This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft File: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json) Hash identifier: 8pVgP5mqEX8/KId6Rf0hU4HH9jXVu6PDo8cukVu3ZcE= Subject key identifier: 46:30:7F:1B:8B:43:83:47:7A:EB:CA:5B:22:20:57:31:6A:93:6F:B6 Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft Manifest number: C1 Signing time: Fri 19 Dec 2025 05:07:26 +0000 Manifest this update: Fri 19 Dec 2025 05:07:25 +0000 Manifest next update: Fri 26 Dec 2025 05:07:25 +0000 Files and hashes: 1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: T6qHuuwCoEvHLe/WUS+tA85Su85wLURiwnhHwYOhHj0=) 2: E90F04F4114711F0B6E44E12C4F9AE02.roa (hash: PlQx8+H4QWwRWOJyC7w29KW+ohdqt59u/vmKToMRgGo=) 3: 1363F5E60E8E11F082304B42C4F9AE02.roa (hash: hu1JiBFiyTnMySrt80yNdScgCjSfSkHINTEYjzYfdUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Dec 19 05:07:25 2025 GMT Not After : Dec 26 05:07:25 2025 GMT Subject: CN=6944dd8e-9fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:00:ea:73:4b:f6:90:38:0b:fe:63:a3:06:37: 68:35:b4:87:de:b9:18:a6:1e:d3:40:cc:a3:d5:2f: 8d:f5:3c:ed:6d:c2:d4:ad:64:b1:dc:5e:bd:62:c8: 85:4b:30:2f:ff:35:a0:31:3f:36:f2:0c:88:5e:5c: 0a:98:43:73:d2:0e:4f:10:62:81:a1:a6:99:e4:a7: 7a:91:64:d9:b4:85:44:d9:ee:4a:c7:4f:e8:7d:6e: 1c:2e:d3:90:63:b7:50:ed:d4:57:df:bc:53:3f:77: 4c:47:6a:6f:38:2d:15:3a:43:fb:bb:26:19:3b:00: 7d:4a:6e:32:d1:cd:ed:f2:00:19:95:b3:8d:e7:f8: 8f:09:a6:c5:4e:3c:a2:d7:de:60:01:88:e4:8d:45: fa:8c:e5:6a:8b:eb:23:63:d8:52:a3:28:31:32:86: 50:47:ce:30:d6:b3:5d:bf:ed:81:19:49:b9:f0:62: 06:15:e2:70:2c:d2:ad:94:57:78:cf:39:ef:73:ad: 75:ed:a2:72:e9:12:33:64:61:fc:87:a6:9f:61:52: 4b:3f:db:32:8f:3d:c6:00:43:60:8d:61:8d:71:1c: 41:a8:f1:d2:ff:41:b5:60:33:85:71:14:ec:ea:c0: 58:5c:20:5b:02:56:b1:64:f1:5d:bc:dc:86:a0:7e: 90:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:30:7F:1B:8B:43:83:47:7A:EB:CA:5B:22:20:57:31:6A:93:6F:B6 X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:62:fa:a7:3e:d4:1b:1b:7d:5a:34:67:86:3a:a8:45:34:7b: 3f:fa:e5:62:29:e4:19:11:38:a7:a9:1e:cd:2d:c1:84:98:cd: 65:55:b5:41:d2:24:1d:17:65:ec:54:69:ea:88:6a:60:99:26: 44:96:0a:82:91:fc:64:40:89:1a:7d:bc:44:1c:96:5d:f8:09: 37:66:fd:0d:38:d7:f1:1d:3a:26:9e:41:66:00:e1:5d:b1:c8: f2:b7:c3:9b:88:7f:7e:41:94:92:e4:a1:dd:f9:2b:af:86:5b: b5:86:a8:c4:8b:29:a1:df:94:58:f7:db:b7:1d:d1:30:f6:4e: de:1a:01:e5:b4:94:69:f7:de:1f:82:9a:f8:aa:7e:7f:cc:54: 74:f4:d6:af:9c:de:40:a4:da:d6:39:10:7c:17:0b:08:a3:da: 58:e5:e4:0f:76:b4:d8:bf:83:a0:6d:a4:bf:f2:a7:d0:1d:8f: d3:c2:40:15:ec:cf:b6:9e:96:4b:2f:f4:99:e8:9c:44:bd:09: 26:1b:b2:bc:db:eb:43:b4:bc:9d:25:fa:a3:6d:b7:3d:5f:61: 20:8b:dc:05:1a:75:20:40:f0:5a:8a:4d:bc:78:c8:7f:30:ba: 8a:b5:86:76:43:43:a8:47:29:f8:54:b1:71:df:98:c8:c2:95: e1:a0:62:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCNjcxMTAvBgNVBAUTKEQ0NTlEMjY3NTI1MjM0QTA1MzVFQzM4RDhDQ0M4OTkw MTk0REUxODkwHhcNMjUxMjE5MDUwNzI1WhcNMjUxMjI2MDUwNzI1WjAYMRYwFAYD VQQDDA02OTQ0ZGQ4ZS05ZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wDqc0v2kDgL/mOjBjdoNbSH3rkYph7TQMyj1S+N9TztbcLUrWSx3F69YsiF SzAv/zWgMT828gyIXlwKmENz0g5PEGKBoaaZ5Kd6kWTZtIVE2e5Kx0/ofW4cLtOQ Y7dQ7dRX37xTP3dMR2pvOC0VOkP7uyYZOwB9Sm4y0c3t8gAZlbON5/iPCabFTjyi 195gAYjkjUX6jOVqi+sjY9hSoygxMoZQR84w1rNdv+2BGUm58GIGFeJwLNKtlFd4 zznvc6117aJy6RIzZGH8h6afYVJLP9syjz3GAENgjWGNcRxBqPHS/0G1YDOFcRTs 6sBYXCBbAlaxZPFdvNyGoH6QSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYwfxuL Q4NHeuvKWyIgVzFqk2+2MB8GA1UdIwQYMBaAFNRZ0mdSUjSgU17DjYzMiZAZTeGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEI2Ny8yRkEwMEQzRUM2 QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05LQlRYc09Oak15SmtCbE40 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEI2Ny8yRkEwMEQzRUM2QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05L QlRYc09Oak15SmtCbE40WWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcYvqnPtQbG31aNGeGOqhFNHs/+uViKeQZETinqR7NLcGEmM1lVbVB 0iQdF2XsVGnqiGpgmSZElgqCkfxkQIkafbxEHJZd+Ak3Zv0NONfxHTomnkFmAOFd scjyt8ObiH9+QZSS5KHd+Suvhlu1hqjEiymh35RY99u3HdEw9k7eGgHltJRp994f gpr4qn5/zFR09NavnN5ApNrWORB8FwsIo9pY5eQPdrTYv4OgbaS/8qfQHY/TwkAV 7M+2npZLL/SZ6JxEvQkmG7K82+tDtLydJfqjbbc9X2Egi9wFGnUgQPBaik28eMh/ MLqKtYZ2Q0OoRyn4VLFx35jIwpXhoGIA -----END CERTIFICATE-----Generated at Sat Dec 20 12:25:46 2025 by rpki-client