This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft File: 1RZ7lweHQQlX4l2fh1CFYPAFd24.mft (raw, json) Hash identifier: T1EAyEiWckg214rR7HD2lRe2Az+U0MwDPl+fsM2MFJ8= Subject key identifier: 53:33:3F:33:D6:37:6E:23:E6:35:FE:C1:E8:81:A5:CC:9A:DD:62:16 Authority key identifier: D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E Certificate issuer: /CN=A91B9011/serialNumber=D5167B970787410957E25D9F87508560F005776E Certificate serial: 0622 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft Manifest number: 061D Signing time: Mon 22 Dec 2025 21:58:43 +0000 Manifest this update: Mon 22 Dec 2025 21:58:42 +0000 Manifest next update: Mon 29 Dec 2025 21:58:42 +0000 Files and hashes: 1: 1RZ7lweHQQlX4l2fh1CFYPAFd24.crl (hash: SIzYycMzz8oef3oh7Ldn9iIfE7kL5dlC5iJ0G4oG4D4=) 2: 438893AC55BE11EDBDE51983C4F9AE02.roa (hash: Y1Hqc3CucW1MGNfTEVOgwuu3xdmSB7zSj6HU8UBJr7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9011, serialNumber=D5167B970787410957E25D9F87508560F005776E Validity Not Before: Dec 22 21:58:42 2025 GMT Not After : Dec 29 21:58:42 2025 GMT Subject: CN=6949bf13-7e7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:00:0c:b1:f4:58:7e:c6:57:eb:6c:73:95:d1: 3a:78:87:e6:c5:69:1f:13:b6:eb:48:10:42:88:aa: 01:c4:03:67:df:50:81:ce:71:24:74:fb:96:17:c7: 15:bf:2e:d2:36:22:3a:ad:8e:59:bc:1e:51:44:6d: d2:21:2a:78:fd:3a:d3:70:67:cd:6f:42:b3:67:ff: 9d:98:da:77:ed:c4:55:7a:a2:02:85:02:7d:0d:40: 64:8f:ee:41:22:75:32:57:ba:3b:f2:b3:51:05:22: 9e:3b:2b:6a:26:1a:cb:72:bf:0d:3f:03:9c:03:fe: 00:86:e7:25:f6:f4:ea:32:71:5a:12:8c:e0:68:2b: b2:68:ab:c7:30:72:b6:3e:02:df:d3:60:0c:57:40: 80:7f:ea:9a:d9:4d:2d:9f:c9:96:cf:05:7c:38:62: 34:58:d9:c7:fb:3d:11:d4:7b:0b:8c:0e:44:11:1e: e7:bb:0e:c0:8b:da:0d:70:aa:a2:9b:ab:69:69:4d: 3d:da:cb:af:2d:ed:07:f5:8d:8b:08:cd:6d:b1:0d: 74:00:86:6a:c7:d4:ed:c1:d0:ec:99:97:f3:ca:6c: 89:dd:68:7b:82:2d:d2:03:43:3d:fc:db:60:8c:7b: e9:a0:18:fd:24:53:48:3f:fe:a9:44:07:ca:33:18: 2d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:33:3F:33:D6:37:6E:23:E6:35:FE:C1:E8:81:A5:CC:9A:DD:62:16 X509v3 Authority Key Identifier: keyid:D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:b7:36:db:73:b3:f1:7b:e1:02:8a:f9:22:08:2a:0a:a1:af: 4e:4b:3c:f3:88:a2:a2:d7:c2:56:0e:34:b9:c3:c7:46:0a:72: f4:e2:19:42:ec:d7:05:ad:22:17:a7:91:be:d8:4e:82:90:3a: 07:f9:43:49:cd:81:21:dd:98:ae:a4:0f:23:30:98:57:4a:87: 3c:88:49:70:34:6e:0f:07:f2:4b:5b:85:62:09:31:50:6d:2f: bb:68:ca:f2:bb:c2:86:4f:0f:d8:e3:81:7e:67:d0:f3:de:2e: a5:77:12:44:fa:7c:fa:7d:4f:cc:99:5a:80:22:43:af:fc:86: 8e:6b:44:81:3d:a8:4a:f4:d2:f4:39:6a:e8:9e:7c:e2:fb:6e: 96:90:0b:bb:94:3d:43:aa:68:da:86:1c:b0:d4:9a:80:da:07: e2:5d:71:3f:a2:4d:d2:0c:2a:eb:0f:f4:1b:df:bc:e6:90:84: f7:3e:b4:b6:e4:93:25:56:1a:65:a8:1a:46:4a:ea:db:c9:65: 51:08:1b:d0:8f:95:0e:d4:31:a5:04:92:3f:af:3a:e6:ab:df: 6a:e3:b8:cc:da:16:82:5e:fd:ff:aa:41:f1:d8:58:78:ef:e3: 0d:77:b2:64:59:a1:23:cb:59:94:22:9e:19:94:e6:a8:e9:02: f0:39:7f:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkwMTExMTAvBgNVBAUTKEQ1MTY3Qjk3MDc4NzQxMDk1N0UyNUQ5Rjg3NTA4NTYw RjAwNTc3NkUwHhcNMjUxMjIyMjE1ODQyWhcNMjUxMjI5MjE1ODQyWjAYMRYwFAYD VQQDDA02OTQ5YmYxMy03ZTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywAMsfRYfsZX62xzldE6eIfmxWkfE7brSBBCiKoBxANn31CBznEkdPuWF8cV vy7SNiI6rY5ZvB5RRG3SISp4/TrTcGfNb0KzZ/+dmNp37cRVeqIChQJ9DUBkj+5B InUyV7o78rNRBSKeOytqJhrLcr8NPwOcA/4Ahucl9vTqMnFaEozgaCuyaKvHMHK2 PgLf02AMV0CAf+qa2U0tn8mWzwV8OGI0WNnH+z0R1HsLjA5EER7nuw7Ai9oNcKqi m6tpaU092suvLe0H9Y2LCM1tsQ10AIZqx9TtwdDsmZfzymyJ3Wh7gi3SA0M9/Ntg jHvpoBj9JFNIP/6pRAfKMxgtTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMzPzPW N24j5jX+weiBpcya3WIWMB8GA1UdIwQYMBaAFNUWe5cHh0EJV+Jdn4dQhWDwBXdu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTAxMS8zODg4RTBDNEM3 M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFRbFg0bDJmaDFDRllQQUZk MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFSWjdsd2VIUVFsWDRsMmZoMUNGWVBBRmQyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTAxMS8zODg4RTBDNEM3M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFR bFg0bDJmaDFDRllQQUZkMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3tzbbc7Pxe+ECivkiCCoKoa9OSzzziKKi18JWDjS5w8dGCnL04hlC 7NcFrSIXp5G+2E6CkDoH+UNJzYEh3ZiupA8jMJhXSoc8iElwNG4PB/JLW4ViCTFQ bS+7aMryu8KGTw/Y44F+Z9Dz3i6ldxJE+nz6fU/MmVqAIkOv/IaOa0SBPahK9NL0 OWronnzi+26WkAu7lD1Dqmjahhyw1JqA2gfiXXE/ok3SDCrrD/Qb37zmkIT3PrS2 5JMlVhplqBpGSurbyWVRCBvQj5UO1DGlBJI/rzrmq99q47jM2haCXv3/qkHx2Fh4 7+MNd7JkWaEjy1mUIp4ZlOao6QLwOX+j -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:26 2025 by rpki-client