This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: CN030MkDBeQ6j+/8piqAwHylF9aSSU7klgrU8Syk2NQ= Subject key identifier: 75:22:47:67:70:90:97:AE:40:D8:F4:84:B2:EC:14:12:8D:27:A7:AE Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1BAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1BA4 Signing time: Sat 06 Dec 2025 15:54:49 +0000 Manifest this update: Sat 06 Dec 2025 15:54:48 +0000 Manifest next update: Sat 13 Dec 2025 15:54:48 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: +eBf/tU9lUE3kVcFlspcVIHEAbBlPg1W8/tCBKMD6pI=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7086 (0x1bae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Dec 6 15:54:48 2025 GMT Not After : Dec 13 15:54:48 2025 GMT Subject: CN=693451c9-33f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c1:13:03:05:54:30:6a:10:92:7a:dd:b6:04: 2a:09:f5:83:52:6f:29:d4:d3:e8:67:90:db:9d:f4: 4c:2f:d6:ad:7f:59:84:3c:ac:f8:71:01:54:86:32: 69:14:d3:02:66:28:b3:96:e1:b8:ed:d4:bf:d0:0c: b2:e1:94:64:fc:88:0d:96:62:60:99:45:21:94:23: de:d0:4a:96:95:3f:eb:67:f9:a4:b5:4b:74:64:d0: 74:4d:ed:da:d4:3e:ee:d4:5f:31:93:ff:9d:ac:f4: ad:c8:da:04:7d:2f:01:b1:55:88:85:4f:d3:b9:4b: 8c:ce:ea:94:24:b2:4f:e3:72:a2:67:50:1c:f2:9e: e6:19:e8:d2:ab:e7:17:fa:25:50:26:59:dc:19:34: bf:0c:d1:ea:6a:56:5a:18:32:aa:57:97:5f:87:da: 7b:1e:f6:8a:90:44:7e:de:bf:a9:56:83:5c:cc:58: 16:75:3e:ab:cc:b7:ac:08:3b:9d:0a:67:72:7a:87: f5:74:93:87:0e:49:c6:63:c8:77:5a:2a:b7:fb:ca: c5:4a:a8:54:79:50:11:df:45:87:b7:e0:76:d4:55: 6f:81:69:7c:7a:b3:d9:12:46:85:d5:df:d5:ff:b1: 2e:d6:ce:e5:dc:f0:e9:44:61:83:24:5d:3b:20:dd: 03:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:22:47:67:70:90:97:AE:40:D8:F4:84:B2:EC:14:12:8D:27:A7:AE X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:cb:e6:13:ec:50:b9:a2:f3:f9:77:ef:a6:8d:c2:33:76:f8: fb:72:0b:8f:d7:25:1f:30:7c:94:f0:71:b9:32:71:36:a9:fa: 7b:c2:26:b2:5a:67:f7:2b:42:b2:38:12:77:48:52:6e:b4:cd: 68:cc:96:e8:f6:b3:4c:d8:20:83:de:cc:1b:32:89:fc:00:b9: 8a:36:d4:66:ee:c8:2e:e4:7c:a8:bd:f3:b8:5d:40:c2:b0:52: 2c:ce:e8:32:53:76:44:27:85:d7:ce:d4:75:c4:ce:f5:a2:1b: 53:4a:70:0a:0e:24:17:e4:4a:b2:7e:eb:c7:bd:17:e5:c7:79: 2a:62:eb:c8:5f:aa:67:80:ae:c4:c3:01:60:9f:1c:cf:eb:47: 50:f0:6d:66:8c:0a:60:6e:47:ce:ce:c6:1d:53:44:00:d1:e4: 32:87:5a:a7:61:87:30:f5:f7:1d:46:d7:36:e8:e6:0f:0c:1e: 76:d7:45:4d:f3:28:d8:32:fa:d4:34:9a:98:52:0e:22:e3:dc: b6:94:68:0c:b1:f6:07:a9:13:78:e3:17:49:6a:f5:61:67:18: eb:d8:dc:e6:f5:f6:6a:66:84:7d:77:25:02:bb:4e:a5:f2:c0: eb:01:70:bc:05:e3:43:bc:3b:47:ab:36:2a:b8:ea:2d:68:f4: 73:ea:5e:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUxMjA2MTU1NDQ4WhcNMjUxMjEzMTU1NDQ4WjAYMRYwFAYD VQQDEw02OTM0NTFjOS0zM2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncETAwVUMGoQknrdtgQqCfWDUm8p1NPoZ5DbnfRML9atf1mEPKz4cQFUhjJp FNMCZiizluG47dS/0Ayy4ZRk/IgNlmJgmUUhlCPe0EqWlT/rZ/mktUt0ZNB0Te3a 1D7u1F8xk/+drPStyNoEfS8BsVWIhU/TuUuMzuqUJLJP43KiZ1Ac8p7mGejSq+cX +iVQJlncGTS/DNHqalZaGDKqV5dfh9p7HvaKkER+3r+pVoNczFgWdT6rzLesCDud Cmdyeof1dJOHDknGY8h3Wiq3+8rFSqhUeVAR30WHt+B21FVvgWl8erPZEkaF1d/V /7Eu1s7l3PDpRGGDJF07IN0D0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUiR2dw kJeuQNj0hLLsFBKNJ6euMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjy+YT7FC5ovP5d++mjcIzdvj7cguP1yUfMHyU8HG5MnE2qfp7wiay Wmf3K0KyOBJ3SFJutM1ozJbo9rNM2CCD3swbMon8ALmKNtRm7sgu5HyovfO4XUDC sFIszugyU3ZEJ4XXztR1xM71ohtTSnAKDiQX5EqyfuvHvRflx3kqYuvIX6pngK7E wwFgnxzP60dQ8G1mjApgbkfOzsYdU0QA0eQyh1qnYYcw9fcdRtc26OYPDB5210VN 8yjYMvrUNJqYUg4i49y2lGgMsfYHqRN44xdJavVhZxjr2Nzm9fZqZoR9dyUCu06l 8sDrAXC8BeNDvDtHqzYquOotaPRz6l7d -----END CERTIFICATE-----Generated at Mon Dec 8 09:15:13 2025 by rpki-client