This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: RIPRUKgZNA4Jx3Yw+ETQQM8iQJdax+4G/fERTpWlNB8= Subject key identifier: E6:A2:3D:DD:A0:CA:68:D0:77:96:75:02:96:CF:DA:F3:B8:8C:9A:8C Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0C9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0C8E Signing time: Sat 06 Dec 2025 17:48:45 +0000 Manifest this update: Sat 06 Dec 2025 17:48:44 +0000 Manifest next update: Sat 13 Dec 2025 17:48:44 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: wL4+uHbD+6pD9NZ1hpqw5kPTgKiROVkteVMD+Cbm+VY=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: u6PjzNYcnOXcXRJn9HLyhk2+LGVsDog450i4Tie6o0k=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: sXqVXr7ZHzH2JmpUEnTy5shMtTPK9xhXC3ul6iYq9+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3230 (0xc9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Dec 6 17:48:44 2025 GMT Not After : Dec 13 17:48:44 2025 GMT Subject: CN=69346c7d-eb20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ad:76:06:9d:89:24:16:d6:14:54:80:93:3f: 15:50:61:95:fe:8b:8d:45:52:37:d1:17:20:cb:ae: 9b:d9:c8:78:3d:52:44:60:ab:99:94:65:6b:78:98: ef:24:d3:70:06:50:e0:09:8f:81:b2:41:e3:fa:fd: 43:5f:9a:ab:76:16:8d:24:d0:fb:68:87:3f:40:a4: 8e:82:b9:5e:e6:ea:ea:62:e3:29:e1:54:a7:ae:77: 42:91:84:85:9a:97:b4:47:57:28:94:1c:2d:9e:09: 55:28:a8:a5:24:19:d1:45:6c:79:9c:85:55:21:67: 4b:eb:b1:6f:bb:e3:ce:c3:c1:7b:53:5d:14:ca:e0: f4:31:5b:8d:eb:81:58:9d:2e:2d:b7:7f:74:06:c6: 21:db:cf:3f:45:37:e0:86:5e:d3:60:e7:d6:d4:dd: 9e:2d:85:1e:ec:c7:29:13:9c:7b:f3:46:65:38:1c: 8f:16:f7:f3:7b:e3:12:8b:c5:46:bc:63:0a:11:3b: 99:29:1e:5d:b3:2e:9e:de:8e:af:38:86:67:fb:08: 99:78:72:fb:20:ad:71:8d:c0:1f:92:2f:3b:2a:69: 71:61:10:f2:24:e3:52:16:ce:b8:77:ec:d2:cd:ed: 7d:8e:80:e5:1d:76:0b:96:c9:3e:72:08:59:5b:41: 99:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A2:3D:DD:A0:CA:68:D0:77:96:75:02:96:CF:DA:F3:B8:8C:9A:8C X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:b3:96:87:94:0e:52:0c:1a:5b:f5:09:2f:15:9e:9a:cd:5c: ac:e8:34:f1:66:d5:0f:07:74:e2:f7:01:c1:36:30:f4:44:73: 89:39:ac:e2:c1:2e:62:22:20:9c:87:82:6e:44:b4:cb:4c:08: ba:cc:dc:d1:76:75:99:6e:c5:e6:80:01:e7:d0:c4:e4:78:81: 1e:19:a7:6e:98:a1:80:f9:27:bc:cb:37:0a:1c:61:04:7f:af: 19:d6:dc:3c:76:0e:1e:19:86:af:2d:87:b2:86:04:bd:13:ea: fd:5c:8d:30:65:35:ec:eb:ec:d6:5c:96:f5:c6:e8:9a:1f:b8: 2b:14:49:e7:56:1a:90:d5:7c:60:d4:80:52:36:c3:73:21:15: 07:cd:e5:42:fc:e2:e3:1a:18:fb:59:9f:37:69:e3:ae:db:63: 08:2a:0a:e7:ae:62:29:52:27:8d:03:21:e4:7a:f3:db:1b:1b: 89:59:9e:60:02:24:b6:53:dc:a7:3b:1e:21:3b:4b:85:0b:44: ef:85:22:a7:9f:f2:fd:15:57:0e:a7:d3:81:22:af:73:96:e7: ec:9e:77:30:37:8c:6d:e7:10:d2:7f:5a:2c:35:6a:04:5d:ed: 94:77:2c:d3:74:7a:92:d5:91:2f:e3:f7:0c:c4:22:75:4b:14: de:9e:97:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUxMjA2MTc0ODQ0WhcNMjUxMjEzMTc0ODQ0WjAYMRYwFAYD VQQDEw02OTM0NmM3ZC1lYjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApa12Bp2JJBbWFFSAkz8VUGGV/ouNRVI30Rcgy66b2ch4PVJEYKuZlGVreJjv JNNwBlDgCY+BskHj+v1DX5qrdhaNJND7aIc/QKSOgrle5urqYuMp4VSnrndCkYSF mpe0R1colBwtnglVKKilJBnRRWx5nIVVIWdL67Fvu+POw8F7U10UyuD0MVuN64FY nS4tt390BsYh288/RTfghl7TYOfW1N2eLYUe7McpE5x780ZlOByPFvfze+MSi8VG vGMKETuZKR5dsy6e3o6vOIZn+wiZeHL7IK1xjcAfki87KmlxYRDyJONSFs64d+zS ze19joDlHXYLlsk+cghZW0GZgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaiPd2g ymjQd5Z1ApbP2vO4jJqMMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcs5aHlA5SDBpb9QkvFZ6azVys6DTxZtUPB3Ti9wHBNjD0RHOJOazi wS5iIiCch4JuRLTLTAi6zNzRdnWZbsXmgAHn0MTkeIEeGadumKGA+Se8yzcKHGEE f68Z1tw8dg4eGYavLYeyhgS9E+r9XI0wZTXs6+zWXJb1xuiaH7grFEnnVhqQ1Xxg 1IBSNsNzIRUHzeVC/OLjGhj7WZ83aeOu22MIKgrnrmIpUieNAyHkevPbGxuJWZ5g AiS2U9ynOx4hO0uFC0TvhSKnn/L9FVcOp9OBIq9zlufsnncwN4xt5xDSf1osNWoE Xe2UdyzTdHqS1ZEv4/cMxCJ1SxTenpei -----END CERTIFICATE-----Generated at Sun Dec 7 06:05:11 2025 by rpki-client