This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft File: 1mAaggCAx5DwpRpsN2X1tLDQGzc.mft (raw, json) Hash identifier: Lw66H24pTCnX3IOHp0xaBgTl+VpND/VML8YtGsDrk+4= Subject key identifier: 0A:9A:A4:20:B6:B9:C9:D1:31:88:A0:35:5C:3A:AB:10:A9:1E:6B:DA Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Certificate serial: 0B26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft Manifest number: 0B1F Signing time: Thu 04 Dec 2025 18:37:23 +0000 Manifest this update: Thu 04 Dec 2025 18:37:22 +0000 Manifest next update: Thu 11 Dec 2025 18:37:22 +0000 Files and hashes: 1: 1mAaggCAx5DwpRpsN2X1tLDQGzc.crl (hash: kHXGiWYNKMT85PcTROhDR+5ORJwu0+d00R/8hK2+21k=) 2: 5EEC619850A611EA823DE980C4F9AE02.roa (hash: q02Hd4XFE+H9p8qEMOu2AbjA5nPs5WOETsJPUT9HbXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2854 (0xb26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915343B, serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Validity Not Before: Dec 4 18:37:22 2025 GMT Not After : Dec 11 18:37:22 2025 GMT Subject: CN=6931d4e3-cffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8a:f3:71:fc:73:e0:f5:e2:08:1d:9e:24:7a: 2d:90:fd:fc:d1:bc:ff:33:e6:59:b8:b2:a6:d8:df: 13:0b:42:51:f4:40:65:5b:20:80:55:60:a5:0d:1b: 52:f0:b4:ae:19:a8:e5:94:bb:64:93:e0:ec:e0:9f: 13:8b:ca:62:cd:6b:72:c4:2d:12:51:f5:19:49:58: 0e:8e:b8:ce:84:3f:34:63:8a:b5:fe:aa:a2:6a:f3: eb:02:a2:ec:1d:f4:14:14:df:b1:a6:56:52:41:8e: 07:b6:01:57:36:74:01:33:df:b6:a7:bb:9e:6e:2e: 3e:86:81:2e:58:73:65:5c:14:b6:de:a1:ed:5a:ec: a4:d1:4b:14:92:bf:4f:cf:e8:41:79:e5:92:be:f5: 51:bb:98:bd:13:15:b5:9a:20:54:22:b0:f3:9c:b5: eb:3f:91:19:10:f4:8e:32:e3:38:44:dd:6b:29:b2: ab:dd:fa:c7:a5:93:20:76:9d:10:de:b8:b7:f7:0c: 04:fd:58:9a:8b:0c:83:a7:f7:30:98:59:b2:44:c1: 91:3f:f2:7b:25:e4:81:ee:03:4d:58:f5:0f:74:4b: 8c:be:d6:78:d3:21:b3:3e:c2:bb:7c:a4:97:d8:2f: 4d:9b:79:4a:0b:92:62:86:1b:83:a8:6f:e5:36:65: 28:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:9A:A4:20:B6:B9:C9:D1:31:88:A0:35:5C:3A:AB:10:A9:1E:6B:DA X509v3 Authority Key Identifier: keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:13:f8:e8:b0:24:7e:b5:93:25:16:ce:e6:db:db:0b:cf:15: 03:40:45:b6:5e:f9:4d:ca:a4:15:d6:36:f1:56:e1:51:a5:a3: 9c:c3:b3:e7:8b:c2:22:b5:5d:c3:f8:b3:24:ec:d2:1b:b4:30: 49:5c:e1:75:54:5c:3a:22:fa:26:9b:a9:56:b0:49:6b:b3:c5: e5:00:73:cb:47:0e:19:73:df:ca:fc:2d:05:bf:53:20:20:0d: b1:69:23:bf:33:d8:10:b2:80:b3:7d:5c:96:a3:c3:32:76:3d: ce:c8:4e:2f:d4:89:67:7b:9d:7e:be:4e:af:6b:64:26:81:aa: a5:c5:10:13:d5:e3:79:65:61:bf:45:37:90:62:16:54:09:d9: a8:f5:40:88:7f:1e:45:0f:42:65:33:01:d6:9d:40:f6:a7:65: 2a:b5:56:b7:a6:6d:46:ad:68:18:13:9d:d2:7d:76:96:6f:b7: 84:3f:fc:a3:16:32:7c:78:bb:5c:31:c6:2a:7b:ed:b0:25:21: 28:30:a4:bf:49:ff:6f:50:96:ed:8d:63:89:22:0f:56:b0:b2: 3b:7a:de:16:66:ef:56:20:44:60:a3:de:b2:e5:0e:ef:9e:77: 7e:a4:c1:ba:d6:c4:5a:3e:ac:f8:c4:57:76:52:c6:20:ed:c9: e8:61:9a:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0M0IxMTAvBgNVBAUTKEQ2NjAxQTgyMDA4MEM3OTBGMEE1MUE2QzM3NjVGNUI0 QjBEMDFCMzcwHhcNMjUxMjA0MTgzNzIyWhcNMjUxMjExMTgzNzIyWjAYMRYwFAYD VQQDEw02OTMxZDRlMy1jZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14rzcfxz4PXiCB2eJHotkP380bz/M+ZZuLKm2N8TC0JR9EBlWyCAVWClDRtS 8LSuGajllLtkk+Ds4J8Ti8pizWtyxC0SUfUZSVgOjrjOhD80Y4q1/qqiavPrAqLs HfQUFN+xplZSQY4HtgFXNnQBM9+2p7uebi4+hoEuWHNlXBS23qHtWuyk0UsUkr9P z+hBeeWSvvVRu5i9ExW1miBUIrDznLXrP5EZEPSOMuM4RN1rKbKr3frHpZMgdp0Q 3ri39wwE/ViaiwyDp/cwmFmyRMGRP/J7JeSB7gNNWPUPdEuMvtZ40yGzPsK7fKSX 2C9Nm3lKC5JihhuDqG/lNmUo4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqapCC2 ucnRMYigNVw6qxCpHmvaMB8GA1UdIwQYMBaAFNZgGoIAgMeQ8KUabDdl9bSw0Bs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQzQi82QTAzODNFNjUw QTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1RHdwUnBzTjJYMXRMRFFH emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtQWFnZ0NBeDVEd3BScHNOMlgxdExEUUd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQzQi82QTAzODNFNjUwQTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1 RHdwUnBzTjJYMXRMRFFHemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTE/josCR+tZMlFs7m29sLzxUDQEW2XvlNyqQV1jbxVuFRpaOcw7Pn i8IitV3D+LMk7NIbtDBJXOF1VFw6Ivomm6lWsElrs8XlAHPLRw4Zc9/K/C0Fv1Mg IA2xaSO/M9gQsoCzfVyWo8Mydj3OyE4v1Ilne51+vk6va2QmgaqlxRAT1eN5ZWG/ RTeQYhZUCdmo9UCIfx5FD0JlMwHWnUD2p2UqtVa3pm1GrWgYE53SfXaWb7eEP/yj FjJ8eLtcMcYqe+2wJSEoMKS/Sf9vUJbtjWOJIg9WsLI7et4WZu9WIERgo96y5Q7v nnd+pMG61sRaPqz4xFd2UsYg7cnoYZop -----END CERTIFICATE-----Generated at Sat Dec 6 13:55:39 2025 by rpki-client