This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft File: 9US5wrG96hw7N0NIuNFeNn5qD0I.mft (raw, json) Hash identifier: o3LFscgYG/jLaoe1FKmDMby49Yd4YUB8qNimM78sJRU= Subject key identifier: D1:E9:8D:30:06:59:A3:BC:70:5E:3B:F6:4C:3E:39:10:76:5B:15:D6 Authority key identifier: F5:44:B9:C2:B1:BD:EA:1C:3B:37:43:48:B8:D1:5E:36:7E:6A:0F:42 Certificate issuer: /CN=A91139AB/serialNumber=F544B9C2B1BDEA1C3B374348B8D15E367E6A0F42 Certificate serial: 07BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft Manifest number: 0977 Signing time: Mon 22 Dec 2025 20:39:48 +0000 Manifest this update: Mon 22 Dec 2025 20:39:48 +0000 Manifest next update: Mon 29 Dec 2025 20:39:48 +0000 Files and hashes: 1: 9US5wrG96hw7N0NIuNFeNn5qD0I.crl (hash: zCLsn4G6tGRWt1btDdRdBBpBk30ppRt4bjTqnbvO1A4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1983 (0x7bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB, serialNumber=F544B9C2B1BDEA1C3B374348B8D15E367E6A0F42 Validity Not Before: Dec 22 20:39:48 2025 GMT Not After : Dec 29 20:39:48 2025 GMT Subject: CN=6949ac94-08c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e5:12:e3:fd:73:41:6b:c0:aa:08:7f:ea:44: 9b:49:c7:45:d8:c6:f7:f6:1b:2a:39:05:10:7f:c0: c4:a0:91:aa:e2:00:ac:34:e8:84:2f:51:fd:61:a5: 5b:54:7d:c9:d9:6f:d2:c4:61:e8:78:92:6d:dc:9f: 0a:50:6a:c7:bf:d6:13:96:df:8a:77:00:83:98:3a: d9:f7:40:e2:5b:23:d7:e5:ad:67:96:c8:6d:b7:e3: 8a:a7:ff:dc:77:5b:20:7d:75:86:9c:1b:14:10:c2: 68:e1:00:68:36:02:78:65:27:ba:a1:0d:34:79:0e: 3d:aa:bc:de:7f:9e:75:bc:23:00:8a:c5:21:6f:46: 1e:8e:dc:92:a5:3b:a9:c1:c4:23:68:b7:26:7b:e1: 56:34:ed:50:6e:c2:b2:4f:70:d2:ee:bc:91:7e:bd: 63:02:b0:4b:75:6b:b7:28:2e:6a:98:19:9e:8e:08: 5c:6e:67:52:b1:e5:ae:2d:ec:4b:a1:d6:d7:97:56: e8:33:a4:4c:19:59:39:e7:32:40:a9:31:d3:79:39: 6b:29:38:8d:2e:f2:48:00:4d:eb:18:63:bf:d4:2c: ac:57:a6:23:8b:07:8c:61:63:c8:54:51:d4:ce:30: a0:99:40:1d:c7:de:ee:f0:40:61:ba:0e:d6:0f:5d: e5:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E9:8D:30:06:59:A3:BC:70:5E:3B:F6:4C:3E:39:10:76:5B:15:D6 X509v3 Authority Key Identifier: keyid:F5:44:B9:C2:B1:BD:EA:1C:3B:37:43:48:B8:D1:5E:36:7E:6A:0F:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:93:0b:bb:36:6a:db:21:1c:97:78:e0:8f:82:19:cf:64:64: a9:71:76:d5:58:86:77:95:f1:3f:aa:24:67:11:63:65:af:bf: ed:24:f8:d7:25:5f:6f:df:54:5a:00:f4:4f:57:e4:f9:27:aa: 5f:9e:d8:c7:41:9a:5b:f6:3d:c7:74:67:ee:25:59:61:c1:86: 8c:6b:44:fe:42:f9:bd:3d:9a:c4:f9:b7:e7:ff:74:3a:ce:32: f8:0e:99:00:de:d6:25:e6:d7:1a:4e:c1:07:3e:6e:16:68:cb: 75:3a:4d:e6:a9:a5:79:9b:d8:c3:da:ec:cf:6a:7d:68:b1:d0: db:e3:91:5b:74:f1:35:99:8c:b0:8b:66:d6:a9:c1:e8:7a:84: 16:64:3e:20:07:9b:62:ea:c9:86:2a:46:9c:e8:6e:f3:06:a6: 6d:a7:56:fb:c1:57:f5:84:85:65:01:56:80:6b:da:0e:be:ae: 43:f3:05:a5:df:fc:9d:28:e8:a0:ff:02:ca:d2:97:47:b7:2a: ed:c2:b9:ca:3b:6b:1a:4f:71:9b:0b:55:33:91:33:b1:7d:5a: 24:b9:a4:0c:b8:28:13:f0:61:62:15:0a:ee:37:4f:9e:b3:e9: f8:49:24:27:f0:0b:7b:a9:bb:9c:23:7c:94:c1:0f:99:84:26: be:95:d1:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5QUIxMTAvBgNVBAUTKEY1NDRCOUMyQjFCREVBMUMzQjM3NDM0OEI4RDE1RTM2 N0U2QTBGNDIwHhcNMjUxMjIyMjAzOTQ4WhcNMjUxMjI5MjAzOTQ4WjAYMRYwFAYD VQQDDA02OTQ5YWM5NC0wOGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk+US4/1zQWvAqgh/6kSbScdF2Mb39hsqOQUQf8DEoJGq4gCsNOiEL1H9YaVb VH3J2W/SxGHoeJJt3J8KUGrHv9YTlt+KdwCDmDrZ90DiWyPX5a1nlshtt+OKp//c d1sgfXWGnBsUEMJo4QBoNgJ4ZSe6oQ00eQ49qrzef551vCMAisUhb0YejtySpTup wcQjaLcme+FWNO1QbsKyT3DS7ryRfr1jArBLdWu3KC5qmBmejghcbmdSseWuLexL odbXl1boM6RMGVk55zJAqTHTeTlrKTiNLvJIAE3rGGO/1CysV6YjiweMYWPIVFHU zjCgmUAdx97u8EBhug7WD13leQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHpjTAG WaO8cF479kw+ORB2WxXWMB8GA1UdIwQYMBaAFPVEucKxveocOzdDSLjRXjZ+ag9C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzlBQi8xNThENDkwNjI1 NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85VVM1d3JHOTZodzdOME5JdU5GZU5uNXFE MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVUzV3ckc5Nmh3N04wTkl1TkZlTm41cUQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzlBQi8xNThENDkwNjI1NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85VVM1d3JHOTZo dzdOME5JdU5GZU5uNXFEMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbkwu7NmrbIRyXeOCPghnPZGSpcXbVWIZ3lfE/qiRnEWNlr7/tJPjX JV9v31RaAPRPV+T5J6pfntjHQZpb9j3HdGfuJVlhwYaMa0T+Qvm9PZrE+bfn/3Q6 zjL4DpkA3tYl5tcaTsEHPm4WaMt1Ok3mqaV5m9jD2uzPan1osdDb45FbdPE1mYyw i2bWqcHoeoQWZD4gB5ti6smGKkac6G7zBqZtp1b7wVf1hIVlAVaAa9oOvq5D8wWl 3/ydKOig/wLK0pdHtyrtwrnKO2saT3GbC1UzkTOxfVokuaQMuCgT8GFiFQruN0+e s+n4SSQn8At7qbucI3yUwQ+ZhCa+ldHv -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:09 2025 by rpki-client