This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft File: l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft (raw, json) Hash identifier: oKpSTK01bIAvsGOVv8Cn/x8tZztK+9QemYntKxnQntw= Subject key identifier: 73:F0:AF:69:16:30:81:E3:D1:76:E9:EF:58:09:4E:11:CB:02:FC:88 Authority key identifier: 97:5B:D5:5D:61:5C:98:60:AC:CF:D8:60:99:85:3B:CB:19:A9:9B:E4 Certificate issuer: /CN=A91CBB09/serialNumber=975BD55D615C9860ACCFD86099853BCB19A99BE4 Certificate serial: 045A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft Manifest number: 0454 Signing time: Sat 20 Dec 2025 23:26:10 +0000 Manifest this update: Sat 20 Dec 2025 23:26:10 +0000 Manifest next update: Sat 27 Dec 2025 23:26:10 +0000 Files and hashes: 1: l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl (hash: 3OtaHYlawtYuW0J/VhGjZx63wdXOH5L/iVPnadfRPz8=) 2: F865B8887CEB11ECA79BD83DC4F9AE02.roa (hash: WLAogmk7UdDCu2qfIRAjMHBGGGVKtmrGTFfNV0VSRp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1114 (0x45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB09, serialNumber=975BD55D615C9860ACCFD86099853BCB19A99BE4 Validity Not Before: Dec 20 23:26:10 2025 GMT Not After : Dec 27 23:26:10 2025 GMT Subject: CN=69473092-dcf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bf:99:d4:e8:e0:19:79:db:c7:54:c2:48:b5: af:0c:c6:49:82:69:01:ff:2b:a2:26:61:06:70:a6: 85:f4:19:f3:08:48:ac:dd:82:53:6d:79:66:66:4e: 85:2a:b2:99:89:28:05:b1:86:58:ff:c6:0c:8f:f5: ee:77:e8:6c:2e:21:00:33:cb:05:be:ee:a7:16:96: 3a:87:2a:3a:c4:f7:77:7c:0a:09:21:8c:ac:e2:e5: 27:c9:3e:6e:de:5b:3a:30:57:16:8b:36:6c:f9:4c: eb:b9:fb:6e:64:16:05:40:93:f5:c4:50:c5:79:9f: 53:0e:31:13:2a:09:af:9b:b3:18:13:73:88:45:7b: 1e:b3:ac:b5:d5:34:d8:6f:bd:20:b0:4d:fc:37:29: b7:2b:45:9b:04:29:14:c8:e7:db:1f:17:90:21:16: 4d:b2:6b:45:47:89:96:37:bc:a2:48:de:cc:00:34: 93:a2:fc:ec:dc:da:50:31:73:5d:11:00:0e:88:e9: fb:48:e3:0a:e0:af:db:7a:b9:27:d1:a0:a3:72:ad: 49:86:13:1d:59:a4:0d:02:18:3f:8a:87:ae:ee:1d: c5:9c:4f:95:8d:b7:40:26:db:f1:2f:d9:12:86:a6: db:ef:6f:cf:4c:d9:7e:65:77:f8:ef:79:78:8d:df: 34:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F0:AF:69:16:30:81:E3:D1:76:E9:EF:58:09:4E:11:CB:02:FC:88 X509v3 Authority Key Identifier: keyid:97:5B:D5:5D:61:5C:98:60:AC:CF:D8:60:99:85:3B:CB:19:A9:9B:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:60:cc:64:83:05:44:84:b5:aa:11:cb:04:1c:cc:cb:f0:6c: 50:7e:ff:39:a6:2c:d7:35:2c:ad:e6:7c:bf:6f:63:12:6c:63: eb:8c:6c:0c:ca:ff:a0:b7:62:db:44:c6:6a:4c:82:b3:63:79: e0:63:14:7e:bd:23:69:f6:b2:7b:4f:cb:2e:92:af:94:63:02: 79:64:01:0b:87:f3:46:8d:fc:b0:b2:0f:25:79:cb:82:47:4a: 52:eb:80:6b:51:39:bc:32:64:9c:19:a2:d6:eb:0c:03:1c:4c: 1d:ed:99:cf:31:44:b8:f6:77:5c:10:fb:49:30:98:76:ce:16: a9:05:84:30:9c:6c:b3:6b:b7:7a:6f:9c:09:9a:22:80:90:41: 91:00:a6:78:dd:af:56:a9:07:37:f9:f0:09:9a:dd:20:86:b8: 9f:df:42:79:c2:44:7c:ac:3c:00:b7:11:58:0a:1c:10:a0:ee: e8:29:74:12:13:7c:74:51:a8:49:79:48:c5:11:75:19:1a:63: 99:0f:87:74:f4:cd:9d:56:26:cd:e2:31:71:a9:37:24:28:f4: 7e:63:e2:90:06:32:61:86:ef:72:10:f2:27:c0:92:84:b1:fe: df:aa:05:bd:91:19:d7:9d:08:6a:76:a2:b5:a6:0e:e4:c9:29: d6:c9:21:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCMDkxMTAvBgNVBAUTKDk3NUJENTVENjE1Qzk4NjBBQ0NGRDg2MDk5ODUzQkNC MTlBOTlCRTQwHhcNMjUxMjIwMjMyNjEwWhcNMjUxMjI3MjMyNjEwWjAYMRYwFAYD VQQDDA02OTQ3MzA5Mi1kY2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwb+Z1OjgGXnbx1TCSLWvDMZJgmkB/yuiJmEGcKaF9BnzCEis3YJTbXlmZk6F KrKZiSgFsYZY/8YMj/Xud+hsLiEAM8sFvu6nFpY6hyo6xPd3fAoJIYys4uUnyT5u 3ls6MFcWizZs+UzruftuZBYFQJP1xFDFeZ9TDjETKgmvm7MYE3OIRXses6y11TTY b70gsE38Nym3K0WbBCkUyOfbHxeQIRZNsmtFR4mWN7yiSN7MADSTovzs3NpQMXNd EQAOiOn7SOMK4K/berkn0aCjcq1JhhMdWaQNAhg/ioeu7h3FnE+VjbdAJtvxL9kS hqbb72/PTNl+ZXf473l4jd80UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPwr2kW MIHj0Xbp71gJThHLAvyIMB8GA1UdIwQYMBaAFJdb1V1hXJhgrM/YYJmFO8sZqZvk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkIwOS82MTFEQUJBMDdD RTgxMUVDQUM4OTQ4MzlDNEY5QUUwMi9sMXZWWFdGY21HQ3N6OWhnbVlVN3l4bXBt LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wxdlZYV0ZjbUdDc3o5aGdtWVU3eXhtcG0tUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkIwOS82MTFEQUJBMDdDRTgxMUVDQUM4OTQ4MzlDNEY5QUUwMi9sMXZWWFdGY21H Q3N6OWhnbVlVN3l4bXBtLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLYMxkgwVEhLWqEcsEHMzL8GxQfv85pizXNSyt5ny/b2MSbGPrjGwM yv+gt2LbRMZqTIKzY3ngYxR+vSNp9rJ7T8sukq+UYwJ5ZAELh/NGjfywsg8lecuC R0pS64BrUTm8MmScGaLW6wwDHEwd7ZnPMUS49ndcEPtJMJh2zhapBYQwnGyza7d6 b5wJmiKAkEGRAKZ43a9WqQc3+fAJmt0ghrif30J5wkR8rDwAtxFYChwQoO7oKXQS E3x0UahJeUjFEXUZGmOZD4d09M2dVibN4jFxqTckKPR+Y+KQBjJhhu9yEPInwJKE sf7fqgW9kRnXnQhqdqK1pg7kySnWySEf -----END CERTIFICATE-----Generated at Mon Dec 22 12:50:02 2025 by rpki-client