This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft File: 91XB4Q_ErmiS0krLh4LX5cAEGLA.mft (raw, json) Hash identifier: AmUuJ3YZUi/WswIuXsjkX2CZbazht2rxC8nxO4uPqVc= Subject key identifier: 83:02:0A:A7:77:2F:9F:D7:A5:FB:D4:FF:F9:9D:DF:59:C6:7A:05:F7 Authority key identifier: F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 Certificate issuer: /CN=A9136F59/serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Certificate serial: 031D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft Manifest number: 0318 Signing time: Sun 21 Dec 2025 00:20:20 +0000 Manifest this update: Sun 21 Dec 2025 00:20:20 +0000 Manifest next update: Sun 28 Dec 2025 00:20:20 +0000 Files and hashes: 1: 91XB4Q_ErmiS0krLh4LX5cAEGLA.crl (hash: WLwkTh4ygDq2avLX1L3+JYPBXpCexmNSrJupbANk0e0=) 2: ED0C111CF8F611ECB6DF8835C4F9AE02.roa (hash: GSaMIr6pgI7dtk3phmzJ+sITrRTfHVwUtDPjWfHSWD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 797 (0x31d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136F59, serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Validity Not Before: Dec 21 00:20:20 2025 GMT Not After : Dec 28 00:20:20 2025 GMT Subject: CN=69473d44-1f70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:30:80:ca:f9:f6:41:5b:47:89:5e:20:c6:f8: 4f:5d:fc:76:dd:de:fe:fe:26:06:a9:a8:ae:34:c6: bd:bb:92:65:bd:3d:2c:9e:3c:93:ef:f6:a3:58:65: 31:58:41:f8:36:c0:db:2e:c3:d3:49:78:71:98:9f: d9:ed:12:7a:1e:37:6b:d8:86:4c:5d:5c:a7:da:a8: dc:7c:cd:cc:c8:e8:14:67:c7:2f:a0:db:23:c8:b7: d0:8a:ca:2b:db:b4:b4:98:1f:1b:c0:ca:76:e6:e6: 8b:87:92:8b:af:99:70:f1:f1:0a:6f:dc:3e:b6:08: a6:e9:80:54:32:28:ea:03:bc:05:e2:83:a8:0d:4e: eb:02:73:db:6c:ab:b0:22:e1:f5:fe:90:73:39:70: d4:9c:07:ef:f7:8e:23:2b:32:8d:2e:a2:9e:bf:c7: ec:a6:8c:f6:0f:86:d5:4b:2b:94:ef:9f:ce:bc:ee: ab:8a:a6:3c:30:9a:1a:08:29:ac:68:b2:f2:93:61: a8:6a:a0:ea:73:70:1d:0f:ea:7d:04:7a:19:87:c6: e4:ab:86:d7:41:d0:e7:e0:ad:c2:63:cd:c9:4d:91: 0e:22:0a:74:af:4a:ea:56:28:e7:f0:e9:c4:21:e1: 50:f0:77:88:b2:3c:4b:8a:23:19:6b:48:3e:32:98: 2e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:02:0A:A7:77:2F:9F:D7:A5:FB:D4:FF:F9:9D:DF:59:C6:7A:05:F7 X509v3 Authority Key Identifier: keyid:F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:40:03:23:5e:ee:9d:c3:cb:4e:f4:65:9b:d1:e1:72:16:91: 9b:c9:9c:51:32:c8:38:96:4c:05:3e:f6:49:e0:08:00:05:3d: 56:24:98:02:17:45:e8:e7:87:f6:ba:98:15:bf:11:9e:8d:94: 59:be:b7:17:ef:d9:e1:32:4f:81:4a:45:65:de:08:52:83:66: 94:eb:aa:52:13:bd:ad:94:f4:ea:d9:30:99:e6:ed:e3:1d:57: 83:ec:9e:02:26:f5:42:9e:84:bb:83:66:a9:3f:64:67:44:13: 3a:d2:39:b3:6e:47:95:ae:5c:9c:69:3e:7e:95:12:20:a3:1f: 93:db:48:e7:69:5b:a4:17:ed:95:53:8c:11:ee:b3:e5:36:76: bf:6a:a2:12:bb:45:c8:30:ff:17:a7:d0:81:ce:da:d3:22:01: 28:99:76:1e:f3:48:5f:10:e8:27:36:bc:bf:d6:58:54:42:f0: f3:da:d0:72:fd:83:c0:81:e4:79:6a:e0:24:3a:2c:b5:5f:6e: 05:56:41:78:92:f5:da:95:2a:fd:16:68:4f:10:88:87:4d:9c: bd:1b:a5:14:0f:4e:a7:d1:dd:fb:b3:7d:5b:60:ea:2f:d5:94: e5:bc:02:22:38:b2:3c:4f:68:4b:34:9e:19:64:3e:41:37:52: 2b:66:e1:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZGNTkxMTAvBgNVBAUTKEY3NTVDMUUxMEZDNEFFNjg5MkQyNEFDQjg3ODJEN0U1 QzAwNDE4QjAwHhcNMjUxMjIxMDAyMDIwWhcNMjUxMjI4MDAyMDIwWjAYMRYwFAYD VQQDDA02OTQ3M2Q0NC0xZjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDCAyvn2QVtHiV4gxvhPXfx23d7+/iYGqaiuNMa9u5JlvT0snjyT7/ajWGUx WEH4NsDbLsPTSXhxmJ/Z7RJ6Hjdr2IZMXVyn2qjcfM3MyOgUZ8cvoNsjyLfQisor 27S0mB8bwMp25uaLh5KLr5lw8fEKb9w+tgim6YBUMijqA7wF4oOoDU7rAnPbbKuw IuH1/pBzOXDUnAfv944jKzKNLqKev8fspoz2D4bVSyuU75/OvO6riqY8MJoaCCms aLLyk2GoaqDqc3AdD+p9BHoZh8bkq4bXQdDn4K3CY83JTZEOIgp0r0rqVijn8OnE IeFQ8HeIsjxLiiMZa0g+MpguIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMCCqd3 L5/XpfvU//md31nGegX3MB8GA1UdIwQYMBaAFPdVweEPxK5oktJKy4eC1+XABBiw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkY1OS81NzcyQUZCRUY4 NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJtaVMwa3JMaDRMWDVjQUVH TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkxWEI0UV9Fcm1pUzBrckxoNExYNWNBRUdMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkY1OS81NzcyQUZCRUY4NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJt aVMwa3JMaDRMWDVjQUVHTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIQAMjXu6dw8tO9GWb0eFyFpGbyZxRMsg4lkwFPvZJ4AgABT1WJJgC F0Xo54f2upgVvxGejZRZvrcX79nhMk+BSkVl3ghSg2aU66pSE72tlPTq2TCZ5u3j HVeD7J4CJvVCnoS7g2apP2RnRBM60jmzbkeVrlycaT5+lRIgox+T20jnaVukF+2V U4wR7rPlNna/aqISu0XIMP8Xp9CBztrTIgEomXYe80hfEOgnNry/1lhUQvDz2tBy /YPAgeR5auAkOiy1X24FVkF4kvXalSr9FmhPEIiHTZy9G6UUD06n0d37s31bYOov 1ZTlvAIiOLI8T2hLNJ4ZZD5BN1IrZuGO -----END CERTIFICATE-----Generated at Sun Dec 21 23:16:28 2025 by rpki-client