This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: hvHQ/nQEx+M9C2yeLH83Ve/y9RspA9tf4SpE2eSkZoE= Subject key identifier: 9D:63:D1:58:F8:50:E3:42:10:75:5D:85:13:2A:60:96:5D:8E:A9:1E Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 14DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 14C8 Signing time: Sat 06 Dec 2025 16:26:24 +0000 Manifest this update: Sat 06 Dec 2025 16:26:23 +0000 Manifest next update: Sat 13 Dec 2025 16:26:23 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: eCg+HCIlRbkpbivKyil60O2VsG3Cvf6SgBVxyL8Nfj4=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: U3tQJQlcyfHM4FE2g1sFZHo1n5O210FCbrxqZ5WoAEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5340 (0x14dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Dec 6 16:26:23 2025 GMT Not After : Dec 13 16:26:23 2025 GMT Subject: CN=69345930-fe2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:61:65:ed:7b:bb:6a:17:4f:01:fb:e3:01:b7: c8:dd:55:20:da:73:4f:27:43:d7:3a:5b:22:9a:8a: 68:5a:26:36:bb:42:d9:08:83:03:b7:1f:40:e4:22: 7e:47:b9:b2:ad:9d:0f:55:de:90:7f:15:5f:4d:3e: 95:3c:f4:15:9d:33:b6:69:d1:ee:7f:7a:34:50:1f: c7:4f:ca:51:dd:91:a8:c6:2e:ff:8b:07:5f:c9:34: 30:78:04:a7:27:47:66:7a:62:01:bb:2f:0b:d9:fe: cf:72:b1:27:62:99:0e:b9:9d:2b:79:8e:e9:fc:7e: a0:d7:53:30:dd:52:e1:30:d1:47:0a:48:13:7d:60: 51:42:b4:52:b3:3f:b0:bb:76:bc:44:9a:b6:6d:77: d2:ab:e7:18:93:5c:67:3f:f3:7b:b6:2b:57:1a:c8: 48:64:3a:62:a1:43:8e:5e:db:6c:c8:b5:ff:74:44: 7f:4f:ba:bf:31:47:0d:e6:b0:d4:18:2f:30:15:71: b7:df:d9:ed:e4:40:24:3e:91:97:33:85:f1:02:f3: 6b:70:fd:6e:b9:47:00:6e:97:f5:16:7b:b4:c9:d1: 3d:35:46:6f:83:0c:90:39:94:d7:ec:8d:23:4d:44: 86:0f:ac:56:7e:94:a5:87:7e:4a:26:5d:99:b9:36: 85:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:63:D1:58:F8:50:E3:42:10:75:5D:85:13:2A:60:96:5D:8E:A9:1E X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:bb:bf:30:fc:72:61:d9:f8:e4:7f:55:ac:fd:ad:c5:ff:6c: 17:6b:69:56:94:a0:d6:a7:f6:17:25:e5:26:c4:e2:bf:5f:04: b2:cb:fc:df:52:fb:9c:99:aa:40:f4:de:97:f3:61:53:4a:19: 0c:d5:c7:53:57:6f:9d:4f:d7:68:2f:7a:de:23:98:16:3c:7b: a3:98:5a:73:94:58:ec:42:05:44:69:9f:26:20:6f:9d:12:e6: 3b:22:32:cd:f7:78:a6:2c:40:ca:ce:77:72:d6:63:f3:64:39: 04:65:c3:12:92:64:cf:c9:38:e9:75:d6:7e:6a:46:c7:03:aa: cc:0d:26:15:50:4d:8c:97:49:34:e1:d0:ba:96:50:6b:c3:1c: a5:7b:3e:14:30:49:49:73:58:0c:38:e9:7f:42:eb:d7:26:a2: f4:9e:c3:9a:43:d8:be:80:96:a6:7a:50:23:27:99:e5:18:b2: 4e:35:93:4e:be:c7:9e:05:9b:36:cf:67:07:02:66:f1:3e:07: f8:61:6f:56:54:76:92:78:8a:9e:1c:c6:85:5b:bb:50:07:da: 23:81:0b:5d:ec:26:c2:0b:16:37:2e:2d:ac:f2:5d:88:fb:b5: 18:8b:d0:4c:a6:08:96:e0:e9:d1:69:0f:9d:bd:4e:ee:ca:59: ec:01:62:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjUxMjA2MTYyNjIzWhcNMjUxMjEzMTYyNjIzWjAYMRYwFAYD VQQDEw02OTM0NTkzMC1mZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9WFl7Xu7ahdPAfvjAbfI3VUg2nNPJ0PXOlsimopoWiY2u0LZCIMDtx9A5CJ+ R7myrZ0PVd6QfxVfTT6VPPQVnTO2adHuf3o0UB/HT8pR3ZGoxi7/iwdfyTQweASn J0dmemIBuy8L2f7PcrEnYpkOuZ0reY7p/H6g11Mw3VLhMNFHCkgTfWBRQrRSsz+w u3a8RJq2bXfSq+cYk1xnP/N7titXGshIZDpioUOOXttsyLX/dER/T7q/MUcN5rDU GC8wFXG339nt5EAkPpGXM4XxAvNrcP1uuUcAbpf1Fnu0ydE9NUZvgwyQOZTX7I0j TUSGD6xWfpSlh35KJl2ZuTaF4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1j0Vj4 UONCEHVdhRMqYJZdjqkeMB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKu78w/HJh2fjkf1Ws/a3F/2wXa2lWlKDWp/YXJeUmxOK/XwSyy/zf UvucmapA9N6X82FTShkM1cdTV2+dT9doL3reI5gWPHujmFpzlFjsQgVEaZ8mIG+d EuY7IjLN93imLEDKzndy1mPzZDkEZcMSkmTPyTjpddZ+akbHA6rMDSYVUE2Ml0k0 4dC6llBrwxylez4UMElJc1gMOOl/QuvXJqL0nsOaQ9i+gJamelAjJ5nlGLJONZNO vseeBZs2z2cHAmbxPgf4YW9WVHaSeIqeHMaFW7tQB9ojgQtd7CbCCxY3Li2s8l2I +7UYi9BMpgiW4OnRaQ+dvU7uylnsAWK5 -----END CERTIFICATE-----Generated at Sat Dec 6 20:02:40 2025 by rpki-client