This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: I2XxTR7ZKFhjqEnOgr4fmtgIL1CukuGVZ9GK30La5rI= Subject key identifier: 9E:16:93:CC:CC:DB:9B:8C:0C:51:83:46:58:2E:27:70:B9:B4:45:74 Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: 9E Signing time: Sun 21 Dec 2025 05:25:12 +0000 Manifest this update: Sun 21 Dec 2025 05:25:12 +0000 Manifest next update: Sun 28 Dec 2025 05:25:12 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: 95aLEPsEUGcU5p+sdCp+5af8Xm/A2/PM1WL6765MWkI=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:25:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Dec 21 05:25:12 2025 GMT Not After : Dec 28 05:25:12 2025 GMT Subject: CN=694784b8-5207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e6:26:d1:2f:61:67:e1:12:e1:bd:0d:2c:36: 73:03:e9:4b:e6:43:95:9b:b1:fb:65:23:2d:d4:06: 5a:04:28:18:37:db:93:d6:9b:54:62:16:79:57:9e: e6:ec:a4:e6:75:43:1e:c1:3f:e3:6e:cd:65:30:da: d1:70:1b:1a:89:71:8c:a2:ed:03:69:fa:53:29:bd: e2:86:e7:02:2e:ab:d9:fd:bc:c3:40:00:67:b1:d5: 68:dd:10:7b:1e:f0:d2:7e:e8:d7:c2:1a:f0:2e:4c: 22:75:69:c9:45:e2:94:9d:18:96:27:20:f3:39:e3: 34:87:19:12:0f:ce:64:3c:33:55:a1:bb:5e:b1:6c: 34:cf:44:0a:cf:50:cf:bb:6e:f5:93:ca:bd:89:fd: d1:14:9a:b4:e4:a0:84:fa:7c:d5:61:b7:94:b8:41: cb:7a:4a:2b:19:d1:77:1b:dd:8a:d8:75:9a:68:bb: ee:f3:20:87:d9:f2:e1:8d:de:a0:40:d2:2a:cb:d6: 96:52:24:fe:7d:ea:30:a3:c3:26:37:b4:4b:b4:c6: 3c:22:99:1d:20:e9:d1:83:5d:aa:34:c8:8e:b0:90: 51:19:5c:ab:f9:5b:55:80:79:0c:f1:cc:0a:94:85: 44:05:cf:ff:43:91:e7:d1:f6:77:d3:ed:33:04:1e: 98:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:16:93:CC:CC:DB:9B:8C:0C:51:83:46:58:2E:27:70:B9:B4:45:74 X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:f5:00:7f:36:fd:ec:c0:e8:f3:08:3f:5c:a0:6e:af:79:cc: 2e:ef:20:8b:25:b8:c2:81:d1:e3:43:bf:ea:ca:74:57:f1:f6: c5:3c:9f:10:4c:ff:6b:4e:e9:47:1b:fc:34:9c:f1:0e:c3:6b: cc:3a:7e:08:80:38:52:42:48:5d:e2:e0:13:f2:e7:fc:db:86: ca:f2:b4:9e:10:c4:83:98:ce:7f:34:9d:65:0d:ce:9d:a3:16: 69:2e:72:10:1b:7c:c0:9e:94:51:00:4b:6b:15:d8:6a:48:29: 43:b3:ea:31:b8:01:1d:b2:46:d5:2d:18:92:bd:6d:c6:46:3a: 9f:ce:55:00:3b:65:90:68:ef:76:16:ce:c7:dc:7b:85:34:fd: 3a:50:09:2d:5c:56:de:43:62:63:8d:3e:78:dd:0e:92:dc:77: 9f:36:3b:e6:94:17:ad:40:d1:c6:a3:1f:f0:a0:a1:51:5a:2d: 50:dc:9e:e3:3c:27:25:9c:43:4b:44:37:f6:63:f8:ef:86:e2: 90:be:d5:e4:ca:ad:89:8a:32:36:9c:ca:4f:be:40:fd:17:98: 6a:fb:72:4f:25:09:00:0b:e1:74:21:fa:9b:b0:44:93:48:9a: b5:28:11:16:27:a1:b4:a0:c8:6c:73:69:8a:38:5e:b6:2d:83: 80:ca:95:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQ0IxMTAvBgNVBAUTKDg5NjY0MjNFRTJBNDE1NjMxRjdBRjMxNEU0RDg4NDAw N0E4NDY4QjYwHhcNMjUxMjIxMDUyNTEyWhcNMjUxMjI4MDUyNTEyWjAYMRYwFAYD VQQDDA02OTQ3ODRiOC01MjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+Ym0S9hZ+ES4b0NLDZzA+lL5kOVm7H7ZSMt1AZaBCgYN9uT1ptUYhZ5V57m 7KTmdUMewT/jbs1lMNrRcBsaiXGMou0DafpTKb3ihucCLqvZ/bzDQABnsdVo3RB7 HvDSfujXwhrwLkwidWnJReKUnRiWJyDzOeM0hxkSD85kPDNVobtesWw0z0QKz1DP u271k8q9if3RFJq05KCE+nzVYbeUuEHLekorGdF3G92K2HWaaLvu8yCH2fLhjd6g QNIqy9aWUiT+feowo8MmN7RLtMY8IpkdIOnRg12qNMiOsJBRGVyr+VtVgHkM8cwK lIVEBc//Q5Hn0fZ30+0zBB6YMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4Wk8zM 25uMDFGDRlguJ3C5tEV0MB8GA1UdIwQYMBaAFIlmQj7ipBVjH3rzFOTYhAB6hGi2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFDQi82NTBFNjAwQUVB NUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZXTWZldk1VNU5pRUFIcUVh TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi82NTBFNjAwQUVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZX TWZldk1VNU5pRUFIcUVhTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI9QB/Nv3swOjzCD9coG6vecwu7yCLJbjCgdHjQ7/qynRX8fbFPJ8Q TP9rTulHG/w0nPEOw2vMOn4IgDhSQkhd4uAT8uf824bK8rSeEMSDmM5/NJ1lDc6d oxZpLnIQG3zAnpRRAEtrFdhqSClDs+oxuAEdskbVLRiSvW3GRjqfzlUAO2WQaO92 Fs7H3HuFNP06UAktXFbeQ2JjjT543Q6S3HefNjvmlBetQNHGox/woKFRWi1Q3J7j PCclnENLRDf2Y/jvhuKQvtXkyq2JijI2nMpPvkD9F5hq+3JPJQkAC+F0IfqbsEST SJq1KBEWJ6G0oMhsc2mKOF62LYOAypWh -----END CERTIFICATE-----Generated at Sun Dec 21 14:42:31 2025 by rpki-client