This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft File: 1f9FyAWBJcJy3wRtwLjgb6owT88.mft (raw, json) Hash identifier: 99UYJE59qiO1n9IsNvCLgx2Dbdi3ztU+w/z8mYGo7z0= Subject key identifier: 17:DE:23:53:7D:99:25:C1:61:F0:1A:32:26:63:2A:5A:6E:FA:F2:33 Authority key identifier: D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF Certificate issuer: /CN=A91A7E29/serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Certificate serial: 043D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft Manifest number: 0435 Signing time: Thu 04 Dec 2025 22:47:35 +0000 Manifest this update: Thu 04 Dec 2025 22:47:34 +0000 Manifest next update: Thu 11 Dec 2025 22:47:34 +0000 Files and hashes: 1: 1f9FyAWBJcJy3wRtwLjgb6owT88.crl (hash: eEsbUbXIhq09PZ4lfudyxW0vq6MlbEX6UTfHic4eAhY=) 2: 99F51284A1E911EDAD7CE929C4F9AE02.roa (hash: DgFh0007lZzBIY6/Uazy8v7Lvih8jtP3rAyQ1LouyMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:47:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1085 (0x43d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7E29, serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Validity Not Before: Dec 4 22:47:34 2025 GMT Not After : Dec 11 22:47:34 2025 GMT Subject: CN=69320f86-7f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cc:a3:a7:ac:e1:6d:48:f4:3f:6f:20:1e:6f: f4:21:fa:0d:ef:cc:f0:a3:ec:40:39:ad:44:92:31: fe:c3:eb:55:98:c4:b7:3f:3d:86:53:9e:a3:53:20: 56:c5:83:c1:7d:38:a0:1b:49:d2:76:19:e8:a6:83: 5b:6f:96:74:82:7f:31:a6:d9:92:7e:a6:d5:7b:29: a0:00:b7:8a:19:7d:80:d4:6d:ee:5c:be:9d:1e:bf: 6a:55:27:9e:af:96:f0:45:d8:28:f8:4e:72:f5:d5: f8:e1:e0:5e:b1:6f:3c:fa:58:f7:da:67:7d:77:a2: fa:f6:ac:4a:c2:7d:51:a1:88:55:72:e9:9a:47:87: 47:e4:c2:90:4d:22:de:8a:af:9d:9c:76:91:fb:53: 39:43:88:c2:87:f9:be:ab:f9:a9:aa:da:4e:74:1d: ef:ab:08:2f:c3:b1:5d:51:e4:c5:1f:78:96:16:4c: fd:53:cc:2f:2d:ea:b2:97:fc:f4:1b:9d:ed:17:ae: 32:30:9e:62:c0:8e:f7:8c:0d:02:a5:4b:51:35:7b: 15:b1:28:3f:ce:96:5d:46:2e:31:87:79:88:cc:82: fd:36:ee:e4:92:7d:c9:65:4b:2e:00:eb:7a:89:ca: 00:7c:03:97:84:96:87:68:c1:d6:dc:1b:c2:73:de: 60:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:DE:23:53:7D:99:25:C1:61:F0:1A:32:26:63:2A:5A:6E:FA:F2:33 X509v3 Authority Key Identifier: keyid:D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:54:b3:dc:f4:62:89:83:4b:bd:46:5a:68:5d:05:d6:14:e4: 21:20:2e:dd:b1:53:71:2b:ee:ab:54:90:93:11:5e:7f:0f:95: e6:84:c7:7f:2a:40:85:da:a7:ba:75:89:5e:1f:64:4d:c4:90: f2:09:15:55:95:52:62:1c:c5:c3:62:2d:6e:ba:72:13:3e:53: 40:3d:ed:bc:94:b8:08:52:49:cb:dc:48:0b:72:01:61:98:44: 52:2d:ed:a9:95:de:45:07:1e:59:be:c1:ad:30:f8:15:a7:28: 4a:c1:2a:12:23:48:26:bb:3f:2e:04:e3:d1:c9:80:7e:5a:85: d4:66:fc:c3:99:0a:34:39:5f:c7:d0:16:ed:05:5b:0f:ed:90: 14:3a:66:bf:10:ad:cf:e7:02:36:c4:45:56:66:e9:4c:82:26: bb:d5:c1:ce:2a:43:e1:cc:62:fd:cc:80:5c:e5:86:91:ce:66: 14:43:32:f6:5d:94:9d:3a:5a:ab:18:c4:39:85:7c:77:43:0a: f2:33:ae:36:13:09:4d:6f:1b:e6:fc:f1:4d:b8:99:14:6c:0e: 62:2b:5a:fa:56:f5:f9:20:cd:e6:35:79:85:9e:7e:a9:a0:e2: e6:3b:a4:07:d3:2e:57:8d:38:d4:29:7d:cf:2e:cd:33:e4:d8: e7:cc:71:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdFMjkxMTAvBgNVBAUTKEQ1RkY0NUM4MDU4MTI1QzI3MkRGMDQ2REMwQjhFMDZG QUEzMDRGQ0YwHhcNMjUxMjA0MjI0NzM0WhcNMjUxMjExMjI0NzM0WjAYMRYwFAYD VQQDEw02OTMyMGY4Ni03ZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsyjp6zhbUj0P28gHm/0IfoN78zwo+xAOa1EkjH+w+tVmMS3Pz2GU56jUyBW xYPBfTigG0nSdhnopoNbb5Z0gn8xptmSfqbVeymgALeKGX2A1G3uXL6dHr9qVSee r5bwRdgo+E5y9dX44eBesW88+lj32md9d6L69qxKwn1RoYhVcumaR4dH5MKQTSLe iq+dnHaR+1M5Q4jCh/m+q/mpqtpOdB3vqwgvw7FdUeTFH3iWFkz9U8wvLeqyl/z0 G53tF64yMJ5iwI73jA0CpUtRNXsVsSg/zpZdRi4xh3mIzIL9Nu7kkn3JZUsuAOt6 icoAfAOXhJaHaMHW3BvCc95gUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfeI1N9 mSXBYfAaMiZjKlpu+vIzMB8GA1UdIwQYMBaAFNX/RcgFgSXCct8EbcC44G+qME/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0UyOS81NkYxQzUzMjg3 OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpjSnkzd1J0d0xqZ2I2b3dU ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmOUZ5QVdCSmNKeTN3UnR3TGpnYjZvd1Q4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0UyOS81NkYxQzUzMjg3OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpj Snkzd1J0d0xqZ2I2b3dUODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKVLPc9GKJg0u9RlpoXQXWFOQhIC7dsVNxK+6rVJCTEV5/D5XmhMd/ KkCF2qe6dYleH2RNxJDyCRVVlVJiHMXDYi1uunITPlNAPe28lLgIUknL3EgLcgFh mERSLe2pld5FBx5ZvsGtMPgVpyhKwSoSI0gmuz8uBOPRyYB+WoXUZvzDmQo0OV/H 0BbtBVsP7ZAUOma/EK3P5wI2xEVWZulMgia71cHOKkPhzGL9zIBc5YaRzmYUQzL2 XZSdOlqrGMQ5hXx3QwryM642EwlNbxvm/PFNuJkUbA5iK1r6VvX5IM3mNXmFnn6p oOLmO6QH0y5XjTjUKX3PLs0z5NjnzHHH -----END CERTIFICATE-----Generated at Sat Dec 6 19:16:46 2025 by rpki-client