This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft File: Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft (raw, json) Hash identifier: TMOKBr5d3QCA0rvoRlUAeoL7WXLYrCKrdS6ymE7fE3w= Subject key identifier: 23:D4:45:98:D8:B6:9F:16:38:5C:56:02:3B:11:40:12:37:71:60:1D Authority key identifier: 0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F Certificate issuer: /CN=A91AF5F7/serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Certificate serial: 063E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft Manifest number: 062D Signing time: Mon 22 Dec 2025 21:59:02 +0000 Manifest this update: Mon 22 Dec 2025 21:59:02 +0000 Manifest next update: Mon 29 Dec 2025 21:59:02 +0000 Files and hashes: 1: Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl (hash: lsyFV9ATU/dHqoXSh5xtiFhFA7lUpNuGUQHnKKgJXb0=) 2: 4D38774A86E611EF9D6F5581C4F9AE02.roa (hash: RrGFGjBqFWbDXGLRFPlWMlsiau/aq6m1Jz59fpXuJf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1598 (0x63e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF5F7, serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Validity Not Before: Dec 22 21:59:02 2025 GMT Not After : Dec 29 21:59:02 2025 GMT Subject: CN=6949bf26-6e8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:22:df:aa:2b:70:f7:b8:f8:23:99:9c:7e:75: 23:7d:e7:5a:5a:50:f3:2b:45:d8:f8:18:4a:38:dc: 20:a4:e1:64:00:14:02:8a:85:c8:9e:60:3f:85:d0: 96:0e:29:6b:64:04:ff:9a:37:18:98:a6:53:79:58: fa:0e:8c:1f:01:30:50:90:ed:ae:03:c4:f8:0e:73: 41:69:e5:7a:84:ed:a5:58:da:73:da:d4:e0:30:0f: 98:64:3e:ab:64:f7:cd:38:84:8e:e1:18:ce:7d:21: 71:71:4f:6a:b4:06:cf:80:d8:f6:12:7a:67:e4:5c: bc:7e:6c:e6:db:6f:ef:a4:87:a7:87:ff:2c:45:3e: fd:d0:e8:e4:ba:6f:12:db:ef:73:13:7d:ab:7a:ac: bb:f2:21:70:71:dd:14:33:22:3f:08:11:47:23:e3: d8:d0:4c:d6:a0:f0:ce:23:b1:81:a1:65:33:9b:8e: a5:a6:4b:52:20:a9:4d:14:06:15:43:ef:b3:ee:09: 00:d8:c0:5d:22:b0:43:85:e2:a7:d7:4c:b8:cd:8b: a7:56:4a:58:91:62:59:04:d3:da:5d:ae:ac:5d:52: 0f:ad:14:ce:e2:09:fe:28:9c:fb:ff:25:fc:10:b6: 0b:8c:d5:18:5f:c9:c1:bf:b9:e9:08:6e:89:7d:32: 63:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D4:45:98:D8:B6:9F:16:38:5C:56:02:3B:11:40:12:37:71:60:1D X509v3 Authority Key Identifier: keyid:0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:40:25:91:91:ac:3a:97:02:17:42:0b:0c:26:39:28:55:b0: c9:b5:7d:b1:37:fa:cc:ed:1b:38:87:b2:9a:27:0f:5e:24:5b: 40:65:0f:3b:f5:2e:e7:e9:ab:c3:4b:42:7e:15:10:26:22:80: ea:a0:6b:36:9b:fd:97:32:17:71:0c:60:40:f3:a9:56:e0:b0: 09:5f:d1:6d:7c:f7:36:2d:fb:1d:97:91:d7:bd:68:15:29:b0: 4f:3b:7d:6b:77:ce:8d:4f:ee:5e:f4:82:9d:8f:da:c2:68:92: a2:ed:99:49:79:47:98:6c:09:2c:a2:cb:45:ab:01:5e:31:3f: fe:f8:92:5b:21:b5:54:1b:ca:7d:52:bb:f8:e2:cf:4e:e4:c4: cf:ce:53:af:39:31:91:b6:49:50:d4:da:7c:56:55:dc:2c:4c: f4:7f:26:9a:d9:ac:9d:09:a7:ab:e5:b5:b1:d2:8e:90:89:60: ff:82:7c:7e:02:3d:b9:d6:75:3d:86:86:42:1d:af:e0:9a:3c: 62:ba:d9:e4:ed:f6:6c:95:12:1a:19:99:10:4f:7c:c1:62:ce: ef:4d:be:0a:78:eb:f5:3c:50:33:1f:2d:38:db:ab:46:16:40: 6c:a4:41:b4:97:f4:a0:d7:97:d2:83:4e:90:9a:98:b4:76:6b: e3:ac:5d:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY1RjcxMTAvBgNVBAUTKDBBMjc3RDI2QTlDMjQwMkI4QTFDRDQ1Nzc5MzVFNEYz QzI1OUMxOUYwHhcNMjUxMjIyMjE1OTAyWhcNMjUxMjI5MjE1OTAyWjAYMRYwFAYD VQQDDA02OTQ5YmYyNi02ZThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSLfqitw97j4I5mcfnUjfedaWlDzK0XY+BhKONwgpOFkABQCioXInmA/hdCW DilrZAT/mjcYmKZTeVj6DowfATBQkO2uA8T4DnNBaeV6hO2lWNpz2tTgMA+YZD6r ZPfNOISO4RjOfSFxcU9qtAbPgNj2Enpn5Fy8fmzm22/vpIenh/8sRT790Ojkum8S 2+9zE32reqy78iFwcd0UMyI/CBFHI+PY0EzWoPDOI7GBoWUzm46lpktSIKlNFAYV Q++z7gkA2MBdIrBDheKn10y4zYunVkpYkWJZBNPaXa6sXVIPrRTO4gn+KJz7/yX8 ELYLjNUYX8nBv7npCG6JfTJjwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCPURZjY tp8WOFxWAjsRQBI3cWAdMB8GA1UdIwQYMBaAFAonfSapwkArihzUV3k15PPCWcGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjVGNy80NEZDRTU2OEM3 ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FDdUtITlJYZVRYazg4Slp3 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpZDlKcW5DUUN1S0hOUlhlVFhrODhKWndaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjVGNy80NEZDRTU2OEM3ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FD dUtITlJYZVRYazg4Slp3WjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYQCWRkaw6lwIXQgsMJjkoVbDJtX2xN/rM7Rs4h7KaJw9eJFtAZQ87 9S7n6avDS0J+FRAmIoDqoGs2m/2XMhdxDGBA86lW4LAJX9FtfPc2Lfsdl5HXvWgV KbBPO31rd86NT+5e9IKdj9rCaJKi7ZlJeUeYbAksostFqwFeMT/++JJbIbVUG8p9 Urv44s9O5MTPzlOvOTGRtklQ1Np8VlXcLEz0fyaa2aydCaer5bWx0o6QiWD/gnx+ Aj251nU9hoZCHa/gmjxiutnk7fZslRIaGZkQT3zBYs7vTb4KeOv1PFAzHy0426tG FkBspEG0l/Sg15fSg06Qmpi0dmvjrF22 -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:40 2025 by rpki-client