This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: UP6HsT93J+T38jvBYjfAGNorCuZYh6G+WxcQqIY3Jgo= Subject key identifier: 97:B5:FB:C8:02:63:B3:CB:AE:DA:7F:E4:11:5E:A4:C3:21:FF:F2:05 Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 04B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 04AC Signing time: Sat 06 Dec 2025 22:38:55 +0000 Manifest this update: Sat 06 Dec 2025 22:38:55 +0000 Manifest next update: Sat 13 Dec 2025 22:38:55 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: mvsZEvBag/E++ys96oz5fghzZD9EnCjdBjR24k95ixE=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: 6npCQGD8mKRcXKLy4jKCYWBhRpmmG05TZblrhBE83zM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Dec 6 22:38:55 2025 GMT Not After : Dec 13 22:38:55 2025 GMT Subject: CN=6934b07f-b850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5b:5b:ad:1c:bb:d3:3c:58:0c:65:78:bd:51: b1:08:88:d7:52:08:9b:ba:bb:d2:64:3a:1a:97:9b: 28:16:8f:e5:89:46:1c:cf:d8:05:80:d7:66:26:a5: 65:64:ba:8b:96:31:3d:e6:4a:f5:df:52:46:68:8f: 00:56:d7:ef:af:7d:aa:0d:2a:c2:aa:28:66:2d:f3: 2e:39:29:2a:27:6b:79:8f:26:d7:25:b7:56:d0:a9: 5c:fa:91:47:83:20:b0:45:42:be:d5:35:ab:4c:73: 5e:47:02:32:79:52:e2:1f:50:4d:6f:85:e8:f0:71: 5f:40:bc:63:92:83:24:7d:2c:ec:80:de:d2:b1:d9: 33:c9:9e:f2:f0:98:e1:23:0d:9a:b8:57:53:22:25: ee:dd:b2:e8:ce:22:d6:ca:8f:10:cc:2d:3d:22:51: e5:ca:12:fe:7a:46:e6:cc:ea:2f:63:d6:38:ec:5e: 01:f3:6e:86:de:9f:43:78:ba:3e:eb:cf:78:48:cc: 3d:be:e4:f1:53:cc:34:db:54:6f:a0:0a:78:9b:bb: 68:91:5d:bb:5d:2d:d8:d1:c0:5c:10:e7:af:88:71: 2f:7a:8a:4b:5c:00:3a:a7:55:61:e3:dd:88:fb:b6: 62:22:e2:a4:68:46:91:a2:01:64:02:e3:27:25:84: 3c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B5:FB:C8:02:63:B3:CB:AE:DA:7F:E4:11:5E:A4:C3:21:FF:F2:05 X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:17:08:b6:cc:61:36:d6:de:d9:6d:2c:df:0e:9c:c5:fa:3c: 92:69:01:30:4d:19:9a:c8:f0:3d:e8:e6:cc:56:59:9e:e0:67: 51:fb:8f:ea:04:6b:39:c2:11:d1:83:a4:18:9a:9c:a4:1a:d5: 4c:49:01:d0:7c:d8:f1:85:52:21:42:a9:7c:e4:00:e8:3e:5a: 5c:93:96:04:91:f2:a4:18:9c:d8:64:ae:9f:c4:1c:a6:19:0d: 98:b2:f3:e8:71:71:64:3c:a1:f1:e0:81:67:56:88:45:eb:d2: 09:de:88:d9:18:78:7e:24:ea:7d:7a:d0:cf:d1:a4:af:07:7b: a5:b7:c0:bb:c6:93:1d:d1:94:f0:3c:3c:22:11:4f:44:fc:06: 14:d2:3a:eb:6a:31:0d:1f:f4:55:07:a2:dc:f0:7d:b1:e1:bf: 43:a3:64:ff:00:38:f9:56:69:94:59:ef:1c:64:3a:f2:fa:14: 67:00:68:f6:1d:7a:3b:07:ca:7e:65:20:e4:4d:2a:3c:99:85: fb:d9:4e:79:55:7a:bb:5b:af:8a:3a:4f:69:fe:00:ff:56:74: 9e:75:21:e4:6e:0a:08:c0:a0:48:eb:55:82:ed:8b:ec:ac:19: 62:0a:6e:f1:2a:38:f8:a7:ce:3a:e3:14:2e:59:b9:dc:a7:f5: a1:87:7f:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUxMjA2MjIzODU1WhcNMjUxMjEzMjIzODU1WjAYMRYwFAYD VQQDEw02OTM0YjA3Zi1iODUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVtbrRy70zxYDGV4vVGxCIjXUgiburvSZDoal5soFo/liUYcz9gFgNdmJqVl ZLqLljE95kr131JGaI8AVtfvr32qDSrCqihmLfMuOSkqJ2t5jybXJbdW0Klc+pFH gyCwRUK+1TWrTHNeRwIyeVLiH1BNb4Xo8HFfQLxjkoMkfSzsgN7SsdkzyZ7y8Jjh Iw2auFdTIiXu3bLoziLWyo8QzC09IlHlyhL+ekbmzOovY9Y47F4B826G3p9DeLo+ 6894SMw9vuTxU8w021RvoAp4m7tokV27XS3Y0cBcEOeviHEveopLXAA6p1Vh492I +7ZiIuKkaEaRogFkAuMnJYQ8WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJe1+8gC Y7PLrtp/5BFepMMh//IFMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGFwi2zGE21t7ZbSzfDpzF+jySaQEwTRmayPA96ObMVlme4GdR+4/q BGs5whHRg6QYmpykGtVMSQHQfNjxhVIhQql85ADoPlpck5YEkfKkGJzYZK6fxBym GQ2YsvPocXFkPKHx4IFnVohF69IJ3ojZGHh+JOp9etDP0aSvB3ult8C7xpMd0ZTw PDwiEU9E/AYU0jrrajENH/RVB6Lc8H2x4b9Do2T/ADj5VmmUWe8cZDry+hRnAGj2 HXo7B8p+ZSDkTSo8mYX72U55VXq7W6+KOk9p/gD/VnSedSHkbgoIwKBI61WC7Yvs rBliCm7xKjj4p8464xQuWbncp/Whh3+K -----END CERTIFICATE-----Generated at Sun Dec 7 03:11:47 2025 by rpki-client