This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: LDDA6n+TObf4CHeSCHSLoy28qXDJEg9EPQLq/RHJD+A= Subject key identifier: 99:D6:AB:60:43:EC:D7:A2:33:BD:C1:58:A8:F2:30:45:89:F6:20:02 Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 0289 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 0282 Signing time: Sun 21 Dec 2025 00:48:54 +0000 Manifest this update: Sun 21 Dec 2025 00:48:53 +0000 Manifest next update: Sun 28 Dec 2025 00:48:53 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: wUTAEAq4KlToVjKg28O70wLyHS2fUobq/cL3CvpSyvE=) 2: 9BDA59F69C8C11F0A27C535EC4F9AE02.roa (hash: tcpEfQimbgGgCKxs43ap0j00HaFFUo0cjpbDGWWFteI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27, serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: Dec 21 00:48:53 2025 GMT Not After : Dec 28 00:48:53 2025 GMT Subject: CN=694743f5-0597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a7:47:e6:83:f6:33:a5:1b:69:a7:ca:7e:a8: 96:4c:cf:db:a6:11:17:1f:3c:34:a9:d8:7e:83:d2: 60:3d:19:2d:5e:c0:1b:ed:10:66:0e:49:03:08:f6: 4d:05:65:de:76:16:6e:ab:00:57:79:15:fe:9c:25: 24:2a:ee:52:47:eb:42:6d:cd:aa:24:26:1e:74:ad: 6a:9b:b2:d6:67:13:3d:a4:73:2f:23:83:83:d8:9a: c1:b6:fc:40:00:18:cf:77:cf:47:f2:c2:9b:0b:d3: 20:0a:56:f1:d9:cc:36:c1:e9:69:53:e3:4b:f7:3f: 59:c8:73:30:7e:97:df:78:bd:0c:ec:c5:e6:a9:6d: 90:dc:e8:50:77:a1:8c:5f:ef:cd:b7:51:e6:32:04: 92:bb:21:ca:de:31:ad:8e:1b:61:b9:85:2c:98:a0: a3:26:ab:9d:3f:d2:5c:e2:e7:a7:af:17:98:55:15: 5c:a0:d8:e3:41:cf:5a:04:5e:41:eb:cb:53:88:ae: 19:8e:5a:7a:31:0f:3f:49:be:f1:9d:05:61:06:83: b7:61:4f:78:ac:96:77:c8:23:1e:fa:79:ab:55:12: 15:0d:5d:47:84:0f:32:6f:55:72:ef:94:0b:ec:0d: c2:83:89:5a:48:71:3e:b9:a3:4b:79:13:6a:d3:28: cd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D6:AB:60:43:EC:D7:A2:33:BD:C1:58:A8:F2:30:45:89:F6:20:02 X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:2b:54:7a:47:4e:f2:ce:c2:88:6b:fa:b6:ae:7b:c6:89:e2: 29:c5:4c:93:b1:88:a3:dc:36:8a:90:02:73:06:4c:c8:1d:7e: bd:cc:90:03:9c:ff:5b:86:e0:ac:2c:cf:14:65:70:39:f5:b1: 94:46:b9:7a:3c:12:fc:3f:07:a5:9b:56:8b:68:43:db:76:d1: c4:ea:3b:cb:1e:4a:32:cd:a5:e5:e4:4b:d1:d8:49:8f:4c:31: 62:d7:a2:e2:0f:4c:cd:58:5b:7d:62:42:a5:29:04:d3:50:2e: ec:52:cd:fb:10:48:a6:f8:85:c1:c1:ce:57:d4:2a:5d:3f:b8: 8d:7b:f5:4f:d3:a0:c2:95:5e:8c:a3:5e:39:36:67:19:1e:b4: 96:60:95:e0:61:9f:b8:b5:ee:4c:8b:20:a9:e0:25:5b:b6:9e: ba:2e:5f:76:08:21:c3:85:24:86:8c:e7:e1:de:5f:e3:f3:69: 35:b7:6f:4f:ec:e2:ba:51:c4:9c:b5:d8:86:c5:10:78:60:5f: a1:16:ff:fe:cb:de:00:a4:12:77:bf:15:60:2f:52:68:5e:06: c8:22:80:18:0a:e4:97:84:7a:1b:2e:fa:1c:19:7b:a2:3f:a7: 54:3e:5e:2b:5d:95:94:90:47:fc:14:02:ce:e5:b4:3a:90:29: c5:e2:48:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjUxMjIxMDA0ODUzWhcNMjUxMjI4MDA0ODUzWjAYMRYwFAYD VQQDDA02OTQ3NDNmNS0wNTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqadH5oP2M6UbaafKfqiWTM/bphEXHzw0qdh+g9JgPRktXsAb7RBmDkkDCPZN BWXedhZuqwBXeRX+nCUkKu5SR+tCbc2qJCYedK1qm7LWZxM9pHMvI4OD2JrBtvxA ABjPd89H8sKbC9MgClbx2cw2welpU+NL9z9ZyHMwfpffeL0M7MXmqW2Q3OhQd6GM X+/Nt1HmMgSSuyHK3jGtjhthuYUsmKCjJqudP9Jc4uenrxeYVRVcoNjjQc9aBF5B 68tTiK4Zjlp6MQ8/Sb7xnQVhBoO3YU94rJZ3yCMe+nmrVRIVDV1HhA8yb1Vy75QL 7A3Cg4laSHE+uaNLeRNq0yjN8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnWq2BD 7NeiM73BWKjyMEWJ9iACMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRK1R6R07yzsKIa/q2rnvGieIpxUyTsYij3DaKkAJzBkzIHX69zJAD nP9bhuCsLM8UZXA59bGURrl6PBL8Pwelm1aLaEPbdtHE6jvLHkoyzaXl5EvR2EmP TDFi16LiD0zNWFt9YkKlKQTTUC7sUs37EEim+IXBwc5X1CpdP7iNe/VP06DClV6M o145NmcZHrSWYJXgYZ+4te5MiyCp4CVbtp66Ll92CCHDhSSGjOfh3l/j82k1t29P 7OK6UcSctdiGxRB4YF+hFv/+y94ApBJ3vxVgL1JoXgbIIoAYCuSXhHobLvocGXui P6dUPl4rXZWUkEf8FALO5bQ6kCnF4kj2 -----END CERTIFICATE-----Generated at Mon Dec 22 08:50:43 2025 by rpki-client