This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft File: R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json) Hash identifier: kq53k8SUZ1YJa9B7jM7wdc3qfRy3Ym2c6Sl8Ccfsnyc= Subject key identifier: 99:D1:5B:9D:1F:1E:23:BF:BA:3E:3D:E2:AA:58:7B:5C:28:86:20:A3 Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0D7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft Manifest number: 0D70 Signing time: Sat 06 Dec 2025 17:23:41 +0000 Manifest this update: Sat 06 Dec 2025 17:23:41 +0000 Manifest next update: Sat 13 Dec 2025 17:23:41 +0000 Files and hashes: 1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: p+4Mhwmmp8M3bVoCdz9+JKgngXZ2Az7rQUeJnXgt+XU=) 2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: /Vmvob4Ba5JT6xBzlUxuOFxxM0jXE2HEf4/pjk43Tpk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3455 (0xd7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: Dec 6 17:23:41 2025 GMT Not After : Dec 13 17:23:41 2025 GMT Subject: CN=6934669d-993b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9b:4c:c4:96:95:bb:ff:18:ef:5c:8d:7e:dd: 3e:2c:c1:00:50:06:9f:6b:b8:da:95:45:c7:4e:74: 51:d4:f0:35:19:b1:42:c5:27:f7:3d:41:73:f7:a1: 99:6b:9c:97:fb:f1:5f:64:5f:65:0b:8c:de:f5:57: 8d:61:05:d1:c1:26:fe:d8:bf:89:ce:22:77:2d:b3: 44:0a:76:76:44:e8:d6:96:84:57:1e:ee:ab:88:67: 70:41:83:e6:6a:a6:4b:e2:cf:e8:25:8b:5e:19:c7: 95:76:ee:eb:c8:3b:69:97:4c:6d:06:fa:d7:66:1a: f8:8b:31:ca:d0:2d:97:84:4c:f5:47:6b:7c:43:21: 6d:f1:15:8e:c4:84:3c:0f:9b:af:08:51:f0:c7:71: 4d:92:e9:0e:1c:5e:dd:9a:00:8e:f1:c9:54:fe:ef: c3:d8:36:cc:b4:bf:9b:ad:f4:47:b7:0a:21:26:b4: 7e:8c:8c:73:d9:d3:be:a0:9a:7b:4d:be:fc:da:80: b2:33:c7:85:c0:30:ec:cb:2f:ec:b1:b0:48:e1:c9: af:30:7d:37:21:1a:6a:7c:0a:b4:65:55:56:e0:6c: a7:b0:d2:f2:0c:09:15:e5:4b:ca:a1:4c:6b:a8:bb: 1f:e6:31:f1:d1:dd:aa:fe:6f:c0:07:2c:be:67:f5: c0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D1:5B:9D:1F:1E:23:BF:BA:3E:3D:E2:AA:58:7B:5C:28:86:20:A3 X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:71:5b:a9:04:bc:a0:87:2c:2f:45:5a:83:bf:06:83:29:57: 4f:eb:87:9e:0f:63:c7:54:a3:93:9a:8f:92:02:fd:14:57:73: 91:b4:45:02:b6:b0:aa:53:bd:6d:45:fc:37:cc:7d:4d:6f:4d: 04:de:5f:2a:68:d4:18:94:56:fd:ee:60:c2:82:06:52:de:90: ff:c5:d1:3e:67:4c:5b:c3:4d:f9:64:88:43:71:eb:a8:2e:d3: 9c:dc:c4:1a:08:1d:ad:89:62:09:ae:64:41:9a:44:c4:f8:88: ec:ea:ef:dc:3f:d7:cf:a8:84:c0:16:52:cc:83:47:c7:9d:3a: 3b:e9:eb:96:c3:be:85:e8:5c:15:73:dd:aa:d3:83:92:7c:c3: c7:4b:47:1f:e9:8e:c7:2d:6a:f0:9a:22:de:d8:ee:ad:25:3f: a0:55:6e:c4:0a:e9:93:9f:81:b2:8e:06:c2:83:2f:30:f7:21: 4c:ad:35:10:fe:2f:bb:06:78:86:8c:fe:bb:4b:af:5e:fc:3e: 46:f2:97:e1:79:5a:4e:ac:d7:ac:f7:f8:e2:a4:2d:df:2e:b1: b7:c6:a6:96:4a:f2:8a:d4:4e:5c:77:0c:2b:1a:ab:49:0d:51: db:3c:7f:a2:b1:08:5d:74:7e:34:9c:b6:98:15:46:60:0d:6b: 78:80:d7:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjUxMjA2MTcyMzQxWhcNMjUxMjEzMTcyMzQxWjAYMRYwFAYD VQQDEw02OTM0NjY5ZC05OTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZtMxJaVu/8Y71yNft0+LMEAUAafa7jalUXHTnRR1PA1GbFCxSf3PUFz96GZ a5yX+/FfZF9lC4ze9VeNYQXRwSb+2L+JziJ3LbNECnZ2ROjWloRXHu6riGdwQYPm aqZL4s/oJYteGceVdu7ryDtpl0xtBvrXZhr4izHK0C2XhEz1R2t8QyFt8RWOxIQ8 D5uvCFHwx3FNkukOHF7dmgCO8clU/u/D2DbMtL+brfRHtwohJrR+jIxz2dO+oJp7 Tb782oCyM8eFwDDsyy/ssbBI4cmvMH03IRpqfAq0ZVVW4GynsNLyDAkV5UvKoUxr qLsf5jHx0d2q/m/AByy+Z/XATwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnRW50f HiO/uj494qpYe1wohiCjMB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEVFMi9FQTAxRDU1QURGNzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0 OUt3ZXJ4N1RMVlp5dzgwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAacVupBLyghywvRVqDvwaDKVdP64eeD2PHVKOTmo+SAv0UV3ORtEUC trCqU71tRfw3zH1Nb00E3l8qaNQYlFb97mDCggZS3pD/xdE+Z0xbw035ZIhDceuo LtOc3MQaCB2tiWIJrmRBmkTE+Ijs6u/cP9fPqITAFlLMg0fHnTo76euWw76F6FwV c92q04OSfMPHS0cf6Y7HLWrwmiLe2O6tJT+gVW7ECumTn4GyjgbCgy8w9yFMrTUQ /i+7BniGjP67S69e/D5G8pfheVpOrNes9/jipC3fLrG3xqaWSvKK1E5cdwwrGqtJ DVHbPH+isQhddH40nLaYFUZgDWt4gNfx -----END CERTIFICATE-----Generated at Sat Dec 6 22:03:05 2025 by rpki-client