This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft File: K99csyKL7Ic-zuddZ1g1RlOCNJI.mft (raw, json) Hash identifier: 7AgZsRyCCLWCBScaJ3yDI1Np2ue8QLMbR+uRenUpbno= Subject key identifier: 75:D8:B9:53:D9:8D:EF:F1:C0:59:77:D9:63:FE:9A:4A:9D:B2:AC:E8 Authority key identifier: 2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 Certificate issuer: /CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Certificate serial: 082C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft Manifest number: 081F Signing time: Thu 04 Dec 2025 19:59:08 +0000 Manifest this update: Thu 04 Dec 2025 19:59:06 +0000 Manifest next update: Thu 11 Dec 2025 19:59:06 +0000 Files and hashes: 1: K99csyKL7Ic-zuddZ1g1RlOCNJI.crl (hash: ANaXTdb58Zw2GJsqehpvPQzAi0JvLa/psT8nfELiYYs=) 2: DFB4AB2C9FD911F0B75B1848C4F9AE02.roa (hash: RLRjH/J0+me+Vx3yyTHl66wKq7FxNXMRxmdR2kAu53U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8100, serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Validity Not Before: Dec 4 19:59:06 2025 GMT Not After : Dec 11 19:59:06 2025 GMT Subject: CN=6931e80b-d82c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ee:74:5d:d4:ed:a3:cb:6e:74:26:0f:9c:72: 3b:96:b5:22:e4:60:3f:ba:0f:d5:90:83:1e:31:9a: c8:21:ef:dc:51:29:81:b5:ba:fa:18:0f:f5:ef:c0: 7e:7d:2a:4b:d0:12:f8:ea:05:c1:7c:1b:9a:d8:3c: 5d:f4:cf:0c:db:e0:b0:78:8c:b3:c8:16:a8:85:11: 5a:e3:b2:b8:9b:41:66:cb:84:93:c5:74:c0:3d:0c: ab:31:79:2a:00:91:3c:cd:d1:c5:26:e0:bb:c9:18: 1e:66:20:d2:13:22:ff:d5:8b:87:3d:e0:46:67:5f: d2:b3:c5:17:c4:c1:ea:22:72:1b:31:1f:a8:14:5c: 0c:be:1f:85:1c:97:0e:05:80:16:a5:fd:f8:e4:a5: bc:f5:5a:84:44:70:1d:62:4b:f8:44:91:a1:b2:7e: cd:a8:ab:eb:9b:d7:20:08:51:3b:f0:d7:06:71:db: 1c:c4:d6:57:4b:dc:5e:16:ad:0b:3f:1c:cb:00:08: f3:66:bf:57:c2:e3:83:3e:c6:72:f2:1c:03:1c:fc: 78:47:d2:a4:f5:38:62:91:5e:c4:0b:25:af:23:87: 74:cc:4b:e0:d6:c7:b4:9e:be:74:bd:b2:9e:54:69: 60:26:e1:7f:2e:9e:3d:6a:b6:4c:ec:32:0b:0e:e1: 5c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D8:B9:53:D9:8D:EF:F1:C0:59:77:D9:63:FE:9A:4A:9D:B2:AC:E8 X509v3 Authority Key Identifier: keyid:2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:7e:c6:01:b3:75:af:ee:e7:76:de:2e:b1:b0:7a:c7:7e:6b: 8c:ca:78:70:0b:76:10:58:68:ee:ae:8f:42:51:ff:e8:b2:d4: 8d:74:9b:03:e6:2e:71:45:53:b9:73:c7:fc:45:2c:a0:7b:d8: 3f:dc:18:d4:6a:5b:3d:d1:2e:c6:9b:51:b7:eb:3e:a5:d1:0b: 64:36:3b:59:9f:5d:72:cd:c3:8a:a8:20:5e:9e:81:d6:53:84: 1a:40:c4:ee:e4:f1:58:5c:b1:07:02:e0:35:97:9f:0f:13:e3: 9c:8d:cc:aa:57:42:ad:49:29:7a:5e:52:d9:d3:77:e1:9d:76: f4:69:52:6b:43:4c:6b:81:55:e3:c0:a6:fc:cb:52:f0:ac:19: fa:8a:ac:39:f2:0a:28:b4:9c:59:b9:35:ae:29:9b:d9:be:14: 8a:dd:5d:f0:48:68:0e:39:91:7f:7f:c6:31:b6:86:65:ce:0d: e0:a0:62:d9:92:b7:56:6a:d8:c4:68:0c:96:aa:e2:ce:78:06: 77:83:58:8c:f8:31:ef:79:13:ff:1e:e4:4c:59:a9:ec:fd:97: a3:76:58:24:2d:91:ae:3b:03:1b:82:b8:2a:5a:de:f6:a5:d5: 46:5d:cc:9b:21:87:25:8e:a7:41:25:5f:bb:6b:15:fd:b8:fa: aa:6b:50:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMDAxMTAvBgNVBAUTKDJCREY1Q0IzMjI4QkVDODczRUNFRTc1RDY3NTgzNTQ2 NTM4MjM0OTIwHhcNMjUxMjA0MTk1OTA2WhcNMjUxMjExMTk1OTA2WjAYMRYwFAYD VQQDEw02OTMxZTgwYi1kODJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqu50XdTto8tudCYPnHI7lrUi5GA/ug/VkIMeMZrIIe/cUSmBtbr6GA/178B+ fSpL0BL46gXBfBua2Dxd9M8M2+CweIyzyBaohRFa47K4m0Fmy4STxXTAPQyrMXkq AJE8zdHFJuC7yRgeZiDSEyL/1YuHPeBGZ1/Ss8UXxMHqInIbMR+oFFwMvh+FHJcO BYAWpf345KW89VqERHAdYkv4RJGhsn7NqKvrm9cgCFE78NcGcdscxNZXS9xeFq0L PxzLAAjzZr9XwuODPsZy8hwDHPx4R9Kk9ThikV7ECyWvI4d0zEvg1se0nr50vbKe VGlgJuF/Lp49arZM7DILDuFc4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXYuVPZ je/xwFl32WP+mkqdsqzoMB8GA1UdIwQYMBaAFCvfXLMii+yHPs7nXWdYNUZTgjSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODEwMC9BQUM3MkUwQ0ZD Q0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJYy16dWRkWjFnMVJsT0NO SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s5OWNzeUtMN0ljLXp1ZGRaMWcxUmxPQ05KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODEwMC9BQUM3MkUwQ0ZDQ0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJ Yy16dWRkWjFnMVJsT0NOSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpfsYBs3Wv7ud23i6xsHrHfmuMynhwC3YQWGjuro9CUf/ostSNdJsD 5i5xRVO5c8f8RSyge9g/3BjUals90S7Gm1G36z6l0QtkNjtZn11yzcOKqCBenoHW U4QaQMTu5PFYXLEHAuA1l58PE+OcjcyqV0KtSSl6XlLZ03fhnXb0aVJrQ0xrgVXj wKb8y1LwrBn6iqw58gootJxZuTWuKZvZvhSK3V3wSGgOOZF/f8YxtoZlzg3goGLZ krdWatjEaAyWquLOeAZ3g1iM+DHveRP/HuRMWans/ZejdlgkLZGuOwMbgrgqWt72 pdVGXcybIYcljqdBJV+7axX9uPqqa1DR -----END CERTIFICATE-----Generated at Sat Dec 6 16:13:26 2025 by rpki-client