This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: b7r0Xk/f8BqvUh0Vezh/FIh/5x/2MCpUS4oEz67aezM= Subject key identifier: AA:EC:9A:36:33:36:31:8E:37:AD:16:8C:CC:75:75:BD:37:FC:ED:4A Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 03A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 0394 Signing time: Sat 06 Dec 2025 23:25:11 +0000 Manifest this update: Sat 06 Dec 2025 23:25:10 +0000 Manifest next update: Sat 13 Dec 2025 23:25:10 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: SjCm4JRwEdmfZHXiwZ73ajAwAnHCzSF1Z8MSTjw7Ce4=) 2: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: fbrDSF5x4VvuEIAZikU3PfgDzKLrpZQ/e/7qrjWSoZs=) 3: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: RiHqUd66nfKg9bYuuoXV02nBPSlEq4ADYP42Ecnza24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Dec 6 23:25:10 2025 GMT Not After : Dec 13 23:25:10 2025 GMT Subject: CN=6934bb57-00e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c6:eb:52:5a:d3:df:cb:b6:6c:5e:3b:c9:47: d2:92:be:17:d8:a0:8f:13:81:d8:d7:4a:72:d1:cc: 76:c7:b7:8b:8e:b7:bf:b0:74:18:e3:7a:7c:4a:3f: 7c:58:8c:92:15:1a:8f:1a:03:8b:cc:97:1c:20:44: f2:53:5a:7a:19:6e:67:a2:00:1f:c6:7c:3b:62:2e: bc:fb:7b:89:00:80:50:e8:f9:38:ad:6b:b8:93:03: d8:e4:84:29:f2:d2:89:f0:f9:a9:dd:72:c4:37:5d: 04:aa:4a:8e:d2:d5:84:84:24:51:52:88:cf:12:62: 44:bd:87:08:58:67:c3:3e:19:ab:51:1d:08:0d:75: 0c:62:13:78:c6:51:d9:71:27:85:9e:88:6c:2f:0c: 95:83:bf:95:a9:67:22:05:e1:c6:67:2e:cf:d0:70: 3a:7e:77:91:95:28:82:10:3d:d0:6a:24:c6:93:80: a2:3b:cd:a0:f1:bd:b9:71:5a:48:7a:84:a1:c2:76: f9:bd:37:3d:71:39:d5:d8:28:2d:35:3d:8b:e7:23: eb:9b:e7:91:ff:44:22:3a:c1:69:23:52:20:f4:3f: 68:a6:01:9f:bb:5c:f1:c9:ad:02:3e:b4:4b:2e:51: 9b:9c:3b:4e:93:a1:14:1f:fa:60:bb:75:e5:2a:e9: 03:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:EC:9A:36:33:36:31:8E:37:AD:16:8C:CC:75:75:BD:37:FC:ED:4A X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:37:c4:73:7d:f5:54:d9:4c:37:c1:9a:9a:77:56:0d:f2:e1: 50:56:43:16:42:3a:88:d8:10:c3:87:d9:fa:7e:8d:13:14:8c: ec:f1:48:31:6b:49:71:97:59:da:16:62:b7:f4:ed:e0:f9:4d: 99:0d:87:14:9f:81:3b:4a:38:8a:38:20:60:f5:39:c1:c6:29: 27:ce:09:8c:c3:f8:12:47:ee:9c:57:20:49:0c:25:36:48:ca: 11:c8:49:e8:08:f2:5a:28:ba:81:be:02:c1:8a:80:07:aa:64: 83:c4:fb:9e:e9:0c:59:0e:73:c5:a0:6e:a0:11:61:b3:04:4c: ec:32:c1:d3:26:24:6b:5f:4b:19:4e:95:c6:f0:df:10:61:60: 0f:59:6d:d7:20:b9:a9:65:f3:d6:72:29:69:fa:90:8a:00:c4: 97:be:a8:dd:5c:9e:42:0d:88:50:9e:db:fe:42:ad:83:69:f9: ac:06:fd:b7:d6:50:ba:0e:3b:e3:ac:8d:bd:b8:1c:7f:29:40: 48:0f:1a:61:ab:9d:75:0e:30:d1:e2:b4:c3:d2:85:9f:67:ac: bc:00:de:a9:ad:9e:44:f5:03:4b:9c:25:fe:cd:b8:5e:a2:47: 82:bc:ab:d8:20:ec:67:f9:e9:d7:99:d8:a7:21:af:56:87:da: 0c:a1:c7:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjUxMjA2MjMyNTEwWhcNMjUxMjEzMjMyNTEwWjAYMRYwFAYD VQQDEw02OTM0YmI1Ny0wMGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsbrUlrT38u2bF47yUfSkr4X2KCPE4HY10py0cx2x7eLjre/sHQY43p8Sj98 WIySFRqPGgOLzJccIETyU1p6GW5nogAfxnw7Yi68+3uJAIBQ6Pk4rWu4kwPY5IQp 8tKJ8Pmp3XLEN10EqkqO0tWEhCRRUojPEmJEvYcIWGfDPhmrUR0IDXUMYhN4xlHZ cSeFnohsLwyVg7+VqWciBeHGZy7P0HA6fneRlSiCED3QaiTGk4CiO82g8b25cVpI eoShwnb5vTc9cTnV2CgtNT2L5yPrm+eR/0QiOsFpI1Ig9D9opgGfu1zxya0CPrRL LlGbnDtOk6EUH/pgu3XlKukDMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrsmjYz NjGON60WjMx1db03/O1KMB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaN8RzffVU2Uw3wZqad1YN8uFQVkMWQjqI2BDDh9n6fo0TFIzs8Ugx a0lxl1naFmK39O3g+U2ZDYcUn4E7SjiKOCBg9TnBxiknzgmMw/gSR+6cVyBJDCU2 SMoRyEnoCPJaKLqBvgLBioAHqmSDxPue6QxZDnPFoG6gEWGzBEzsMsHTJiRrX0sZ TpXG8N8QYWAPWW3XILmpZfPWcilp+pCKAMSXvqjdXJ5CDYhQntv+Qq2DafmsBv23 1lC6DjvjrI29uBx/KUBIDxphq511DjDR4rTD0oWfZ6y8AN6prZ5E9QNLnCX+zbhe okeCvKvYIOxn+enXmdinIa9Wh9oMocea -----END CERTIFICATE-----Generated at Sun Dec 7 03:44:58 2025 by rpki-client