This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft File: IQlGzanedd75YJiV-_Ie2Exy9Oc.mft (raw, json) Hash identifier: 3e8VuTcfq6YFEeNRfK3bR9EIHExQN5GJz5p7PzUyQ3s= Subject key identifier: 6A:D9:CC:01:33:36:8C:AE:AA:9D:3C:D1:56:3B:D9:A0:1A:17:3F:B7 Authority key identifier: 21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 Certificate issuer: /CN=A91F7537/serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft Manifest number: D3 Signing time: Mon 29 Dec 2025 05:24:45 +0000 Manifest this update: Mon 29 Dec 2025 05:24:45 +0000 Manifest next update: Mon 05 Jan 2026 05:24:45 +0000 Files and hashes: 1: IQlGzanedd75YJiV-_Ie2Exy9Oc.crl (hash: vodGgqVguF7+ZhJPZXk4bZVaoudtyu4lofkGveZ4pZs=) 2: 6156C7F6A27311EFBF7D5E22C4F9AE02.roa (hash: ceTwvMYwQqsLHm4yTmcf0XG7NHCl6BydA2YN+2QfQZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537, serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Validity Not Before: Dec 29 05:24:45 2025 GMT Not After : Jan 5 05:24:45 2026 GMT Subject: CN=6952109d-febc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3c:ac:e6:e9:37:58:a2:ec:5b:bb:bd:0d:db: a1:87:4d:8d:f0:91:8b:9c:36:26:86:b6:23:1d:02: 1a:be:9a:0b:a4:a1:2f:f3:5c:9e:00:38:32:5f:22: 1e:c4:7b:00:94:a4:49:f6:0c:76:9c:a9:c6:e9:4a: 76:c3:fa:68:72:56:80:05:f4:6c:b3:74:9d:57:2c: ba:e1:d8:f9:0e:54:9c:5c:ea:ae:66:e8:d2:fc:6c: a4:17:de:a0:b1:39:f3:d4:31:d1:fa:a8:7f:fd:7b: b1:b3:5c:ba:17:30:86:5a:40:6a:55:3a:11:bb:cf: cf:83:b1:b4:9a:23:fc:0a:90:1d:c3:ff:c9:a4:22: dd:a7:c1:70:25:74:9a:27:a9:56:78:7e:c0:09:a4: 35:ae:96:ed:57:5f:44:7b:61:25:e5:e6:c4:17:0f: 21:ba:ba:87:15:d2:c7:dc:0a:7d:d2:38:f3:4e:9b: 93:3f:53:f9:d9:7f:f9:e7:cb:69:7b:23:a5:9e:1d: 70:12:d7:3e:98:52:32:56:7c:1d:0d:f2:c6:82:81: 9a:e1:ae:4b:7d:64:17:cf:8b:c8:96:ed:be:87:da: 9d:b1:b0:11:11:a0:d9:ff:89:54:06:39:01:94:9b: 6f:fe:25:8e:34:85:5d:36:4e:7a:a3:57:f8:a0:e6: b6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D9:CC:01:33:36:8C:AE:AA:9D:3C:D1:56:3B:D9:A0:1A:17:3F:B7 X509v3 Authority Key Identifier: keyid:21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:51:13:eb:a6:b4:91:95:10:16:61:e9:83:17:6c:e3:4d:0f: 87:9e:f7:2c:74:ca:41:66:90:1c:cf:ec:6e:11:a2:47:d4:8b: cf:37:78:10:8b:f6:c2:2e:ad:af:f3:10:24:49:1b:3c:e0:5c: 11:29:67:8d:da:46:fc:da:fd:f7:82:00:d1:68:30:a2:47:b0: 15:10:17:9b:b8:f4:f9:7d:3b:73:fa:6f:26:af:14:63:3a:c6: fc:fa:49:5c:35:0c:aa:6a:d8:70:3c:68:30:da:a1:57:a4:2a: 95:2b:6e:7c:b9:9d:bd:77:fb:08:b4:ec:c3:f2:e5:ac:06:42: 16:3e:f5:a6:4d:d5:aa:4a:a5:5d:c5:98:c5:5a:d7:42:9c:0c: 6e:3f:5c:5e:a0:be:fb:36:71:41:85:cf:4b:ae:70:76:f4:86: c6:08:5b:8f:1a:03:b0:bc:e4:61:69:c2:e6:51:23:9d:50:3e: f2:52:47:89:cb:bd:8d:5c:b9:77:59:14:16:73:80:fb:94:0a: 02:95:ea:05:a8:98:bf:8d:16:5f:f1:5d:bb:f2:3f:94:4e:8a: 81:89:7f:ba:5c:e3:55:d3:df:e3:4e:34:b0:aa:b3:ae:5c:62: 4a:b7:bf:1f:25:b3:59:a7:8c:23:b6:c1:3b:26:a9:03:ba:1a: 02:4c:0f:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Rjc1MzcxMTAvBgNVBAUTKDIxMDk0NkNEQTlERTc1REVGOTYwOTg5NUZCRjIxRUQ4 NEM3MkY0RTcwHhcNMjUxMjI5MDUyNDQ1WhcNMjYwMTA1MDUyNDQ1WjAYMRYwFAYD VQQDDA02OTUyMTA5ZC1mZWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjys5uk3WKLsW7u9Dduhh02N8JGLnDYmhrYjHQIavpoLpKEv81yeADgyXyIe xHsAlKRJ9gx2nKnG6Up2w/poclaABfRss3SdVyy64dj5DlScXOquZujS/GykF96g sTnz1DHR+qh//Xuxs1y6FzCGWkBqVToRu8/Pg7G0miP8CpAdw//JpCLdp8FwJXSa J6lWeH7ACaQ1rpbtV19Ee2El5ebEFw8hurqHFdLH3Ap90jjzTpuTP1P52X/558tp eyOlnh1wEtc+mFIyVnwdDfLGgoGa4a5LfWQXz4vIlu2+h9qdsbAREaDZ/4lUBjkB lJtv/iWONIVdNk56o1f4oOa2lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrZzAEz Noyuqp080VY72aAaFz+3MB8GA1UdIwQYMBaAFCEJRs2p3nXe+WCYlfvyHthMcvTn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzUzNy84N0RENTQ4Q0Ey NzExMUVGQTM5MkYwNzlDNEY5QUUwMi9JUWxHemFuZWRkNzVZSmlWLV9JZTJFeHk5 T2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRbEd6YW5lZGQ3NVlKaVYtX0llMkV4eTlPYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzUzNy84N0RENTQ4Q0EyNzExMUVGQTM5MkYwNzlDNEY5QUUwMi9JUWxHemFuZWRk NzVZSmlWLV9JZTJFeHk5T2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsURPrprSRlRAWYemDF2zjTQ+HnvcsdMpBZpAcz+xuEaJH1IvPN3gQ i/bCLq2v8xAkSRs84FwRKWeN2kb82v33ggDRaDCiR7AVEBebuPT5fTtz+m8mrxRj Osb8+klcNQyqathwPGgw2qFXpCqVK258uZ29d/sItOzD8uWsBkIWPvWmTdWqSqVd xZjFWtdCnAxuP1xeoL77NnFBhc9LrnB29IbGCFuPGgOwvORhacLmUSOdUD7yUkeJ y72NXLl3WRQWc4D7lAoCleoFqJi/jRZf8V278j+UToqBiX+6XONV09/jTjSwqrOu XGJKt78fJbNZp4wjtsE7JqkDuhoCTA+4 -----END CERTIFICATE-----Generated at Mon Dec 29 14:39:01 2025 by rpki-client