This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: 89Z9rf9qoHjM/oPMV3SAfCQvF0TcKySV3v42y9QZi+E= Subject key identifier: 9B:87:C4:FA:71:21:F4:2E:D2:45:43:69:DD:83:97:C7:05:E1:D4:FB Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 03A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 039A Signing time: Fri 19 Dec 2025 00:02:30 +0000 Manifest this update: Fri 19 Dec 2025 00:02:30 +0000 Manifest next update: Fri 26 Dec 2025 00:02:30 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: SsmZ1uH0QZr+wgM8FVz/PGpihvZbYXT1Eln+V2IqORU=) 2: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: fbrDSF5x4VvuEIAZikU3PfgDzKLrpZQ/e/7qrjWSoZs=) 3: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: RiHqUd66nfKg9bYuuoXV02nBPSlEq4ADYP42Ecnza24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 936 (0x3a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Dec 19 00:02:30 2025 GMT Not After : Dec 26 00:02:30 2025 GMT Subject: CN=69449616-31d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7f:65:af:49:1c:81:93:b5:1b:87:1c:f8:fd: 1a:61:de:71:8d:0b:cc:d1:43:d1:53:53:aa:eb:3a: f4:9a:be:8b:ca:ad:c7:58:56:2c:0c:c7:49:fc:38: c2:6c:07:59:96:de:a5:37:a9:c5:e5:98:4c:d6:4c: 13:51:8f:b1:1f:58:02:69:1e:80:d8:8e:9f:e2:60: 1b:87:98:fc:c5:2c:54:aa:9e:59:2e:3a:d1:b1:2d: ba:c7:af:12:22:36:d6:a7:8b:31:30:ce:89:7c:5b: e6:ec:99:99:81:2e:0d:f6:e7:a2:2c:27:56:76:14: dd:d3:65:a5:38:55:c2:3c:e2:11:eb:c3:9e:c0:21: b1:18:33:dd:26:78:8e:b9:db:d7:94:8b:d2:45:e9: f0:63:b3:0e:3c:fc:d5:92:49:22:75:f0:60:c2:ab: 90:3f:c7:d0:54:80:95:54:1f:83:0b:71:d5:81:2c: 6b:65:66:ac:01:ed:94:75:31:7d:2c:95:db:c7:5f: 82:1c:62:dd:c7:68:83:2f:c3:c8:a9:e1:4d:5c:4b: a8:60:24:1b:ac:b2:e8:12:e6:ad:d6:45:c9:60:71: 47:3c:f2:b8:f2:24:83:d2:72:b9:f9:5b:f7:a1:11: 9a:37:af:4b:53:69:53:43:dd:20:aa:a6:85:b6:fb: cb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:87:C4:FA:71:21:F4:2E:D2:45:43:69:DD:83:97:C7:05:E1:D4:FB X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ea:28:2f:5b:a7:cf:fc:45:d4:48:c4:07:6a:ff:95:b1:2c: c5:cb:db:3d:af:9d:fa:45:e8:ea:50:72:49:49:72:40:49:41: fe:03:dd:1c:a0:fe:a5:09:30:db:90:5f:50:a5:e6:15:77:52: 41:94:6e:e8:a8:09:3d:28:a3:40:05:1e:6f:15:2f:01:30:21: 17:d4:83:42:32:49:4b:01:bd:ef:71:5d:ea:ab:59:0b:2e:ef: b7:53:78:9d:47:0b:17:e1:1b:50:1c:a0:55:01:f1:90:68:d8: 7b:57:4d:89:01:b8:35:bd:c6:6a:81:ce:be:ed:51:f1:38:88: 7a:a8:4e:80:6a:90:8d:41:b5:b0:82:b6:e3:ea:32:16:5c:c4: 81:ed:e0:47:d3:7c:ae:c9:c0:da:c1:e7:fa:c4:dc:d2:89:b2: 28:50:58:75:f9:ef:6d:60:6f:bf:bb:c5:24:6b:6c:04:5e:71: e7:fd:96:da:38:cb:4b:bf:0c:fc:7d:22:a4:57:d5:13:43:d1: dd:8c:a9:dc:e0:e5:0b:c6:7f:e3:af:51:19:80:28:4b:f4:f3: 37:38:cf:99:6e:cd:c6:40:df:9f:fc:35:4a:c4:81:8d:5f:af: f1:75:62:ea:43:f5:06:ef:cb:cb:cf:9f:44:8b:fa:9b:e3:01: fa:1a:56:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjUxMjE5MDAwMjMwWhcNMjUxMjI2MDAwMjMwWjAYMRYwFAYD VQQDDA02OTQ0OTYxNi0zMWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0X9lr0kcgZO1G4cc+P0aYd5xjQvM0UPRU1Oq6zr0mr6Lyq3HWFYsDMdJ/DjC bAdZlt6lN6nF5ZhM1kwTUY+xH1gCaR6A2I6f4mAbh5j8xSxUqp5ZLjrRsS26x68S IjbWp4sxMM6JfFvm7JmZgS4N9ueiLCdWdhTd02WlOFXCPOIR68OewCGxGDPdJniO udvXlIvSRenwY7MOPPzVkkkidfBgwquQP8fQVICVVB+DC3HVgSxrZWasAe2UdTF9 LJXbx1+CHGLdx2iDL8PIqeFNXEuoYCQbrLLoEuat1kXJYHFHPPK48iSD0nK5+Vv3 oRGaN69LU2lTQ90gqqaFtvvLNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuHxPpx IfQu0kVDad2Dl8cF4dT7MB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs6igvW6fP/EXUSMQHav+VsSzFy9s9r536RejqUHJJSXJASUH+A90c oP6lCTDbkF9QpeYVd1JBlG7oqAk9KKNABR5vFS8BMCEX1INCMklLAb3vcV3qq1kL Lu+3U3idRwsX4RtQHKBVAfGQaNh7V02JAbg1vcZqgc6+7VHxOIh6qE6AapCNQbWw grbj6jIWXMSB7eBH03yuycDawef6xNzSibIoUFh1+e9tYG+/u8Uka2wEXnHn/Zba OMtLvwz8fSKkV9UTQ9HdjKnc4OULxn/jr1EZgChL9PM3OM+Zbs3GQN+f/DVKxIGN X6/xdWLqQ/UG78vLz59Ei/qb4wH6GlZp -----END CERTIFICATE-----Generated at Fri Dec 19 18:35:33 2025 by rpki-client