This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: L6kQ4Z3CUiA7KXHcXL1yg7gNNzoV1FgyeK81pUOcjbU= Subject key identifier: 51:44:FC:DA:75:6F:83:23:48:30:4E:DB:18:E5:71:ED:9B:E1:0F:7D Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 096B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 0962 Signing time: Thu 04 Dec 2025 19:21:26 +0000 Manifest this update: Thu 04 Dec 2025 19:21:26 +0000 Manifest next update: Thu 11 Dec 2025 19:21:26 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: U05RO7VWcKET/MkCYLMQ4+g8C28axTzfYntR+9BupFM=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2411 (0x96b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Dec 4 19:21:26 2025 GMT Not After : Dec 11 19:21:26 2025 GMT Subject: CN=6931df36-ae88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:88:07:17:7a:7e:ab:ab:5b:65:85:2a:f9:5d: 67:d7:ef:16:35:24:40:30:f5:9f:87:e4:92:51:03: ef:3d:32:41:e5:f2:5a:16:da:76:18:d0:d2:3f:6b: ee:31:3f:61:a7:98:3d:de:9d:49:39:5d:e3:0c:2b: 28:8d:0a:2f:04:b6:44:d6:3e:57:eb:e7:06:cd:2e: d3:08:47:58:45:a2:b8:20:ad:62:bc:81:4a:db:6b: 24:37:18:75:23:3c:0b:e7:2e:77:f5:93:54:12:ce: 1a:c3:7f:9d:63:e8:5a:f8:1c:30:c9:8a:f8:e4:3c: 85:39:99:d5:f0:23:5c:da:15:93:11:ab:9d:50:8c: 77:e3:bb:10:c8:f9:9d:dc:6b:26:36:7e:c4:94:be: 7c:1d:41:fd:7a:6d:6a:4c:d3:da:2e:ba:49:cd:e6: e8:3f:a2:7e:f9:b9:4d:b1:bd:e4:fa:d6:8e:b7:97: 17:7b:36:95:2e:a3:14:ac:81:bf:86:69:a4:33:67: af:0c:f4:de:4f:0d:13:85:9e:47:96:61:de:0b:ce: c3:a3:2a:ed:6c:0b:0f:13:12:dc:37:bd:57:10:58: 2f:76:4f:ff:be:a1:ac:27:61:3a:3d:13:8a:f0:98: 19:57:11:c0:99:c0:ed:d1:f4:09:90:f1:63:3e:ea: 27:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:44:FC:DA:75:6F:83:23:48:30:4E:DB:18:E5:71:ED:9B:E1:0F:7D X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:2b:85:32:8a:09:75:a9:6d:96:ae:46:9d:55:4f:db:ef:c5: fc:b3:09:92:2a:76:ba:d2:64:d4:40:b9:06:76:42:fb:9b:11: 6f:08:da:8d:31:23:34:92:4b:9b:e7:df:82:9f:db:d1:5e:26: d1:cc:89:de:63:c8:a6:31:2e:a2:82:e3:a3:8a:a8:97:97:ba: 7b:3b:2c:3d:08:95:82:fd:c5:b0:0c:40:5c:97:0d:76:c6:28: 52:81:4f:b9:79:ab:30:b1:38:b3:2f:43:99:5c:d1:06:4b:7d: ba:51:6c:e6:0d:81:52:11:48:68:0b:cc:8b:61:46:26:d1:c5: 4a:6b:25:91:67:63:0a:e1:d5:e6:56:d4:bf:c1:9e:f2:61:7e: 94:a3:b6:eb:02:6c:81:73:8b:7d:7a:37:a4:a2:bf:c7:18:d5: cb:1b:dd:0c:a8:75:8c:1b:a4:f6:b1:83:b8:e0:8d:b9:78:d0: fb:d5:15:6c:e2:26:30:1f:1b:1c:2e:d8:d1:d4:a4:0a:ac:5a: 24:1f:b0:2b:b0:14:54:03:e7:d8:ee:be:d5:21:02:80:b4:fd: f4:06:01:be:52:69:b7:a3:9e:2e:e6:2e:37:5f:54:fc:9a:4b: db:91:e9:fd:13:84:a5:e0:b5:b6:cb:96:c5:55:78:18:7f:1d: 4d:e4:97:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUxMjA0MTkyMTI2WhcNMjUxMjExMTkyMTI2WjAYMRYwFAYD VQQDEw02OTMxZGYzNi1hZTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44gHF3p+q6tbZYUq+V1n1+8WNSRAMPWfh+SSUQPvPTJB5fJaFtp2GNDSP2vu MT9hp5g93p1JOV3jDCsojQovBLZE1j5X6+cGzS7TCEdYRaK4IK1ivIFK22skNxh1 IzwL5y539ZNUEs4aw3+dY+ha+BwwyYr45DyFOZnV8CNc2hWTEaudUIx347sQyPmd 3GsmNn7ElL58HUH9em1qTNPaLrpJzeboP6J++blNsb3k+taOt5cXezaVLqMUrIG/ hmmkM2evDPTeTw0ThZ5HlmHeC87DoyrtbAsPExLcN71XEFgvdk//vqGsJ2E6PROK 8JgZVxHAmcDt0fQJkPFjPuon+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFE/Np1 b4MjSDBO2xjlce2b4Q99MB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwK4Uyigl1qW2WrkadVU/b78X8swmSKna60mTUQLkGdkL7mxFvCNqN MSM0kkub59+Cn9vRXibRzIneY8imMS6iguOjiqiXl7p7Oyw9CJWC/cWwDEBclw12 xihSgU+5easwsTizL0OZXNEGS326UWzmDYFSEUhoC8yLYUYm0cVKayWRZ2MK4dXm VtS/wZ7yYX6Uo7brAmyBc4t9ejekor/HGNXLG90MqHWMG6T2sYO44I25eND71RVs 4iYwHxscLtjR1KQKrFokH7ArsBRUA+fY7r7VIQKAtP30BgG+Umm3o54u5i43X1T8 mkvbken9E4Sl4LW2y5bFVXgYfx1N5JfM -----END CERTIFICATE-----Generated at Sat Dec 6 19:37:20 2025 by rpki-client