This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: G+0lOh6YT8G0KUKurIVjmuTyBsIPfPNASqHfb36XBIE= Subject key identifier: E0:10:E2:4E:86:73:48:E0:0E:DF:5C:AA:D6:A3:7F:B8:29:5F:23:1A Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 0281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 027A Signing time: Thu 04 Dec 2025 23:58:29 +0000 Manifest this update: Thu 04 Dec 2025 23:58:28 +0000 Manifest next update: Thu 11 Dec 2025 23:58:28 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: 50ESj25WbGvTsEfTiZ/V0jO0bq+xdm8HZFyR3Hb/F9E=) 2: 9BDA59F69C8C11F0A27C535EC4F9AE02.roa (hash: tcpEfQimbgGgCKxs43ap0j00HaFFUo0cjpbDGWWFteI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27, serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: Dec 4 23:58:28 2025 GMT Not After : Dec 11 23:58:28 2025 GMT Subject: CN=69322024-5842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:62:84:79:5a:f2:96:34:50:ff:e0:d7:cd:a0: c3:67:9b:8a:98:a5:cc:73:bb:b3:fb:4f:f9:4b:03: a0:a7:7d:4e:35:d9:56:79:c1:85:5d:62:37:99:41: 8d:20:5d:bb:1e:3a:d1:56:f5:d5:43:ce:b4:f7:f0: dd:94:cb:54:57:5b:f1:e1:e2:96:2b:af:27:b9:6e: 8f:d5:fb:91:b3:bb:d9:90:d8:71:dd:a2:b2:eb:62: 42:79:45:29:6b:0e:54:57:76:c3:ca:02:dc:95:c6: d6:b1:b8:15:48:27:4f:c2:41:18:62:d4:fb:e5:aa: 47:ec:35:21:30:ce:36:ee:aa:3b:f3:f5:88:2e:e7: 9d:78:a4:24:d5:8d:6e:a2:fc:ab:dc:9a:77:fd:dc: 90:58:d2:ac:27:e0:57:c6:4f:9e:96:79:11:cf:65: bd:b0:2a:7d:51:d8:3f:c1:a3:95:7a:ba:3b:9f:24: 6d:10:35:b2:94:8d:6a:26:c3:de:16:30:5e:d5:09: d5:4f:bd:bd:bb:46:91:d8:e3:de:d1:42:ec:02:32: 63:95:f2:49:72:8b:d8:e4:e9:81:02:81:57:92:f4: 47:ea:dc:db:35:04:cb:13:69:90:ae:d4:2f:ba:6a: 40:9e:b1:56:1d:a4:04:96:1b:22:ac:76:c6:a8:00: 24:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:10:E2:4E:86:73:48:E0:0E:DF:5C:AA:D6:A3:7F:B8:29:5F:23:1A X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:67:3f:18:a1:61:16:f9:32:d5:89:bf:7c:59:cd:b4:80:67: 03:6c:c0:82:87:c7:f4:67:8e:85:fe:d3:17:0b:74:6c:0f:94: 77:ab:eb:44:02:e8:2a:19:09:14:e9:06:1c:7c:77:2f:1e:9c: df:37:96:e0:be:88:38:07:07:ce:7b:3b:cb:88:54:a4:16:0e: 7f:73:e7:bb:f3:04:da:bf:db:7e:0a:65:3c:c6:34:92:4e:2b: 21:a0:0a:9c:b7:0f:c1:55:43:a0:ee:a0:50:52:ba:12:1b:b6: 16:fd:25:a2:42:07:3e:ce:7d:78:13:09:36:37:58:ee:7e:74: c8:f1:36:5a:25:6e:94:c8:95:e6:e1:95:46:dc:5a:1a:fd:3e: 38:60:79:4d:ab:a7:9d:a9:a3:09:b9:e3:79:a1:af:51:5d:01: 8f:bd:7c:42:4f:02:b5:b2:b1:19:db:2a:1f:d8:55:1e:36:b4: 66:d6:d2:bb:49:14:01:09:65:59:a4:6c:16:7c:83:cb:a0:ee: fe:e8:97:25:1f:a7:30:af:03:6a:16:3b:19:78:7d:f5:c4:5e: a4:d9:44:96:88:20:d2:d7:59:a9:d5:9f:be:65:75:1b:09:8c: b3:9d:74:5f:51:90:2a:d9:d4:70:9b:96:11:28:db:62:9c:47: 91:6c:0b:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjUxMjA0MjM1ODI4WhcNMjUxMjExMjM1ODI4WjAYMRYwFAYD VQQDEw02OTMyMjAyNC01ODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymKEeVryljRQ/+DXzaDDZ5uKmKXMc7uz+0/5SwOgp31ONdlWecGFXWI3mUGN IF27HjrRVvXVQ8609/DdlMtUV1vx4eKWK68nuW6P1fuRs7vZkNhx3aKy62JCeUUp aw5UV3bDygLclcbWsbgVSCdPwkEYYtT75apH7DUhMM427qo78/WILuedeKQk1Y1u ovyr3Jp3/dyQWNKsJ+BXxk+elnkRz2W9sCp9Udg/waOVero7nyRtEDWylI1qJsPe FjBe1QnVT729u0aR2OPe0ULsAjJjlfJJcovY5OmBAoFXkvRH6tzbNQTLE2mQrtQv umpAnrFWHaQElhsirHbGqAAk5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAQ4k6G c0jgDt9cqtajf7gpXyMaMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvZz8YoWEW+TLVib98Wc20gGcDbMCCh8f0Z46F/tMXC3RsD5R3q+tE AugqGQkU6QYcfHcvHpzfN5bgvog4BwfOezvLiFSkFg5/c+e78wTav9t+CmU8xjSS TishoAqctw/BVUOg7qBQUroSG7YW/SWiQgc+zn14Ewk2N1jufnTI8TZaJW6UyJXm 4ZVG3Foa/T44YHlNq6edqaMJueN5oa9RXQGPvXxCTwK1srEZ2yof2FUeNrRm1tK7 SRQBCWVZpGwWfIPLoO7+6JclH6cwrwNqFjsZeH31xF6k2USWiCDS11mp1Z++ZXUb CYyznXRfUZAq2dRwm5YRKNtinEeRbAsw -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:47 2025 by rpki-client