This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft File: 1BN478zNyo5lN-lfJ6o7NTdYCvM.mft (raw, json) Hash identifier: 3PtR91oYlj6lUU2K7p8upsm4CX/uHYQzpxRDVObXUOI= Subject key identifier: 98:66:2F:50:FA:9F:D6:74:7A:C7:BE:8D:36:FD:1C:71:20:B8:85:91 Authority key identifier: D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 Certificate issuer: /CN=A91F2E76/serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Certificate serial: 07F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft Manifest number: 07F3 Signing time: Mon 22 Dec 2025 20:24:58 +0000 Manifest this update: Mon 22 Dec 2025 20:24:58 +0000 Manifest next update: Mon 29 Dec 2025 20:24:58 +0000 Files and hashes: 1: 1BN478zNyo5lN-lfJ6o7NTdYCvM.crl (hash: 0DsbQdhktnrC7HhnOHB/Ks4Ej19m8PES4vPvoTVYCg4=) 2: 86AE60140D7A11EB9D346C48C4F9AE02.roa (hash: IYriA7iqlPrIGEwVZWLwnn3g/0OVL8pkTIBJVf9/TyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2E76, serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Validity Not Before: Dec 22 20:24:58 2025 GMT Not After : Dec 29 20:24:58 2025 GMT Subject: CN=6949a91a-3ba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ed:15:2a:d7:7e:f5:c7:17:c7:9c:bf:fe:77: 94:f5:d8:24:7e:b0:b7:0f:c9:65:aa:0d:d7:e1:5f: a5:1d:38:6d:ca:0f:10:0a:0a:bb:80:b6:38:31:a2: d3:4a:0d:ad:18:8d:56:a6:17:aa:91:f4:89:de:fa: 81:1a:67:bd:d9:0e:3b:a7:60:55:ad:6f:87:a2:d5: 2e:49:46:e7:f3:c7:c4:0e:f9:85:ef:0f:eb:79:0f: e3:f6:ec:b0:b5:7b:9f:19:65:b8:6a:cd:8d:50:7c: e2:b1:e1:5d:1d:4b:65:8c:0d:97:39:77:a6:2b:67: ea:52:dd:30:f6:04:8b:1c:a8:a1:a5:81:5b:29:41: 8d:26:01:94:0f:b7:88:d5:ec:f7:51:42:aa:e9:2e: 19:97:12:9d:6d:ab:96:ee:12:2a:05:96:22:d7:28: 64:61:8c:77:b2:62:2c:ba:1b:8d:3a:14:a9:4d:25: af:23:4c:5d:e5:0a:a5:f3:15:19:f5:0c:65:ba:8a: de:6f:d7:63:f0:46:04:49:27:c7:4f:3c:ca:bb:2e: b0:b0:7f:5b:7f:e3:43:36:2b:e9:c4:a6:c8:39:c6: 35:8b:4f:54:7a:a7:84:af:ea:d9:84:c4:8c:ec:fb: 46:c8:58:f5:e1:41:56:7c:90:97:a2:c3:76:bc:c0: 9a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:66:2F:50:FA:9F:D6:74:7A:C7:BE:8D:36:FD:1C:71:20:B8:85:91 X509v3 Authority Key Identifier: keyid:D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:be:29:61:0d:45:13:37:be:af:3f:3f:d7:81:85:01:f5:d6: cf:21:a5:59:e3:82:46:69:76:8d:58:ed:59:b1:f0:48:fd:48: 1c:a4:6a:4f:d9:eb:48:83:f2:86:eb:d2:bd:39:37:c0:10:8a: 6a:78:c9:77:46:53:47:4c:53:8d:47:7e:bf:9d:33:b3:01:74: ba:46:d9:f5:a0:81:cb:3e:9d:f8:e0:10:aa:89:7a:cb:8a:76: 37:32:54:a5:d0:4d:71:e0:06:d1:97:d6:e8:26:7a:aa:58:bc: 32:85:43:0c:e2:51:c1:a9:94:16:5e:13:ba:05:ca:1e:46:5b: 10:c8:80:c4:93:df:68:4c:03:c7:4e:4f:f1:7a:7c:ed:53:7c: 81:cb:78:cc:61:08:9c:5a:a5:0b:7a:28:ef:89:2e:65:fb:ad: 7d:fd:97:52:ba:a4:a5:81:23:69:78:65:3d:9a:d0:1d:1e:c5: 8b:65:5d:0f:99:4d:27:61:04:f4:d9:30:51:02:0d:20:5b:a1: a9:3b:9d:4d:9b:e4:5a:d9:62:30:6f:37:b3:7c:17:6b:e4:77: 2b:05:66:74:5f:05:d3:03:85:3d:29:c7:16:ad:24:0f:68:db: 72:90:31:8a:54:b7:3e:a8:ae:ce:53:ad:8e:d1:bc:ea:73:72: 2e:53:30:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJFNzYxMTAvBgNVBAUTKEQ0MTM3OEVGQ0NDRENBOEU2NTM3RTk1RjI3QUEzQjM1 Mzc1ODBBRjMwHhcNMjUxMjIyMjAyNDU4WhcNMjUxMjI5MjAyNDU4WjAYMRYwFAYD VQQDDA02OTQ5YTkxYS0zYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5u0VKtd+9ccXx5y//neU9dgkfrC3D8llqg3X4V+lHThtyg8QCgq7gLY4MaLT Sg2tGI1WpheqkfSJ3vqBGme92Q47p2BVrW+HotUuSUbn88fEDvmF7w/reQ/j9uyw tXufGWW4as2NUHziseFdHUtljA2XOXemK2fqUt0w9gSLHKihpYFbKUGNJgGUD7eI 1ez3UUKq6S4ZlxKdbauW7hIqBZYi1yhkYYx3smIsuhuNOhSpTSWvI0xd5Qql8xUZ 9Qxluoreb9dj8EYESSfHTzzKuy6wsH9bf+NDNivpxKbIOcY1i09UeqeEr+rZhMSM 7PtGyFj14UFWfJCXosN2vMCauQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhmL1D6 n9Z0ese+jTb9HHEguIWRMB8GA1UdIwQYMBaAFNQTeO/MzcqOZTfpXyeqOzU3WArz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkU3Ni84RjNDOUU2QTBE NzcxMUVCQkJBRTM0NDBDNEY5QUUwMi8xQk40Nzh6TnlvNWxOLWxmSjZvN05UZFlD dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFCTjQ3OHpOeW81bE4tbGZKNm83TlRkWUN2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkU3Ni84RjNDOUU2QTBENzcxMUVCQkJBRTM0NDBDNEY5QUUwMi8xQk40Nzh6Tnlv NWxOLWxmSjZvN05UZFlDdk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWvilhDUUTN76vPz/XgYUB9dbPIaVZ44JGaXaNWO1ZsfBI/UgcpGpP 2etIg/KG69K9OTfAEIpqeMl3RlNHTFONR36/nTOzAXS6Rtn1oIHLPp344BCqiXrL inY3MlSl0E1x4AbRl9boJnqqWLwyhUMM4lHBqZQWXhO6BcoeRlsQyIDEk99oTAPH Tk/xenztU3yBy3jMYQicWqULeijviS5l+619/ZdSuqSlgSNpeGU9mtAdHsWLZV0P mU0nYQT02TBRAg0gW6GpO51Nm+Ra2WIwbzezfBdr5HcrBWZ0XwXTA4U9KccWrSQP aNtykDGKVLc+qK7OU62O0bzqc3IuUzCZ -----END CERTIFICATE-----Generated at Tue Dec 23 02:25:32 2025 by rpki-client