This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: eRuLpngRG64NsPtRxQkl+Njxd3FcyYOcEYNcO+irrHc= Subject key identifier: 93:5A:2E:01:24:04:61:14:C5:D6:DA:4B:E5:F9:89:DA:4B:23:8F:ED Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 3500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 34FA Signing time: Mon 22 Dec 2025 14:59:27 +0000 Manifest this update: Mon 22 Dec 2025 14:59:27 +0000 Manifest next update: Mon 29 Dec 2025 14:59:27 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: vYD3d3o3qOR6+F9OpgtlgOGWR8b2trxKLlzRmQvZM1Q=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: M6Pt8WXLhq//MKcmuNDOr2BuMndgWlnu7AwCPG6iTjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13568 (0x3500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Dec 22 14:59:27 2025 GMT Not After : Dec 29 14:59:27 2025 GMT Subject: CN=69495ccf-4ce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:be:5e:cd:88:ad:37:6a:92:27:fd:aa:37:b9: 90:06:ee:6a:72:55:9b:61:e9:38:14:3b:1d:b1:a3: f1:5c:a8:8b:50:34:73:26:ac:9f:b1:c0:77:35:14: 97:33:81:7b:29:89:98:86:a2:18:6c:2d:d9:ff:70: 80:3d:bb:92:27:06:3d:ca:ea:0e:44:f8:4f:cb:a6: 95:ed:88:98:ee:6b:4c:64:e4:e6:af:19:a5:66:b3: 0d:e8:c0:12:b8:e5:7e:c0:bb:cf:bc:41:4c:d1:78: a4:ea:bd:e7:e5:aa:ce:27:e9:05:fd:1f:06:ed:c8: fd:25:21:74:6d:a4:74:0d:cc:93:0d:0e:62:28:23: c1:0b:eb:2b:83:b0:b0:27:cb:c3:bc:d4:51:93:09: a9:e3:27:6e:ac:12:0a:19:22:89:0a:f5:2f:b0:98: b9:ad:e4:31:ff:9e:6f:26:9b:73:f3:19:46:c7:9a: 05:6a:70:3b:95:15:7d:dd:51:7e:27:fb:e1:db:a7: 9e:90:bc:57:19:70:e2:01:5b:a1:37:32:b4:b7:a9: 73:c5:27:1d:b0:79:5e:3d:a8:ca:d7:c4:aa:56:96: da:9e:5f:2e:04:b6:ea:84:b7:3e:2f:80:15:09:a0: 75:75:56:88:68:31:29:d2:fc:26:3d:66:a4:df:a9: cd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:5A:2E:01:24:04:61:14:C5:D6:DA:4B:E5:F9:89:DA:4B:23:8F:ED X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:50:48:74:07:83:16:7e:63:ca:62:dc:ec:b5:be:1e:a2:da: e7:51:0f:8b:0b:54:59:c7:1a:a7:21:a0:2f:49:8c:c4:19:23: 9a:0f:b3:03:cb:34:c3:b2:ac:e8:6e:df:27:a5:0c:30:20:6a: 2f:68:b9:f2:95:dc:a4:8f:8a:9d:fe:e0:ce:62:2c:4a:68:05: 58:bb:9e:61:13:6e:c9:63:81:1e:00:87:dc:23:ce:c6:12:9f: a6:fb:1d:26:7d:a9:0b:aa:c9:3f:b6:e7:9b:d1:54:e6:bd:c6: 04:a4:8d:97:df:f8:cf:ff:f0:ce:1c:44:12:2e:b3:0c:63:4d: a9:e8:9f:e1:05:b7:d0:6b:36:86:03:e5:1d:76:35:ba:1f:e2: dc:13:ee:80:18:b7:2d:46:e1:33:41:2b:71:25:e5:c2:6e:e1: 49:d3:d7:6d:c2:95:50:42:bf:12:6f:41:b9:03:14:dd:21:b1: 2e:c2:24:c4:65:a0:72:d7:c6:f2:43:25:a2:75:5c:17:37:59: cb:cf:b4:f9:8d:60:94:bb:18:96:56:d6:aa:56:92:d6:56:f2: 3c:d3:83:73:56:1d:ca:46:87:56:f4:47:ec:cb:fd:b3:e8:d0: 19:08:97:4c:b3:b6:0a:8e:1e:16:d4:66:b2:c5:4c:d9:37:e0: a5:b1:66:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjUxMjIyMTQ1OTI3WhcNMjUxMjI5MTQ1OTI3WjAYMRYwFAYD VQQDDA02OTQ5NWNjZi00Y2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvb5ezYitN2qSJ/2qN7mQBu5qclWbYek4FDsdsaPxXKiLUDRzJqyfscB3NRSX M4F7KYmYhqIYbC3Z/3CAPbuSJwY9yuoORPhPy6aV7YiY7mtMZOTmrxmlZrMN6MAS uOV+wLvPvEFM0Xik6r3n5arOJ+kF/R8G7cj9JSF0baR0DcyTDQ5iKCPBC+srg7Cw J8vDvNRRkwmp4ydurBIKGSKJCvUvsJi5reQx/55vJptz8xlGx5oFanA7lRV93VF+ J/vh26eekLxXGXDiAVuhNzK0t6lzxScdsHlePajK18SqVpbanl8uBLbqhLc+L4AV CaB1dVaIaDEp0vwmPWak36nNrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNaLgEk BGEUxdbaS+X5idpLI4/tMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbUEh0B4MWfmPKYtzstb4eotrnUQ+LC1RZxxqnIaAvSYzEGSOaD7MD yzTDsqzobt8npQwwIGovaLnyldykj4qd/uDOYixKaAVYu55hE27JY4EeAIfcI87G Ep+m+x0mfakLqsk/tueb0VTmvcYEpI2X3/jP//DOHEQSLrMMY02p6J/hBbfQazaG A+UddjW6H+LcE+6AGLctRuEzQStxJeXCbuFJ09dtwpVQQr8Sb0G5AxTdIbEuwiTE ZaBy18byQyWidVwXN1nLz7T5jWCUuxiWVtaqVpLWVvI804NzVh3KRodW9Efsy/2z 6NAZCJdMs7YKjh4W1GayxUzZN+ClsWaZ -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:03 2025 by rpki-client