This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft File: I1WemnFX565_YExCiDcpLeAzCaA.mft (raw, json) Hash identifier: PhFexBrzHipg7zjcC0BReCGPXByMlK1v/4dRNyxV/Uw= Subject key identifier: DF:0E:87:73:5E:99:10:A6:21:AD:87:C4:24:AA:AB:31:5D:37:91:77 Authority key identifier: 23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 Certificate issuer: /CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Certificate serial: 0304 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft Manifest number: 02FD Signing time: Fri 19 Dec 2025 00:25:58 +0000 Manifest this update: Fri 19 Dec 2025 00:25:58 +0000 Manifest next update: Fri 26 Dec 2025 00:25:58 +0000 Files and hashes: 1: I1WemnFX565_YExCiDcpLeAzCaA.crl (hash: S6zTs4UK3ojUJ6YNBInulx1LfiNnAFsE63mO56qc734=) 2: CFF0FDEC025911EDA0A85765C4F9AE02.roa (hash: wZPPG2aGGXldL11r5unMH6Ru66NW1UIJskV7UNSU5h4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 772 (0x304) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA2A, serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Validity Not Before: Dec 19 00:25:58 2025 GMT Not After : Dec 26 00:25:58 2025 GMT Subject: CN=69449b96-fdae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:38:8b:90:d7:9b:c5:bd:29:04:ac:e6:18:1f: 87:8d:6a:72:e9:f1:cc:1a:e9:7f:fa:65:64:ff:d4: 45:5c:6d:4b:2b:75:b4:e1:2d:11:b2:69:1d:f7:7d: 7e:b1:00:af:32:49:2e:7a:76:92:84:6f:38:5d:dc: f0:9e:ed:e9:56:09:a0:e2:ad:f2:41:cc:b0:5f:87: 35:35:46:0d:f7:c7:09:eb:41:a5:aa:47:65:15:e7: e0:cf:7b:75:e4:17:18:8d:52:8e:00:9c:a7:5d:85: 71:76:b9:c6:1b:cf:c2:a9:f5:26:4a:54:07:55:07: c3:21:f4:dd:b9:c1:67:75:28:89:29:be:b3:98:96: af:1a:71:1c:69:e5:41:78:56:c5:5e:27:ee:03:ad: e1:94:02:80:37:00:1a:79:00:64:08:71:fd:56:0c: ad:1b:b8:70:5e:26:01:65:ba:a0:9c:d5:d0:40:0e: 60:12:a7:0c:23:4c:b0:82:75:87:c6:22:7f:99:c3: 1e:a4:6d:85:b6:a5:c7:80:9a:d3:65:8f:e3:c9:31: 42:b6:ec:19:68:7a:92:0a:33:05:c5:45:47:68:f5: d4:9a:97:a8:21:67:c8:80:39:a3:75:f0:19:d1:ee: a0:78:35:c0:98:a1:ad:6c:91:67:a0:f1:c7:27:42: 87:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:0E:87:73:5E:99:10:A6:21:AD:87:C4:24:AA:AB:31:5D:37:91:77 X509v3 Authority Key Identifier: keyid:23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:41:78:4a:87:a4:a8:a4:9e:18:af:b1:41:be:43:71:f5:33: 02:94:e2:54:fb:3c:ae:c4:ae:d4:b6:0d:7e:3a:96:74:6f:04: 07:9a:1f:5c:c8:d2:d7:3e:6c:79:29:81:dd:da:9c:16:16:50: 5c:e1:f0:4a:80:5a:cd:19:99:d6:54:c0:51:d8:32:46:47:ac: 9a:8d:4d:59:2d:89:8d:e6:47:b3:3e:f9:43:b6:d4:de:68:fe: 13:fe:7c:82:c9:55:2c:1a:02:7a:33:76:eb:e7:26:34:c1:cc: 10:ae:f0:b0:03:ab:84:dc:bf:7a:6d:69:e0:9c:ea:a8:a4:d0: c7:b9:6a:62:91:d8:ba:11:f6:fc:59:10:d1:57:be:d7:14:e5: 23:9b:d6:77:de:43:6f:88:08:85:a9:98:50:1f:59:09:0a:c2: b6:03:f9:6a:2c:d4:2b:de:bf:b3:72:4d:4a:51:0a:8b:28:9e: f6:72:e4:d0:e3:e8:46:6b:43:7d:92:78:97:0a:d3:fa:ed:9b: 7b:d8:3c:46:de:e1:18:1c:4b:26:5a:d1:23:34:bb:1a:25:c7: 41:de:61:f4:b2:c3:0b:7e:7f:e9:77:a9:82:b2:54:ec:55:cb: 7a:2d:df:f6:5c:42:3d:6c:35:99:ff:29:19:d0:42:84:4c:ae: ab:7e:1f:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBMkExMTAvBgNVBAUTKDIzNTU5RTlBNzE1N0U3QUU3RjYwNEM0Mjg4MzcyOTJE RTAzMzA5QTAwHhcNMjUxMjE5MDAyNTU4WhcNMjUxMjI2MDAyNTU4WjAYMRYwFAYD VQQDDA02OTQ0OWI5Ni1mZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujiLkNebxb0pBKzmGB+HjWpy6fHMGul/+mVk/9RFXG1LK3W04S0Rsmkd931+ sQCvMkkuenaShG84Xdzwnu3pVgmg4q3yQcywX4c1NUYN98cJ60GlqkdlFefgz3t1 5BcYjVKOAJynXYVxdrnGG8/CqfUmSlQHVQfDIfTducFndSiJKb6zmJavGnEcaeVB eFbFXifuA63hlAKANwAaeQBkCHH9VgytG7hwXiYBZbqgnNXQQA5gEqcMI0ywgnWH xiJ/mcMepG2FtqXHgJrTZY/jyTFCtuwZaHqSCjMFxUVHaPXUmpeoIWfIgDmjdfAZ 0e6geDXAmKGtbJFnoPHHJ0KHPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8Oh3Ne mRCmIa2HxCSqqzFdN5F3MB8GA1UdIwQYMBaAFCNVnppxV+euf2BMQog3KS3gMwmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUEyQS8zRDM1MEZEMjAy NTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2NV9ZRXhDaURjcExlQXpD YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kxV2VtbkZYNTY1X1lFeENpRGNwTGVBekNhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUEyQS8zRDM1MEZEMjAyNTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2 NV9ZRXhDaURjcExlQXpDYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClQXhKh6SopJ4Yr7FBvkNx9TMClOJU+zyuxK7Utg1+OpZ0bwQHmh9c yNLXPmx5KYHd2pwWFlBc4fBKgFrNGZnWVMBR2DJGR6yajU1ZLYmN5kezPvlDttTe aP4T/nyCyVUsGgJ6M3br5yY0wcwQrvCwA6uE3L96bWngnOqopNDHuWpikdi6Efb8 WRDRV77XFOUjm9Z33kNviAiFqZhQH1kJCsK2A/lqLNQr3r+zck1KUQqLKJ72cuTQ 4+hGa0N9kniXCtP67Zt72DxG3uEYHEsmWtEjNLsaJcdB3mH0ssMLfn/pd6mCslTs Vct6Ld/2XEI9bDWZ/ykZ0EKETK6rfh9L -----END CERTIFICATE-----Generated at Fri Dec 19 21:54:52 2025 by rpki-client