6:8a:4d:2b:d3:da:4b:63: a3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:ED:96:E5:EC:8D:99:F5:49:0F:1B:DF:E7:50:AE:D0:46:2D:E2:CA X509v3 Authority Key Identifier: keyid:08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:83:4a:5a:81:93:82:3c:57:4f:81:3c:69:27:67:80:97:f7: 65:ba:00:c7:83:69:60:9d:1f:df:61:7e:76:98:f6:13:f5:fb: fe:87:33:e3:78:c7:89:1e:fc:30:8b:6a:40:aa:88:ca:1a:47: 8e:9d:3d:42:83:ac:72:b2:8c:54:97:32:3e:5a:57:0e:2b:f9: cd:cd:a0:3e:91:09:d6:94:cb:0b:88:0e:db:2a:da:d1:99:07: 3d:01:2a:4e:62:66:19:15:7e:f8:de:ab:7c:a3:d4:2b:f1:bd: 71:73:bb:38:a0:31:df:97:4a:08:ec:74:26:95:11:b0:b9:8c: ad:36:7e:07:f8:59:0f:5d:30:7b:8f:bb:a8:0b:ff:1c:91:17: cb:e6:b1:54:ca:31:f4:16:51:ff:12:37:e9:32:c5:cb:e4:d1: aa:0a:eb:60:e5:58:e1:f1:f2:b5:3c:fe:f7:8e:43:97:7a:b4: 5e:7a:80:8f:ef:fb:61:e4:b2:11:36:c7:97:a3:61:a0:4b:30: 2b:e2:bd:a2:c9:da:8b:47:e3:9e:e2:a2:a8:fc:50:c0:d2:3f: f2:55:7b:a8:c3:de:57:70:5c:bb:be:f3:18:0a:5e:2f:80:1a: 7c:a8:ee:26:a4:ab:9a:dc:b9:50:3f:3e:dd:05:9c:22:b2:aa: 30:68:2e:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3RkMxMTAvBgNVBAUTKDA4RDlGNDgzRTQ1NDIxNThGNjJDQkU3MDU4NjlFQkVE NzdGQjkyN0YwHhcNMjUxMjIwMjI0ODU0WhcNMjUxMjI3MjI0ODU0WjAYMRYwFAYD VQQDDA02OTQ3MjdkNi0xMmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjzdXJjOeD15ormurwczZGpB+9HdGljFZpd568liGQQAPalUUz+TvzlvxSHQ R8UNtmuFJRE33Wyo9B1ZiOCubvE0bKiLbumGOmF58dBVbLqXehsAo7MVr6P1Mfoc f7+jFW/VwRBQY7a5NeTOnL5eLEd7BmDKFcexvuK2yh8wfvmaaMnOaKlx8jmq7V2v yAdf33cQy/wOb50YIbiL75aZLJq1hVIkkT0DLZsei38+2UpC8ApgIIRJvsSianV5 wwdGiiUaoHp9jHKQDPnu5QGmanTvvl5z+VKH09cyUEILKmW2fMyrFQ0J3FFwV3is oZTXwvsZgw6K9opNK9PaS2OjNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbtluXs jZn1SQ8b3+dQrtBGLeLKMB8GA1UdIwQYMBaAFAjZ9IPkVCFY9iy+cFhp6+13+5J/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjdGQy80RTIzQjM5QzJB NjIxMUVDQTlBNjdDMzBDNEY5QUUwMi9DTm4wZy1SVUlWajJMTDV3V0ducjdYZjdr bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NObjBnLVJVSVZqMkxMNXdXR25yN1hmN2tuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjdGQy80RTIzQjM5QzJBNjIxMUVDQTlBNjdDMzBDNEY5QUUwMi9DTm4wZy1SVUlW ajJMTDV3V0ducjdYZjdrbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZg0pagZOCPFdPgTxpJ2eAl/dlugDHg2lgnR/fYX52mPYT9fv+hzPj eMeJHvwwi2pAqojKGkeOnT1Cg6xysoxUlzI+WlcOK/nNzaA+kQnWlMsLiA7bKtrR mQc9ASpOYmYZFX743qt8o9Qr8b1xc7s4oDHfl0oI7HQmlRGwuYytNn4H+FkPXTB7 j7uoC/8ckRfL5rFUyjH0FlH/EjfpMsXL5NGqCutg5Vjh8fK1PP73jkOXerReeoCP 7/th5LIRNseXo2GgSzAr4r2iydqLR+Oe4qKo/FDA0j/yVXuow95XcFy7vvMYCl4v gBp8qO4mpKua3LlQPz7dBZwisqowaC75 -----END CERTIFICATE-----Generated at Sun Dec 21 08:00:20 2025 by rpki-client