This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: XtqmWaG9oufHiwLy1qGb8fY7cS1dubJpizF9GFF24k4= Subject key identifier: 55:F3:FD:F9:15:00:7B:9E:90:39:53:73:FB:14:D5:7A:01:96:6E:5A Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 0854 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 0845 Signing time: Sat 20 Dec 2025 20:10:56 +0000 Manifest this update: Sat 20 Dec 2025 20:10:55 +0000 Manifest next update: Sat 27 Dec 2025 20:10:55 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: Pexc7g4Lm7WWvp5v41Zpm9PBBeEORqcw/qhCkqi33yo=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2132 (0x854) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Dec 20 20:10:55 2025 GMT Not After : Dec 27 20:10:55 2025 GMT Subject: CN=694702d0-82da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d7:c9:fd:07:50:3d:c8:c8:fa:3a:f7:b1:63: 94:da:95:6c:5b:25:51:8f:f8:51:4d:6d:ae:ad:cc: e9:cb:41:07:a1:ce:c3:50:b8:38:6c:e7:1d:fe:d8: 91:39:ac:f6:e2:76:9b:59:21:f0:6d:53:94:b0:a2: a2:75:82:bb:fa:6d:82:b8:aa:cc:94:e2:04:9d:2b: 5a:db:e3:19:e3:df:74:d2:3e:27:15:e5:81:1c:f6: 79:4b:58:28:b3:5b:6d:0a:86:94:41:e3:1a:41:79: 03:0c:f3:1b:9a:7d:16:41:7f:24:96:f1:d1:b8:39: d0:28:25:9a:3f:5e:72:a2:94:70:da:6b:70:7d:9a: e9:88:3b:f7:e6:4b:15:50:8a:17:f5:3d:fb:aa:83: 02:74:ba:7d:5f:d6:9a:e7:8a:e5:16:15:68:e6:f5: b7:45:8c:e8:3e:35:29:24:9f:d5:88:01:3c:38:f0: fc:ce:79:6c:00:46:44:66:e5:9f:f2:da:d9:e7:a0: d2:36:f4:a0:09:e6:18:8e:ae:4a:2c:93:ca:4f:80: 73:d1:cc:3f:1c:12:8b:aa:77:ae:2d:73:b0:d2:b4: 1b:98:43:ca:20:2c:ae:ec:24:4a:ef:38:85:7e:e5: 2c:62:f2:16:44:d5:65:0d:5c:52:7e:18:f5:28:71: 49:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F3:FD:F9:15:00:7B:9E:90:39:53:73:FB:14:D5:7A:01:96:6E:5A X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:5c:6a:8f:af:65:fa:4a:00:93:03:5c:d4:bc:5c:8f:9e:b4: dd:ac:1e:53:ab:fb:b0:8f:e1:26:ac:53:61:1b:51:dc:02:14: 3f:ff:53:25:fa:a2:c6:f2:01:78:16:1c:54:04:55:45:b1:e5: 56:24:54:53:ed:c2:54:8c:f4:1e:e0:cb:b9:96:11:41:18:97: 3d:88:89:89:b5:85:05:bb:b5:d3:72:9b:84:3e:9b:54:d4:f3: b0:ee:7b:0f:2d:26:5b:33:6f:78:08:5d:3f:c6:6e:35:d4:e5: 93:d3:06:bf:47:55:7e:ef:ad:17:07:bf:21:97:03:9b:ec:e0: 53:a8:e7:a0:31:e3:91:1b:ab:86:17:a3:36:2f:69:fc:8e:04: 61:fe:b2:6c:cc:98:d3:b5:7a:bb:45:89:e6:8b:b5:21:5f:7b: 74:50:51:30:6c:92:7d:bc:e7:fb:80:b9:d3:f0:e0:d4:20:3c: e4:de:67:0a:af:24:79:2b:79:56:23:f8:9c:2c:14:b6:a5:d2: 67:21:83:b4:9c:e8:b5:5e:34:43:90:5d:4a:d9:ac:7f:d1:c8: 90:68:1b:f3:03:b1:80:59:b3:dd:f3:7a:1c:68:3f:df:e3:ba: 90:d5:dd:6b:41:47:2c:fd:37:66:db:cf:ea:54:76:5c:ae:a5: 09:85:23:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUxMjIwMjAxMDU1WhcNMjUxMjI3MjAxMDU1WjAYMRYwFAYD VQQDDA02OTQ3MDJkMC04MmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNfJ/QdQPcjI+jr3sWOU2pVsWyVRj/hRTW2urczpy0EHoc7DULg4bOcd/tiR Oaz24nabWSHwbVOUsKKidYK7+m2CuKrMlOIEnSta2+MZ49900j4nFeWBHPZ5S1go s1ttCoaUQeMaQXkDDPMbmn0WQX8klvHRuDnQKCWaP15yopRw2mtwfZrpiDv35ksV UIoX9T37qoMCdLp9X9aa54rlFhVo5vW3RYzoPjUpJJ/ViAE8OPD8znlsAEZEZuWf 8trZ56DSNvSgCeYYjq5KLJPKT4Bz0cw/HBKLqneuLXOw0rQbmEPKICyu7CRK7ziF fuUsYvIWRNVlDVxSfhj1KHFJAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXz/fkV AHuekDlTc/sU1XoBlm5aMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwXGqPr2X6SgCTA1zUvFyPnrTdrB5Tq/uwj+EmrFNhG1HcAhQ//1Ml +qLG8gF4FhxUBFVFseVWJFRT7cJUjPQe4Mu5lhFBGJc9iImJtYUFu7XTcpuEPptU 1POw7nsPLSZbM294CF0/xm411OWT0wa/R1V+760XB78hlwOb7OBTqOegMeORG6uG F6M2L2n8jgRh/rJszJjTtXq7RYnmi7UhX3t0UFEwbJJ9vOf7gLnT8ODUIDzk3mcK ryR5K3lWI/icLBS2pdJnIYO0nOi1XjRDkF1K2ax/0ciQaBvzA7GAWbPd83ocaD/f 47qQ1d1rQUcs/Tdm28/qVHZcrqUJhSOo -----END CERTIFICATE-----Generated at Sun Dec 21 03:27:38 2025 by rpki-client