This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft File: 1mAaggCAx5DwpRpsN2X1tLDQGzc.mft (raw, json) Hash identifier: XhetgyGFSa4Cye6kEkhbC42I+8Zv9d52ib8mjtJaUwU= Subject key identifier: 05:46:84:4F:51:F3:09:B9:A7:77:55:A0:C1:30:4F:3F:C7:B8:6E:C6 Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Certificate serial: 0B2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft Manifest number: 0B28 Signing time: Mon 22 Dec 2025 18:45:33 +0000 Manifest this update: Mon 22 Dec 2025 18:45:33 +0000 Manifest next update: Mon 29 Dec 2025 18:45:33 +0000 Files and hashes: 1: 1mAaggCAx5DwpRpsN2X1tLDQGzc.crl (hash: XTVfejHor05Y4RC2IwEoOd2s5ObfgxGPHk75cnIv304=) 2: 5EEC619850A611EA823DE980C4F9AE02.roa (hash: q02Hd4XFE+H9p8qEMOu2AbjA5nPs5WOETsJPUT9HbXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2863 (0xb2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915343B, serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Validity Not Before: Dec 22 18:45:33 2025 GMT Not After : Dec 29 18:45:33 2025 GMT Subject: CN=694991cd-984d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c7:50:9b:67:98:e8:f5:fd:01:d4:ef:b5:1f: e6:64:59:0f:09:14:17:5d:b6:91:e3:07:9a:ee:3e: 40:ee:c6:b0:02:a9:a0:07:6a:05:be:e6:24:6b:30: ac:f9:cd:5c:66:32:0f:6e:2e:2a:cb:b2:71:8b:8c: f7:57:15:bc:1d:66:3a:a0:69:3d:16:fa:98:9f:27: b4:87:75:c1:d6:88:51:4d:d8:42:a0:ad:ed:04:89: f1:ab:95:bd:23:6c:5d:92:41:88:dc:b7:72:67:3b: a2:14:d5:4f:4c:94:5c:37:b6:1a:8b:02:6e:bd:30: 10:a4:02:f7:c1:d5:7c:c0:60:ba:d2:33:ea:18:69: d3:be:de:c4:dc:50:5b:7f:45:64:bc:9a:f7:5d:39: 82:c3:f0:f9:1e:36:2c:67:e3:0f:6e:fc:7e:4c:12: ec:40:7a:51:78:83:53:28:19:85:fb:4f:ae:86:a1: 66:0d:b5:3d:6b:b5:f0:13:0f:c1:69:18:89:ce:f0: 5e:3f:93:b7:b0:e3:f3:8f:b7:dd:8f:4b:1e:55:03: 39:c5:ad:70:cb:c1:9e:e9:dc:c2:05:15:d2:bd:7c: 60:67:d5:17:ec:8e:da:2b:26:22:81:e3:f5:cb:f4: 43:66:f1:c8:69:27:08:46:d7:c7:86:ca:bd:9e:ca: e5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:46:84:4F:51:F3:09:B9:A7:77:55:A0:C1:30:4F:3F:C7:B8:6E:C6 X509v3 Authority Key Identifier: keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:41:44:62:4a:7a:d2:68:4c:81:02:3f:26:ac:c6:51:9d:89: 66:d7:92:49:55:63:df:31:f9:23:07:91:c8:77:fc:49:68:b5: 33:93:a7:83:e0:28:94:d4:02:ff:ef:98:ea:3f:02:94:59:af: 19:5e:11:24:e8:a4:3f:0b:cb:07:a8:60:3d:b3:59:6c:7d:85: 5e:07:a7:2b:8e:6f:a8:9a:54:2b:08:2e:6d:bf:bb:e7:c0:8a: 12:06:99:4a:3e:30:b3:12:cc:35:c6:71:b0:23:35:ee:1e:e9: e6:81:b4:9a:40:35:bb:e2:2a:24:e5:cd:b4:c6:a7:fb:66:c0: 8e:43:cf:3e:c4:f4:bb:3e:bb:0d:e1:b5:60:e0:ce:95:9a:5d: 77:68:13:b9:06:08:a4:b8:56:b1:e2:e5:aa:85:0e:85:04:85: 83:80:bb:4b:fe:5e:86:41:3c:3d:bf:b4:b6:5c:9e:b0:29:43: 84:d2:dd:e3:10:03:54:1a:43:9d:5a:bb:a4:54:ca:9b:00:2b: cd:ec:a1:fd:ff:8c:73:af:d1:7b:0f:6f:0f:2d:45:46:cf:68: 92:4e:f6:c3:1b:07:8d:9c:6a:64:e3:63:d6:1d:53:ed:b1:19: 14:90:e9:32:6b:d6:cc:c1:c4:9e:fc:2c:ab:71:89:3c:04:d8: bf:cc:01:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0M0IxMTAvBgNVBAUTKEQ2NjAxQTgyMDA4MEM3OTBGMEE1MUE2QzM3NjVGNUI0 QjBEMDFCMzcwHhcNMjUxMjIyMTg0NTMzWhcNMjUxMjI5MTg0NTMzWjAYMRYwFAYD VQQDDA02OTQ5OTFjZC05ODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsdQm2eY6PX9AdTvtR/mZFkPCRQXXbaR4wea7j5A7sawAqmgB2oFvuYkazCs +c1cZjIPbi4qy7Jxi4z3VxW8HWY6oGk9FvqYnye0h3XB1ohRTdhCoK3tBInxq5W9 I2xdkkGI3LdyZzuiFNVPTJRcN7YaiwJuvTAQpAL3wdV8wGC60jPqGGnTvt7E3FBb f0VkvJr3XTmCw/D5HjYsZ+MPbvx+TBLsQHpReINTKBmF+0+uhqFmDbU9a7XwEw/B aRiJzvBeP5O3sOPzj7fdj0seVQM5xa1wy8Ge6dzCBRXSvXxgZ9UX7I7aKyYigeP1 y/RDZvHIaScIRtfHhsq9nsrlGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVGhE9R 8wm5p3dVoMEwTz/HuG7GMB8GA1UdIwQYMBaAFNZgGoIAgMeQ8KUabDdl9bSw0Bs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQzQi82QTAzODNFNjUw QTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1RHdwUnBzTjJYMXRMRFFH emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtQWFnZ0NBeDVEd3BScHNOMlgxdExEUUd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQzQi82QTAzODNFNjUwQTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1 RHdwUnBzTjJYMXRMRFFHemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoQURiSnrSaEyBAj8mrMZRnYlm15JJVWPfMfkjB5HId/xJaLUzk6eD 4CiU1AL/75jqPwKUWa8ZXhEk6KQ/C8sHqGA9s1lsfYVeB6crjm+omlQrCC5tv7vn wIoSBplKPjCzEsw1xnGwIzXuHunmgbSaQDW74iok5c20xqf7ZsCOQ88+xPS7PrsN 4bVg4M6Vml13aBO5BgikuFax4uWqhQ6FBIWDgLtL/l6GQTw9v7S2XJ6wKUOE0t3j EANUGkOdWrukVMqbACvN7KH9/4xzr9F7D28PLUVGz2iSTvbDGweNnGpk42PWHVPt sRkUkOkya9bMwcSe/CyrcYk8BNi/zAHz -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:27 2025 by rpki-client