This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft File: 9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft (raw, json) Hash identifier: Wynan/gyPnTKjmUP8s31AwI5jgpvBbkdBKYlm2MU9uM= Subject key identifier: 8D:EA:B2:9A:A2:09:CA:20:21:13:4A:06:D2:3C:4A:EC:26:20:13:21 Authority key identifier: F6:8D:CE:D2:E6:02:F4:46:56:74:10:99:4A:8E:8C:02:10:09:ED:89 Certificate issuer: /CN=A91487A2/serialNumber=F68DCED2E602F446567410994A8E8C021009ED89 Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft Manifest number: 01CA Signing time: Tue 23 Dec 2025 01:56:59 +0000 Manifest this update: Tue 23 Dec 2025 01:56:58 +0000 Manifest next update: Tue 30 Dec 2025 01:56:58 +0000 Files and hashes: 1: 9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl (hash: GEz2vS6ZZEynkfRvs7g2gyyExzfxcEpojXMhtRQLHGM=) 2: E6F6831A26AF11EEA8E86146C4F9AE02.roa (hash: SraOPRWyc/dP6CmZHQSFQKbaOH7T0tjQk0r0ukGNNTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91487A2, serialNumber=F68DCED2E602F446567410994A8E8C021009ED89 Validity Not Before: Dec 23 01:56:58 2025 GMT Not After : Dec 30 01:56:58 2025 GMT Subject: CN=6949f6eb-4542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:36:c4:d9:1b:52:4c:86:34:72:ce:f0:ec:c5: 1f:23:74:0d:9c:11:50:52:21:48:67:6f:68:dd:73: 8f:f4:e0:65:9f:db:61:87:ed:b8:ae:bd:cd:e9:91: 25:b4:55:18:e3:77:88:d3:e0:85:a7:ad:31:cc:2c: 38:2c:74:ae:21:aa:d3:f2:85:f0:5d:1b:74:03:8c: d5:f4:e9:80:03:3a:33:94:32:70:2a:22:dc:57:16: 5d:6f:e2:d1:51:f8:a5:23:e0:12:28:5b:d6:b5:d8: b9:d4:70:17:81:7c:a4:56:b8:9b:70:79:7b:51:a6: 37:32:58:e1:47:c3:7e:44:46:bf:d0:29:28:f8:a1: dc:d6:65:ba:77:fb:bc:00:c4:be:aa:e4:ee:e6:cf: e8:b0:c0:a4:4c:d6:7c:88:9b:9d:ea:b7:a2:d7:02: 16:ec:df:ff:c6:c1:06:b6:8a:24:56:43:96:ac:df: e0:8b:1a:ea:e3:fd:8f:e2:38:23:f0:7d:0a:94:37: bf:da:40:a2:50:84:e1:38:db:e0:9c:95:d3:fc:a1: 68:58:ea:a6:0c:e6:29:d0:61:33:c6:88:ec:dd:63: 27:5a:cb:10:50:45:69:0f:29:5d:da:f6:c6:b9:7a: 2d:5e:9d:a2:63:60:24:ca:5d:70:15:55:01:b5:ca: 73:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:EA:B2:9A:A2:09:CA:20:21:13:4A:06:D2:3C:4A:EC:26:20:13:21 X509v3 Authority Key Identifier: keyid:F6:8D:CE:D2:E6:02:F4:46:56:74:10:99:4A:8E:8C:02:10:09:ED:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:c5:17:77:9d:b0:98:88:6d:0f:a7:3f:13:15:18:03:79:c4: ae:c5:8d:e6:f7:8c:02:c2:bd:82:ca:ae:93:7a:e7:cf:fd:11: 41:3a:d8:0f:89:5a:80:c2:05:56:27:77:29:b3:92:90:a3:6f: a1:bd:e1:9c:07:08:52:e4:36:f2:1a:ee:6f:f7:67:b9:61:92: 77:ea:70:8d:02:55:c1:ea:5c:2c:ab:c4:1b:74:7f:4a:42:0e: ce:40:58:03:0a:df:94:87:7e:82:0b:74:58:89:4e:45:08:57: a3:c9:5e:40:04:3c:a8:03:65:76:18:11:3b:81:00:e6:df:4b: 51:d1:d8:9d:ff:07:a4:31:82:53:e0:d1:63:ce:d1:a6:d9:2d: 44:57:f3:f8:e5:31:27:48:56:fb:cc:1d:a8:08:2c:76:b8:2c: e3:58:51:28:c6:1d:92:74:23:93:71:a1:fd:78:9b:37:f1:02: c7:1f:58:4d:ed:8f:c7:43:63:d0:cb:05:14:c5:e2:7f:9d:ae: 02:a9:61:f8:a0:d5:48:50:df:39:39:d0:95:0f:67:35:63:a3: 7b:30:4e:dd:a2:7c:2a:84:2e:22:9b:9e:89:4a:b0:eb:34:84: b9:49:62:db:4f:7f:5e:02:7b:ee:b2:55:f0:95:27:bb:b9:5d: 27:c4:bf:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3QTIxMTAvBgNVBAUTKEY2OERDRUQyRTYwMkY0NDY1Njc0MTA5OTRBOEU4QzAy MTAwOUVEODkwHhcNMjUxMjIzMDE1NjU4WhcNMjUxMjMwMDE1NjU4WjAYMRYwFAYD VQQDDA02OTQ5ZjZlYi00NTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzbE2RtSTIY0cs7w7MUfI3QNnBFQUiFIZ29o3XOP9OBln9thh+24rr3N6ZEl tFUY43eI0+CFp60xzCw4LHSuIarT8oXwXRt0A4zV9OmAAzozlDJwKiLcVxZdb+LR UfilI+ASKFvWtdi51HAXgXykVribcHl7UaY3MljhR8N+REa/0Cko+KHc1mW6d/u8 AMS+quTu5s/osMCkTNZ8iJud6rei1wIW7N//xsEGtookVkOWrN/gixrq4/2P4jgj 8H0KlDe/2kCiUIThONvgnJXT/KFoWOqmDOYp0GEzxojs3WMnWssQUEVpDyld2vbG uXotXp2iY2Akyl1wFVUBtcpzQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3qspqi CcogIRNKBtI8SuwmIBMhMB8GA1UdIwQYMBaAFPaNztLmAvRGVnQQmUqOjAIQCe2J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODdBMi80MDZCNjEwMDI2 QUYxMUVFOEFFRDRGNDVDNEY5QUUwMi85bzNPMHVZQzlFWldkQkNaU282TUFoQUo3 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlvM08wdVlDOUVaV2RCQ1pTbzZNQWhBSjdZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODdBMi80MDZCNjEwMDI2QUYxMUVFOEFFRDRGNDVDNEY5QUUwMi85bzNPMHVZQzlF WldkQkNaU282TUFoQUo3WWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqxRd3nbCYiG0Ppz8TFRgDecSuxY3m94wCwr2Cyq6TeufP/RFBOtgP iVqAwgVWJ3cps5KQo2+hveGcBwhS5DbyGu5v92e5YZJ36nCNAlXB6lwsq8QbdH9K Qg7OQFgDCt+Uh36CC3RYiU5FCFejyV5ABDyoA2V2GBE7gQDm30tR0did/wekMYJT 4NFjztGm2S1EV/P45TEnSFb7zB2oCCx2uCzjWFEoxh2SdCOTcaH9eJs38QLHH1hN 7Y/HQ2PQywUUxeJ/na4CqWH4oNVIUN85OdCVD2c1Y6N7ME7donwqhC4im56JSrDr NIS5SWLbT39eAnvuslXwlSe7uV0nxL/E -----END CERTIFICATE-----Generated at Tue Dec 23 08:20:30 2025 by rpki-client