This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft File: i1fdFr2X-1v8IdnMqeK4bVUC4og.mft (raw, json) Hash identifier: cQPbusDpKv65iICXGdchWRHwpRqtUo3ZlaAzmcdNP5U= Subject key identifier: 34:B6:A3:3C:90:7B:75:83:54:B1:82:8E:71:1C:ED:49:39:F4:40:25 Authority key identifier: 8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 Certificate issuer: /CN=A91B929F/serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Certificate serial: 05F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft Manifest number: 05F4 Signing time: Mon 22 Dec 2025 22:04:34 +0000 Manifest this update: Mon 22 Dec 2025 22:04:34 +0000 Manifest next update: Mon 29 Dec 2025 22:04:34 +0000 Files and hashes: 1: i1fdFr2X-1v8IdnMqeK4bVUC4og.crl (hash: uvIke7E0utC7qe92uodDmEfiaGoB4W9btVoEDpQeBEM=) 2: 2EA68D96D65211EB8DAD1886C4F9AE02.roa (hash: 6nBsIW1FtTa2lY5be/el75WgarvUxw35P+urmn+K7Hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1529 (0x5f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B929F, serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Validity Not Before: Dec 22 22:04:34 2025 GMT Not After : Dec 29 22:04:34 2025 GMT Subject: CN=6949c072-5660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b9:68:b3:15:81:05:06:ac:79:12:86:ac:ac: aa:7d:f0:04:3f:ed:47:1e:6e:f2:bb:b5:9e:9e:f1: b0:01:da:ab:ee:a6:5d:03:76:06:3e:26:17:a5:73: 79:58:8e:7a:34:a5:5b:e9:92:19:d2:9a:b0:e0:cf: 10:7e:f9:97:de:e5:71:dc:bf:6f:aa:9d:68:55:d6: 71:4e:04:d7:cb:f1:0b:8b:39:18:58:2a:22:86:73: ee:5a:e9:c3:44:ab:79:73:5a:c0:50:5f:02:b4:47: f4:fd:75:93:9b:39:51:75:51:47:46:a0:2c:a1:5f: 45:2a:43:8e:2c:cb:db:22:08:36:82:92:5c:2c:6c: 26:6a:93:21:d5:9a:40:2b:0f:6c:c4:2c:46:73:ba: c4:2d:eb:91:ba:d1:7d:a2:59:53:8e:6d:53:6a:c6: 78:c4:05:40:8d:92:38:1b:ce:69:68:28:7e:8a:23: 25:8f:75:2f:99:72:80:3f:a5:26:48:62:74:c1:b5: 44:90:50:f9:f9:eb:dd:b9:51:08:23:48:f2:b6:2a: 41:15:50:3e:4c:81:b6:5b:6f:8d:41:fb:73:39:88: 0f:f3:3a:fc:a9:d6:c3:7c:b5:51:58:6e:92:b1:37: 5f:35:9a:1a:3e:f3:94:d0:a0:81:db:3d:80:67:9d: 98:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B6:A3:3C:90:7B:75:83:54:B1:82:8E:71:1C:ED:49:39:F4:40:25 X509v3 Authority Key Identifier: keyid:8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:ab:34:c0:e1:cf:16:c8:c4:6d:d9:b3:92:28:9b:16:d5:b1: 5b:45:7c:33:81:ca:20:0f:f8:75:27:8f:98:1e:6a:18:da:af: af:cd:2b:db:da:2e:89:d5:61:a1:8b:58:3a:69:29:98:2f:1a: 4b:a9:e6:c4:c0:07:56:e0:87:00:83:8a:61:8b:71:93:5f:b2: fd:72:fd:51:37:4b:74:d6:bb:98:16:7b:78:31:21:25:f5:df: 14:c6:26:1f:38:a4:7e:97:b0:fc:a1:45:71:44:83:21:e4:d2: f7:30:4a:3a:74:b6:4c:fa:9d:83:1f:d5:20:72:d9:c5:91:7f: ec:8d:2a:c3:5c:0b:2c:41:ad:89:e8:de:98:43:7a:d9:aa:85: a4:b5:3a:36:22:60:75:7e:fb:f6:83:0f:bb:81:a3:cd:31:14: 3d:bd:8b:b7:05:ac:94:83:42:ee:0d:8f:58:94:00:d3:f1:63: bf:2d:60:85:8b:7f:08:b4:18:4f:66:f8:f3:8d:00:3e:4f:d4: 63:aa:c9:43:6e:a3:1c:c9:be:cc:f5:7b:4c:32:c9:cc:0c:a9: 60:16:99:f5:e0:79:55:28:1e:50:3c:07:67:9f:ae:aa:8d:98: 80:97:95:0e:32:35:da:be:ee:be:eb:c9:80:37:56:cd:74:d7: aa:e1:ca:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOUYxMTAvBgNVBAUTKDhCNTdERDE2QkQ5N0ZCNUJGQzIxRDlDQ0E5RTJCODZE NTUwMkUyODgwHhcNMjUxMjIyMjIwNDM0WhcNMjUxMjI5MjIwNDM0WjAYMRYwFAYD VQQDDA02OTQ5YzA3Mi01NjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoblosxWBBQaseRKGrKyqffAEP+1HHm7yu7WenvGwAdqr7qZdA3YGPiYXpXN5 WI56NKVb6ZIZ0pqw4M8QfvmX3uVx3L9vqp1oVdZxTgTXy/ELizkYWCoihnPuWunD RKt5c1rAUF8CtEf0/XWTmzlRdVFHRqAsoV9FKkOOLMvbIgg2gpJcLGwmapMh1ZpA Kw9sxCxGc7rELeuRutF9ollTjm1TasZ4xAVAjZI4G85paCh+iiMlj3UvmXKAP6Um SGJ0wbVEkFD5+evduVEII0jytipBFVA+TIG2W2+NQftzOYgP8zr8qdbDfLVRWG6S sTdfNZoaPvOU0KCB2z2AZ52YcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDS2ozyQ e3WDVLGCjnEc7Uk59EAlMB8GA1UdIwQYMBaAFItX3Ra9l/tb/CHZzKniuG1VAuKI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5Ri8zQkU1NDlDRUQ2 NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0xdjhJZG5NcWVLNGJWVUM0 b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kxZmRGcjJYLTF2OElkbk1xZUs0YlZVQzRvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTI5Ri8zQkU1NDlDRUQ2NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0x djhJZG5NcWVLNGJWVUM0b2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUqzTA4c8WyMRt2bOSKJsW1bFbRXwzgcogD/h1J4+YHmoY2q+vzSvb 2i6J1WGhi1g6aSmYLxpLqebEwAdW4IcAg4phi3GTX7L9cv1RN0t01ruYFnt4MSEl 9d8UxiYfOKR+l7D8oUVxRIMh5NL3MEo6dLZM+p2DH9UgctnFkX/sjSrDXAssQa2J 6N6YQ3rZqoWktTo2ImB1fvv2gw+7gaPNMRQ9vYu3BayUg0LuDY9YlADT8WO/LWCF i38ItBhPZvjzjQA+T9RjqslDbqMcyb7M9XtMMsnMDKlgFpn14HlVKB5QPAdnn66q jZiAl5UOMjXavu6+68mAN1bNdNeq4cpg -----END CERTIFICATE-----Generated at Wed Dec 24 14:13:51 2025 by rpki-client