This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft File: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft (raw, json) Hash identifier: +mOQ/UYVr2Gt7Somxbmvchf+6AWeK30VZmf32L6L+Lw= Subject key identifier: AD:C6:91:D5:3E:A5:C5:8F:0E:7D:53:5F:B7:CA:94:BD:3F:3D:39:39 Authority key identifier: D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 Certificate issuer: /CN=A91AAE16/serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Certificate serial: 1010 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft Manifest number: 1007 Signing time: Sat 06 Dec 2025 16:56:43 +0000 Manifest this update: Sat 06 Dec 2025 16:56:43 +0000 Manifest next update: Sat 13 Dec 2025 16:56:43 +0000 Files and hashes: 1: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl (hash: W9Lu9PiGE/boMCK48c5fHDhCilwRYRw0ZNRrw5m6SZk=) 2: 682B76C05BB211E9BF474F16C4F9AE02.roa (hash: vKLtsTjRDQmvaoDy2+JZ+X/edFfE0cROOj6FdGkYWZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4112 (0x1010) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Validity Not Before: Dec 6 16:56:43 2025 GMT Not After : Dec 13 16:56:43 2025 GMT Subject: CN=6934604b-fe2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d0:a2:29:d0:8d:e1:75:19:3a:f5:5d:33:81: 80:c9:51:6c:3b:2e:bf:05:83:2c:a2:7e:d4:80:d9: c2:60:35:42:c6:e0:1b:c8:9f:9d:47:63:ee:34:81: e3:e2:6a:ee:80:50:0c:8e:00:49:69:4d:1e:8e:50: 7c:3a:e7:3a:81:b2:cb:88:23:c6:4c:ae:8b:7c:71: cf:90:bb:e8:fb:33:93:ce:2b:1e:a6:a3:b1:d9:17: cb:51:75:3a:96:49:db:bb:ba:f6:2a:8a:7c:27:52: 24:52:cd:0d:d6:15:08:8a:f1:0c:b1:30:2c:2e:37: 6f:fa:7b:51:bc:b2:14:b6:e4:3d:e5:6a:2a:78:22: de:e7:b9:87:c9:2c:1e:e6:da:bf:72:03:c2:af:bf: 4d:16:11:c2:5e:32:38:c8:1f:3b:cb:67:b9:10:25: b2:7f:ca:64:de:17:9f:05:61:6c:92:ae:16:4a:da: 92:a8:bb:b2:56:18:5b:c1:2b:3c:5b:46:1d:34:df: 53:f3:5c:43:43:a2:8f:db:af:1b:09:0d:e0:79:b3: 5e:03:3a:4c:48:11:da:a2:9d:5c:82:f9:7a:ac:b4: 0d:60:c3:8c:d8:08:08:0a:3e:e5:77:11:d0:53:6f: a3:7f:16:77:13:69:24:7a:16:0b:a7:fc:40:23:35: b4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C6:91:D5:3E:A5:C5:8F:0E:7D:53:5F:B7:CA:94:BD:3F:3D:39:39 X509v3 Authority Key Identifier: keyid:D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:46:6f:da:2f:36:c6:aa:da:48:dc:91:20:24:bf:62:1c:c0: 5e:ca:2a:e2:9c:9e:3f:9f:fa:64:94:7f:83:f6:0c:14:55:33: 70:0b:96:52:78:f1:82:d6:47:2b:f0:b5:c1:30:b0:fe:47:c7: 0d:ef:32:4f:34:89:13:d7:9a:d8:4f:ff:a3:24:89:c7:0c:7f: e1:62:c2:29:22:60:e5:c8:4c:a9:4b:6c:05:c9:3f:2b:8c:61: e5:d5:91:75:7d:cc:4c:ec:0e:07:e2:04:6f:09:c2:96:2e:8b: 70:7b:43:e2:d9:b1:48:b7:c6:e9:8a:2e:63:83:6d:4f:eb:32: 30:3f:5e:4b:63:d2:c6:c7:74:f2:6d:4e:bc:f2:b7:2e:2e:c8: 75:4d:da:64:eb:d5:3c:02:fe:9b:b8:12:48:47:28:16:32:b4: 94:bd:cf:8a:95:af:89:af:04:c5:86:2b:2d:5f:97:4c:46:c5: 92:b1:19:8d:f8:5f:1f:88:ed:b5:50:e8:64:57:d9:a5:d5:29: a3:38:4c:2d:32:94:31:8a:78:10:fe:30:94:22:a6:6a:ab:db: a4:e2:d5:b8:ab:db:6f:57:0e:e3:bd:ba:c6:3d:f6:84:cb:cc: d4:d8:8a:15:0c:d3:36:b2:de:54:df:6b:3d:87:9e:d5:41:46: 24:4e:4e:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKEQ2ODBCRjNBNzk2QTM1NUIxMjVBNjAyQzc0NjZCOUE1 NkQzNDQyNTQwHhcNMjUxMjA2MTY1NjQzWhcNMjUxMjEzMTY1NjQzWjAYMRYwFAYD VQQDEw02OTM0NjA0Yi1mZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dCiKdCN4XUZOvVdM4GAyVFsOy6/BYMson7UgNnCYDVCxuAbyJ+dR2PuNIHj 4mrugFAMjgBJaU0ejlB8Ouc6gbLLiCPGTK6LfHHPkLvo+zOTzisepqOx2RfLUXU6 lknbu7r2Kop8J1IkUs0N1hUIivEMsTAsLjdv+ntRvLIUtuQ95WoqeCLe57mHySwe 5tq/cgPCr79NFhHCXjI4yB87y2e5ECWyf8pk3hefBWFskq4WStqSqLuyVhhbwSs8 W0YdNN9T81xDQ6KP268bCQ3gebNeAzpMSBHaop1cgvl6rLQNYMOM2AgICj7ldxHQ U2+jfxZ3E2kkehYLp/xAIzW0AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3GkdU+ pcWPDn1TX7fKlL0/PTk5MB8GA1UdIwQYMBaAFNaAvzp5ajVbElpgLHRmuaVtNEJU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8wRUFDRjgyQzVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5Wc1NXbUFzZEdhNXBXMDBR bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFvQ19PbmxxTlZzU1dtQXNkR2E1cFcwMFFsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8wRUFDRjgyQzVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5W c1NXbUFzZEdhNXBXMDBRbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuRm/aLzbGqtpI3JEgJL9iHMBeyirinJ4/n/pklH+D9gwUVTNwC5ZS ePGC1kcr8LXBMLD+R8cN7zJPNIkT15rYT/+jJInHDH/hYsIpImDlyEypS2wFyT8r jGHl1ZF1fcxM7A4H4gRvCcKWLotwe0Pi2bFIt8bpii5jg21P6zIwP15LY9LGx3Ty bU688rcuLsh1Tdpk69U8Av6buBJIRygWMrSUvc+Kla+JrwTFhistX5dMRsWSsRmN +F8fiO21UOhkV9ml1SmjOEwtMpQxingQ/jCUIqZqq9uk4tW4q9tvVw7jvbrGPfaE y8zU2IoVDNM2st5U32s9h57VQUYkTk6T -----END CERTIFICATE-----Generated at Sun Dec 7 02:02:22 2025 by rpki-client