This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft File: 1H75KB4xQx3ljjR8aX45vydCkRk.mft (raw, json) Hash identifier: 8mDBS4AGSkYcCAYlR57ZUqdGxpFYEmk4sIvZuJ9fevc= Subject key identifier: 12:4B:4C:31:FD:63:07:C6:D6:CD:1B:EE:84:AF:DC:72:80:28:6E:90 Authority key identifier: D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 Certificate issuer: /CN=A91612FE/serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft Manifest number: CE Signing time: Tue 23 Dec 2025 04:41:39 +0000 Manifest this update: Tue 23 Dec 2025 04:41:38 +0000 Manifest next update: Tue 30 Dec 2025 04:41:38 +0000 Files and hashes: 1: 1H75KB4xQx3ljjR8aX45vydCkRk.crl (hash: Q16c5Wd/oj0Z73Yx/V7L9ZXEL1cUnlyEW2tQ888+jtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91612FE, serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Validity Not Before: Dec 23 04:41:38 2025 GMT Not After : Dec 30 04:41:38 2025 GMT Subject: CN=694a1d82-e3d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:af:0b:a2:4c:af:05:33:a5:eb:73:a4:3c:20: f6:7c:10:24:c9:ac:76:26:aa:cd:38:2a:36:2a:4f: f1:5f:fe:b4:1d:be:81:d5:c9:46:b0:63:12:c0:cd: d3:64:70:6b:aa:5d:a1:4e:57:76:97:96:b8:61:6d: fa:56:fc:a5:d5:fb:1d:9a:b6:0e:7c:f4:6f:31:7f: c4:c7:9d:43:40:fc:ca:fe:f5:15:b4:f1:67:32:01: f4:89:3e:0c:80:da:bb:7d:de:8b:cd:68:c3:73:82: 34:e9:a6:8b:1f:b1:8a:46:01:9b:22:64:65:31:be: 45:c8:2d:9f:1f:67:c5:f0:24:23:ad:f6:53:43:69: 28:be:ba:27:76:45:f7:a9:8a:ce:01:73:0d:88:de: 2c:0d:a1:a2:9a:82:f4:c1:18:72:59:1b:5c:91:6f: 29:46:0b:49:7c:50:e0:5e:ae:fa:6b:21:f3:b2:9c: e7:a1:d4:13:32:ad:d6:4c:53:84:97:96:b8:93:bf: 45:db:92:b9:0f:b8:92:7e:45:97:4b:a7:c4:ee:6a: 8c:53:b2:e8:99:65:b5:8a:b5:01:bc:40:32:24:b5: 1a:b6:6e:4d:63:f8:d7:82:47:2f:59:a2:d5:e7:58: e8:b7:51:a3:f6:9f:0f:f0:99:07:11:dd:19:9f:78: 37:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4B:4C:31:FD:63:07:C6:D6:CD:1B:EE:84:AF:DC:72:80:28:6E:90 X509v3 Authority Key Identifier: keyid:D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:ff:f9:6c:38:98:fb:5d:a3:9c:bd:3d:bc:d7:3a:a6:17:91: e2:0b:54:04:65:31:2a:ff:38:96:b0:ae:ad:28:30:da:bc:3b: 35:39:1f:cf:d9:eb:36:36:2c:70:1f:b2:d0:f4:d9:51:e1:53: f8:33:fe:be:2b:ba:de:f0:db:ba:99:15:b9:84:da:3b:e0:bd: f4:fb:aa:25:bc:1f:14:ed:d7:da:22:ec:45:1e:20:65:3d:68: fe:a4:9d:12:3e:10:7f:d1:85:85:f9:cb:71:f3:ce:60:69:17: 63:8e:fc:6a:69:9e:be:7c:73:45:53:94:11:55:7d:ac:07:66: 83:c1:86:c6:9b:ef:3b:e6:41:bc:2c:83:9f:1d:3a:0a:2b:cf: 97:ad:a6:14:eb:69:14:f5:0e:88:f8:5f:df:ec:b4:a4:e9:2b: c6:92:19:14:a2:f5:e1:de:fb:f7:fd:e2:d5:c4:57:f8:ff:a9: 65:ae:a1:ae:0a:bd:26:59:1b:e0:10:d1:91:6d:9a:c5:7e:ef: 8b:53:32:7c:85:5d:f8:5d:30:b2:e2:e0:d4:94:fb:5b:95:46: eb:17:e7:67:51:7f:88:3f:5b:31:c5:7b:a3:e2:b1:56:97:e2: a9:ea:d1:e2:54:2c:ab:cc:03:69:c3:32:62:84:5d:f6:ed:e0: 3d:1d:3c:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEyRkUxMTAvBgNVBAUTKEQ0N0VGOTI4MUUzMTQzMURFNThFMzQ3QzY5N0UzOUJG Mjc0MjkxMTkwHhcNMjUxMjIzMDQ0MTM4WhcNMjUxMjMwMDQ0MTM4WjAYMRYwFAYD VQQDDA02OTRhMWQ4Mi1lM2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArq8LokyvBTOl63OkPCD2fBAkyax2JqrNOCo2Kk/xX/60Hb6B1clGsGMSwM3T ZHBrql2hTld2l5a4YW36Vvyl1fsdmrYOfPRvMX/Ex51DQPzK/vUVtPFnMgH0iT4M gNq7fd6LzWjDc4I06aaLH7GKRgGbImRlMb5FyC2fH2fF8CQjrfZTQ2kovrondkX3 qYrOAXMNiN4sDaGimoL0wRhyWRtckW8pRgtJfFDgXq76ayHzspznodQTMq3WTFOE l5a4k79F25K5D7iSfkWXS6fE7mqMU7LomWW1irUBvEAyJLUatm5NY/jXgkcvWaLV 51jot1Gj9p8P8JkHEd0Zn3g3KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJLTDH9 YwfG1s0b7oSv3HKAKG6QMB8GA1UdIwQYMBaAFNR++SgeMUMd5Y40fGl+Ob8nQpEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTJGRS80OTFENjk0Q0Ey NTUxMUVGQjJDQTc4MkFDNEY5QUUwMi8xSDc1S0I0eFF4M2xqalI4YVg0NXZ5ZENr UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFINzVLQjR4UXgzbGpqUjhhWDQ1dnlkQ2tSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTJGRS80OTFENjk0Q0EyNTUxMUVGQjJDQTc4MkFDNEY5QUUwMi8xSDc1S0I0eFF4 M2xqalI4YVg0NXZ5ZENrUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO//lsOJj7XaOcvT281zqmF5HiC1QEZTEq/ziWsK6tKDDavDs1OR/P 2es2NixwH7LQ9NlR4VP4M/6+K7re8Nu6mRW5hNo74L30+6olvB8U7dfaIuxFHiBl PWj+pJ0SPhB/0YWF+ctx885gaRdjjvxqaZ6+fHNFU5QRVX2sB2aDwYbGm+875kG8 LIOfHToKK8+XraYU62kU9Q6I+F/f7LSk6SvGkhkUovXh3vv3/eLVxFf4/6llrqGu Cr0mWRvgENGRbZrFfu+LUzJ8hV34XTCy4uDUlPtblUbrF+dnUX+IP1sxxXuj4rFW l+Kp6tHiVCyrzANpwzJihF327eA9HTxr -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:24 2025 by rpki-client