This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: RDl5AiBJXvF1vxFSyE8+6Kyzrx1aH0lbBz1V71OnOIw= Subject key identifier: F0:6D:68:2F:3C:E6:CC:C6:4A:1D:56:D4:22:C0:03:F8:2F:EB:C2:0E Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1779 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 211C Signing time: Mon 22 Dec 2025 16:20:30 +0000 Manifest this update: Mon 22 Dec 2025 16:20:29 +0000 Manifest next update: Mon 29 Dec 2025 16:20:29 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: TBIPS71mrkUF2HnKZoUu+1xRHJSOG1wcckVlzewYUvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6009 (0x1779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Dec 22 16:20:29 2025 GMT Not After : Dec 29 16:20:29 2025 GMT Subject: CN=69496fce-3215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:55:2a:ae:f9:a3:3d:eb:d7:89:16:82:45:b1: 9e:8f:5e:5b:e0:7c:0d:a1:27:81:56:fc:00:a1:f8: 53:6a:7a:a9:a4:89:28:e8:9a:41:21:f0:42:7b:67: d8:07:a1:e5:5a:c1:a4:76:8c:ed:c0:e0:da:e1:61: 90:58:3e:7c:ec:17:91:30:28:8b:86:bf:4a:5c:45: 5c:01:a2:d1:77:01:b5:18:63:ee:e0:d2:8e:dd:4b: a0:b7:1e:7f:50:24:29:e2:6d:d5:0a:5a:2f:d9:df: 09:15:6c:10:1e:6c:e3:f0:86:97:80:84:97:be:b5: dd:23:fc:a7:be:3e:e8:25:2a:60:1c:17:8e:12:59: 67:83:58:f5:b2:33:76:9b:12:dd:8c:c0:24:bb:d3: cd:04:55:e5:48:71:26:f3:73:0c:b2:98:18:01:ce: 18:5b:a0:99:67:1c:57:92:17:3d:8a:3a:0a:8e:62: 26:90:38:af:76:f2:0d:d6:95:bc:b2:5e:1c:4d:73: 78:2f:74:75:56:7b:2a:00:5a:2d:91:58:40:1d:be: 9c:0b:e1:c8:84:8a:86:3b:77:0b:0d:7d:2c:6c:99: 7b:33:49:c9:3e:19:a3:4e:1a:5f:30:0e:75:f8:35: c5:46:65:d9:9c:eb:6c:fe:7e:5d:82:c7:fc:cf:e0: 29:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6D:68:2F:3C:E6:CC:C6:4A:1D:56:D4:22:C0:03:F8:2F:EB:C2:0E X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:89:df:9e:42:cc:fe:29:32:c0:fc:e7:13:e3:b6:64:3e:5f: f5:f4:1c:79:97:05:9e:81:70:0f:3f:e8:a8:9a:b8:71:2b:48: b5:ff:60:58:53:71:62:28:d2:31:13:db:f4:a9:1d:f1:83:f4: a3:04:72:ad:3d:b4:66:89:3c:2b:f2:d3:f2:27:50:0b:81:0a: 30:20:61:6e:61:59:50:18:b5:ea:45:c6:70:1b:1b:dd:ba:d1: 10:78:f5:0b:6a:62:23:a7:9f:2a:d1:e6:c4:88:95:d1:2d:c0: 88:1c:1e:ad:57:d7:52:86:f0:6c:c5:89:2f:0d:cf:be:27:35: 81:d3:88:9d:6f:ff:4d:f6:db:cb:31:97:00:04:8d:00:a4:99: 7c:ed:2c:cb:63:81:b7:3f:31:cf:9c:f7:37:bd:74:fc:25:98: 60:90:8c:71:69:d2:2c:8f:90:be:dd:01:2a:2b:a6:2c:01:4e: b5:55:5b:02:27:3a:b9:dc:de:61:96:e8:3a:46:5e:fd:81:a7: 0e:f1:5c:61:25:1e:86:cd:36:84:61:bc:3d:9a:11:91:73:25: 44:b2:7e:92:5d:61:5e:ca:7c:bc:ef:b2:9d:dc:4c:42:2f:1f: c4:6c:6d:0d:f3:97:d0:a6:7b:46:6c:fb:57:17:e7:16:1e:8f: 1a:c5:9c:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUxMjIyMTYyMDI5WhcNMjUxMjI5MTYyMDI5WjAYMRYwFAYD VQQDDA02OTQ5NmZjZS0zMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VUqrvmjPevXiRaCRbGej15b4HwNoSeBVvwAofhTanqppIko6JpBIfBCe2fY B6HlWsGkdoztwODa4WGQWD587BeRMCiLhr9KXEVcAaLRdwG1GGPu4NKO3Uugtx5/ UCQp4m3VClov2d8JFWwQHmzj8IaXgISXvrXdI/ynvj7oJSpgHBeOEllng1j1sjN2 mxLdjMAku9PNBFXlSHEm83MMspgYAc4YW6CZZxxXkhc9ijoKjmImkDivdvIN1pW8 sl4cTXN4L3R1VnsqAFotkVhAHb6cC+HIhIqGO3cLDX0sbJl7M0nJPhmjThpfMA51 +DXFRmXZnOts/n5dgsf8z+ApCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBtaC88 5szGSh1W1CLAA/gv68IOMB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVid+eQsz+KTLA/OcT47ZkPl/19Bx5lwWegXAPP+iomrhxK0i1/2BY U3FiKNIxE9v0qR3xg/SjBHKtPbRmiTwr8tPyJ1ALgQowIGFuYVlQGLXqRcZwGxvd utEQePULamIjp58q0ebEiJXRLcCIHB6tV9dShvBsxYkvDc++JzWB04idb/9N9tvL MZcABI0ApJl87SzLY4G3PzHPnPc3vXT8JZhgkIxxadIsj5C+3QEqK6YsAU61VVsC Jzq53N5hlug6Rl79gacO8VxhJR6GzTaEYbw9mhGRcyVEsn6SXWFeyny877Kd3ExC Lx/EbG0N85fQpntGbPtXF+cWHo8axZxk -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:29 2025 by rpki-client