This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: oEpLwS5CZa6kEhCYAHwlJ7uYzVx1A8d4oop4C3y4y8U= Subject key identifier: E0:A1:8C:D3:2F:14:88:B6:4D:1B:76:E0:B9:39:27:40:D2:8D:1B:4E Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 0200 Signing time: Fri 05 Dec 2025 00:43:50 +0000 Manifest this update: Fri 05 Dec 2025 00:43:49 +0000 Manifest next update: Fri 12 Dec 2025 00:43:49 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: XxHpS7ZW0OvcqGdKgv6rCu+koSU54q2ZwufR6cgXyt0=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: GrQm9NlurYpVLIwLedH2/MNa+h8258HeOnrxmNS0v54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Dec 5 00:43:49 2025 GMT Not After : Dec 12 00:43:49 2025 GMT Subject: CN=69322ac5-6692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ec:a5:d1:6f:54:2d:22:69:8a:08:2a:25:7e: 24:95:ac:29:9a:32:01:eb:13:0e:5a:6c:10:2c:63: ae:e9:2c:78:81:ec:6e:5d:52:f7:71:ce:2d:c4:da: 2d:aa:59:fd:56:96:cb:6e:ed:e7:46:cd:c5:31:27: e4:fe:5c:91:5e:10:cd:e6:32:ef:b8:4c:94:21:b2: 90:34:93:5d:72:7a:bd:58:8c:5a:e2:60:87:d0:b8: 46:50:ba:a0:f0:a4:13:a2:a2:34:db:bc:b2:0c:51: 8c:2c:54:63:4c:1d:e1:19:50:33:df:ec:7b:d9:8d: 6a:65:ab:cb:13:b4:f5:d4:a7:6f:ed:2e:95:96:63: 1d:7f:d5:37:03:a6:54:f5:d9:60:06:ed:97:7a:e6: fe:e6:e5:54:0c:06:b2:b3:76:bd:1d:90:82:fb:3a: c9:a3:cb:1a:3b:35:45:be:2d:7b:1c:4e:2e:d5:be: 75:1b:1a:79:b1:c0:22:74:af:c7:e4:34:e1:9e:71: 80:21:39:ac:92:d2:73:ad:c3:6e:98:6f:81:3e:f1: d9:67:8e:73:45:f0:20:aa:e9:c6:24:25:a3:fc:6f: 2d:66:51:fb:9b:58:14:54:89:a0:a1:4e:9b:8e:1a: 19:aa:f2:b6:70:d4:6b:7b:ae:6e:37:9d:07:2e:71: 73:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A1:8C:D3:2F:14:88:B6:4D:1B:76:E0:B9:39:27:40:D2:8D:1B:4E X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:5c:18:25:33:1c:61:e8:f5:80:82:33:8d:e3:2c:d8:82:b2: 28:78:a8:f5:2f:77:cf:e8:05:f6:14:ca:2f:cb:ac:44:e8:4f: 3c:c9:b7:78:20:c5:d7:82:ea:86:28:68:ba:e4:9e:74:dc:84: 04:a2:43:fc:19:79:ba:38:bf:b6:16:4a:5e:fa:9f:cb:d9:99: ab:dd:a7:f7:6f:fa:9e:f4:04:d6:81:9a:0e:6f:cc:53:4f:1c: 69:dd:bf:4d:04:f9:1e:dd:a2:dc:5c:d8:11:a2:99:9b:0d:79: 86:ea:cf:06:90:77:c2:c4:3d:cc:83:04:2e:70:9b:9c:9e:f7: 45:ba:5b:1a:ca:9e:dd:c0:51:8c:96:c8:d1:3f:6c:20:33:65: e7:f8:4f:72:cd:ad:b9:3e:81:60:fb:ba:8e:c1:26:a2:40:37: a7:b1:4f:2f:5f:6f:9a:af:01:7a:b6:dc:81:67:8c:9a:d9:63: 59:18:3b:03:bc:13:ab:ad:b0:3b:55:0b:70:14:12:1e:17:7d: 2e:6b:bb:30:b4:d8:46:e6:59:d3:18:a4:01:31:9c:7d:e9:8f: a2:23:b3:20:8c:88:8e:2e:fa:90:2d:c6:a7:4d:ce:23:d0:ce: c5:89:1c:f0:05:ee:5e:46:83:dd:26:2f:c1:e0:83:33:13:37: c0:ac:d7:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUxMjA1MDA0MzQ5WhcNMjUxMjEyMDA0MzQ5WjAYMRYwFAYD VQQDEw02OTMyMmFjNS02NjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOyl0W9ULSJpiggqJX4klawpmjIB6xMOWmwQLGOu6Sx4gexuXVL3cc4txNot qln9VpbLbu3nRs3FMSfk/lyRXhDN5jLvuEyUIbKQNJNdcnq9WIxa4mCH0LhGULqg 8KQToqI027yyDFGMLFRjTB3hGVAz3+x72Y1qZavLE7T11Kdv7S6VlmMdf9U3A6ZU 9dlgBu2Xeub+5uVUDAays3a9HZCC+zrJo8saOzVFvi17HE4u1b51Gxp5scAidK/H 5DThnnGAITmsktJzrcNumG+BPvHZZ45zRfAgqunGJCWj/G8tZlH7m1gUVImgoU6b jhoZqvK2cNRre65uN50HLnFzeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOChjNMv FIi2TRt24Lk5J0DSjRtOMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoXBglMxxh6PWAgjON4yzYgrIoeKj1L3fP6AX2FMovy6xE6E88ybd4 IMXXguqGKGi65J503IQEokP8GXm6OL+2Fkpe+p/L2Zmr3af3b/qe9ATWgZoOb8xT Txxp3b9NBPke3aLcXNgRopmbDXmG6s8GkHfCxD3MgwQucJucnvdFulsayp7dwFGM lsjRP2wgM2Xn+E9yza25PoFg+7qOwSaiQDensU8vX2+arwF6ttyBZ4ya2WNZGDsD vBOrrbA7VQtwFBIeF30ua7swtNhG5lnTGKQBMZx96Y+iI7MgjIiOLvqQLcanTc4j 0M7FiRzwBe5eRoPdJi/B4IMzEzfArNf6 -----END CERTIFICATE-----Generated at Sat Dec 6 23:17:39 2025 by rpki-client