This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft File: p1cNzzcgqNWohWpLtlg_G66uAJM.mft (raw, json) Hash identifier: TVvWnog0NwdLcn5ugay/MJ+9xiPVf1MTqU3mTMemVsE= Subject key identifier: AC:E0:A0:AE:3D:D1:C0:A1:D6:51:52:EC:9B:6E:D2:05:38:59:DC:7D Authority key identifier: A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 Certificate issuer: /CN=A91B37E3/serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Certificate serial: 0CFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft Manifest number: 0CCF Signing time: Sat 06 Dec 2025 17:38:31 +0000 Manifest this update: Sat 06 Dec 2025 17:38:30 +0000 Manifest next update: Sat 13 Dec 2025 17:38:30 +0000 Files and hashes: 1: p1cNzzcgqNWohWpLtlg_G66uAJM.crl (hash: JKzR/jXrPXe7KHWXOa6hwn+FzZIc9RlXz0NM4lfljlo=) 2: 1994900403CE11EAA10C6A84C4F9AE02.roa (hash: +t2OsFQRgFf0c7jNBR5fu1U2IpPKMIuwM5iZNaY//qo=) 3: 5B47C2265D8411F0BBB04858C4F9AE02.roa (hash: Uur2jCKI44RTppdHPrBOV4rDdME7NfVW8X3JWQwRDe0=) 4: 4F6721CEB84B11EAB6247B7AC4F9AE02.roa (hash: coEgjngsR/Ce6vFWSBZaZ5rCfdvEVYlwbgZyFrxHv0s=) 5: 24252532B84711EA8A7F036DC4F9AE02.roa (hash: 5MqZOZoSVhwobP4LcJgxINFesjcjTvuIMp43rKBprmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3326 (0xcfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37E3, serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Validity Not Before: Dec 6 17:38:30 2025 GMT Not After : Dec 13 17:38:30 2025 GMT Subject: CN=69346a16-59d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6e:c3:86:5e:5f:66:ce:e2:28:39:57:ad:ae: c1:81:fd:aa:19:7b:de:19:30:31:19:a4:23:9a:19: eb:dc:ed:4d:b6:52:cd:c9:7b:ca:e8:5f:e9:de:0c: 9b:d9:6a:ae:6b:c3:2d:8c:28:29:66:18:13:78:29: 12:e2:10:24:26:7c:3e:12:49:28:00:00:a9:ce:f2: f5:1b:9d:98:94:5f:77:5c:34:8e:1c:55:d5:09:98: 20:c5:d8:40:76:4d:86:42:b2:0e:e2:9f:85:5a:81: a6:1b:45:d8:9a:9c:24:fc:32:56:fa:f1:7a:a8:a3: 4e:82:34:bf:70:b8:09:89:15:5c:0b:d6:ae:ad:38: 5b:c5:06:ca:55:da:46:5f:f5:55:02:8a:e8:f5:76: 14:77:a1:44:81:aa:1b:28:d4:f3:b8:91:61:bc:28: d6:07:bf:f1:9d:a0:bc:34:19:17:0a:22:86:d8:6a: df:34:4e:15:35:4d:ab:d3:da:5f:61:74:3d:61:3a: 49:99:d5:2d:a5:8b:48:1b:bf:cd:5e:60:98:f1:d9: b8:47:92:ec:25:c1:38:1d:ff:0f:e1:b5:fe:32:20: f2:95:18:0c:f8:0d:f9:7a:69:ef:4f:49:d7:b2:05: 21:88:78:9c:3b:32:e4:f1:81:2c:44:05:09:a0:1a: c3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E0:A0:AE:3D:D1:C0:A1:D6:51:52:EC:9B:6E:D2:05:38:59:DC:7D X509v3 Authority Key Identifier: keyid:A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:53:7a:7d:75:0e:b5:32:b6:41:a5:c7:1e:ad:35:48:34:1e: 37:da:9d:b6:8a:29:30:06:b2:42:28:04:97:89:15:ee:61:24: 39:40:0b:0e:bb:13:68:74:36:31:85:f1:91:3a:83:1c:9b:86: f3:37:97:b6:df:da:ac:a4:80:bc:64:df:1c:31:3b:84:31:07: 09:5f:fd:35:c3:e8:15:77:c4:4b:3d:0f:24:a2:08:75:e6:8c: b0:c0:86:5a:36:08:7c:09:9d:a8:29:3b:11:86:54:7e:44:45: 5f:10:9e:6f:f8:bc:3b:40:b1:8d:2f:99:eb:bd:b4:fd:fc:fd: 79:65:f5:69:5f:1d:cd:b2:a8:72:90:d9:6f:fa:68:9c:ef:8d: c9:c0:a5:9d:ef:8b:cc:2c:29:e0:d0:f3:e7:45:2a:4f:40:1f: b8:4a:02:84:2c:9d:d2:eb:87:09:74:c4:ce:26:fb:84:64:f3: 7b:39:7a:b7:7c:90:3c:61:f0:ca:1a:83:d0:b8:1d:a1:94:34: ef:9d:19:d7:7f:85:fb:74:a1:a6:7f:4c:95:14:e8:bb:3f:59: 1b:b7:2e:e8:bc:d8:91:38:e4:7d:59:be:1b:e6:7d:3e:7b:88: 42:0f:a7:ab:d8:d3:d6:a1:6e:85:c5:c4:20:ce:4a:12:c1:1d: 5e:d0:18:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3RTMxMTAvBgNVBAUTKEE3NTcwRENGMzcyMEE4RDVBODg1NkE0QkI2NTgzRjFC QUVBRTAwOTMwHhcNMjUxMjA2MTczODMwWhcNMjUxMjEzMTczODMwWjAYMRYwFAYD VQQDEw02OTM0NmExNi01OWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6m7Dhl5fZs7iKDlXra7Bgf2qGXveGTAxGaQjmhnr3O1NtlLNyXvK6F/p3gyb 2Wqua8MtjCgpZhgTeCkS4hAkJnw+EkkoAACpzvL1G52YlF93XDSOHFXVCZggxdhA dk2GQrIO4p+FWoGmG0XYmpwk/DJW+vF6qKNOgjS/cLgJiRVcC9aurThbxQbKVdpG X/VVAoro9XYUd6FEgaobKNTzuJFhvCjWB7/xnaC8NBkXCiKG2GrfNE4VNU2r09pf YXQ9YTpJmdUtpYtIG7/NXmCY8dm4R5LsJcE4Hf8P4bX+MiDylRgM+A35emnvT0nX sgUhiHicOzLk8YEsRAUJoBrDCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzgoK49 0cCh1lFS7Jtu0gU4Wdx9MB8GA1UdIwQYMBaAFKdXDc83IKjVqIVqS7ZYPxuurgCT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdFMy8wQUZFQTdDRTAz QTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FOV29oV3BMdGxnX0c2NnVB Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AxY056emNncU5Xb2hXcEx0bGdfRzY2dUFKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdFMy8wQUZFQTdDRTAzQTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FO V29oV3BMdGxnX0c2NnVBSk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWU3p9dQ61MrZBpccerTVINB432p22iikwBrJCKASXiRXuYSQ5QAsO uxNodDYxhfGROoMcm4bzN5e239qspIC8ZN8cMTuEMQcJX/01w+gVd8RLPQ8kogh1 5oywwIZaNgh8CZ2oKTsRhlR+REVfEJ5v+Lw7QLGNL5nrvbT9/P15ZfVpXx3Nsqhy kNlv+mic743JwKWd74vMLCng0PPnRSpPQB+4SgKELJ3S64cJdMTOJvuEZPN7OXq3 fJA8YfDKGoPQuB2hlDTvnRnXf4X7dKGmf0yVFOi7P1kbty7ovNiROOR9Wb4b5n0+ e4hCD6er2NPWoW6FxcQgzkoSwR1e0Bjb -----END CERTIFICATE-----Generated at Sun Dec 7 01:39:25 2025 by rpki-client