This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft File: 1f9FyAWBJcJy3wRtwLjgb6owT88.mft (raw, json) Hash identifier: HdI56SdnguVFGNi21M4/YMRH5H4ySfP79yc+0sTrUSA= Subject key identifier: 9E:21:36:38:69:57:93:B8:CC:07:12:EB:50:C7:AE:8F:0E:54:61:3B Authority key identifier: D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF Certificate issuer: /CN=A91A7E29/serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Certificate serial: 0446 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft Manifest number: 043E Signing time: Mon 22 Dec 2025 23:20:37 +0000 Manifest this update: Mon 22 Dec 2025 23:20:37 +0000 Manifest next update: Mon 29 Dec 2025 23:20:37 +0000 Files and hashes: 1: 1f9FyAWBJcJy3wRtwLjgb6owT88.crl (hash: tEUJsFmL4wrKJKE0chAiuSjrlXD6l7OLxL02owm2hS8=) 2: 99F51284A1E911EDAD7CE929C4F9AE02.roa (hash: DgFh0007lZzBIY6/Uazy8v7Lvih8jtP3rAyQ1LouyMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:20:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1094 (0x446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7E29, serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Validity Not Before: Dec 22 23:20:37 2025 GMT Not After : Dec 29 23:20:37 2025 GMT Subject: CN=6949d245-0feb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9a:08:00:af:b4:e7:98:5f:91:fd:7c:d5:3c: 55:65:9b:79:78:83:6c:14:21:9d:26:f7:95:76:a4: 50:12:ae:92:24:fe:85:14:ac:48:f5:f7:32:c5:56: 3c:c8:31:49:bd:29:19:f5:d4:9c:b9:43:a2:9d:1f: d3:c6:d8:7e:18:b7:b5:9a:72:97:e2:42:c9:06:e7: 41:bc:98:10:81:58:dc:55:ce:19:16:76:d0:de:0a: 87:72:13:15:6c:7f:1b:ee:a3:77:56:57:cc:2e:b8: b1:1b:1e:23:ae:50:ca:8f:4b:21:67:2d:8a:a5:3e: 5c:33:74:9d:fd:76:cf:bd:5d:87:5b:14:15:4d:dc: 9f:1c:43:9c:d8:b7:f0:63:d4:c3:8f:0e:b2:e5:46: 71:73:1b:39:22:e6:b8:5b:ea:aa:8c:d2:b9:dc:2f: b7:cf:f4:0b:c6:b1:e3:0f:56:19:66:5e:f9:44:13: 31:c0:bb:b0:58:f9:b9:79:a0:ff:d4:45:66:06:f9: f7:0e:4c:e3:2d:7a:1f:ce:4c:a7:02:20:f4:e4:21: 6f:f2:a5:a5:4f:6a:4c:a4:c4:28:06:5d:5a:8a:bb: ff:77:8a:72:ad:17:fd:2b:ef:13:9d:27:2f:19:42: 0c:27:57:94:3f:d4:ae:ec:4e:7e:9e:93:bf:98:9f: 88:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:21:36:38:69:57:93:B8:CC:07:12:EB:50:C7:AE:8F:0E:54:61:3B X509v3 Authority Key Identifier: keyid:D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:59:ec:54:ee:c8:06:c4:2b:09:05:ce:bc:0a:fb:49:c7:11: b8:eb:eb:d0:52:03:86:15:15:a8:f3:bc:33:df:3c:48:7f:e5: 1e:74:4d:38:31:07:ec:ef:a3:79:27:17:19:49:bc:c2:21:c8: b2:1a:26:7d:50:4e:e3:b8:01:40:b6:6b:9e:13:9d:ed:11:f2: d3:c7:da:c1:06:33:12:24:bf:a2:d9:40:b4:98:7f:e3:21:4e: f1:55:57:34:15:b2:65:58:9e:47:05:20:af:75:ff:99:d0:b7: fd:3e:ff:db:f9:29:85:cf:e1:70:92:36:e8:79:66:2f:28:68: c5:1a:f6:13:39:ba:73:20:5e:eb:eb:05:7a:88:65:44:f2:2a: e5:e4:09:0c:aa:4d:1c:8e:31:d7:c1:cb:fc:0a:65:7f:73:9a: 9c:86:6c:5d:66:ca:12:69:1b:9e:2e:e8:d5:24:fb:5d:b4:8b: b1:6f:8c:d0:96:bb:2f:17:46:9a:47:98:91:93:c6:ad:94:d8: 4a:9d:54:c7:26:91:1b:6c:4b:2a:c2:fe:b1:e0:89:28:5b:57: fa:bc:40:3b:22:57:9a:88:b4:33:57:79:c1:81:43:1f:e2:93: 66:42:74:30:24:21:9c:a9:95:9d:6b:69:6c:44:c0:9b:61:53: a5:e2:27:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdFMjkxMTAvBgNVBAUTKEQ1RkY0NUM4MDU4MTI1QzI3MkRGMDQ2REMwQjhFMDZG QUEzMDRGQ0YwHhcNMjUxMjIyMjMyMDM3WhcNMjUxMjI5MjMyMDM3WjAYMRYwFAYD VQQDDA02OTQ5ZDI0NS0wZmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZoIAK+055hfkf181TxVZZt5eINsFCGdJveVdqRQEq6SJP6FFKxI9fcyxVY8 yDFJvSkZ9dScuUOinR/Txth+GLe1mnKX4kLJBudBvJgQgVjcVc4ZFnbQ3gqHchMV bH8b7qN3VlfMLrixGx4jrlDKj0shZy2KpT5cM3Sd/XbPvV2HWxQVTdyfHEOc2Lfw Y9TDjw6y5UZxcxs5Iua4W+qqjNK53C+3z/QLxrHjD1YZZl75RBMxwLuwWPm5eaD/ 1EVmBvn3DkzjLXofzkynAiD05CFv8qWlT2pMpMQoBl1airv/d4pyrRf9K+8TnScv GUIMJ1eUP9Su7E5+npO/mJ+IEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4hNjhp V5O4zAcS61DHro8OVGE7MB8GA1UdIwQYMBaAFNX/RcgFgSXCct8EbcC44G+qME/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0UyOS81NkYxQzUzMjg3 OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpjSnkzd1J0d0xqZ2I2b3dU ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmOUZ5QVdCSmNKeTN3UnR3TGpnYjZvd1Q4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0UyOS81NkYxQzUzMjg3OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpj Snkzd1J0d0xqZ2I2b3dUODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyWexU7sgGxCsJBc68CvtJxxG46+vQUgOGFRWo87wz3zxIf+UedE04 MQfs76N5JxcZSbzCIciyGiZ9UE7juAFAtmueE53tEfLTx9rBBjMSJL+i2UC0mH/j IU7xVVc0FbJlWJ5HBSCvdf+Z0Lf9Pv/b+SmFz+FwkjboeWYvKGjFGvYTObpzIF7r 6wV6iGVE8irl5AkMqk0cjjHXwcv8CmV/c5qchmxdZsoSaRueLujVJPtdtIuxb4zQ lrsvF0aaR5iRk8atlNhKnVTHJpEbbEsqwv6x4IkoW1f6vEA7IleaiLQzV3nBgUMf 4pNmQnQwJCGcqZWda2lsRMCbYVOl4ied -----END CERTIFICATE-----Generated at Wed Dec 24 14:08:56 2025 by rpki-client