This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: ih7TPt3ec+sWqWWFoD1DWg4mCpuUjbl8qfOaURTXu40= Subject key identifier: A0:1A:6C:74:7E:76:11:99:05:08:EE:84:56:9A:3A:36:9A:F4:4E:BB Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 15B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 159D Signing time: Sat 06 Dec 2025 16:20:13 +0000 Manifest this update: Sat 06 Dec 2025 16:20:13 +0000 Manifest next update: Sat 13 Dec 2025 16:20:13 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: gC/R7WpgLsenbi+c0gX3MnI33jhnFmsOPz2bLsCn2CQ=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: 4omxKGchAtANINcKNMUv81DprGm9m6mhlkl3cRG7vXI=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: b5yX1QAOSGwKLnK6fw3PZvYuW4+NY2un1A6EM1jEmyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5553 (0x15b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: Dec 6 16:20:13 2025 GMT Not After : Dec 13 16:20:13 2025 GMT Subject: CN=693457bd-c7bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:19:3c:1c:61:0e:d2:99:e5:70:19:11:bb:e2: ef:be:5b:22:df:0f:3c:a1:8f:4c:f4:60:d9:ad:7a: ff:c3:71:59:03:f8:bd:1c:16:e0:e8:3e:22:9c:a0: 9b:a6:48:5e:e9:8b:24:9f:4f:59:9a:28:b5:b2:5c: 7a:67:8c:d0:d6:a4:a7:9b:54:64:eb:44:0c:3d:8d: 15:a5:b0:33:ed:4b:dd:3c:e2:8f:db:13:6d:d7:8c: d9:b9:bb:d0:6a:7d:6b:3f:e0:34:7c:b4:af:06:a1: 50:b0:2c:ff:5e:cf:60:ee:ae:86:38:ce:9d:ba:a6: 90:21:d5:18:bb:40:41:81:ed:08:ff:62:4c:11:17: fe:4a:f1:c5:b5:d9:05:3a:13:dd:57:ea:9d:55:00: ce:72:14:aa:69:2c:c7:83:af:15:9e:7a:fd:a9:4a: 15:5f:a6:a6:ca:1f:fc:fa:20:fe:93:aa:fe:21:73: 33:7d:5a:13:8f:93:80:39:0a:0a:fd:8a:95:bc:ad: 06:79:44:28:99:cd:8b:38:bb:b1:bf:6a:b7:9e:57: e0:2b:19:b0:96:36:ef:70:3f:b3:43:b1:bc:f9:a2: 20:21:37:d6:85:c3:7e:29:2e:e5:fe:b6:ae:2c:93: 8c:06:29:6c:a8:d6:a3:c0:7a:ed:1f:21:67:cc:56: 06:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:1A:6C:74:7E:76:11:99:05:08:EE:84:56:9A:3A:36:9A:F4:4E:BB X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:85:4a:f3:f1:9b:73:41:0c:34:94:a6:8b:f6:63:5a:f8:2f: 30:e8:57:da:56:21:7e:32:ba:ea:e9:d2:96:a0:1e:05:40:2c: 64:f0:20:cd:53:27:4f:b6:1a:66:4f:34:a5:ae:87:b6:10:db: 18:04:57:85:b7:5a:3a:d3:48:97:d3:10:8d:5d:4f:cc:17:0f: f4:91:46:2b:56:c5:d8:4b:a4:52:45:a7:e1:1b:67:e1:c8:6b: 45:05:33:27:5e:ed:db:30:8a:23:18:65:f9:b9:4a:c0:a8:14: 70:78:72:ea:d3:31:49:a1:5d:00:fb:80:c0:ad:fb:47:43:a4: df:9b:e5:00:a8:86:9c:74:88:3d:d5:2a:25:b9:da:6e:c6:c2: 06:4f:46:a3:2b:b8:0c:ac:eb:d5:f4:02:8e:96:c4:81:b4:37: 9a:eb:5b:9c:09:65:b9:4a:f4:eb:13:81:53:ff:e4:4b:ff:65: d8:28:c3:15:48:90:8a:9f:e0:72:02:ba:e0:6b:e6:4b:76:4e: 85:25:d1:49:51:20:0b:82:8a:b2:d2:85:89:8a:c1:39:55:17: ff:6b:e1:b9:63:31:4c:21:31:5e:c7:31:e1:af:af:c2:ef:e8: 00:7b:82:f6:c7:1b:3c:c0:70:66:b3:ea:0c:98:91:0d:0d:fd: d0:32:16:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjUxMjA2MTYyMDEzWhcNMjUxMjEzMTYyMDEzWjAYMRYwFAYD VQQDEw02OTM0NTdiZC1jN2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxk8HGEO0pnlcBkRu+Lvvlsi3w88oY9M9GDZrXr/w3FZA/i9HBbg6D4inKCb pkhe6Yskn09Zmii1slx6Z4zQ1qSnm1Rk60QMPY0VpbAz7UvdPOKP2xNt14zZubvQ an1rP+A0fLSvBqFQsCz/Xs9g7q6GOM6duqaQIdUYu0BBge0I/2JMERf+SvHFtdkF OhPdV+qdVQDOchSqaSzHg68Vnnr9qUoVX6amyh/8+iD+k6r+IXMzfVoTj5OAOQoK /YqVvK0GeUQomc2LOLuxv2q3nlfgKxmwljbvcD+zQ7G8+aIgITfWhcN+KS7l/rau LJOMBilsqNajwHrtHyFnzFYGtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAabHR+ dhGZBQjuhFaaOjaa9E67MB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDhUrz8ZtzQQw0lKaL9mNa+C8w6FfaViF+Mrrq6dKWoB4FQCxk8CDN UydPthpmTzSlroe2ENsYBFeFt1o600iX0xCNXU/MFw/0kUYrVsXYS6RSRafhG2fh yGtFBTMnXu3bMIojGGX5uUrAqBRweHLq0zFJoV0A+4DArftHQ6Tfm+UAqIacdIg9 1SoludpuxsIGT0ajK7gMrOvV9AKOlsSBtDea61ucCWW5SvTrE4FT/+RL/2XYKMMV SJCKn+ByArrga+ZLdk6FJdFJUSALgoqy0oWJisE5VRf/a+G5YzFMITFexzHhr6/C 7+gAe4L2xxs8wHBms+oMmJENDf3QMhah -----END CERTIFICATE-----Generated at Sun Dec 7 04:16:19 2025 by rpki-client