This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft File: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json) Hash identifier: 2GFriogpsaPzVSHiSCS4eq/jcUgmpxt47JQVFVA1NMQ= Subject key identifier: 26:2D:1C:31:61:B5:68:12:3F:86:5C:A1:C6:45:96:23:18:3F:9F:07 Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC Certificate issuer: /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Certificate serial: 0B86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft Manifest number: 0B78 Signing time: Mon 22 Dec 2025 18:38:22 +0000 Manifest this update: Mon 22 Dec 2025 18:38:21 +0000 Manifest next update: Mon 29 Dec 2025 18:38:21 +0000 Files and hashes: 1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: zkCyIDj6MS0m0TZ2EhD96R00BmKU3MqISg7cjIy/wNk=) 2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: pLnncZW/+2aMcnpBmFNNa8a+AYjIGNXBznPCsUBo+1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:38:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2950 (0xb86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914247C, serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Validity Not Before: Dec 22 18:38:21 2025 GMT Not After : Dec 29 18:38:21 2025 GMT Subject: CN=6949901d-1510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e0:e8:ac:57:44:3e:2a:4e:cf:64:fa:e3:52: 73:54:cf:83:53:e6:d0:58:e7:1b:7a:76:fd:80:2b: 67:c0:e5:df:e3:60:b9:5b:8a:4a:d2:f3:05:0d:16: 42:8a:bb:01:2b:cd:39:a4:ac:45:3e:5f:0a:1a:27: 42:b8:ab:98:44:42:0a:32:a8:4e:2a:48:43:ef:26: ce:34:4c:c0:97:f4:2a:f4:be:5c:ea:a1:22:f2:58: ee:89:c6:ff:1d:2c:17:02:b0:3a:b4:8c:b2:f7:09: 68:5f:55:86:bd:5a:2c:1f:e1:2d:f5:5a:10:1e:75: e2:8b:ca:ff:63:31:d3:a7:6b:16:a6:f0:fb:6c:fc: 97:6c:5d:7c:d0:c4:ef:5d:40:cf:70:68:b8:92:ea: 45:b0:47:11:72:0e:be:0d:2f:a5:a1:4b:8a:b7:23: 6d:16:08:bf:bc:e5:51:39:8f:2b:ee:ef:a6:c4:b1: ac:71:18:7f:62:df:6a:01:87:8c:93:ad:0b:16:ae: 70:bf:db:a7:12:d8:49:c5:ca:88:61:ea:1c:0e:e5: f9:ef:53:dc:0c:06:b7:62:33:f8:b3:be:2f:71:09: 61:a4:25:cf:b2:0c:bd:e3:c2:18:d0:24:96:78:f7: 8b:25:31:37:55:b2:65:58:84:70:ca:05:c1:69:81: 5a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:2D:1C:31:61:B5:68:12:3F:86:5C:A1:C6:45:96:23:18:3F:9F:07 X509v3 Authority Key Identifier: keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:2e:40:c0:4e:60:da:72:91:df:4e:59:5c:55:a5:40:91:b9: 4e:bd:03:22:e7:30:51:68:48:81:2d:d0:81:db:7f:b9:ca:79: 01:7c:62:8d:a1:92:e9:bd:4d:78:20:6e:c4:69:ae:fb:ea:e1: 9d:92:b1:07:91:cd:56:91:80:1c:da:fa:da:8f:6f:47:e7:a7: 3d:65:8f:25:76:5a:03:e2:51:5a:b8:c3:64:7a:a3:a1:27:5c: bb:34:49:1b:bc:0b:e5:3a:8a:48:94:6c:8c:df:5f:66:e5:a3: 7f:75:f3:06:e4:8b:5b:51:6a:fc:bb:37:ac:4c:6e:5e:9b:ef: 47:b4:80:ba:54:b8:71:b3:02:a1:32:51:20:27:37:d9:7f:bd: d0:67:5c:0c:95:98:07:3d:02:9d:89:1d:d9:91:2e:cf:7f:7b: 0d:6c:a8:5e:8b:57:e6:e4:f1:ad:8a:0f:80:45:bb:fe:d9:c1: 68:d1:d2:c4:45:c5:01:38:30:14:53:66:6f:c1:73:8b:0a:c3: 97:43:b1:e5:9e:6e:6a:3f:bb:f8:5e:24:e8:6e:cf:a6:be:b2: f9:11:9a:cf:d5:8e:d7:49:ab:73:3e:74:c8:6c:d0:ae:4b:3a: 85:c8:97:a1:ea:b5:fa:e5:af:88:e0:66:88:9f:2b:ae:6e:88: 3c:b6:6f:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0N0MxMTAvBgNVBAUTKEQ1QTAyNTA2MzRERkMwM0RDOUNGQ0FCQTk3OTUxODBG RjA1MTU4RkMwHhcNMjUxMjIyMTgzODIxWhcNMjUxMjI5MTgzODIxWjAYMRYwFAYD VQQDDA02OTQ5OTAxZC0xNTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ODorFdEPipOz2T641JzVM+DU+bQWOcbenb9gCtnwOXf42C5W4pK0vMFDRZC irsBK805pKxFPl8KGidCuKuYREIKMqhOKkhD7ybONEzAl/Qq9L5c6qEi8ljuicb/ HSwXArA6tIyy9wloX1WGvVosH+Et9VoQHnXii8r/YzHTp2sWpvD7bPyXbF180MTv XUDPcGi4kupFsEcRcg6+DS+loUuKtyNtFgi/vOVROY8r7u+mxLGscRh/Yt9qAYeM k60LFq5wv9unEthJxcqIYeocDuX571PcDAa3YjP4s74vcQlhpCXPsgy948IY0CSW ePeLJTE3VbJlWIRwygXBaYFaPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCYtHDFh tWgSP4ZcocZFliMYP58HMB8GA1UdIwQYMBaAFNWgJQY038A9yc/KupeVGA/wUVj8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ3Qy84QTFDNDYxNjQz MEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndEM0p6OHE2bDVVWURfQlJX UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFhQWxCalRmd0QzSno4cTZsNVVZRF9CUldQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ3Qy84QTFDNDYxNjQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndE M0p6OHE2bDVVWURfQlJXUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYLkDATmDacpHfTllcVaVAkblOvQMi5zBRaEiBLdCB23+5ynkBfGKN oZLpvU14IG7Eaa776uGdkrEHkc1WkYAc2vraj29H56c9ZY8ldloD4lFauMNkeqOh J1y7NEkbvAvlOopIlGyM319m5aN/dfMG5ItbUWr8uzesTG5em+9HtIC6VLhxswKh MlEgJzfZf73QZ1wMlZgHPQKdiR3ZkS7Pf3sNbKhei1fm5PGtig+ARbv+2cFo0dLE RcUBODAUU2ZvwXOLCsOXQ7Hlnm5qP7v4XiTobs+mvrL5EZrP1Y7XSatzPnTIbNCu SzqFyJeh6rX65a+I4GaInyuubog8tm9M -----END CERTIFICATE-----Generated at Wed Dec 24 11:13:08 2025 by rpki-client