This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: WlJLetFX/AtCPI27MB+0DffBUFZi5whYjNejqOsO3og= Subject key identifier: 45:36:0C:27:75:6B:0F:BB:A4:54:C6:A2:9B:3D:5F:51:05:FA:D2:38 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0CAA Signing time: Sat 06 Dec 2025 18:28:41 +0000 Manifest this update: Sat 06 Dec 2025 18:28:41 +0000 Manifest next update: Sat 13 Dec 2025 18:28:41 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: hr7LGhBHqKCisoue92+pi8UVKmPEXRmXRAHWE5jwpxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:28:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2922 (0xb6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Dec 6 18:28:41 2025 GMT Not After : Dec 13 18:28:41 2025 GMT Subject: CN=693475d9-5cb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ff:df:45:07:1e:59:09:33:b3:96:c8:a8:2c: 0b:04:5b:0a:99:20:c7:38:3b:c0:10:7b:5f:fb:18: 28:34:a1:58:5a:b0:5c:68:31:17:3f:54:92:5b:8b: 1d:2e:26:2a:15:39:5a:bb:a9:bd:fb:d0:23:aa:f0: 23:be:19:d0:e5:46:0e:f7:0a:12:a4:c3:fe:22:56: c8:ca:97:aa:a2:5c:bf:1f:a7:fb:57:fe:d4:54:6d: 06:2c:dc:6d:c3:f2:44:4f:74:84:8a:71:8b:30:4c: a3:8e:6a:aa:39:f5:8a:cd:6e:66:b6:2e:c7:1f:5f: 89:d7:d6:71:03:b2:ca:69:87:11:44:f0:11:ea:36: ee:3c:e1:58:56:5b:6f:d3:c1:22:4f:1d:51:ca:a3: 0f:6e:82:46:26:8d:bd:79:dc:8b:1f:6b:3f:d1:0a: 93:c0:59:a8:d0:e9:34:6e:7a:2e:12:a0:39:ac:43: 37:fe:6d:ea:dd:ed:de:7a:21:a9:dc:8f:b8:a1:8c: bb:4d:53:87:d0:1c:1d:b0:ec:3d:f0:b7:cc:ab:dd: 88:5d:c5:74:e2:c3:b9:c1:c5:79:a4:e2:59:c4:b1: e7:e6:9e:96:45:0b:f5:c5:3d:c2:51:d3:6f:44:af: 55:14:47:c7:15:b1:81:b0:ff:ce:77:11:0b:8d:c1: d7:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:36:0C:27:75:6B:0F:BB:A4:54:C6:A2:9B:3D:5F:51:05:FA:D2:38 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:3b:fb:1c:c3:7a:8c:3c:70:b0:2e:02:56:76:0a:47:09:20: 85:6a:b0:d8:ab:5e:43:e8:8d:55:89:1c:14:84:62:b6:a2:64: 59:64:d8:fb:d6:43:cd:c3:7d:e2:12:41:a8:7a:a9:17:3c:1d: c4:d5:b5:fa:cd:c9:d6:79:e8:75:ed:62:df:c4:bc:90:ca:60: 83:ce:cb:07:98:a9:57:bb:1f:62:61:78:e6:27:ce:83:80:a9: 09:7a:bf:6b:c6:7e:ef:7d:47:e5:34:dd:12:c5:a9:a0:35:b5: ab:1f:12:9f:94:04:e6:18:da:33:30:f9:58:af:a6:3c:77:05: cf:24:70:cc:83:3f:d1:3b:0b:2e:6d:e4:81:8e:e5:8b:32:2c: f2:a6:e7:77:a2:29:6c:0d:c5:85:fb:ac:90:8e:70:3f:41:ac: f4:32:41:e4:4f:3a:f0:4f:01:c6:f9:60:65:c6:60:c6:b2:72: 78:0d:a2:19:fa:a4:f2:04:df:78:ce:12:3a:37:3e:88:74:f8: 19:f7:e1:42:43:8e:1a:fb:7e:03:61:5c:06:c9:f1:0c:b9:a7: 3b:88:4e:98:2d:5b:b9:a2:16:e7:5f:84:99:a6:1f:8a:b2:f0: b2:d8:d0:71:8d:4d:83:b6:f1:14:80:fe:5f:96:0c:de:69:a7: c5:55:7d:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUxMjA2MTgyODQxWhcNMjUxMjEzMTgyODQxWjAYMRYwFAYD VQQDEw02OTM0NzVkOS01Y2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApv/fRQceWQkzs5bIqCwLBFsKmSDHODvAEHtf+xgoNKFYWrBcaDEXP1SSW4sd LiYqFTlau6m9+9AjqvAjvhnQ5UYO9woSpMP+IlbIypeqoly/H6f7V/7UVG0GLNxt w/JET3SEinGLMEyjjmqqOfWKzW5mti7HH1+J19ZxA7LKaYcRRPAR6jbuPOFYVltv 08EiTx1RyqMPboJGJo29edyLH2s/0QqTwFmo0Ok0bnouEqA5rEM3/m3q3e3eeiGp 3I+4oYy7TVOH0BwdsOw98LfMq92IXcV04sO5wcV5pOJZxLHn5p6WRQv1xT3CUdNv RK9VFEfHFbGBsP/OdxELjcHXdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEU2DCd1 aw+7pFTGops9X1EF+tI4MB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8O/scw3qMPHCwLgJWdgpHCSCFarDYq15D6I1ViRwUhGK2omRZZNj7 1kPNw33iEkGoeqkXPB3E1bX6zcnWeeh17WLfxLyQymCDzssHmKlXux9iYXjmJ86D gKkJer9rxn7vfUflNN0SxamgNbWrHxKflATmGNozMPlYr6Y8dwXPJHDMgz/ROwsu beSBjuWLMizypud3oilsDcWF+6yQjnA/Qaz0MkHkTzrwTwHG+WBlxmDGsnJ4DaIZ +qTyBN94zhI6Nz6IdPgZ9+FCQ44a+34DYVwGyfEMuac7iE6YLVu5ohbnX4SZph+K svCy2NBxjU2DtvEUgP5flgzeaafFVX34 -----END CERTIFICATE-----Generated at Sun Dec 7 01:58:57 2025 by rpki-client