This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft File: 1h14JILiVI0iXRvIiINjk97jmBI.mft (raw, json) Hash identifier: 1VzMuLvr06HifJCeGbqlTXbbTj8GvQsLX+5fa6pG0l0= Subject key identifier: 02:50:99:FA:66:6B:82:DA:B8:9E:D3:AE:9A:4C:C3:48:29:CD:8F:FB Authority key identifier: D6:1D:78:24:82:E2:54:8D:22:5D:1B:C8:88:83:63:93:DE:E3:98:12 Certificate issuer: /CN=A91F0A98/serialNumber=D61D782482E2548D225D1BC888836393DEE39812 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft Manifest number: 01BB Signing time: Tue 23 Dec 2025 02:03:19 +0000 Manifest this update: Tue 23 Dec 2025 02:03:19 +0000 Manifest next update: Tue 30 Dec 2025 02:03:19 +0000 Files and hashes: 1: 1h14JILiVI0iXRvIiINjk97jmBI.crl (hash: IzIy58IoZWZrODA0Aqu8H2eYFX4USEQKYQP2ih93v3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.crl rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0A98, serialNumber=D61D782482E2548D225D1BC888836393DEE39812 Validity Not Before: Dec 23 02:03:19 2025 GMT Not After : Dec 30 02:03:19 2025 GMT Subject: CN=6949f867-8db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:eb:2f:27:20:fc:65:e3:6a:82:16:29:e6:17: 87:d0:63:93:7e:a1:13:0b:55:65:34:35:74:1f:9b: 3b:28:a7:0d:d3:a9:22:0d:84:7d:c7:80:ce:81:72: 98:6e:3e:af:33:e5:5e:ac:1c:71:00:fe:51:df:e8: b7:86:9f:7b:b8:ed:bf:6e:12:cc:cb:96:2c:e7:75: 91:f7:22:72:c0:55:83:58:e7:f2:e6:e2:6e:b1:23: 38:4c:3d:8e:c3:1e:64:a7:2f:76:00:f9:7f:5a:b7: c4:04:d8:54:4d:5a:cf:ca:d1:4a:f2:0b:01:5c:18: 20:74:d3:1f:0d:b5:bb:17:fe:7d:3f:74:71:7f:1d: e2:4d:bc:8a:a3:5a:f6:98:6d:23:5a:96:cc:cd:18: 8a:e6:39:be:cc:dd:2d:5b:87:dd:23:e6:1a:3d:5f: fb:7b:af:4b:fb:1e:2e:a8:ab:38:e8:4f:72:94:d2: c1:9d:c0:43:24:81:08:01:c5:ba:1a:65:8b:59:85: 92:6a:99:f7:b3:0a:fa:cc:ca:fd:be:6d:d3:bd:56: 7b:4a:f5:69:1b:28:ae:85:c5:aa:31:ff:1e:78:de: a2:6d:35:f5:54:b7:5b:07:05:58:f7:5e:05:03:69: 01:eb:7e:ab:56:84:21:e0:7f:22:cb:bb:cb:99:91: b4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:50:99:FA:66:6B:82:DA:B8:9E:D3:AE:9A:4C:C3:48:29:CD:8F:FB X509v3 Authority Key Identifier: keyid:D6:1D:78:24:82:E2:54:8D:22:5D:1B:C8:88:83:63:93:DE:E3:98:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:b5:f3:45:c2:56:e0:19:c1:fc:a9:79:3d:1f:79:72:77:e8: 20:c0:fa:df:7e:22:aa:b2:90:1d:cf:76:75:a9:6f:82:2a:15: d5:5f:fb:4e:b1:6e:83:8a:2c:cf:53:23:63:9f:16:f0:f0:4a: 16:d0:11:f1:a0:01:4a:30:b4:36:b4:1e:7f:86:63:61:9e:19: 99:f0:1a:f7:81:49:79:39:7b:c9:65:9b:f7:e2:58:9b:21:ca: bf:48:97:d4:bf:2c:c3:2c:7a:c6:ae:41:68:1b:b2:ef:0d:68: f0:85:38:e2:fe:0d:86:b8:9f:fc:0b:09:26:04:04:52:05:4f: 51:3a:a6:6e:02:84:02:a0:5b:29:48:43:f9:23:e2:c8:30:42: d5:1a:dd:71:97:a5:ef:3b:8c:a7:60:a8:19:af:ac:f1:96:32: 59:86:4d:76:b1:fc:53:be:bb:fb:f7:a4:6b:a2:bf:55:32:b2: c3:28:f0:6d:69:20:7a:6e:96:42:52:7f:74:9e:6c:94:86:23: 16:5a:58:d0:a9:f2:e3:a2:fa:03:da:07:0b:29:11:34:e1:52: 30:d9:ae:5b:fb:18:7e:cb:bb:13:5b:f0:03:f9:73:f6:1f:18: 9a:c0:57:72:71:a1:95:9a:25:8a:2d:a6:ec:d5:d4:e3:af:13: a3:a4:22:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBOTgxMTAvBgNVBAUTKEQ2MUQ3ODI0ODJFMjU0OEQyMjVEMUJDODg4ODM2Mzkz REVFMzk4MTIwHhcNMjUxMjIzMDIwMzE5WhcNMjUxMjMwMDIwMzE5WjAYMRYwFAYD VQQDDA02OTQ5Zjg2Ny04ZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkusvJyD8ZeNqghYp5heH0GOTfqETC1VlNDV0H5s7KKcN06kiDYR9x4DOgXKY bj6vM+VerBxxAP5R3+i3hp97uO2/bhLMy5Ys53WR9yJywFWDWOfy5uJusSM4TD2O wx5kpy92APl/WrfEBNhUTVrPytFK8gsBXBggdNMfDbW7F/59P3Rxfx3iTbyKo1r2 mG0jWpbMzRiK5jm+zN0tW4fdI+YaPV/7e69L+x4uqKs46E9ylNLBncBDJIEIAcW6 GmWLWYWSapn3swr6zMr9vm3TvVZ7SvVpGyiuhcWqMf8eeN6ibTX1VLdbBwVY914F A2kB636rVoQh4H8iy7vLmZG0RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJQmfpm a4LauJ7TrppMw0gpzY/7MB8GA1UdIwQYMBaAFNYdeCSC4lSNIl0byIiDY5Pe45gS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEE5OC84RjQ4NjRFQTM1 RTAxMUVFODdDMkE2NzBDNEY5QUUwMi8xaDE0SklMaVZJMGlYUnZJaUlOams5N2pt QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoMTRKSUxpVkkwaVhSdklpSU5qazk3am1CSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEE5OC84RjQ4NjRFQTM1RTAxMUVFODdDMkE2NzBDNEY5QUUwMi8xaDE0SklMaVZJ MGlYUnZJaUlOams5N2ptQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAItfNFwlbgGcH8qXk9H3lyd+ggwPrffiKqspAdz3Z1qW+CKhXVX/tO sW6DiizPUyNjnxbw8EoW0BHxoAFKMLQ2tB5/hmNhnhmZ8Br3gUl5OXvJZZv34lib Icq/SJfUvyzDLHrGrkFoG7LvDWjwhTji/g2GuJ/8CwkmBARSBU9ROqZuAoQCoFsp SEP5I+LIMELVGt1xl6XvO4ynYKgZr6zxljJZhk12sfxTvrv796Rror9VMrLDKPBt aSB6bpZCUn90nmyUhiMWWljQqfLjovoD2gcLKRE04VIw2a5b+xh+y7sTW/AD+XP2 HxiawFdycaGVmiWKLabs1dTjrxOjpCLB -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:32 2025 by rpki-client