This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: EaoyRsYiCYsTDl7c/9m2GZaz3d5DmWoQjHX3nCr25UE= Subject key identifier: 0B:5C:29:0F:06:00:07:E4:B4:7A:DF:03:5F:A4:B6:91:B1:B2:47:39 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0CBA Signing time: Mon 22 Dec 2025 18:41:06 +0000 Manifest this update: Mon 22 Dec 2025 18:41:05 +0000 Manifest next update: Mon 29 Dec 2025 18:41:05 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: I1sIboQaOoqGnRK4A/0/sH3QHQGq0SOnc2LY8HJzkLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2930 (0xb72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Dec 22 18:41:05 2025 GMT Not After : Dec 29 18:41:05 2025 GMT Subject: CN=694990c2-7f68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:db:71:a0:ec:06:2d:56:f9:68:37:04:8f:ea: 12:9e:6f:af:22:6a:f1:3c:7e:25:a6:16:7b:3e:74: 7d:8c:4b:32:a0:77:0f:72:09:37:3a:35:fe:1b:02: 25:b6:29:18:2e:37:3b:56:51:23:d0:85:d4:18:78: 14:56:33:c9:e2:7e:13:91:f4:f8:1a:72:95:c6:1f: 2f:5e:45:3d:dc:80:35:8e:86:8e:2b:d1:9a:c8:9a: 53:c7:16:a1:57:05:0d:ec:9f:97:cc:70:8b:51:2b: 73:f2:a3:bf:2c:f8:28:04:8a:e7:2c:c5:9a:cc:48: 8d:a6:a0:8f:5d:0b:d6:c0:e9:84:cb:fc:70:b9:c8: 3c:ac:eb:a7:30:48:80:9b:96:d0:ce:3e:51:b4:b5: 7b:52:44:13:54:88:ba:87:72:8c:c4:a9:5e:0a:2a: 4f:1d:ce:5c:c1:00:43:e5:12:22:c7:14:e0:63:16: c3:38:37:b5:e6:70:f8:92:e1:69:5d:f8:a3:ac:8a: 28:c4:a0:c4:59:35:df:8c:04:eb:43:0d:f6:af:98: c3:fb:4b:3d:0c:5a:0d:19:fd:df:c1:ce:2d:2c:53: 2a:ad:a3:21:4e:4f:4b:66:98:ba:b9:98:c8:47:f6: b1:55:86:29:29:55:6c:25:a0:32:ff:5e:8c:81:d9: 8a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:5C:29:0F:06:00:07:E4:B4:7A:DF:03:5F:A4:B6:91:B1:B2:47:39 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:95:1f:e9:66:38:2b:03:69:38:9a:95:ea:48:da:69:24:6d: 77:ba:a9:ca:f2:2a:5a:39:6d:5e:a9:e8:3c:5c:97:9b:96:0e: 82:bf:22:bf:3e:56:75:f4:91:f6:76:97:72:ae:2c:14:d7:a5: 1c:ae:4a:ba:05:88:a6:08:84:a6:92:3b:72:4e:5c:74:1b:b3: 77:ac:cf:74:90:0c:51:5e:4d:41:fc:e9:5d:0e:50:27:e7:af: f6:be:26:d8:f5:3c:0c:a6:2b:09:49:f1:31:2a:d4:e9:94:e1: 62:ac:18:8f:39:9c:6e:d3:3c:60:12:81:48:f0:7f:89:24:c4: 4c:33:7f:96:49:72:4a:98:9c:0b:46:b0:44:0f:05:e8:17:f1: e8:eb:3f:f9:d5:74:94:2e:2b:f6:f1:9a:17:2e:03:7d:07:92: ba:7c:34:2c:6d:ac:d8:85:00:59:9a:3a:d1:1d:55:06:64:9f: d7:af:52:c9:21:e4:42:e2:15:6d:02:b9:b4:47:87:fc:85:99: 9c:5f:9b:f8:eb:fe:68:c2:ba:75:79:ef:ba:0f:54:ad:4a:f1: 30:ee:d9:30:ed:97:0a:49:6e:ec:d4:b2:21:96:3f:cb:d0:93: d8:3f:1e:4f:77:d9:75:bf:26:0b:aa:e0:ee:63:e6:61:c5:50: 54:5c:34:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUxMjIyMTg0MTA1WhcNMjUxMjI5MTg0MTA1WjAYMRYwFAYD VQQDDA02OTQ5OTBjMi03ZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9txoOwGLVb5aDcEj+oSnm+vImrxPH4lphZ7PnR9jEsyoHcPcgk3OjX+GwIl tikYLjc7VlEj0IXUGHgUVjPJ4n4TkfT4GnKVxh8vXkU93IA1joaOK9GayJpTxxah VwUN7J+XzHCLUStz8qO/LPgoBIrnLMWazEiNpqCPXQvWwOmEy/xwucg8rOunMEiA m5bQzj5RtLV7UkQTVIi6h3KMxKleCipPHc5cwQBD5RIixxTgYxbDODe15nD4kuFp XfijrIooxKDEWTXfjATrQw32r5jD+0s9DFoNGf3fwc4tLFMqraMhTk9LZpi6uZjI R/axVYYpKVVsJaAy/16MgdmKNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtcKQ8G AAfktHrfA1+ktpGxskc5MB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9lR/pZjgrA2k4mpXqSNppJG13uqnK8ipaOW1eqeg8XJeblg6CvyK/ PlZ19JH2dpdyriwU16Ucrkq6BYimCISmkjtyTlx0G7N3rM90kAxRXk1B/OldDlAn 56/2vibY9TwMpisJSfExKtTplOFirBiPOZxu0zxgEoFI8H+JJMRMM3+WSXJKmJwL RrBEDwXoF/Ho6z/51XSULiv28ZoXLgN9B5K6fDQsbazYhQBZmjrRHVUGZJ/Xr1LJ IeRC4hVtArm0R4f8hZmcX5v46/5owrp1ee+6D1StSvEw7tkw7ZcKSW7s1LIhlj/L 0JPYPx5Pd9l1vyYLquDuY+ZhxVBUXDRz -----END CERTIFICATE-----Generated at Wed Dec 24 19:30:36 2025 by rpki-client