This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: O9nhhMhsLsqAJpVZsCrgfeSsbNiGSLDFJ/kSiL3UnjQ= Subject key identifier: 7B:7C:56:1C:91:A3:B2:07:6D:6E:7E:ED:0C:1C:1E:D9:CA:59:92:AC Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0FCA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0F8F Signing time: Mon 22 Dec 2025 17:14:48 +0000 Manifest this update: Mon 22 Dec 2025 17:14:47 +0000 Manifest next update: Mon 29 Dec 2025 17:14:47 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: Pi6qavtOMgMQJ4VEaqBQsLoOL3B/hXR57sv1Yt+pFg4=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: rMgdKojSnMQn5zP9ArOeE344pCaixcohoQsewhOoy54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4042 (0xfca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Dec 22 17:14:47 2025 GMT Not After : Dec 29 17:14:47 2025 GMT Subject: CN=69497c88-02d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:70:2c:70:f7:57:d5:7d:04:55:a9:d3:7f:57: 35:40:86:60:d1:4e:6c:d2:6c:6d:17:28:70:eb:b6: b9:b2:4f:2e:4d:1d:74:47:41:f3:bb:2b:2f:6f:32: 52:7f:8d:24:3d:af:00:92:eb:30:e6:ce:66:8a:e1: 17:db:bc:05:36:15:50:9d:4e:74:4d:17:78:02:06: 44:7d:53:49:83:43:26:3f:75:46:af:91:61:15:83: 6e:74:6a:be:4f:5b:c6:4a:79:b4:46:cc:2c:e3:05: 4e:78:00:cf:42:3d:3a:27:e6:75:99:b0:de:ab:58: 49:5a:9a:91:14:18:46:eb:e2:f0:18:c4:e4:94:a4: ae:ff:3c:e0:b0:4d:43:0c:18:60:1e:75:39:ac:10: ae:33:55:52:8c:b4:dd:4c:22:fc:60:6c:4d:5f:e4: 04:e4:01:de:89:55:f8:d3:d3:fc:0d:5e:6b:93:e5: c5:30:f4:2b:84:12:93:45:05:fb:b5:c5:15:84:c4: a3:d7:7c:37:e7:dc:87:f3:7d:62:1a:ed:c9:ef:32: 75:fe:06:5c:79:25:7d:5b:58:45:b7:8f:36:d1:23: 11:3f:ea:5a:78:16:01:54:11:46:8b:6f:01:bc:23: 10:85:5f:b1:37:50:d3:7d:8c:e9:b4:a8:69:55:87: 27:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:7C:56:1C:91:A3:B2:07:6D:6E:7E:ED:0C:1C:1E:D9:CA:59:92:AC X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:d0:9f:5d:99:1d:f6:e7:04:b7:45:8f:4f:d3:52:5c:01:15: af:42:32:4a:92:16:d1:67:82:2e:bb:99:98:83:3a:c1:5c:83: fd:b1:47:74:f3:4b:f3:03:e8:45:a6:1b:4e:db:ee:ba:a7:21: 48:d6:34:44:0e:94:7f:ef:28:a8:45:29:54:42:4c:ff:12:33: e4:77:2a:fb:98:ce:53:ec:da:f5:f0:2f:eb:11:87:38:32:83: f2:0f:0a:07:33:32:4d:5f:58:9d:61:d3:41:70:ed:84:d3:6a: cc:2d:33:a1:da:54:5b:0d:e9:32:97:9c:c3:3a:53:39:83:a9: 72:f9:d7:9b:51:30:0d:6f:49:75:9e:27:2e:ee:a5:6f:d8:a9: 2a:59:85:e6:25:38:ca:bb:a8:46:84:3a:2d:37:8b:b8:a4:fc: 34:f2:ec:79:83:af:1d:f2:4c:ef:13:06:31:fa:78:19:24:ee: 98:1f:91:c5:20:0d:75:5d:ac:52:a4:63:0f:88:a4:58:80:7c: ff:e2:5a:6f:50:3f:61:ea:14:98:55:31:19:f6:6a:7e:ea:fc: 14:87:6b:7d:ec:f3:84:78:36:2a:6c:1a:31:3f:f3:07:e1:e3: 14:47:6e:0b:a3:78:9f:3b:2c:43:31:0c:72:3b:32:40:9d:be: 2e:f3:25:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjUxMjIyMTcxNDQ3WhcNMjUxMjI5MTcxNDQ3WjAYMRYwFAYD VQQDDA02OTQ5N2M4OC0wMmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHAscPdX1X0EVanTf1c1QIZg0U5s0mxtFyhw67a5sk8uTR10R0HzuysvbzJS f40kPa8Akusw5s5miuEX27wFNhVQnU50TRd4AgZEfVNJg0MmP3VGr5FhFYNudGq+ T1vGSnm0Rsws4wVOeADPQj06J+Z1mbDeq1hJWpqRFBhG6+LwGMTklKSu/zzgsE1D DBhgHnU5rBCuM1VSjLTdTCL8YGxNX+QE5AHeiVX409P8DV5rk+XFMPQrhBKTRQX7 tcUVhMSj13w359yH831iGu3J7zJ1/gZceSV9W1hFt4820SMRP+paeBYBVBFGi28B vCMQhV+xN1DTfYzptKhpVYcntwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHt8VhyR o7IHbW5+7QwcHtnKWZKsMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb0J9dmR325wS3RY9P01JcARWvQjJKkhbRZ4Iuu5mYgzrBXIP9sUd0 80vzA+hFphtO2+66pyFI1jREDpR/7yioRSlUQkz/EjPkdyr7mM5T7Nr18C/rEYc4 MoPyDwoHMzJNX1idYdNBcO2E02rMLTOh2lRbDekyl5zDOlM5g6ly+debUTANb0l1 nicu7qVv2KkqWYXmJTjKu6hGhDotN4u4pPw08ux5g68d8kzvEwYx+ngZJO6YH5HF IA11XaxSpGMPiKRYgHz/4lpvUD9h6hSYVTEZ9mp+6vwUh2t97POEeDYqbBoxP/MH 4eMUR24Lo3ifOyxDMQxyOzJAnb4u8yWq -----END CERTIFICATE-----Generated at Tue Dec 23 07:36:02 2025 by rpki-client