This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft File: 09eD7kxpu1Bj-1z1smKLx77DdIo.mft (raw, json) Hash identifier: uWIvx5KFeg6L4Ho7yr+zSs0CEBjPOr+byoTVkFyzxkE= Subject key identifier: 27:35:96:F9:99:4C:73:72:27:C7:F2:0F:DA:3F:7D:16:94:AA:0E:8D Authority key identifier: D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A Certificate issuer: /CN=A91B9A77/serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft Manifest number: DF Signing time: Tue 02 Dec 2025 23:56:49 +0000 Manifest this update: Tue 02 Dec 2025 23:56:48 +0000 Manifest next update: Tue 09 Dec 2025 23:56:48 +0000 Files and hashes: 1: 09eD7kxpu1Bj-1z1smKLx77DdIo.crl (hash: KaEyVhNyItales43CeafbF/bp0cyChtjYztHgRer7rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 23:56:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77, serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Validity Not Before: Dec 2 23:56:48 2025 GMT Not After : Dec 9 23:56:48 2025 GMT Subject: CN=692f7cc0-4c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:88:0f:36:26:f1:4d:01:95:26:c4:6f:a1:75: 88:03:c4:21:a1:80:f8:3d:25:39:8f:4b:3d:03:80: 1e:27:9b:d0:b7:32:cc:7d:58:ca:b6:cb:d7:0c:43: a8:14:d0:10:71:0b:49:88:43:4f:b2:f0:ba:38:03: a8:56:45:83:5f:a0:c0:45:0a:6d:e0:0f:c2:a7:26: 4d:d1:1d:4b:b3:ab:39:10:a9:52:21:a6:fb:91:50: ac:d9:2e:ab:36:8f:c7:94:9b:e6:35:0e:8f:99:97: 66:f9:10:e3:ba:70:8a:51:0b:0b:63:ab:81:a9:85: 5a:8b:25:67:f3:44:49:e6:b8:28:34:f6:19:d6:d9: 8f:55:83:5b:4d:be:67:f1:88:1a:89:e2:91:06:a2: 5f:7f:77:82:25:d6:9c:5a:54:b2:d3:b8:1f:0a:ad: 43:3c:29:c4:dd:7e:fb:5f:15:28:ff:ea:0b:e0:ba: dc:b4:bd:c6:fd:c5:56:b3:e8:55:46:73:71:93:4a: d5:2c:81:c6:9c:ab:44:12:bb:79:4f:59:e8:9f:fa: 51:07:d7:3a:34:6d:99:95:4d:bd:f3:30:d2:32:87: cc:a1:f6:3c:d9:2b:48:ea:84:c0:53:13:6f:2e:ff: ea:8c:3a:4c:84:08:7f:26:90:4a:87:71:4f:2b:b3: 8a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:35:96:F9:99:4C:73:72:27:C7:F2:0F:DA:3F:7D:16:94:AA:0E:8D X509v3 Authority Key Identifier: keyid:D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:5b:de:a6:54:cd:2f:e3:83:c7:4e:b4:38:0b:6f:94:32:58: e0:6a:cf:a0:4d:02:a3:47:d1:03:28:1b:d7:7f:ae:28:45:71: 1e:58:4b:aa:06:9a:be:34:ea:e5:5b:6e:c5:e7:6d:b8:96:24: 1f:a6:af:f5:c6:b5:d7:b1:26:b2:d6:4c:b5:d7:a1:6d:0d:20: fe:6d:ff:f4:6c:d5:00:31:b8:1c:db:b1:39:97:19:aa:ca:b1: ab:8a:d3:f7:67:57:3c:07:d5:79:9b:87:57:8b:66:4c:09:87: a0:fb:97:36:4e:4b:95:1c:ed:54:8d:33:a4:49:88:e8:e2:4c: d6:74:3e:fa:7e:72:e1:3d:b5:67:24:5f:e8:af:89:45:d3:90: ae:05:01:60:61:33:89:3a:84:9d:b4:53:f2:06:a6:ba:e0:fa: 45:9c:b7:5b:ad:37:4a:44:38:c1:f1:33:1b:f6:06:2c:2d:34: d9:dd:e4:5e:ce:56:33:17:9f:56:85:e5:eb:8f:e6:66:60:c9: b2:b0:86:cf:ca:23:ef:67:9b:3a:07:87:73:1a:8c:c5:ef:b1: e9:09:26:5c:07:f8:e6:4b:80:f0:d3:11:9f:36:3a:ee:74:9d: 46:01:f6:d4:15:49:43:74:2e:a2:4a:46:23:4a:1a:af:a2:4e: 85:6b:17:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBNzcxMTAvBgNVBAUTKEQzRDc4M0VFNEM2OUJCNTA2M0ZCNUNGNUIyNjI4QkM3 QkVDMzc0OEEwHhcNMjUxMjAyMjM1NjQ4WhcNMjUxMjA5MjM1NjQ4WjAYMRYwFAYD VQQDEw02OTJmN2NjMC00Yzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlogPNibxTQGVJsRvoXWIA8QhoYD4PSU5j0s9A4AeJ5vQtzLMfVjKtsvXDEOo FNAQcQtJiENPsvC6OAOoVkWDX6DARQpt4A/CpyZN0R1Ls6s5EKlSIab7kVCs2S6r No/HlJvmNQ6PmZdm+RDjunCKUQsLY6uBqYVaiyVn80RJ5rgoNPYZ1tmPVYNbTb5n 8YgaieKRBqJff3eCJdacWlSy07gfCq1DPCnE3X77XxUo/+oL4LrctL3G/cVWs+hV RnNxk0rVLIHGnKtEErt5T1non/pRB9c6NG2ZlU298zDSMofMofY82StI6oTAUxNv Lv/qjDpMhAh/JpBKh3FPK7OKNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCc1lvmZ THNyJ8fyD9o/fRaUqg6NMB8GA1UdIwQYMBaAFNPXg+5MabtQY/tc9bJii8e+w3SK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUE3Ny9BQjg1MzQ0MDdB M0YxMUVGQTFDMEUwMTZDNEY5QUUwMi8wOWVEN2t4cHUxQmotMXoxc21LTHg3N0Rk SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA5ZUQ3a3hwdTFCai0xejFzbUtMeDc3RGRJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUE3Ny9BQjg1MzQ0MDdBM0YxMUVGQTFDMEUwMTZDNEY5QUUwMi8wOWVEN2t4cHUx QmotMXoxc21LTHg3N0RkSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxW96mVM0v44PHTrQ4C2+UMljgas+gTQKjR9EDKBvXf64oRXEeWEuq Bpq+NOrlW27F5224liQfpq/1xrXXsSay1ky116FtDSD+bf/0bNUAMbgc27E5lxmq yrGritP3Z1c8B9V5m4dXi2ZMCYeg+5c2TkuVHO1UjTOkSYjo4kzWdD76fnLhPbVn JF/or4lF05CuBQFgYTOJOoSdtFPyBqa64PpFnLdbrTdKRDjB8TMb9gYsLTTZ3eRe zlYzF59WheXrj+ZmYMmysIbPyiPvZ5s6B4dzGozF77HpCSZcB/jmS4Dw0xGfNjru dJ1GAfbUFUlDdC6iSkYjShqvok6FaxeC -----END CERTIFICATE-----Generated at Wed Dec 3 14:14:35 2025 by rpki-client