This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: Dcd5NB28ILNTYcnQ/0sBc0w4gkCtC69MHX7swfzwNS0= Subject key identifier: D0:D7:EF:DC:D0:D6:2A:ED:88:CE:6D:1B:68:73:AA:8D:31:C0:B0:00 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 34F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 34F2 Signing time: Sat 06 Dec 2025 14:57:44 +0000 Manifest this update: Sat 06 Dec 2025 14:57:43 +0000 Manifest next update: Sat 13 Dec 2025 14:57:43 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: kV6T143jBOadzzBbSTFxGodUTMoW+d/LcKLhIkxeZHI=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: M6Pt8WXLhq//MKcmuNDOr2BuMndgWlnu7AwCPG6iTjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13560 (0x34f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Dec 6 14:57:43 2025 GMT Not After : Dec 13 14:57:43 2025 GMT Subject: CN=69344467-a014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:82:7b:f5:8a:9f:26:98:d2:dd:ee:54:c6:d4: 17:fd:16:e8:21:64:9e:31:28:26:23:7a:03:be:da: ee:dc:36:ee:cb:8c:95:0b:0f:5f:e9:00:90:a8:19: 2e:43:ce:93:c1:0a:a5:55:a4:d9:03:ea:4f:d8:1f: 2b:f7:29:4c:72:43:b4:41:c4:00:6f:8b:83:f0:b9: 99:0c:1e:24:99:07:bc:f0:fd:84:01:ce:b9:8b:cd: 5b:59:c9:68:7c:49:d7:ec:bc:d4:17:9f:9b:fc:5c: 18:14:13:c4:6e:73:5b:a9:19:5a:ab:87:d7:58:86: 02:5d:f5:bc:5d:48:45:68:db:db:4e:d6:4d:5b:d4: 19:0e:cc:d6:6e:39:90:5b:ae:1e:fe:97:ea:8b:c1: 82:88:f9:c7:74:12:9f:d6:83:73:77:96:43:10:92: 02:0e:fb:0c:2b:3b:13:8d:db:24:cd:37:4c:00:e7: 44:d1:06:8e:54:87:8e:c8:57:0a:6d:13:b0:cf:4e: ae:d8:1a:29:45:d5:5c:09:33:d3:2f:e2:3f:ad:4a: 48:e8:13:72:86:80:03:78:30:68:e7:2a:ee:e1:dc: ec:01:38:0c:c0:d1:eb:e3:e3:f7:91:e4:d0:c0:09: 7b:f2:25:ee:61:60:84:44:b2:54:13:9f:2c:6d:74: 87:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D7:EF:DC:D0:D6:2A:ED:88:CE:6D:1B:68:73:AA:8D:31:C0:B0:00 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:6b:54:61:ef:8f:68:19:51:2b:c5:39:a2:39:81:58:34:d6: 98:d7:bd:cf:1d:a9:fe:0b:ed:8f:5e:74:e5:b2:61:58:a4:b7: f0:3e:ae:0a:cf:ca:25:0b:00:43:ea:1a:87:bd:7c:2e:0b:a5: 8e:c6:ad:71:86:b0:45:bf:7d:23:a7:9c:e4:e5:03:0f:bc:5c: 86:2e:5e:9b:0b:54:7b:a3:13:4e:32:7a:de:04:ca:92:9a:06: e2:46:0f:14:0c:65:27:24:21:42:81:4b:2d:96:08:fe:48:96: 72:47:f0:00:b6:ed:e2:58:da:ff:d2:36:1e:9a:b5:51:6a:3f: 4c:7a:5f:f1:50:a1:20:f6:98:3b:7d:ed:ef:87:42:3e:2c:09: 96:67:c5:7f:b3:e1:5c:d9:0f:a6:dd:68:13:a2:64:44:99:d5: 6c:ee:3e:34:0a:7c:60:fa:1d:fd:21:71:82:05:80:0b:b3:37: 3c:94:05:a6:f9:8a:fc:75:4f:02:be:07:55:94:26:50:dc:69: 97:4d:7d:5b:fe:e2:cc:ec:e7:94:1c:82:dd:87:73:f0:be:20: 71:dd:9f:14:62:c7:60:72:df:ce:cc:97:ce:78:9c:26:b9:fe: e6:73:fe:a5:44:b9:7c:14:8b:15:bc:6e:18:22:b4:20:23:a0: 24:46:94:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjUxMjA2MTQ1NzQzWhcNMjUxMjEzMTQ1NzQzWjAYMRYwFAYD VQQDEw02OTM0NDQ2Ny1hMDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7oJ79YqfJpjS3e5UxtQX/RboIWSeMSgmI3oDvtru3Dbuy4yVCw9f6QCQqBku Q86TwQqlVaTZA+pP2B8r9ylMckO0QcQAb4uD8LmZDB4kmQe88P2EAc65i81bWclo fEnX7LzUF5+b/FwYFBPEbnNbqRlaq4fXWIYCXfW8XUhFaNvbTtZNW9QZDszWbjmQ W64e/pfqi8GCiPnHdBKf1oNzd5ZDEJICDvsMKzsTjdskzTdMAOdE0QaOVIeOyFcK bROwz06u2BopRdVcCTPTL+I/rUpI6BNyhoADeDBo5yru4dzsATgMwNHr4+P3keTQ wAl78iXuYWCERLJUE58sbXSHewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDX79zQ 1irtiM5tG2hzqo0xwLAAMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABa1Rh749oGVErxTmiOYFYNNaY173PHan+C+2PXnTlsmFYpLfwPq4K z8olCwBD6hqHvXwuC6WOxq1xhrBFv30jp5zk5QMPvFyGLl6bC1R7oxNOMnreBMqS mgbiRg8UDGUnJCFCgUstlgj+SJZyR/AAtu3iWNr/0jYemrVRaj9Mel/xUKEg9pg7 fe3vh0I+LAmWZ8V/s+Fc2Q+m3WgTomREmdVs7j40Cnxg+h39IXGCBYALszc8lAWm +Yr8dU8CvgdVlCZQ3GmXTX1b/uLM7OeUHILdh3PwviBx3Z8UYsdgct/OzJfOeJwm uf7mc/6lRLl8FIsVvG4YIrQgI6AkRpTE -----END CERTIFICATE-----Generated at Sat Dec 6 19:26:27 2025 by rpki-client