This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft File: IQlGzanedd75YJiV-_Ie2Exy9Oc.mft (raw, json) Hash identifier: a+6FN749GVWBdOP8WXQpxQD/9VJRT7Kpn8OlUKt4kKk= Subject key identifier: 1A:9A:95:F3:D4:47:56:F9:D9:21:54:ED:F9:1E:D0:41:3B:5D:9D:3D Authority key identifier: 21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 Certificate issuer: /CN=A91F7537/serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft Manifest number: CD Signing time: Sun 21 Dec 2025 04:53:17 +0000 Manifest this update: Sun 21 Dec 2025 04:53:16 +0000 Manifest next update: Sun 28 Dec 2025 04:53:16 +0000 Files and hashes: 1: IQlGzanedd75YJiV-_Ie2Exy9Oc.crl (hash: 3jopCmYIMtWnztSeloCHiQfSRssyYU6KwDqeGI4//Bo=) 2: 6156C7F6A27311EFBF7D5E22C4F9AE02.roa (hash: S974N0P9f8Bg6Jc7BIscRXeUqpVDlIBE/NP1Bo0j0PA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537, serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Validity Not Before: Dec 21 04:53:16 2025 GMT Not After : Dec 28 04:53:16 2025 GMT Subject: CN=69477d3d-22b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:20:be:66:7b:06:0b:77:3e:12:cd:68:96:50: 78:74:1b:c6:8f:5d:4e:b3:47:a9:c7:99:7f:d3:0b: 4f:1f:dd:b5:29:a9:97:62:6c:7e:5f:b9:22:41:b6: d0:27:0b:78:42:fe:65:21:0e:a2:aa:e1:d4:1b:4c: 9e:fc:4d:87:00:47:e1:0a:68:2c:5d:37:0f:c3:bd: 83:55:21:b5:31:22:52:09:e3:c2:1b:b3:e3:33:f0: 77:0c:6e:b0:18:7a:85:92:d9:46:30:15:be:19:43: 8f:51:bd:82:92:d8:c0:fd:d9:d0:74:31:53:e4:51: 36:fa:97:78:05:44:1c:83:56:be:4a:78:9c:15:6a: c8:fa:d0:1d:b5:95:20:f0:ab:2d:58:c5:2c:c9:65: c3:c9:89:2d:3d:35:76:26:02:0d:c6:ca:25:b6:a5: 5f:5b:87:59:6e:27:36:a7:1d:8c:9e:cc:63:65:aa: 4b:fa:ad:83:55:54:e0:8a:5a:76:b4:b6:94:f3:1e: 58:ee:d1:60:ad:5d:7a:2f:53:fa:a7:ea:a3:b4:1c: 55:8b:11:12:99:1d:a0:59:f8:67:6d:24:d4:7a:21: d8:80:50:9e:a3:d7:68:ea:a6:e8:6c:ef:95:13:73: a6:80:69:a3:e7:07:2f:80:b1:24:8c:f7:b4:d2:77: 40:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9A:95:F3:D4:47:56:F9:D9:21:54:ED:F9:1E:D0:41:3B:5D:9D:3D X509v3 Authority Key Identifier: keyid:21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:df:19:08:4c:a7:4a:bc:fa:d2:fa:88:d9:9c:d6:71:2d:f5: a1:2d:5d:d5:c2:89:6b:ba:c2:47:8c:be:25:58:d3:f6:fb:e3: 67:8d:92:99:f5:0c:8c:b8:a4:35:c7:42:0c:c3:5d:fe:e1:0c: 88:90:99:98:f4:ea:80:42:92:2c:99:e7:d6:6f:15:ae:0a:8f: 30:8f:b4:c6:6c:2d:99:5f:89:ab:7d:e1:7f:b6:25:fb:ad:91: 8d:af:44:f9:45:89:d5:bc:79:c3:4d:59:68:96:c1:75:a9:74: 18:8d:32:f6:13:57:47:0f:a5:ef:86:92:ec:7c:6a:cb:69:b6: 95:ef:4f:46:31:f8:45:fc:e2:3c:a4:02:a2:91:e3:72:73:1f: cb:db:3b:3a:1f:50:f7:13:c7:9c:64:c6:5c:2e:a2:e6:4d:c9: a4:76:fb:9e:43:25:f5:1e:ab:38:c7:ed:23:79:f8:21:ef:7d: 57:92:60:03:b4:c5:20:51:9b:a0:ba:72:e9:08:f4:59:f2:dc: 2f:90:f4:78:e5:9b:82:aa:d4:8a:a9:2a:17:5f:03:9b:20:33: 7b:03:f9:6c:17:c7:85:9b:45:85:d3:10:7d:7d:2e:33:9d:cd: 0b:05:37:fa:8e:53:92:aa:50:37:44:13:f5:7f:a2:dc:9e:03: 03:62:1d:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc1MzcxMTAvBgNVBAUTKDIxMDk0NkNEQTlERTc1REVGOTYwOTg5NUZCRjIxRUQ4 NEM3MkY0RTcwHhcNMjUxMjIxMDQ1MzE2WhcNMjUxMjI4MDQ1MzE2WjAYMRYwFAYD VQQDDA02OTQ3N2QzZC0yMmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAliC+ZnsGC3c+Es1ollB4dBvGj11Os0epx5l/0wtPH921KamXYmx+X7kiQbbQ Jwt4Qv5lIQ6iquHUG0ye/E2HAEfhCmgsXTcPw72DVSG1MSJSCePCG7PjM/B3DG6w GHqFktlGMBW+GUOPUb2CktjA/dnQdDFT5FE2+pd4BUQcg1a+SnicFWrI+tAdtZUg 8KstWMUsyWXDyYktPTV2JgINxsoltqVfW4dZbic2px2MnsxjZapL+q2DVVTgilp2 tLaU8x5Y7tFgrV16L1P6p+qjtBxVixESmR2gWfhnbSTUeiHYgFCeo9do6qbobO+V E3OmgGmj5wcvgLEkjPe00ndAgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqalfPU R1b52SFU7fke0EE7XZ09MB8GA1UdIwQYMBaAFCEJRs2p3nXe+WCYlfvyHthMcvTn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzUzNy84N0RENTQ4Q0Ey NzExMUVGQTM5MkYwNzlDNEY5QUUwMi9JUWxHemFuZWRkNzVZSmlWLV9JZTJFeHk5 T2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRbEd6YW5lZGQ3NVlKaVYtX0llMkV4eTlPYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzUzNy84N0RENTQ4Q0EyNzExMUVGQTM5MkYwNzlDNEY5QUUwMi9JUWxHemFuZWRk NzVZSmlWLV9JZTJFeHk5T2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm3xkITKdKvPrS+ojZnNZxLfWhLV3VwolrusJHjL4lWNP2++NnjZKZ 9QyMuKQ1x0IMw13+4QyIkJmY9OqAQpIsmefWbxWuCo8wj7TGbC2ZX4mrfeF/tiX7 rZGNr0T5RYnVvHnDTVlolsF1qXQYjTL2E1dHD6XvhpLsfGrLabaV709GMfhF/OI8 pAKikeNycx/L2zs6H1D3E8ecZMZcLqLmTcmkdvueQyX1Hqs4x+0jefgh731XkmAD tMUgUZugunLpCPRZ8twvkPR45ZuCqtSKqSoXXwObIDN7A/lsF8eFm0WF0xB9fS4z nc0LBTf6jlOSqlA3RBP1f6LcngMDYh20 -----END CERTIFICATE-----Generated at Sun Dec 21 06:44:03 2025 by rpki-client