This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: iGdPZ+fNI8AfPZlBIy4i4dvRf+OtHNtEpchb9GZ+ViU= Subject key identifier: 5C:65:B2:AC:D9:D6:35:EC:6F:22:F7:DB:EE:20:FF:F9:B7:6A:0F:94 Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 04B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 04B4 Signing time: Mon 22 Dec 2025 22:59:21 +0000 Manifest this update: Mon 22 Dec 2025 22:59:21 +0000 Manifest next update: Mon 29 Dec 2025 22:59:21 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: 19mpHgYnm216pKcVG5zE8LdMnPT3pUz8mr0dnew/WHI=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: 6npCQGD8mKRcXKLy4jKCYWBhRpmmG05TZblrhBE83zM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1209 (0x4b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Dec 22 22:59:21 2025 GMT Not After : Dec 29 22:59:21 2025 GMT Subject: CN=6949cd49-7e82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:de:91:41:e7:f9:bc:31:61:ba:63:b4:df:ae: ed:ef:76:da:d9:c4:bb:62:c7:49:cf:90:5c:41:9f: c1:18:f6:5d:4b:ff:3c:ff:f4:58:5d:24:40:22:77: 1b:34:3b:2e:42:e7:b0:b6:a3:3d:5f:02:b5:c2:4b: 08:fe:55:e4:c6:f4:c5:21:6b:6a:1b:85:b4:9f:1a: 60:7e:5f:27:ce:b9:1d:c2:a6:3b:eb:58:f4:b3:ef: 92:11:c8:b2:e1:5f:3a:2f:e7:cb:a8:8e:60:32:5a: 21:61:bb:eb:0a:46:9a:2d:d6:1e:a5:60:a4:4f:27: b3:e1:97:d3:c0:c1:59:c6:06:46:db:1e:a4:e8:61: dc:0d:42:11:41:4e:cf:7c:47:37:ce:cd:17:0e:ab: 01:63:c1:af:8a:f9:97:7d:45:51:47:d4:1e:bd:a2: 71:23:f9:44:85:6d:bf:16:50:f6:32:6a:c3:a2:c5: e6:eb:11:20:69:7d:67:b8:47:d2:89:40:3a:5e:2a: 25:25:90:95:ff:6b:80:9b:8e:e4:1a:4a:58:62:37: 44:0a:36:fa:b7:bf:60:96:27:25:34:96:a2:0f:3b: e0:7f:7e:86:48:08:2c:ab:fe:4c:8d:86:39:44:2c: cd:4c:22:ee:95:82:14:06:a1:c1:db:e7:18:0c:7d: cd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:65:B2:AC:D9:D6:35:EC:6F:22:F7:DB:EE:20:FF:F9:B7:6A:0F:94 X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:70:16:da:b9:3b:b8:e4:7e:a7:fc:76:4d:fd:46:c9:b9:77: f4:dd:e1:32:96:e2:1e:68:af:3c:cf:82:f2:c2:c9:84:da:e1: c0:66:e8:27:ea:69:1d:fe:b2:3d:cd:f8:a6:36:c7:31:bc:19: 4d:30:ad:81:95:79:76:29:b5:78:c3:84:26:60:65:17:30:89: a6:c0:b1:18:e3:9d:af:41:eb:7b:7f:01:b4:6d:79:a9:e0:be: 6f:fb:f8:fe:a0:43:22:cb:4f:e3:0d:70:4c:f2:b7:42:71:39: e1:9c:c3:c8:86:12:b8:98:2a:bd:f6:f1:1e:44:86:38:1c:07: e5:c1:ed:67:62:63:a1:95:0e:8e:ed:29:22:2b:0d:b0:dc:3f: 7d:c9:42:7a:b2:b1:fe:28:e4:47:13:ff:7a:95:f5:2e:0b:12: ff:6f:f5:2d:98:ad:50:6d:5e:7f:78:3e:ed:e9:26:42:15:0b: 35:e6:fc:01:f0:17:f1:52:85:26:b6:24:34:ab:e7:2e:82:cc: 8a:95:e8:d4:35:49:f3:b8:24:ba:22:95:fb:ba:ba:fd:11:6c: a6:ac:ce:16:4d:0f:7c:b1:86:fa:60:d5:b9:16:e0:2c:39:96: 48:4c:0d:d0:bc:a4:6d:9a:30:83:43:7b:85:e1:7a:f3:4d:03: b6:29:f7:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUxMjIyMjI1OTIxWhcNMjUxMjI5MjI1OTIxWjAYMRYwFAYD VQQDDA02OTQ5Y2Q0OS03ZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj96RQef5vDFhumO0367t73ba2cS7YsdJz5BcQZ/BGPZdS/88//RYXSRAIncb NDsuQuewtqM9XwK1wksI/lXkxvTFIWtqG4W0nxpgfl8nzrkdwqY761j0s++SEciy 4V86L+fLqI5gMlohYbvrCkaaLdYepWCkTyez4ZfTwMFZxgZG2x6k6GHcDUIRQU7P fEc3zs0XDqsBY8GvivmXfUVRR9QevaJxI/lEhW2/FlD2MmrDosXm6xEgaX1nuEfS iUA6XiolJZCV/2uAm47kGkpYYjdECjb6t79gliclNJaiDzvgf36GSAgsq/5MjYY5 RCzNTCLulYIUBqHB2+cYDH3NJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxlsqzZ 1jXsbyL32+4g//m3ag+UMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHcBbauTu45H6n/HZN/UbJuXf03eEyluIeaK88z4LywsmE2uHAZugn 6mkd/rI9zfimNscxvBlNMK2BlXl2KbV4w4QmYGUXMImmwLEY452vQet7fwG0bXmp 4L5v+/j+oEMiy0/jDXBM8rdCcTnhnMPIhhK4mCq99vEeRIY4HAflwe1nYmOhlQ6O 7SkiKw2w3D99yUJ6srH+KORHE/96lfUuCxL/b/UtmK1QbV5/eD7t6SZCFQs15vwB 8BfxUoUmtiQ0q+cugsyKlejUNUnzuCS6IpX7urr9EWymrM4WTQ98sYb6YNW5FuAs OZZITA3QvKRtmjCDQ3uF4XrzTQO2KfdR -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:16 2025 by rpki-client