This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: 7pNDbHEwfdI1sjBEDjcF/AGoqxJRSKudotCk9VjI8Hw= Subject key identifier: 33:0F:48:2E:71:39:7E:86:ED:B5:FD:B4:5A:B3:8F:DA:19:44:BD:DB Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: CA Signing time: Tue 23 Dec 2025 04:47:28 +0000 Manifest this update: Tue 23 Dec 2025 04:47:28 +0000 Manifest next update: Tue 30 Dec 2025 04:47:28 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: PVVrVCSYLNuOs2T+JO/5eD89hvXPR+zCUCnWU+gA6gg=) 2: BB5954CE241111F094390A32C4F9AE02.roa (hash: 6qd8Idl86oSAnUE2UErM8ktGLeOpsspXAgidR5hkRlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:47:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Dec 23 04:47:28 2025 GMT Not After : Dec 30 04:47:28 2025 GMT Subject: CN=694a1ee0-caa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:81:ea:f8:14:51:5d:26:a1:2e:9f:c8:a8:d4: b6:d6:e2:c8:88:b9:5d:94:ac:60:12:bc:2f:17:70: da:97:2a:35:a1:b3:07:b9:29:9e:f1:1d:aa:4c:56: a8:17:c2:03:9a:cc:03:09:d9:5f:f1:b8:1d:84:41: 4a:37:22:9a:27:67:ac:35:c4:4f:3b:90:bb:4c:bd: 7b:d4:47:be:2f:6d:3b:e0:20:52:ae:c1:3c:72:66: bf:39:31:b2:f4:3e:79:78:30:e7:f5:20:29:29:c3: a2:6a:91:93:d5:8c:78:55:11:86:26:29:f4:a1:2f: 27:99:aa:6e:af:9f:02:67:9a:60:15:a9:8d:e5:14: a0:45:95:34:79:8f:d5:0b:ad:bf:87:bf:d3:e5:2b: e2:be:38:11:78:f6:af:66:01:0a:28:de:91:6a:40: 00:6d:64:e6:d6:b5:fd:d1:1e:1c:ca:34:b7:8c:7f: fc:3a:00:3a:57:4f:25:d8:f8:fb:9e:b4:98:7f:54: 55:14:a4:38:df:e7:15:0c:5c:f6:f0:9f:b6:56:e7: 12:ea:f3:72:b2:86:7e:7f:c5:cc:7c:86:08:02:2f: 3a:5c:7e:f0:b0:27:1e:a1:b3:7a:53:54:a1:c4:ad: 7c:93:c5:5c:56:77:c0:22:36:0e:3b:46:3e:bf:9e: 83:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:0F:48:2E:71:39:7E:86:ED:B5:FD:B4:5A:B3:8F:DA:19:44:BD:DB X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:7f:2c:72:9c:96:88:61:6c:0c:32:22:eb:9a:c3:21:66:03: 61:a6:14:63:c8:d0:21:c1:f1:65:b3:93:19:63:f4:47:3e:3f: 05:33:e6:09:f1:60:cd:4e:47:35:0c:f7:25:58:8f:84:9c:8d: 86:74:52:f8:63:9c:aa:cf:ca:4e:81:38:bf:9a:27:ec:eb:64: cf:78:7f:53:86:61:b1:4d:3e:1e:dc:93:96:90:78:d2:c7:c9: 73:42:5c:bf:a5:ff:a5:0a:cb:e4:ba:30:b7:2a:6e:3b:48:4e: 38:16:f6:48:a7:93:f2:ee:da:9c:51:9c:a3:c3:29:fe:d6:ea: ba:bc:a9:4a:a3:73:67:2e:f1:52:6c:0a:30:d1:d5:ca:1d:84: 0f:98:c8:42:c2:34:04:2b:52:f8:25:be:c6:0a:cc:e7:55:b6: 0d:ec:26:99:96:97:fa:aa:1f:3d:f8:98:28:d1:a6:99:82:0b: 60:8e:39:d8:f5:d3:0d:f6:80:87:91:ca:f3:28:58:3b:eb:3d: 24:69:f7:4f:65:c2:44:8f:21:f3:f7:67:41:a8:5b:a3:f6:07: de:c1:e3:83:9b:4e:f1:7d:d8:86:d5:48:bc:a7:ed:7e:d7:9d: 7a:84:66:cd:d4:f9:9b:80:ee:c9:76:a6:13:9f:d0:ff:ae:d9: ac:10:22:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVENTMxMTAvBgNVBAUTKEQ2MjcxNkY3NjFGMTg4RDU2RkExMTdGOURDOTRCRTQx NDEwNEE2ODEwHhcNMjUxMjIzMDQ0NzI4WhcNMjUxMjMwMDQ0NzI4WjAYMRYwFAYD VQQDDA02OTRhMWVlMC1jYWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoHq+BRRXSahLp/IqNS21uLIiLldlKxgErwvF3Dalyo1obMHuSme8R2qTFao F8IDmswDCdlf8bgdhEFKNyKaJ2esNcRPO5C7TL171Ee+L2074CBSrsE8cma/OTGy 9D55eDDn9SApKcOiapGT1Yx4VRGGJin0oS8nmapur58CZ5pgFamN5RSgRZU0eY/V C62/h7/T5SvivjgRePavZgEKKN6RakAAbWTm1rX90R4cyjS3jH/8OgA6V08l2Pj7 nrSYf1RVFKQ43+cVDFz28J+2VucS6vNysoZ+f8XMfIYIAi86XH7wsCceobN6U1Sh xK18k8VcVnfAIjYOO0Y+v56DhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMPSC5x OX6G7bX9tFqzj9oZRL3bMB8GA1UdIwQYMBaAFNYnFvdh8YjVb6EX+dyUvkFBBKaB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUQ1My8wNUZGQzAwRUFD ODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlOVnZvUmY1M0pTLVFVRUVw b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUQ1My8wNUZGQzAwRUFDODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlO VnZvUmY1M0pTLVFVRUVwb0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtfyxynJaIYWwMMiLrmsMhZgNhphRjyNAhwfFls5MZY/RHPj8FM+YJ 8WDNTkc1DPclWI+EnI2GdFL4Y5yqz8pOgTi/mifs62TPeH9ThmGxTT4e3JOWkHjS x8lzQly/pf+lCsvkujC3Km47SE44FvZIp5Py7tqcUZyjwyn+1uq6vKlKo3NnLvFS bAow0dXKHYQPmMhCwjQEK1L4Jb7GCsznVbYN7CaZlpf6qh89+Jgo0aaZggtgjjnY 9dMN9oCHkcrzKFg76z0kafdPZcJEjyHz92dBqFuj9gfeweODm07xfdiG1Ui8p+1+ 1516hGbN1PmbgO7JdqYTn9D/rtmsECK7 -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:13 2025 by rpki-client