This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: HCUjHA/wxK2GZcnhNJne/ApMn9nZfFcSujnUea1Bu1k= Subject key identifier: 1E:E8:66:BA:56:33:29:0B:D7:C7:A8:CD:83:4C:AE:EA:60:4D:75:8D Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 15B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 15A5 Signing time: Mon 22 Dec 2025 16:29:44 +0000 Manifest this update: Mon 22 Dec 2025 16:29:44 +0000 Manifest next update: Mon 29 Dec 2025 16:29:44 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: BEbE/Ub1mLSSngV2UmiPPjz1bNK/nz+ALgvg0i0kxUI=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: 4omxKGchAtANINcKNMUv81DprGm9m6mhlkl3cRG7vXI=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: b5yX1QAOSGwKLnK6fw3PZvYuW4+NY2un1A6EM1jEmyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5561 (0x15b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: Dec 22 16:29:44 2025 GMT Not After : Dec 29 16:29:44 2025 GMT Subject: CN=694971f8-7550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3f:38:fb:11:bf:8d:16:8a:b6:fe:56:2b:09: 9c:fb:33:83:ba:f4:2e:06:fd:93:19:df:5e:8a:55: 6e:10:94:af:82:f8:60:c3:03:5f:ef:bf:11:73:1a: de:33:45:ce:98:64:41:15:a7:d5:67:9b:73:0d:37: 72:97:4c:fb:be:85:55:5d:ea:7d:57:74:82:0a:cc: 52:69:e7:60:87:c4:ec:7d:90:26:d2:89:f5:c7:0a: 9a:42:f3:58:ab:43:c9:4f:88:b5:ae:20:84:86:51: b1:e6:69:3c:00:ae:ac:54:ef:81:87:83:24:a7:31: 4a:d8:53:2e:a0:82:4b:68:35:63:1f:44:ef:bf:89: e8:be:7a:3a:98:bc:8d:68:91:89:b6:87:26:0c:7b: f0:f2:f0:bc:21:29:41:30:be:7e:20:c5:9b:71:56: 39:55:52:77:73:3a:5f:d9:94:71:d2:e5:dc:2b:fc: 4f:38:f6:64:f2:9b:bb:2f:1c:79:fb:98:ce:0a:2e: d6:66:0c:3e:d1:b2:a6:98:65:12:52:cb:86:ae:50: 93:30:d3:cc:38:c8:41:d9:d0:ea:d3:6c:9c:12:4d: f6:22:62:49:5d:cd:03:49:b9:38:8f:32:58:86:fa: 1a:5b:34:54:21:6e:e4:93:b0:c5:fa:cb:5b:28:81: c0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E8:66:BA:56:33:29:0B:D7:C7:A8:CD:83:4C:AE:EA:60:4D:75:8D X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:45:58:31:8e:1f:6e:82:1e:b4:74:71:b2:50:65:a4:85:c4: ff:bb:a1:37:2a:06:e3:ed:76:dc:0f:6f:ae:52:eb:94:b6:e9: 4e:2a:d1:be:45:e8:ba:97:c5:51:f6:eb:b5:40:b4:3a:79:61: ec:6a:c4:dd:f1:8c:e0:2e:de:7e:9b:19:fc:e3:96:b6:be:6c: e6:fd:87:66:6d:22:18:96:04:ad:e5:c8:3b:c0:41:64:e0:cb: ec:f5:be:61:76:8a:52:f8:f8:fc:8e:ef:a8:38:8f:2b:22:3a: 43:85:08:0b:8a:a0:cc:16:e0:59:04:b5:4a:8c:65:6c:3b:fc: b9:36:53:1f:d2:05:d0:0e:9c:c9:31:c2:e8:9e:be:3f:93:89: 08:a9:3b:1b:e5:06:54:61:b7:62:5e:82:9b:7d:5e:2f:89:39: 9b:50:07:20:d1:45:b9:da:63:d4:0b:28:83:09:e5:34:79:b7: 63:b6:8f:5e:6d:52:ad:72:09:07:16:89:a6:e9:8f:98:e0:1e: 6f:51:dd:79:ca:7f:ba:a4:7b:0c:31:6b:57:f3:66:a1:88:b6: 93:7a:91:05:27:6e:ac:9d:8b:db:33:e4:e5:3d:8a:ea:e4:44: bb:0e:75:95:b5:8f:3d:77:14:82:88:18:3c:35:dc:3d:95:bb: f9:e5:f7:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjUxMjIyMTYyOTQ0WhcNMjUxMjI5MTYyOTQ0WjAYMRYwFAYD VQQDDA02OTQ5NzFmOC03NTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0D84+xG/jRaKtv5WKwmc+zODuvQuBv2TGd9eilVuEJSvgvhgwwNf778Rcxre M0XOmGRBFafVZ5tzDTdyl0z7voVVXep9V3SCCsxSaedgh8TsfZAm0on1xwqaQvNY q0PJT4i1riCEhlGx5mk8AK6sVO+Bh4MkpzFK2FMuoIJLaDVjH0Tvv4novno6mLyN aJGJtocmDHvw8vC8ISlBML5+IMWbcVY5VVJ3czpf2ZRx0uXcK/xPOPZk8pu7Lxx5 +5jOCi7WZgw+0bKmmGUSUsuGrlCTMNPMOMhB2dDq02ycEk32ImJJXc0DSbk4jzJY hvoaWzRUIW7kk7DF+stbKIHAFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7oZrpW MykL18eozYNMrupgTXWNMB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIRVgxjh9ugh60dHGyUGWkhcT/u6E3Kgbj7XbcD2+uUuuUtulOKtG+ Rei6l8VR9uu1QLQ6eWHsasTd8YzgLt5+mxn845a2vmzm/YdmbSIYlgSt5cg7wEFk 4Mvs9b5hdopS+Pj8ju+oOI8rIjpDhQgLiqDMFuBZBLVKjGVsO/y5NlMf0gXQDpzJ McLonr4/k4kIqTsb5QZUYbdiXoKbfV4viTmbUAcg0UW52mPUCyiDCeU0ebdjto9e bVKtcgkHFomm6Y+Y4B5vUd15yn+6pHsMMWtX82ahiLaTepEFJ26snYvbM+TlPYrq 5ES7DnWVtY89dxSCiBg8Ndw9lbv55fd6 -----END CERTIFICATE-----Generated at Tue Dec 23 16:14:49 2025 by rpki-client