This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft File: P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft (raw, json) Hash identifier: uQrDBV4nqqOAn5+3D9eLSO/h4a8X3/+QNwLvOHYpisc= Subject key identifier: 41:F3:BE:F3:1F:2F:33:17:B3:59:2D:F9:DA:AC:ED:4D:75:B8:62:C1 Authority key identifier: 3F:48:AC:A1:2A:59:27:A7:02:EC:EE:24:41:51:89:19:4E:D4:AA:80 Certificate issuer: /CN=A916A2FB/serialNumber=3F48ACA12A5927A702ECEE24415189194ED4AA80 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0isoSpZJ6cC7O4kQVGJGU7UqoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft Manifest number: 5B Signing time: Fri 05 Dec 2025 05:00:19 +0000 Manifest this update: Fri 05 Dec 2025 05:00:19 +0000 Manifest next update: Fri 12 Dec 2025 05:00:19 +0000 Files and hashes: 1: P0isoSpZJ6cC7O4kQVGJGU7UqoA.crl (hash: Won5RZ54uoWSX8ligk72DA/mJpYJJEGUK2KsANCOeZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.crl rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0isoSpZJ6cC7O4kQVGJGU7UqoA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A2FB, serialNumber=3F48ACA12A5927A702ECEE24415189194ED4AA80 Validity Not Before: Dec 5 05:00:19 2025 GMT Not After : Dec 12 05:00:19 2025 GMT Subject: CN=693266e3-8016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:06:a3:f2:68:49:ca:e1:9f:8e:70:1a:e3:f8: 74:5e:09:d0:42:70:57:da:c0:b9:b0:5e:bf:29:5d: 3b:41:dc:a8:a1:12:30:f8:82:6a:59:e7:24:c0:d6: ab:ac:5c:81:c4:4f:81:ad:16:de:2a:7d:77:66:39: 1b:a7:3f:13:1a:bb:4d:4a:0e:e8:1c:2b:b2:00:37: 40:b6:2b:29:f4:fe:6e:89:dd:22:9b:89:05:6c:80: 85:7b:c7:ed:3e:56:98:d3:da:8d:20:19:da:2a:e0: 69:bd:95:4d:21:e7:63:02:fe:85:7a:54:4b:8e:29: 85:be:c8:5e:43:07:31:cc:84:74:39:08:d7:81:c4: e3:03:07:1f:6c:c2:fc:2a:1d:aa:6f:a0:2e:f8:db: ad:0e:20:8f:e1:c2:95:e4:80:8d:bc:40:17:bc:04: 19:2c:9e:a9:a6:04:57:13:74:ba:63:bd:f8:65:32: f6:59:6d:0e:e9:c1:84:e6:0e:37:a6:ec:6e:0b:12: 54:b3:93:1b:7c:80:55:73:37:5d:6b:57:94:be:cd: ea:03:03:de:15:bd:98:08:1e:38:4d:a4:3f:67:75: 83:bf:2c:d8:5a:b5:00:6e:91:21:af:ed:cc:96:f8: 6e:31:53:b7:11:98:e6:cf:19:67:6f:32:bd:e3:94: 83:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:F3:BE:F3:1F:2F:33:17:B3:59:2D:F9:DA:AC:ED:4D:75:B8:62:C1 X509v3 Authority Key Identifier: keyid:3F:48:AC:A1:2A:59:27:A7:02:EC:EE:24:41:51:89:19:4E:D4:AA:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0isoSpZJ6cC7O4kQVGJGU7UqoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:cf:91:b3:f8:a1:11:c0:8a:ce:72:03:d2:63:91:6d:c5:39: e0:6d:98:21:f8:1f:8d:40:30:1b:06:cc:c7:53:4e:88:c9:69: c1:f0:b0:e2:77:17:7f:1a:d2:6a:ba:16:41:64:e3:48:0f:1f: 99:52:9b:f6:ed:5b:d9:ee:44:25:81:08:0f:9c:3a:1a:19:e6: 46:8a:73:67:72:8b:81:2c:00:83:73:2e:6a:5c:ca:76:89:77: f9:51:88:f1:06:73:90:6f:05:93:ca:10:0e:b3:57:07:c2:1b: 66:ba:83:ab:cc:da:83:21:58:38:e4:59:1a:7e:18:75:b8:29: a7:1c:66:44:9e:b7:27:9a:2c:e7:c2:f6:ee:6a:2b:a1:da:37: 9a:ea:c9:08:12:b2:58:83:54:16:a3:f1:08:52:8d:f7:d7:97: 74:35:65:58:43:e9:a5:c5:00:b1:9c:26:3b:86:52:44:70:fd: de:8d:a9:1a:d7:e5:de:a7:9f:04:11:1a:0e:5f:6a:4e:c4:2d: ff:fc:8c:57:28:f1:b0:83:c1:de:69:bf:66:95:ff:45:00:b0: ef:e4:e4:da:33:70:1c:95:23:c3:77:27:c5:1a:28:50:85:95: 0b:6f:0d:e7:c9:25:ce:87:cf:86:75:53:8e:e7:1c:33:12:72: 4a:77:42:81 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTJGQjExMC8GA1UEBRMoM0Y0OEFDQTEyQTU5MjdBNzAyRUNFRTI0NDE1MTg5MTk0 RUQ0QUE4MDAeFw0yNTEyMDUwNTAwMTlaFw0yNTEyMTIwNTAwMTlaMBgxFjAUBgNV BAMTDTY5MzI2NmUzLTgwMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4BqPyaEnK4Z+OcBrj+HReCdBCcFfawLmwXr8pXTtB3KihEjD4gmpZ5yTA1qus XIHET4GtFt4qfXdmORunPxMau01KDugcK7IAN0C2Kyn0/m6J3SKbiQVsgIV7x+0+ VpjT2o0gGdoq4Gm9lU0h52MC/oV6VEuOKYW+yF5DBzHMhHQ5CNeBxOMDBx9swvwq HapvoC74260OII/hwpXkgI28QBe8BBksnqmmBFcTdLpjvfhlMvZZbQ7pwYTmDjem 7G4LElSzkxt8gFVzN11rV5S+zeoDA94VvZgIHjhNpD9ndYO/LNhatQBukSGv7cyW +G4xU7cRmObPGWdvMr3jlINtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQfO+8x8v MxezWS352qztTXW4YsEwHwYDVR0jBBgwFoAUP0isoSpZJ6cC7O4kQVGJGU7UqoAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBMkZCLzlGOEY5RDAwNDY4 NzExRjBBRjY0Mjc0NEM0RjlBRTAyL1AwaXNvU3BaSjZjQzdPNGtRVkdKR1U3VXFv QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUDBpc29TcFpKNmNDN080a1FWR0pHVTdVcW9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB MkZCLzlGOEY5RDAwNDY4NzExRjBBRjY0Mjc0NEM0RjlBRTAyL1AwaXNvU3BaSjZj QzdPNGtRVkdKR1U3VXFvQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJzPkbP4oRHAis5yA9JjkW3FOeBtmCH4H41AMBsGzMdTTojJacHwsOJ3 F38a0mq6FkFk40gPH5lSm/btW9nuRCWBCA+cOhoZ5kaKc2dyi4EsAINzLmpcynaJ d/lRiPEGc5BvBZPKEA6zVwfCG2a6g6vM2oMhWDjkWRp+GHW4KaccZkSetyeaLOfC 9u5qK6HaN5rqyQgSsliDVBaj8QhSjffXl3Q1ZVhD6aXFALGcJjuGUkRw/d6NqRrX 5d6nnwQRGg5fak7ELf/8jFco8bCDwd5pv2aV/0UAsO/k5NozcByVI8N3J8UaKFCF lQtvDefJJc6Hz4Z1U47nHDMSckp3QoE= -----END CERTIFICATE-----Generated at Sat Dec 6 22:42:45 2025 by rpki-client