This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: sEwqpENPFPLuo/ib6O9GrTD5yc55hzS1rCng6EoWw0g= Subject key identifier: 2E:36:22:3E:C0:E9:8F:24:0B:BF:56:39:FE:74:FA:D7:68:68:EE:BA Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 01BF Signing time: Tue 23 Dec 2025 02:02:38 +0000 Manifest this update: Tue 23 Dec 2025 02:02:38 +0000 Manifest next update: Tue 30 Dec 2025 02:02:38 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: Uz7KAevctUk5puG8lIKlGxV1l0sSWfl3/Z6JOSbgnWw=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Dec 23 02:02:38 2025 GMT Not After : Dec 30 02:02:38 2025 GMT Subject: CN=6949f83e-2889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9e:9d:95:4c:8d:26:64:db:c7:ca:db:9c:1b: c7:ac:0d:cd:f6:4f:52:b0:3f:23:45:13:ae:d3:fb: 46:86:aa:14:60:f5:d6:2a:1e:e0:1f:4f:db:c1:03: f4:1c:c5:d0:83:0c:8c:50:32:6a:71:46:ef:61:08: fb:e1:81:df:ef:f6:15:e9:8e:ca:6d:2a:f4:18:c1: 7d:d8:62:a3:22:f6:67:d1:da:2f:48:1a:12:87:3e: 1f:f5:be:ac:5f:0d:15:fa:9d:0a:f6:bd:72:b9:76: db:78:c8:3d:4d:52:e2:57:de:ae:1b:97:fd:8b:f0: 40:fa:1b:85:10:ce:73:b6:45:e6:02:1a:6e:4c:13: 60:a4:c0:d2:6f:4f:ad:7b:94:e8:d2:80:e7:32:11: f0:14:55:ab:13:c3:3d:37:c3:48:c4:6c:34:65:41: 3d:09:70:6e:f3:55:b7:47:75:6e:92:01:06:cb:13: 63:5f:7f:8e:b5:fe:55:ff:b6:2b:83:8b:47:0a:c4: ea:5f:4f:d8:8c:bf:72:5a:36:8f:60:31:7b:d5:46: 2f:b6:06:21:94:a5:a3:b7:fb:18:ba:5b:53:90:aa: b1:0e:24:7b:45:2e:45:17:0b:28:25:b4:ce:76:8c: 0d:da:54:93:07:25:9f:7e:39:fd:8b:10:4c:d5:6f: 80:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:36:22:3E:C0:E9:8F:24:0B:BF:56:39:FE:74:FA:D7:68:68:EE:BA X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:f2:22:cd:ff:ca:0a:55:53:4f:49:70:b4:15:c2:8a:a8:d1: f9:36:b1:1b:84:a7:1b:bd:37:d1:e4:ef:df:60:03:8c:58:4d: f3:0f:f2:51:3f:99:06:6c:ea:48:66:a8:b5:29:3e:c7:7c:d6: 6a:5a:93:64:57:71:42:40:16:cb:0e:2f:40:13:c2:a3:86:ea: 8f:16:ff:4c:2b:bc:5a:d9:d6:a4:95:80:b6:44:ae:b6:96:6d: ea:bf:68:92:e4:9d:35:d8:e1:ee:7a:6d:f2:03:2f:d2:4c:5c: 3e:a1:c4:d8:8d:0c:e6:00:64:4f:b4:ef:84:a5:40:79:13:41: ae:df:a9:d1:89:a4:f5:41:5d:62:48:18:56:63:ba:76:28:15: 31:81:2b:9c:ee:f8:84:4d:59:c5:b6:fe:f7:05:b9:25:14:e3: e4:06:cd:72:ae:5d:4a:a6:3d:eb:64:9d:45:9b:e8:73:36:39: e6:2b:d0:30:02:bc:b1:4e:fb:37:53:cd:06:bb:f3:a9:da:e2: 19:70:6f:87:03:0a:be:97:83:23:c9:18:7f:4e:5d:67:54:a4: 8c:41:44:12:d7:ab:96:72:f4:4c:ec:4c:ef:e1:32:17:7c:6e: e5:56:cf:ae:45:3e:59:ff:15:cb:3a:de:c5:da:39:59:4c:9b: 4c:dd:5c:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUxMjIzMDIwMjM4WhcNMjUxMjMwMDIwMjM4WjAYMRYwFAYD VQQDDA02OTQ5ZjgzZS0yODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ6dlUyNJmTbx8rbnBvHrA3N9k9SsD8jRROu0/tGhqoUYPXWKh7gH0/bwQP0 HMXQgwyMUDJqcUbvYQj74YHf7/YV6Y7KbSr0GMF92GKjIvZn0dovSBoShz4f9b6s Xw0V+p0K9r1yuXbbeMg9TVLiV96uG5f9i/BA+huFEM5ztkXmAhpuTBNgpMDSb0+t e5To0oDnMhHwFFWrE8M9N8NIxGw0ZUE9CXBu81W3R3VukgEGyxNjX3+Otf5V/7Yr g4tHCsTqX0/YjL9yWjaPYDF71UYvtgYhlKWjt/sYultTkKqxDiR7RS5FFwsoJbTO dowN2lSTByWffjn9ixBM1W+AsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC42Ij7A 6Y8kC79WOf50+tdoaO66MB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB08iLN/8oKVVNPSXC0FcKKqNH5NrEbhKcbvTfR5O/fYAOMWE3zD/JR P5kGbOpIZqi1KT7HfNZqWpNkV3FCQBbLDi9AE8KjhuqPFv9MK7xa2daklYC2RK62 lm3qv2iS5J012OHuem3yAy/STFw+ocTYjQzmAGRPtO+EpUB5E0Gu36nRiaT1QV1i SBhWY7p2KBUxgSuc7viETVnFtv73BbklFOPkBs1yrl1Kpj3rZJ1Fm+hzNjnmK9Aw AryxTvs3U80Gu/Op2uIZcG+HAwq+l4MjyRh/Tl1nVKSMQUQS16uWcvRM7Ezv4TIX fG7lVs+uRT5Z/xXLOt7F2jlZTJtM3VwC -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:53 2025 by rpki-client