This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: IPiT+cYs+kKbnI7/Jay9UyAIy0b0sYfDD+FN/0YI/Cg= Subject key identifier: D4:89:E7:D4:89:16:7C:ED:FE:84:13:F1:C7:D3:94:2D:1D:D2:25:E2 Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1BB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1BAC Signing time: Mon 22 Dec 2025 16:01:58 +0000 Manifest this update: Mon 22 Dec 2025 16:01:57 +0000 Manifest next update: Mon 29 Dec 2025 16:01:57 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: Tv5QtwEdLLSok70BvLhIOGHb272VqVleeH7OIC1hpt0=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7094 (0x1bb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Dec 22 16:01:57 2025 GMT Not After : Dec 29 16:01:57 2025 GMT Subject: CN=69496b76-134e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:db:e7:43:e5:11:04:9a:f8:65:fa:fd:90:fd: c0:45:13:7b:0b:49:59:a6:50:ae:55:53:f3:48:f0: 87:fa:70:33:0c:ac:96:b0:d9:e4:70:ad:ce:e0:a6: db:97:9b:3c:7e:65:20:b8:a7:93:af:b4:ae:87:5c: 1d:65:e5:15:eb:43:2e:20:54:06:68:d0:e9:a1:eb: a6:ca:36:ef:77:e6:bc:e4:0d:12:58:d3:c3:08:cb: 24:20:c5:29:40:6b:bf:41:7c:26:81:0b:e3:b3:11: d7:33:0a:43:d4:54:73:6e:40:0d:ce:41:78:a7:f0: 29:4e:4f:5b:9c:36:69:42:d2:f5:a3:57:3f:05:c6: 05:3e:dd:45:b8:c7:1e:5b:4b:4c:e4:e4:1d:26:95: 19:72:30:93:53:85:35:a8:08:b5:e1:37:32:d2:de: 14:df:10:cb:b8:8a:66:88:81:6c:fc:71:53:72:38: e6:ff:4a:39:2a:e9:a2:ba:86:c2:54:f8:07:21:28: 68:8c:2a:d7:42:f8:6c:16:a4:d1:90:8e:c7:5f:3f: 6a:e9:ad:31:92:fa:bf:cf:ce:83:5e:13:83:00:af: 27:93:be:97:19:78:89:1c:fd:61:69:17:29:d5:30: 6c:1d:e7:82:61:bf:8f:8c:89:e1:d1:19:09:ac:b5: 21:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:89:E7:D4:89:16:7C:ED:FE:84:13:F1:C7:D3:94:2D:1D:D2:25:E2 X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:96:af:70:c1:c1:1b:52:9a:81:0a:4a:a9:60:81:ba:42:40: 01:7f:6f:e5:13:30:0f:38:eb:5b:63:9f:d3:a0:31:25:69:77: dd:a0:44:39:35:e1:c9:1d:cd:27:4d:0d:a7:3a:e4:82:7b:66: ec:56:e0:03:de:06:5e:d2:ac:c6:5c:a3:5a:66:5a:9a:28:57: 6d:5c:fb:e3:9e:92:02:cc:ff:75:cf:a2:79:28:30:2f:b4:1c: c3:63:b9:98:39:a3:a3:37:b9:e9:14:47:df:f9:c9:ef:23:f3: cb:e5:b2:88:ce:94:b4:e6:a4:8f:fe:13:59:cf:08:05:24:ce: 7c:b8:5f:2d:31:55:dd:93:26:1d:f8:03:15:11:b3:18:c2:db: 52:6d:89:07:56:c6:57:b9:6e:f9:fb:87:85:03:30:bf:d7:bc: de:77:02:98:23:ad:3d:9a:ae:60:1a:61:95:4c:a2:2c:71:89: 6b:2d:64:00:ee:e0:b2:cb:71:8c:27:44:c1:ef:cc:76:7c:a7: 45:d1:53:98:55:02:ee:1b:cf:96:14:4b:51:70:5a:88:fa:8a: dd:51:bb:4b:e1:99:85:43:60:ac:20:54:2a:88:f5:99:7d:86: bf:f3:30:06:68:6d:df:dd:c7:1d:f1:59:4e:6d:1f:9f:96:cc: 25:c3:c6:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUxMjIyMTYwMTU3WhcNMjUxMjI5MTYwMTU3WjAYMRYwFAYD VQQDDA02OTQ5NmI3Ni0xMzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNvnQ+URBJr4Zfr9kP3ARRN7C0lZplCuVVPzSPCH+nAzDKyWsNnkcK3O4Kbb l5s8fmUguKeTr7Suh1wdZeUV60MuIFQGaNDpoeumyjbvd+a85A0SWNPDCMskIMUp QGu/QXwmgQvjsxHXMwpD1FRzbkANzkF4p/ApTk9bnDZpQtL1o1c/BcYFPt1FuMce W0tM5OQdJpUZcjCTU4U1qAi14Tcy0t4U3xDLuIpmiIFs/HFTcjjm/0o5KumiuobC VPgHIShojCrXQvhsFqTRkI7HXz9q6a0xkvq/z86DXhODAK8nk76XGXiJHP1haRcp 1TBsHeeCYb+PjInh0RkJrLUhawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSJ59SJ Fnzt/oQT8cfTlC0d0iXiMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYlq9wwcEbUpqBCkqpYIG6QkABf2/lEzAPOOtbY5/ToDElaXfdoEQ5 NeHJHc0nTQ2nOuSCe2bsVuAD3gZe0qzGXKNaZlqaKFdtXPvjnpICzP91z6J5KDAv tBzDY7mYOaOjN7npFEff+cnvI/PL5bKIzpS05qSP/hNZzwgFJM58uF8tMVXdkyYd +AMVEbMYwttSbYkHVsZXuW75+4eFAzC/17zedwKYI609mq5gGmGVTKIscYlrLWQA 7uCyy3GMJ0TB78x2fKdF0VOYVQLuG8+WFEtRcFqI+ordUbtL4ZmFQ2CsIFQqiPWZ fYa/8zAGaG3f3ccd8VlObR+flswlw8ac -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:38 2025 by rpki-client