This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: A4QGA3EW0uBcxv+kIhIfU128sU1/EFf80KRwAXxlF68= Subject key identifier: E1:52:05:44:61:3C:1F:AC:D2:B7:A9:BD:6E:DB:54:2F:7E:5B:CE:74 Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: C1 Signing time: Fri 05 Dec 2025 03:55:40 +0000 Manifest this update: Fri 05 Dec 2025 03:55:39 +0000 Manifest next update: Fri 12 Dec 2025 03:55:39 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: E2iQLoMhOzuOR/HiuVO0RH/Hz6KMdNHQfdbwxt1iXz4=) 2: BB5954CE241111F094390A32C4F9AE02.roa (hash: 6qd8Idl86oSAnUE2UErM8ktGLeOpsspXAgidR5hkRlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Dec 5 03:55:39 2025 GMT Not After : Dec 12 03:55:39 2025 GMT Subject: CN=693257bc-8337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c7:fc:d9:88:e2:2d:b1:6c:37:36:ba:31:12: da:7e:74:9d:ca:4f:13:e3:f3:87:e6:37:fd:5a:8c: 54:fc:63:a2:2f:16:7a:1c:49:d4:7f:4b:27:70:4c: 79:c5:fd:49:6e:d7:c8:9b:01:26:d7:1a:33:47:e0: 59:f3:cf:43:33:2a:ab:1e:e3:25:e3:3d:b9:dd:7f: a3:d9:9f:8c:a9:f8:db:a6:5e:23:6d:93:3a:f1:0a: 07:42:05:4f:70:a1:ef:02:23:50:f2:0b:7f:59:2d: 66:3d:89:b2:1c:40:39:ec:e1:41:a1:3e:7e:70:6c: 7b:36:57:9a:df:e7:7d:f6:98:15:d6:1a:70:fb:57: c3:e4:c4:b0:0f:57:ba:2e:e9:a5:6e:11:9b:77:8e: e8:5d:08:12:d4:c5:b5:63:a4:39:68:bc:c5:54:ba: 4b:bd:d7:2b:64:9b:00:11:93:52:37:f2:eb:3f:f7: fb:13:3e:6b:7d:cc:62:b2:22:20:c0:b3:24:2f:49: ea:ba:16:b5:40:b9:8f:ac:78:91:53:2d:57:59:36: d8:e7:ea:99:85:ec:c8:14:12:b2:bd:a0:51:ff:94: 5a:55:38:0f:a0:f7:37:a5:1c:08:90:19:d7:62:68: c1:8a:28:44:81:b3:bf:95:fc:0f:0b:41:f1:d9:71: 00:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:52:05:44:61:3C:1F:AC:D2:B7:A9:BD:6E:DB:54:2F:7E:5B:CE:74 X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:16:43:bb:87:55:a9:e5:89:52:b6:e0:9e:6e:7e:46:08:e3: 08:e2:cd:8b:b8:11:fe:70:2b:7e:ff:ae:c9:bc:5e:1f:eb:f2: 34:40:ed:b6:99:82:06:54:ab:c1:f2:2f:3d:e5:31:43:ac:5c: a3:dc:02:7b:71:d0:90:7c:90:2d:bf:15:2a:be:e9:d9:6c:1e: 0f:30:1e:a4:c9:5c:7d:a4:3d:c1:1e:25:b0:e4:80:fa:79:31: 7f:c3:88:14:58:b7:4f:00:3c:bc:9b:6a:ee:e4:27:6e:58:d3: 01:c0:7c:bf:0f:c0:8b:20:67:54:9a:6b:e5:98:de:2c:b3:7d: 97:82:9f:1c:a6:da:6a:61:88:e6:de:a8:23:93:e9:bd:24:1f: 8b:91:e0:36:d0:08:04:f9:df:31:21:97:cb:65:2f:a2:1d:45: 82:b3:c0:7f:a4:57:12:f8:c1:6a:3a:3a:52:fc:01:c7:47:89: 96:2a:2c:63:99:42:9e:4c:f7:e7:93:39:69:af:30:52:a1:45: b1:ce:b1:1b:31:8b:83:84:db:b5:e3:98:7e:4f:ae:14:38:28: f3:ca:22:95:c5:fb:1f:46:e7:02:c0:57:50:28:38:a8:cf:bd: c6:57:81:0c:62:e1:0c:d3:07:87:90:87:08:50:dd:ed:10:9c: 9d:ee:bf:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVENTMxMTAvBgNVBAUTKEQ2MjcxNkY3NjFGMTg4RDU2RkExMTdGOURDOTRCRTQx NDEwNEE2ODEwHhcNMjUxMjA1MDM1NTM5WhcNMjUxMjEyMDM1NTM5WjAYMRYwFAYD VQQDEw02OTMyNTdiYy04MzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMf82YjiLbFsNza6MRLafnSdyk8T4/OH5jf9WoxU/GOiLxZ6HEnUf0sncEx5 xf1JbtfImwEm1xozR+BZ889DMyqrHuMl4z253X+j2Z+Mqfjbpl4jbZM68QoHQgVP cKHvAiNQ8gt/WS1mPYmyHEA57OFBoT5+cGx7Nlea3+d99pgV1hpw+1fD5MSwD1e6 LumlbhGbd47oXQgS1MW1Y6Q5aLzFVLpLvdcrZJsAEZNSN/LrP/f7Ez5rfcxisiIg wLMkL0nquha1QLmPrHiRUy1XWTbY5+qZhezIFBKyvaBR/5RaVTgPoPc3pRwIkBnX YmjBiihEgbO/lfwPC0Hx2XEAzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFSBURh PB+s0repvW7bVC9+W850MB8GA1UdIwQYMBaAFNYnFvdh8YjVb6EX+dyUvkFBBKaB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUQ1My8wNUZGQzAwRUFD ODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlOVnZvUmY1M0pTLVFVRUVw b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUQ1My8wNUZGQzAwRUFDODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlO VnZvUmY1M0pTLVFVRUVwb0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0FkO7h1Wp5YlStuCebn5GCOMI4s2LuBH+cCt+/67JvF4f6/I0QO22 mYIGVKvB8i895TFDrFyj3AJ7cdCQfJAtvxUqvunZbB4PMB6kyVx9pD3BHiWw5ID6 eTF/w4gUWLdPADy8m2ru5CduWNMBwHy/D8CLIGdUmmvlmN4ss32Xgp8cptpqYYjm 3qgjk+m9JB+LkeA20AgE+d8xIZfLZS+iHUWCs8B/pFcS+MFqOjpS/AHHR4mWKixj mUKeTPfnkzlprzBSoUWxzrEbMYuDhNu145h+T64UOCjzyiKVxfsfRucCwFdQKDio z73GV4EMYuEM0weHkIcIUN3tEJyd7r8Y -----END CERTIFICATE-----Generated at Sun Dec 7 03:20:56 2025 by rpki-client