This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft File: 089k1dsXYfy2pVLwaAkTMMW19Ts.mft (raw, json) Hash identifier: 0StIbv++ZbPaeGAhg60Gkhge6gA5OmYN5vdXs9Ubpj0= Subject key identifier: A2:6B:08:B1:1D:FB:6E:AF:1C:F9:E1:B7:57:03:10:5B:6D:53:42:6D Authority key identifier: D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B Certificate issuer: /CN=A91A25DF/serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft Manifest number: 4E Signing time: Sun 07 Dec 2025 05:20:35 +0000 Manifest this update: Sun 07 Dec 2025 05:20:34 +0000 Manifest next update: Sun 14 Dec 2025 05:20:34 +0000 Files and hashes: 1: 089k1dsXYfy2pVLwaAkTMMW19Ts.crl (hash: IHKf/dnPufn4jRvgyj9AAJBbzuWuMsdpdv1ZdDIlE6w=) 2: C54DD1F45EDA11F0A5EAB579C4F9AE02.roa (hash: yvTiS/oFSBojbCtB284WFEZBM+3n1uqQBo+L9aW7vLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Validity Not Before: Dec 7 05:20:34 2025 GMT Not After : Dec 14 05:20:34 2025 GMT Subject: CN=69350ea2-1ff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d0:e2:db:20:5b:a8:e0:d0:42:a2:99:c8:74: 54:06:26:3d:9b:6b:4d:3f:02:8e:05:ac:41:fe:af: ac:f8:e8:3a:09:18:ab:95:7f:8d:f2:27:0a:1a:65: da:db:c7:9c:89:18:95:32:93:bb:8f:6a:9c:b7:6b: f9:60:7e:3a:b2:19:6b:3b:b5:d7:cf:6a:5f:2a:b3: 66:2c:7c:a2:bb:48:c8:01:61:25:28:cf:e3:a7:51: 06:e5:4d:0b:69:0d:ab:3b:02:af:59:65:c7:3f:1b: 82:d3:16:01:da:46:86:27:bd:19:61:69:d8:3e:20: 30:34:cb:31:0d:d6:01:6d:72:e7:ff:c9:88:df:bd: d6:c9:69:0c:34:b1:16:f8:11:4e:87:ba:9d:ca:71: ab:98:f9:5e:6d:ed:e5:6c:0d:37:03:f1:b2:ff:28: 9f:c7:4e:cf:ac:d2:d9:9b:e3:d9:64:bf:e7:41:77: 67:24:e6:c9:43:c0:f7:3e:6c:94:fd:4d:70:1f:e3: 6f:05:7e:91:1a:96:5a:6c:0b:46:08:3e:09:2b:87: 91:e4:4a:86:6e:9d:e7:72:0e:4a:71:f5:ff:fa:47: 06:4a:5a:2e:08:52:32:3b:c3:13:b4:c9:9f:15:c5: 88:c5:77:ba:43:b5:06:4e:3c:83:9f:01:d0:84:81: c1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:6B:08:B1:1D:FB:6E:AF:1C:F9:E1:B7:57:03:10:5B:6D:53:42:6D X509v3 Authority Key Identifier: keyid:D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:3b:a7:ec:2d:ce:29:f6:12:59:c3:09:12:d7:57:27:59:0c: 29:73:1e:9d:27:18:e7:8d:1a:09:d9:68:08:ee:7a:a5:57:5d: f1:00:2c:b3:d6:00:74:30:17:16:a8:0f:e3:bc:50:cc:be:5a: c3:6c:16:78:52:f8:91:5c:6a:cf:65:50:f3:e6:50:f2:c5:ba: 56:27:82:92:b4:2e:ca:81:00:03:62:bb:4c:55:3e:ce:41:28: d5:e1:9b:1b:cc:50:8b:7d:4e:2e:51:73:d3:06:a8:3c:92:2d: db:85:d5:b0:d5:b1:c8:16:b9:af:55:eb:07:3e:30:97:37:64: 5e:c3:5a:23:b4:36:3c:25:b1:56:ea:71:e2:23:d7:45:f7:78: 0c:bc:8d:59:43:cb:66:1a:bf:7b:f1:c4:90:30:37:e5:f4:f9: 77:9b:d9:b6:3f:df:2f:dc:3e:aa:34:22:84:89:c0:c1:1d:5d: f1:af:ad:43:89:0b:d4:5b:99:72:7f:67:ba:81:95:9a:1b:a7: 27:e9:67:a3:f6:a2:ef:09:3a:95:d9:c0:71:7d:36:26:51:0d: 00:d0:10:6f:32:55:88:17:00:d7:48:c1:8a:46:51:38:79:d4: 4a:de:b3:44:e0:96:0c:95:11:fb:1a:8f:1d:d3:5b:d2:8a:a4: 0b:cd:d0:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoRDNDRjY0RDVEQjE3NjFGQ0I2QTU1MkYwNjgwOTEzMzBD NUI1RjUzQjAeFw0yNTEyMDcwNTIwMzRaFw0yNTEyMTQwNTIwMzRaMBgxFjAUBgNV BAMTDTY5MzUwZWEyLTFmZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC0OLbIFuo4NBCopnIdFQGJj2ba00/Ao4FrEH+r6z46DoJGKuVf43yJwoaZdrb x5yJGJUyk7uPapy3a/lgfjqyGWs7tdfPal8qs2YsfKK7SMgBYSUoz+OnUQblTQtp Das7Aq9ZZcc/G4LTFgHaRoYnvRlhadg+IDA0yzEN1gFtcuf/yYjfvdbJaQw0sRb4 EU6Hup3KcauY+V5t7eVsDTcD8bL/KJ/HTs+s0tmb49lkv+dBd2ck5slDwPc+bJT9 TXAf428FfpEallpsC0YIPgkrh5HkSoZunedyDkpx9f/6RwZKWi4IUjI7wxO0yZ8V xYjFd7pDtQZOPIOfAdCEgcH7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUomsIsR37 bq8c+eG3VwMQW21TQm0wHwYDVR0jBBgwFoAU089k1dsXYfy2pVLwaAkTMMW19Tsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0U2MTI0MDgyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5MnBWTHdhQWtUTU1XMTlU cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDg5azFkc1hZZnkycFZMd2FBa1RNTVcxOVRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0U2MTI0MDgyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5 MnBWTHdhQWtUTU1XMTlUcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAII7p+wtzin2ElnDCRLXVydZDClzHp0nGOeNGgnZaAjueqVXXfEALLPW AHQwFxaoD+O8UMy+WsNsFnhS+JFcas9lUPPmUPLFulYngpK0LsqBAANiu0xVPs5B KNXhmxvMUIt9Ti5Rc9MGqDySLduF1bDVscgWua9V6wc+MJc3ZF7DWiO0NjwlsVbq ceIj10X3eAy8jVlDy2Yav3vxxJAwN+X0+Xeb2bY/3y/cPqo0IoSJwMEdXfGvrUOJ C9RbmXJ/Z7qBlZobpyfpZ6P2ou8JOpXZwHF9NiZRDQDQEG8yVYgXANdIwYpGUTh5 1Eres0TglgyVEfsajx3TW9KKpAvN0Po= -----END CERTIFICATE-----Generated at Mon Dec 8 07:24:56 2025 by rpki-client