This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft File: 1WeS1ZfpzdAr_BbQtJLaParggPw.mft (raw, json) Hash identifier: OAa2bg8w8mh2yBMbfA+28oLbGjDkzkh3dvg3SsCd/fs= Subject key identifier: 0D:66:A3:8A:B6:D4:C9:41:12:08:5D:95:9D:0E:10:CA:6A:C3:23:E2 Authority key identifier: D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC Certificate issuer: /CN=A91731EA/serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Certificate serial: 1F8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft Manifest number: 1F67 Signing time: Wed 31 Dec 2025 15:51:35 +0000 Manifest this update: Wed 31 Dec 2025 15:51:34 +0000 Manifest next update: Wed 07 Jan 2026 15:51:34 +0000 Files and hashes: 1: 1WeS1ZfpzdAr_BbQtJLaParggPw.crl (hash: pmtCs1irWAcK+1YvbGYPVM+8S7oMBZ80tdKrIO0tntU=) 2: 317CF2A634E811EFA8BEA738C4F9AE02.roa (hash: zBjYJnHa1n009AI95wfFYThs3iAA9crPH92IoCYjy4g=) 3: 500DFDA8578611EA8CC3B124C4F9AE02.roa (hash: U+HOR1WWM3bWUanGm2xW2p0h9XaY3gPXOWuTGfO7XNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 15:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8078 (0x1f8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731EA, serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Validity Not Before: Dec 31 15:51:34 2025 GMT Not After : Jan 7 15:51:34 2026 GMT Subject: CN=69554687-0c1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:4a:53:e2:50:87:b1:60:5d:14:e2:70:94: ec:d5:b3:0f:e3:4c:c2:9c:f7:7e:bc:06:1c:09:a1: 2e:58:66:05:32:24:d0:0c:40:a3:3a:f6:da:b5:8d: af:ea:bd:11:9d:87:3b:f3:08:fb:cc:43:a4:f1:47: d2:69:3b:e2:2a:02:92:5e:32:42:21:22:da:0a:36: 07:61:9b:38:e1:01:c9:fa:3f:9d:12:01:88:38:6c: 7d:54:50:1a:70:6c:df:72:59:91:4d:de:e5:31:5e: b9:60:df:c4:ab:27:ba:10:17:13:4c:ac:f6:2a:5e: 61:cc:3d:4a:5e:1a:11:f8:bf:46:bb:aa:ac:af:d0: ae:b3:c2:c6:e4:a6:d5:33:2f:a9:76:08:be:0a:4f: 1f:7b:49:75:4f:d9:c5:4e:44:d0:71:ca:ac:87:27: 8e:7d:51:96:18:31:0d:fe:06:56:5a:bb:0a:d6:3a: ca:75:ad:0f:3e:e8:6e:ea:5e:f5:4c:8c:5f:5a:66: 64:52:2c:e4:71:0b:be:5f:f7:cc:7c:c9:63:a8:dd: 0c:ac:33:ae:9e:24:ab:34:6c:7f:ca:4e:99:93:b2: d2:45:f0:f2:76:fb:0e:88:a1:1e:c9:f6:3f:64:71: 7d:33:00:11:bc:d8:4a:1b:c4:a9:5c:04:58:eb:ac: 39:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:66:A3:8A:B6:D4:C9:41:12:08:5D:95:9D:0E:10:CA:6A:C3:23:E2 X509v3 Authority Key Identifier: keyid:D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:61:49:67:d0:ba:4b:60:b0:82:cf:2d:30:f2:2e:7a:97:89: df:b7:33:58:2b:8f:cf:65:31:86:02:95:b5:15:92:62:60:97: 2c:a0:dc:65:af:50:a5:6c:0c:43:c8:56:f9:42:17:aa:43:31: 3f:8c:d7:e0:81:9a:06:05:f1:ff:e0:c9:64:5f:f0:de:35:3d: 91:e3:05:44:41:e1:e1:31:4c:75:9f:b1:95:a9:f9:2c:65:c4: 9b:22:2d:6b:19:6b:89:ac:77:be:d5:96:48:05:89:6d:14:16: 6c:36:42:d0:fc:5c:8e:9e:e2:e3:60:10:f2:01:d3:1b:ae:c6: e4:27:a5:2c:91:27:28:98:ff:36:a7:e8:9b:0a:9c:ab:ee:e5: a3:e1:f7:40:a9:1e:94:a2:1f:02:d7:5d:7b:c9:e0:1b:4b:a4: 4d:72:ce:c4:2f:c9:92:a5:62:76:55:47:6d:2e:5a:63:f3:c8: 3d:66:20:7d:f1:1e:0f:bc:76:b9:6d:86:cb:e5:d1:84:bd:c9: c6:5b:b7:e2:db:81:81:93:30:b3:7f:1c:3a:39:62:e8:fa:6a: c9:c5:0d:ed:0b:c2:ee:c4:72:c3:f9:17:ea:fe:81:79:29:b1: 2e:a1:b8:9f:97:8a:58:26:2e:fc:67:24:48:72:75:cf:42:4e: 10:4a:ed:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxRUExMTAvBgNVBAUTKEQ1Njc5MkQ1OTdFOUNERDAyQkZDMTZEMEI0OTJEQTNE QUFFMDgwRkMwHhcNMjUxMjMxMTU1MTM0WhcNMjYwMTA3MTU1MTM0WjAYMRYwFAYD VQQDDA02OTU1NDY4Ny0wYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5RKU+JQh7FgXRTicJTs1bMP40zCnPd+vAYcCaEuWGYFMiTQDECjOvbatY2v 6r0RnYc78wj7zEOk8UfSaTviKgKSXjJCISLaCjYHYZs44QHJ+j+dEgGIOGx9VFAa cGzfclmRTd7lMV65YN/Eqye6EBcTTKz2Kl5hzD1KXhoR+L9Gu6qsr9Cus8LG5KbV My+pdgi+Ck8fe0l1T9nFTkTQccqshyeOfVGWGDEN/gZWWrsK1jrKda0PPuhu6l71 TIxfWmZkUizkcQu+X/fMfMljqN0MrDOuniSrNGx/yk6Zk7LSRfDydvsOiKEeyfY/ ZHF9MwARvNhKG8SpXARY66w5cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1mo4q2 1MlBEghdlZ0OEMpqwyPiMB8GA1UdIwQYMBaAFNVnktWX6c3QK/wW0LSS2j2q4ID8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzFFQS85QUYzRUQyODVF RUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpkQXJfQmJRdEpMYVBhcmdn UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXZVMxWmZwemRBcl9CYlF0SkxhUGFyZ2dQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzFFQS85QUYzRUQyODVFRUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpk QXJfQmJRdEpMYVBhcmdnUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqYUln0LpLYLCCzy0w8i56l4nftzNYK4/PZTGGApW1FZJiYJcsoNxl r1ClbAxDyFb5QheqQzE/jNfggZoGBfH/4MlkX/DeNT2R4wVEQeHhMUx1n7GVqfks ZcSbIi1rGWuJrHe+1ZZIBYltFBZsNkLQ/FyOnuLjYBDyAdMbrsbkJ6UskScomP82 p+ibCpyr7uWj4fdAqR6Uoh8C1117yeAbS6RNcs7EL8mSpWJ2VUdtLlpj88g9ZiB9 8R4PvHa5bYbL5dGEvcnGW7fi24GBkzCzfxw6OWLo+mrJxQ3tC8LuxHLD+Rfq/oF5 KbEuobifl4pYJi78ZyRIcnXPQk4QSu1w -----END CERTIFICATE-----Generated at Thu Jan 1 17:14:24 2026 by rpki-client