This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft File: 1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft (raw, json) Hash identifier: NYwZi4lsD2udI8qhvaR1zIj93p6vUcCO9PGII0Zc3Uo= Subject key identifier: 9A:5C:78:FD:F6:3E:0D:6E:42:FE:E7:8B:82:A2:96:7B:AC:52:2C:D4 Authority key identifier: D4:34:E5:9E:98:E4:50:8E:EA:A4:0D:F9:60:DA:4F:33:42:41:67:59 Certificate issuer: /CN=A91233F8/serialNumber=D434E59E98E4508EEAA40DF960DA4F3342416759 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DTlnpjkUI7qpA35YNpPM0JBZ1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft Manifest number: 075F Signing time: Thu 04 Dec 2025 22:04:02 +0000 Manifest this update: Thu 04 Dec 2025 22:04:02 +0000 Manifest next update: Thu 11 Dec 2025 22:04:02 +0000 Files and hashes: 1: 1DTlnpjkUI7qpA35YNpPM0JBZ1k.crl (hash: A6ZWji+NVOMMHmkraHQ4yfgPN02yuVOzd8XCvv5bxAU=) 2: 1B4BA08497A711EDA815F80AC4F9AE02.roa (hash: o2FmDJmIhF0oyjFFLSyKzWs4i2UgC9gZtaokgU+Glvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.crl rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DTlnpjkUI7qpA35YNpPM0JBZ1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91233F8, serialNumber=D434E59E98E4508EEAA40DF960DA4F3342416759 Validity Not Before: Dec 4 22:04:02 2025 GMT Not After : Dec 11 22:04:02 2025 GMT Subject: CN=69320552-b3e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:37:33:c2:43:85:f6:2c:d4:fd:c2:6e:df:40: cf:85:c4:03:e4:4d:1e:66:96:04:79:94:55:15:08: 9d:8e:29:4f:be:fe:91:48:ea:76:51:08:bf:62:4a: d3:24:d2:8d:3c:97:14:8c:5c:a4:78:ea:be:59:6d: 7f:ac:02:f4:b9:b8:77:d5:10:c1:8e:22:4d:47:9a: 27:6b:5d:f5:b8:9d:a9:b5:bf:0a:0a:64:81:c6:19: 7d:eb:3d:cf:ce:16:c7:60:4f:a4:a5:b7:d3:6f:07: cc:00:86:5c:a6:93:a1:7e:81:bb:f3:f0:51:96:4a: 48:50:23:46:78:53:d1:28:ff:e4:33:e0:3a:3f:3d: eb:73:0f:96:c3:b3:8e:95:16:98:2c:7a:9b:c2:24: 8d:90:f1:0f:88:00:8f:02:91:62:b7:8c:09:e3:02: dc:83:93:56:ac:88:66:b7:04:12:03:2c:79:cb:98: 65:e2:2b:a6:ab:74:3c:83:5b:04:af:95:a2:22:f3: a5:fe:d8:7c:91:2c:d8:99:16:71:3c:f1:80:30:23: 51:65:9c:cc:a2:27:de:cc:5f:0f:60:52:a8:ba:0f: c0:ca:08:bc:30:a4:da:f5:ab:f4:36:37:f3:6d:58: 50:8d:d3:3f:e7:da:e4:1d:32:ac:2a:ba:c5:c7:4a: 7e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5C:78:FD:F6:3E:0D:6E:42:FE:E7:8B:82:A2:96:7B:AC:52:2C:D4 X509v3 Authority Key Identifier: keyid:D4:34:E5:9E:98:E4:50:8E:EA:A4:0D:F9:60:DA:4F:33:42:41:67:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DTlnpjkUI7qpA35YNpPM0JBZ1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:cf:8d:7c:14:5e:66:da:a8:50:c1:3a:06:0c:fd:58:e8:7b: f2:1a:4b:a0:dd:75:8e:06:bb:20:d7:ca:99:31:55:da:c2:41: 92:cb:6b:e6:81:2f:48:98:82:f5:ba:db:77:e7:b5:7e:1d:bf: 1d:ea:11:67:69:83:e3:99:39:b6:a5:1e:44:b2:63:55:23:e9: 56:de:43:c5:20:9f:b9:74:34:ce:c6:c9:c0:00:b2:b2:77:eb: d7:05:3f:99:3b:75:1b:a5:16:2c:62:4a:cc:88:37:84:9a:c1: 70:04:5f:fa:fa:1e:37:13:3f:05:ea:f9:2e:14:7b:99:4a:c5: b1:8f:9b:31:4a:a5:c6:6a:00:f7:49:fe:95:d9:60:a9:88:83: db:de:99:16:30:d2:9a:c6:fa:56:b0:89:75:3a:78:59:04:6c: 06:da:3f:66:3c:f5:66:a2:bf:5b:25:70:84:9c:e7:1f:6f:9f: 93:8f:0f:8d:76:bb:71:af:3d:44:89:35:f9:87:f0:82:57:85: 39:0f:e6:a4:33:1a:1c:05:10:e6:96:2b:81:cf:70:5e:f2:20: 7e:40:b0:1c:96:c7:ac:dd:9b:7e:fb:49:b6:14:9b:85:9f:80: 78:f6:c9:29:ca:6a:de:95:16:e6:84:0d:2f:57:83:4b:81:f7: fc:48:87:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMzRjgxMTAvBgNVBAUTKEQ0MzRFNTlFOThFNDUwOEVFQUE0MERGOTYwREE0RjMz NDI0MTY3NTkwHhcNMjUxMjA0MjIwNDAyWhcNMjUxMjExMjIwNDAyWjAYMRYwFAYD VQQDEw02OTMyMDU1Mi1iM2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TczwkOF9izU/cJu30DPhcQD5E0eZpYEeZRVFQidjilPvv6RSOp2UQi/YkrT JNKNPJcUjFykeOq+WW1/rAL0ubh31RDBjiJNR5ona131uJ2ptb8KCmSBxhl96z3P zhbHYE+kpbfTbwfMAIZcppOhfoG78/BRlkpIUCNGeFPRKP/kM+A6Pz3rcw+Ww7OO lRaYLHqbwiSNkPEPiACPApFit4wJ4wLcg5NWrIhmtwQSAyx5y5hl4iumq3Q8g1sE r5WiIvOl/th8kSzYmRZxPPGAMCNRZZzMoifezF8PYFKoug/Aygi8MKTa9av0Njfz bVhQjdM/59rkHTKsKrrFx0p+PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpceP32 Pg1uQv7ni4KilnusUizUMB8GA1UdIwQYMBaAFNQ05Z6Y5FCO6qQN+WDaTzNCQWdZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzNGOC9GMDkwMTlENjFC QjcxMUVDOTAzRDhBNENDNEY5QUUwMi8xRFRsbnBqa1VJN3FwQTM1WU5wUE0wSkJa MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFEVGxucGprVUk3cXBBMzVZTnBQTTBKQloxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzNGOC9GMDkwMTlENjFCQjcxMUVDOTAzRDhBNENDNEY5QUUwMi8xRFRsbnBqa1VJ N3FwQTM1WU5wUE0wSkJaMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmz418FF5m2qhQwToGDP1Y6HvyGkug3XWOBrsg18qZMVXawkGSy2vm gS9ImIL1utt357V+Hb8d6hFnaYPjmTm2pR5EsmNVI+lW3kPFIJ+5dDTOxsnAALKy d+vXBT+ZO3UbpRYsYkrMiDeEmsFwBF/6+h43Ez8F6vkuFHuZSsWxj5sxSqXGagD3 Sf6V2WCpiIPb3pkWMNKaxvpWsIl1OnhZBGwG2j9mPPVmor9bJXCEnOcfb5+Tjw+N drtxrz1EiTX5h/CCV4U5D+akMxocBRDmliuBz3Be8iB+QLAclses3Zt++0m2FJuF n4B49skpymrelRbmhA0vV4NLgff8SIeO -----END CERTIFICATE-----Generated at Sat Dec 6 14:52:40 2025 by rpki-client