This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: DdMmcEYKkQP4i7hMc08D9tkuLTFMHDELQ0Z/eSXJBHI= Subject key identifier: 4E:42:55:23:30:CB:27:3B:BE:E8:8B:EF:17:AD:FC:22:99:3D:73:2F Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 04B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 04B2 Signing time: Thu 18 Dec 2025 23:14:37 +0000 Manifest this update: Thu 18 Dec 2025 23:14:36 +0000 Manifest next update: Thu 25 Dec 2025 23:14:36 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: ZAOKW9lrI3OOEvL9iCVeAlKbcmZ2yr6aDAMQ8SNQkxQ=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: 6npCQGD8mKRcXKLy4jKCYWBhRpmmG05TZblrhBE83zM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1207 (0x4b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Dec 18 23:14:36 2025 GMT Not After : Dec 25 23:14:36 2025 GMT Subject: CN=69448add-7520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:62:d2:87:5a:08:cf:d4:09:0d:a1:f2:3a:43: 76:87:7a:ab:21:55:e7:29:3f:ea:1d:95:a5:7a:42: 8e:77:e0:2e:41:50:45:70:a3:b3:02:5b:f9:23:d3: eb:9b:36:5a:48:c2:4e:f2:2d:5a:3b:27:81:dd:0f: e1:e9:73:15:92:03:96:8d:3e:af:77:ae:c2:84:09: c6:fd:59:aa:11:1e:e1:9f:37:05:79:ec:f5:d1:16: 16:46:f6:7e:2c:96:c4:31:1b:5f:61:31:d2:86:56: 58:e8:3d:35:c7:ed:a6:16:fa:43:e9:50:88:21:95: 27:bf:9b:2a:63:bf:b2:71:46:92:26:2b:e9:ea:39: 82:ba:b7:29:2b:1a:b0:24:35:29:b9:7d:79:1e:51: 1e:f7:a2:e1:8d:0d:4d:62:3e:b2:09:73:c2:3b:48: 5b:43:c8:77:0d:d1:25:99:78:a7:d0:67:d3:b5:05: ec:ab:a2:61:da:d3:5b:c2:b1:e9:c0:b5:37:d6:5a: 03:f7:07:12:88:0c:e7:70:fa:ce:aa:1b:cb:73:7b: 66:15:ae:da:14:8f:63:46:cd:f7:c8:77:be:c5:0b: 9b:a2:bb:da:6a:d8:af:78:92:57:21:ef:06:87:7c: f2:d1:b0:3b:81:57:4e:ca:d7:c6:5b:57:64:42:13: ef:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:42:55:23:30:CB:27:3B:BE:E8:8B:EF:17:AD:FC:22:99:3D:73:2F X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:5d:3a:6c:e6:db:29:de:a5:a4:43:f1:09:9f:14:e9:15:ca: 4b:f3:32:3b:e8:44:c8:fa:c5:0e:0b:d9:92:fb:f0:59:ff:0e: 78:5f:69:41:19:e4:58:b4:a2:a4:55:2b:ee:38:12:fa:2a:59: 74:a2:31:07:22:e9:c1:2a:38:69:c5:dd:b1:d5:72:e5:4f:e6: 4e:ce:8a:16:48:ff:1b:90:6d:61:d8:3b:fd:e0:11:90:d5:00: dc:c7:56:77:31:d7:3e:12:f8:55:ff:d7:b1:15:1a:b7:78:33: 6c:fa:b9:26:16:d6:6c:13:93:60:ec:d3:e5:46:02:e6:de:2a: 35:94:0f:99:e6:68:58:12:4b:59:b3:06:22:36:5f:6e:cd:65: 69:c7:a1:f9:e4:6a:c6:ed:03:44:55:c2:0e:a8:d1:7e:a9:33: 59:fa:97:51:b7:38:e4:4b:1a:94:a7:7e:7d:39:fa:1b:e1:0f: 8d:3c:77:c5:a3:3f:06:7b:4d:28:f2:03:d6:a2:6e:21:bb:b5: 41:ed:78:e5:e4:6b:63:0e:bc:8e:0d:2c:dd:b7:82:9d:10:61: c6:27:7a:be:ad:e5:85:5d:a6:7d:cf:80:89:84:89:29:b9:0e: 7f:f2:94:5d:f3:dc:30:23:84:c7:b7:e2:f1:6e:2f:a9:f8:bc: 2d:d4:8d:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUxMjE4MjMxNDM2WhcNMjUxMjI1MjMxNDM2WjAYMRYwFAYD VQQDDA02OTQ0OGFkZC03NTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWLSh1oIz9QJDaHyOkN2h3qrIVXnKT/qHZWlekKOd+AuQVBFcKOzAlv5I9Pr mzZaSMJO8i1aOyeB3Q/h6XMVkgOWjT6vd67ChAnG/VmqER7hnzcFeez10RYWRvZ+ LJbEMRtfYTHShlZY6D01x+2mFvpD6VCIIZUnv5sqY7+ycUaSJivp6jmCurcpKxqw JDUpuX15HlEe96LhjQ1NYj6yCXPCO0hbQ8h3DdElmXin0GfTtQXsq6Jh2tNbwrHp wLU31loD9wcSiAzncPrOqhvLc3tmFa7aFI9jRs33yHe+xQuborvaativeJJXIe8G h3zy0bA7gVdOytfGW1dkQhPv6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5CVSMw yyc7vuiL7xet/CKZPXMvMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUXTps5tsp3qWkQ/EJnxTpFcpL8zI76ETI+sUOC9mS+/BZ/w54X2lB GeRYtKKkVSvuOBL6Kll0ojEHIunBKjhpxd2x1XLlT+ZOzooWSP8bkG1h2Dv94BGQ 1QDcx1Z3Mdc+EvhV/9exFRq3eDNs+rkmFtZsE5Ng7NPlRgLm3io1lA+Z5mhYEktZ swYiNl9uzWVpx6H55GrG7QNEVcIOqNF+qTNZ+pdRtzjkSxqUp359Ofob4Q+NPHfF oz8Ge00o8gPWom4hu7VB7Xjl5GtjDryODSzdt4KdEGHGJ3q+reWFXaZ9z4CJhIkp uQ5/8pRd89wwI4THt+Lxbi+p+Lwt1I2z -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:57 2025 by rpki-client