This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft File: IWrR11qT4DeulPbJGJbS1YLY_1Q.mft (raw, json) Hash identifier: gJDP6GZI3akuPI855XXtVucLQn6JeUWs7yaqeyAFx5w= Subject key identifier: DF:E5:00:8F:D6:EB:09:2D:11:68:AF:37:CF:09:3D:FB:F6:B4:53:27 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft Manifest number: 01B7 Signing time: Fri 05 Dec 2025 01:24:12 +0000 Manifest this update: Fri 05 Dec 2025 01:24:11 +0000 Manifest next update: Fri 12 Dec 2025 01:24:11 +0000 Files and hashes: 1: IWrR11qT4DeulPbJGJbS1YLY_1Q.crl (hash: R/tUWSvkamNXmKkNn9orrQ9nWhVjVzabWc6b9w3/Uf4=) 2: 838096CA3BD311EE84056461C4F9AE02.roa (hash: qPm/ufkdsJxNsrbbunXVlojDF60zf8kn3PrHeAe5mEc=) 3: 27DB37683BD211EE8094355FC4F9AE02.roa (hash: YzDFDZ54fUqzOihykhyRhXUfQqVEw3BeHxpAnhoKUlk=) 4: 82C54A1E3BD311EE84056461C4F9AE02.roa (hash: QBXnAMzlDGSKoRSO4pH4e+ph6DI/p8Rnis/UQXiltLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:24:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1, serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: Dec 5 01:24:11 2025 GMT Not After : Dec 12 01:24:11 2025 GMT Subject: CN=6932343b-80fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8c:30:b4:8a:d6:57:9e:46:2b:bf:2e:7a:ef: 05:68:89:07:ee:8a:de:b2:9c:0b:22:7e:49:48:d2: 56:06:2e:d6:af:3a:c8:74:70:e7:96:6a:dd:9b:31: 67:18:7b:eb:11:0a:c2:d2:d5:8c:48:f0:88:6d:6d: e4:6c:47:1d:35:6d:99:d7:dd:e8:e0:7c:37:95:86: 88:e6:e3:d9:f0:a4:27:ec:96:78:3d:5b:79:37:78: 8c:a2:68:e9:b7:e4:c8:0d:e4:61:05:9f:6c:5f:6e: bb:d5:1d:47:bf:e1:a3:e3:80:79:89:5e:43:f1:aa: 89:d7:ec:5d:e6:c7:3f:fb:be:e2:84:46:56:8f:51: 10:11:23:38:18:c9:74:ed:0a:3b:00:f7:99:d5:91: 47:4e:82:81:60:28:25:f2:cd:8f:00:e3:c9:0d:16: c9:07:70:89:52:ba:1c:75:3b:ec:3f:0b:a7:10:27: 0f:6d:66:66:c3:bc:2f:51:97:11:e1:2e:d2:22:59: bc:6f:9e:98:f8:9a:e0:2e:b4:a4:46:d9:e5:0c:76: 4b:6a:33:c9:89:89:15:9b:8e:f3:ad:aa:57:66:a3: a5:0a:fb:31:7a:c3:11:51:0f:85:f1:0b:4c:f6:ed: 3a:0f:0b:18:1e:cc:7a:74:4e:a6:0c:95:57:bf:5f: f2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E5:00:8F:D6:EB:09:2D:11:68:AF:37:CF:09:3D:FB:F6:B4:53:27 X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:13:24:f3:79:cf:d7:b1:ef:fa:f6:00:ab:81:49:88:5f:fa: 55:5e:f5:ad:b5:8e:29:85:51:61:7f:d5:83:d4:b0:64:78:05: 2e:71:e1:53:4c:61:5d:d4:ec:af:31:ef:80:52:07:f7:b4:e0: e0:32:2d:7c:13:8d:4f:b5:19:91:cc:72:e0:4c:fe:87:e6:cc: 28:2c:4e:9a:68:98:99:05:96:c4:fc:f0:dd:fa:90:bf:1c:0a: fd:d9:d8:51:4d:11:47:81:22:85:78:85:ab:ea:51:53:7a:9e: 7f:90:6a:ef:48:ef:a3:b1:bb:21:68:47:50:5a:7c:2d:fe:a8: d8:9e:9d:fa:0a:6e:0c:b8:ad:42:7a:31:e7:89:b4:6f:4e:78: 51:f2:04:c2:c7:4f:30:b5:63:22:7f:fa:0d:1d:35:3d:42:96: e9:ce:3c:e3:4a:4f:6d:a9:e1:05:ad:bd:06:42:cd:35:fa:f3: 5f:09:ec:80:77:35:4c:f2:2e:38:17:6a:ae:85:48:0b:b3:58: be:bc:7f:e4:86:11:cd:3a:00:0f:66:b5:7b:0b:d8:38:89:55: 77:ab:00:a6:d2:81:24:9d:ca:55:09:0f:8b:c1:0a:9e:ad:2a: b7:a4:5d:a9:05:c1:ee:fb:88:14:18:8d:89:63:44:b5:13:fc: e4:f6:37:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjUxMjA1MDEyNDExWhcNMjUxMjEyMDEyNDExWjAYMRYwFAYD VQQDEw02OTMyMzQzYi04MGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4wwtIrWV55GK78ueu8FaIkH7orespwLIn5JSNJWBi7WrzrIdHDnlmrdmzFn GHvrEQrC0tWMSPCIbW3kbEcdNW2Z193o4Hw3lYaI5uPZ8KQn7JZ4PVt5N3iMomjp t+TIDeRhBZ9sX2671R1Hv+Gj44B5iV5D8aqJ1+xd5sc/+77ihEZWj1EQESM4GMl0 7Qo7APeZ1ZFHToKBYCgl8s2PAOPJDRbJB3CJUrocdTvsPwunECcPbWZmw7wvUZcR 4S7SIlm8b56Y+JrgLrSkRtnlDHZLajPJiYkVm47zrapXZqOlCvsxesMRUQ+F8QtM 9u06DwsYHsx6dE6mDJVXv1/yVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/lAI/W 6wktEWivN88JPfv2tFMnMB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REREMS82OEMxRDQ5NjNCRDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDRE ZXVsUGJKR0piUzFZTFlfMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6EyTzec/Xse/69gCrgUmIX/pVXvWttY4phVFhf9WD1LBkeAUuceFT TGFd1OyvMe+AUgf3tODgMi18E41PtRmRzHLgTP6H5swoLE6aaJiZBZbE/PDd+pC/ HAr92dhRTRFHgSKFeIWr6lFTep5/kGrvSO+jsbshaEdQWnwt/qjYnp36Cm4MuK1C ejHnibRvTnhR8gTCx08wtWMif/oNHTU9QpbpzjzjSk9tqeEFrb0GQs01+vNfCeyA dzVM8i44F2quhUgLs1i+vH/khhHNOgAPZrV7C9g4iVV3qwCm0oEkncpVCQ+LwQqe rSq3pF2pBcHu+4gUGI2JY0S1E/zk9je5 -----END CERTIFICATE-----Generated at Sat Dec 6 22:44:58 2025 by rpki-client