This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: UP99uZFus8H6Zsyv8LSvtsKknipZ8o/geMkMfJ3fkc8= Subject key identifier: EF:42:E5:02:F2:69:BF:4D:96:B9:CA:5A:29:53:10:7D:5A:A1:E5:74 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 354A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 3516 Signing time: Thu 04 Dec 2025 14:39:16 +0000 Manifest this update: Thu 04 Dec 2025 14:39:15 +0000 Manifest next update: Thu 11 Dec 2025 14:39:15 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: Vhtab+dw0SBFJYk/VrP7tcMhgVt1TbQOWjjA72PqlGM=) 2: 42DAE250C8C711F08A7B6740C4F9AE02.roa (hash: LXms9Zrbk+PXqSOcObRZdGiWL7GgK8jI8GvKqfmYMjY=) 3: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (hash: gzKLnHGUVNhUy122xbHjkwFinEFr8S05RyLytJ6eVXI=) 4: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: Npaiqv8wx3x0juj2XPFP6NT15iQeinsY3d+rnK9Ipa8=) 5: 3E4759ACC8C811F0A19E0642C4F9AE02.roa (hash: ZWUUqwfw7EkvOK+3D6M6Ls8tBIP9/iOJHFpcIlGh5RM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13642 (0x354a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Dec 4 14:39:15 2025 GMT Not After : Dec 11 14:39:15 2025 GMT Subject: CN=69319d14-e319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1b:fc:19:40:bb:61:0e:9d:2b:0a:b2:6e:88: bd:7d:82:8e:d4:e8:1d:c2:ae:d1:64:2c:2a:e5:99: 89:c5:82:ed:d6:0d:88:93:33:3c:f7:58:b3:44:fe: d5:8d:c2:b5:2c:94:b9:0f:bd:c6:1d:a0:0d:c5:db: c3:cd:e6:e4:ef:4d:c7:a2:b0:b5:b1:18:32:f2:60: 3b:36:81:61:53:9f:1c:2e:f1:c5:37:5f:47:df:73: 90:4c:05:8a:c4:64:7d:1b:d5:92:24:82:80:4e:88: 8b:77:a2:1b:1a:d6:fd:50:74:15:d8:8c:42:e2:a0: 93:98:37:2b:99:49:0c:50:a3:47:d3:6c:2b:d2:95: 5d:24:3c:87:ba:ec:98:82:d1:a5:80:d7:32:8e:45: dc:70:4a:b7:9e:a4:e9:a0:21:60:c6:a8:30:00:43: ea:b8:1e:26:1f:44:e5:75:94:fd:8d:e6:80:96:26: 4a:64:2b:70:56:2c:02:1e:c1:ce:29:17:8f:70:03: ee:f4:d5:65:82:91:31:b1:df:22:a2:9a:24:b8:97: 04:db:35:97:65:6f:b7:55:aa:94:d6:b3:b5:e2:f4: 3f:2b:8c:51:9f:6c:19:aa:f2:16:1d:87:14:e4:80: 44:a0:49:89:62:0e:ba:4b:12:3d:1d:09:41:3a:82: 93:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:42:E5:02:F2:69:BF:4D:96:B9:CA:5A:29:53:10:7D:5A:A1:E5:74 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:0b:0b:1f:58:8d:fa:33:a3:b8:ba:a4:b7:d6:84:0f:7b:e8: a4:45:fc:c2:6f:18:b0:09:b3:9e:75:49:fd:a0:56:bd:dd:e8: 78:fb:95:66:8b:c4:2c:bd:9d:33:11:d9:ce:43:60:e9:75:b6: 09:71:69:18:8b:5c:81:d4:05:b6:9f:fe:8b:75:e0:df:0a:55: 09:3c:76:73:a5:41:4b:19:6f:0c:f9:f6:a5:f9:eb:ac:af:ac: 1a:df:9e:f1:71:de:85:5f:ba:23:5b:50:0b:f0:a8:86:75:19: fa:1a:20:88:1a:cc:b1:90:8f:f8:8b:17:42:20:3c:73:b6:a2: ee:f0:de:05:65:5a:78:3a:fc:e9:ea:63:22:69:53:4a:f5:18: 0d:7b:58:99:f0:55:8b:46:8d:21:27:f5:75:41:90:67:66:0f: 42:bc:3f:19:14:0f:09:1e:20:ec:e3:d2:7e:17:49:ad:ac:4b: 0b:fb:52:03:1c:8c:74:f5:8f:fe:be:06:13:26:b6:73:b9:f5: 96:b4:ae:06:28:28:26:66:03:2d:bd:e1:a7:8a:9d:c2:28:5c: 1b:4c:d6:a0:4c:f0:2a:9a:6d:03:39:b8:65:8d:0f:b0:74:7f: 52:ac:78:fc:0b:06:54:7f:d2:61:6c:f2:94:03:2f:16:0c:63: 84:79:99:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUxMjA0MTQzOTE1WhcNMjUxMjExMTQzOTE1WjAYMRYwFAYD VQQDEw02OTMxOWQxNC1lMzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Rv8GUC7YQ6dKwqyboi9fYKO1Ogdwq7RZCwq5ZmJxYLt1g2IkzM891izRP7V jcK1LJS5D73GHaANxdvDzebk703HorC1sRgy8mA7NoFhU58cLvHFN19H33OQTAWK xGR9G9WSJIKAToiLd6IbGtb9UHQV2IxC4qCTmDcrmUkMUKNH02wr0pVdJDyHuuyY gtGlgNcyjkXccEq3nqTpoCFgxqgwAEPquB4mH0TldZT9jeaAliZKZCtwViwCHsHO KRePcAPu9NVlgpExsd8iopokuJcE2zWXZW+3VaqU1rO14vQ/K4xRn2wZqvIWHYcU 5IBEoEmJYg66SxI9HQlBOoKTmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9C5QLy ab9NlrnKWilTEH1aoeV0MB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuCwsfWI36M6O4uqS31oQPe+ikRfzCbxiwCbOedUn9oFa93eh4+5Vm i8QsvZ0zEdnOQ2DpdbYJcWkYi1yB1AW2n/6LdeDfClUJPHZzpUFLGW8M+fal+eus r6wa357xcd6FX7ojW1AL8KiGdRn6GiCIGsyxkI/4ixdCIDxztqLu8N4FZVp4Ovzp 6mMiaVNK9RgNe1iZ8FWLRo0hJ/V1QZBnZg9CvD8ZFA8JHiDs49J+F0mtrEsL+1ID HIx09Y/+vgYTJrZzufWWtK4GKCgmZgMtveGnip3CKFwbTNagTPAqmm0DObhljQ+w dH9SrHj8CwZUf9JhbPKUAy8WDGOEeZle -----END CERTIFICATE-----Generated at Sat Dec 6 07:55:25 2025 by rpki-client