This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: JjRXgKxhIm7f4D8Aq49b1CS2/dvX30swXOd976ipDDY= Subject key identifier: 89:26:72:10:95:F8:22:50:82:07:A3:33:B9:7F:49:CF:5A:13:E7:48 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0CB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0CAE Signing time: Mon 22 Dec 2025 17:55:14 +0000 Manifest this update: Mon 22 Dec 2025 17:55:14 +0000 Manifest next update: Mon 29 Dec 2025 17:55:14 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: tQkKX1C0Hfc5RYjj3ercTuyyzl9oepDoosAjkp70xiU=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3256 (0xcb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Dec 22 17:55:14 2025 GMT Not After : Dec 29 17:55:14 2025 GMT Subject: CN=69498602-3b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1b:24:58:cd:9f:61:08:21:69:6d:ff:a4:0e: bb:86:bc:c6:1e:51:3f:78:9f:3b:72:95:2d:35:a6: 06:40:0a:53:b2:4c:6f:9a:b1:6b:69:cf:0c:aa:9a: ee:ed:01:2d:53:b9:9f:02:c7:21:60:c7:d7:05:71: 9a:5d:98:7a:f1:8e:25:55:f4:04:2c:00:99:d6:d2: d9:61:c7:7b:1b:5b:e3:d6:0e:df:95:d9:51:f5:d0: 0f:67:ec:32:04:3b:01:cb:33:b4:76:17:d3:6d:7a: 06:90:60:2c:3e:34:a2:02:94:a7:ed:12:8a:61:01: 4a:de:b4:9c:de:5a:39:48:5a:c4:6e:75:12:78:7d: 04:e9:f4:cb:15:56:6f:63:11:dd:80:e6:8a:b2:89: 35:63:b3:22:cb:b6:fb:93:7b:97:c5:54:9f:81:e6: 7b:f4:0b:b8:ee:0d:c3:2c:5d:51:4f:66:cb:cf:2c: db:73:36:ac:61:5b:81:ef:d0:9b:a1:49:1b:9d:7c: 77:88:a3:e9:c9:99:1c:d7:47:0f:7c:2f:52:08:4f: a5:d6:d6:86:3d:e8:bb:0e:a2:8b:ca:f6:fd:6c:af: 8d:f8:88:d1:c5:86:e2:ae:4c:98:20:d2:ef:a6:3f: 71:cc:88:1e:b8:f1:56:12:84:f6:99:f1:d4:56:b5: 8d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:26:72:10:95:F8:22:50:82:07:A3:33:B9:7F:49:CF:5A:13:E7:48 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:8b:2b:b0:a9:ca:4a:1d:58:f0:dc:78:65:8f:44:ae:c2:19: 46:94:c5:64:19:b1:6e:27:cf:8b:b1:cd:cf:2c:58:b4:32:c8: cd:65:99:8d:3a:30:b0:5d:b5:b4:24:c9:ba:96:ca:84:b4:f1: 9a:68:d9:00:a5:96:1e:9a:37:a6:de:8d:d9:53:d4:03:76:d2: 8d:1f:26:49:eb:93:95:66:d1:22:8b:52:d5:d3:d3:01:c6:51: 1d:b9:13:07:37:17:a6:3d:ae:6e:fa:68:19:46:11:2b:0e:ca: 22:72:61:89:ad:1f:d9:29:37:5c:19:6d:ac:a3:19:f8:56:5f: 18:af:5c:9f:a3:0a:48:41:af:09:40:c3:ff:73:47:ae:d5:42: 57:0a:d9:b2:3d:fa:37:22:17:1c:c3:7f:bd:bf:73:de:8e:f4: 26:4d:70:48:64:d9:cb:61:a3:6e:09:ff:25:b7:1c:a5:29:75: f6:74:d3:d0:86:28:9a:a3:be:f1:c5:04:86:7f:71:48:88:b3: d8:9d:92:c8:4a:78:05:96:85:98:89:c5:04:f0:37:53:82:c1: 88:70:73:73:a0:26:9d:28:a3:16:e4:04:02:ca:34:fd:f7:2b: 94:b5:d0:34:6d:02:02:b1:c5:ac:79:d2:90:ec:4f:03:9e:06: 43:59:82:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUxMjIyMTc1NTE0WhcNMjUxMjI5MTc1NTE0WjAYMRYwFAYD VQQDDA02OTQ5ODYwMi0zYjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRskWM2fYQghaW3/pA67hrzGHlE/eJ87cpUtNaYGQApTskxvmrFrac8Mqpru 7QEtU7mfAschYMfXBXGaXZh68Y4lVfQELACZ1tLZYcd7G1vj1g7fldlR9dAPZ+wy BDsByzO0dhfTbXoGkGAsPjSiApSn7RKKYQFK3rSc3lo5SFrEbnUSeH0E6fTLFVZv YxHdgOaKsok1Y7Miy7b7k3uXxVSfgeZ79Au47g3DLF1RT2bLzyzbczasYVuB79Cb oUkbnXx3iKPpyZkc10cPfC9SCE+l1taGPei7DqKLyvb9bK+N+IjRxYbirkyYINLv pj9xzIgeuPFWEoT2mfHUVrWNIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkmchCV +CJQggejM7l/Sc9aE+dIMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAziyuwqcpKHVjw3Hhlj0SuwhlGlMVkGbFuJ8+Lsc3PLFi0MsjNZZmN OjCwXbW0JMm6lsqEtPGaaNkApZYemjem3o3ZU9QDdtKNHyZJ65OVZtEii1LV09MB xlEduRMHNxemPa5u+mgZRhErDsoicmGJrR/ZKTdcGW2soxn4Vl8Yr1yfowpIQa8J QMP/c0eu1UJXCtmyPfo3Ihccw3+9v3PejvQmTXBIZNnLYaNuCf8ltxylKXX2dNPQ hiiao77xxQSGf3FIiLPYnZLISngFloWYicUE8DdTgsGIcHNzoCadKKMW5AQCyjT9 9yuUtdA0bQICscWsedKQ7E8DngZDWYLY -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:59 2025 by rpki-client