This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft File: 9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft (raw, json) Hash identifier: yEFocv7mi6aPl9QNUSOtXC2MlpqT7Ro6UC3R+7kb0xM= Subject key identifier: D6:DA:D5:37:B6:A0:1D:21:F1:5B:5E:08:7D:D8:2E:5C:E2:1E:AC:24 Authority key identifier: F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A Certificate issuer: /CN=A91C7AA5/serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft Manifest number: A6 Signing time: Tue 23 Dec 2025 05:35:28 +0000 Manifest this update: Tue 23 Dec 2025 05:35:28 +0000 Manifest next update: Tue 30 Dec 2025 05:35:28 +0000 Files and hashes: 1: 9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl (hash: s0PdI64G3DYp4F1+fxBqLfio3tr3Q0+XdHQS/YTOWGo=) 2: 0AC13D943C5711F0BFBB572EC4F9AE02.roa (hash: 61Maf4HdTVjL1p15SmMO0sDKtCDOS9JEKlRjMIwn4Cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AA5, serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Validity Not Before: Dec 23 05:35:28 2025 GMT Not After : Dec 30 05:35:28 2025 GMT Subject: CN=694a2a20-96ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:f4:b6:d0:0e:97:94:2f:5a:44:e9:46:b7:0f: 39:7d:19:a3:55:e0:14:81:ac:8a:19:6a:df:22:47: ea:22:7e:d8:3b:41:95:d4:8b:a9:0e:80:56:cb:93: 59:6d:55:f6:48:86:15:54:73:d2:6d:7f:f0:f9:e9: 37:b3:f3:bb:12:77:a3:74:5e:7d:7f:92:ec:22:7c: 67:e8:81:7f:ad:14:2b:1a:50:08:cf:d2:3a:08:54: 20:11:7c:96:45:4c:bb:b7:da:16:5c:82:01:6b:8d: 1a:76:41:4a:01:06:9d:8b:62:d4:01:92:d4:e8:a0: f1:97:14:66:37:65:a9:3a:8c:d0:5d:5e:27:c2:a9: df:5e:4a:7d:ac:ae:45:e3:5e:79:4a:57:01:62:33: dd:1d:7f:e4:f2:d6:a9:d3:e7:3b:a2:ad:85:07:53: 66:bc:44:30:f2:60:2b:51:09:3a:6f:ce:a7:4b:51: a4:b7:d9:bc:69:75:2b:aa:40:2d:b5:6d:98:2a:ed: 0d:b3:76:ae:31:a1:aa:02:b1:c2:04:d7:3f:07:77: 4f:f3:aa:0f:ac:7a:a7:d9:24:40:3e:d8:58:34:46: 42:5a:1c:41:9d:4e:1e:31:4b:0d:a2:03:0b:c3:ea: 68:7e:85:a9:fe:8e:4d:b4:1b:46:8f:93:d3:31:09: 64:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:DA:D5:37:B6:A0:1D:21:F1:5B:5E:08:7D:D8:2E:5C:E2:1E:AC:24 X509v3 Authority Key Identifier: keyid:F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a8:54:b2:2a:16:00:c9:9b:53:90:8b:bf:f0:ef:8a:f7:c9: 6f:d1:fe:5d:3c:f5:7d:0a:4c:7a:04:4d:ca:5c:cf:14:9c:c6: f1:c3:3b:bf:c1:57:14:06:43:63:d5:fa:34:db:1a:10:d5:c2: 70:78:be:fa:97:ae:15:2c:a3:a7:46:fa:4a:72:9b:dc:8b:e4: b7:d4:bd:eb:e9:c7:6e:e5:3a:f3:d0:7b:0b:2a:cb:bf:11:6e: 05:b1:48:31:03:c9:f4:e6:80:49:e0:b2:7f:da:7a:3f:77:1d: 57:c0:c3:85:48:6f:aa:19:12:47:97:33:ab:8e:b0:b2:dc:bc: 4c:19:07:b0:fa:22:48:5f:5a:93:19:74:dc:91:f4:0f:a0:bf: ba:fe:94:71:66:84:4c:84:5a:0f:a5:f8:22:9d:d2:30:8e:f6: 82:63:ba:88:de:b5:c4:6a:f8:5b:0f:20:38:dc:3a:9a:54:f7: 37:fe:ce:7c:2a:dc:64:41:bf:56:a2:4f:f8:a8:8b:12:2a:61: fd:64:43:c2:70:8f:76:88:b4:8d:49:c8:60:94:93:95:7d:b1: fa:db:6a:2a:ec:ed:98:e2:4a:b6:a3:cb:3e:9d:94:2e:7e:06: 8b:7d:75:8f:35:49:43:e1:6b:c5:c7:c3:44:87:bd:79:67:55: b3:85:9d:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQTUxMTAvBgNVBAUTKEY3MjY3RTgwQkU4MTdGMDQzRDI4RkI3RTczMDVGNEM0 ODhBODM5MUEwHhcNMjUxMjIzMDUzNTI4WhcNMjUxMjMwMDUzNTI4WjAYMRYwFAYD VQQDDA02OTRhMmEyMC05NmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhvS20A6XlC9aROlGtw85fRmjVeAUgayKGWrfIkfqIn7YO0GV1IupDoBWy5NZ bVX2SIYVVHPSbX/w+ek3s/O7EnejdF59f5LsInxn6IF/rRQrGlAIz9I6CFQgEXyW RUy7t9oWXIIBa40adkFKAQadi2LUAZLU6KDxlxRmN2WpOozQXV4nwqnfXkp9rK5F 4155SlcBYjPdHX/k8tap0+c7oq2FB1NmvEQw8mArUQk6b86nS1Gkt9m8aXUrqkAt tW2YKu0Ns3auMaGqArHCBNc/B3dP86oPrHqn2SRAPthYNEZCWhxBnU4eMUsNogML w+pofoWp/o5NtBtGj5PTMQlknQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNba1Te2 oB0h8VteCH3YLlziHqwkMB8GA1UdIwQYMBaAFPcmfoC+gX8EPSj7fnMF9MSIqDka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FBNS9CQUZCMzU3NDE1 QkIxMUYwQkZENTQ4ODFDNEY5QUUwMi85eVotZ0w2QmZ3UTlLUHQtY3dYMHhJaW9P Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5Wi1nTDZCZndROUtQdC1jd1gweElpb09Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0FBNS9CQUZCMzU3NDE1QkIxMUYwQkZENTQ4ODFDNEY5QUUwMi85eVotZ0w2QmZ3 UTlLUHQtY3dYMHhJaW9PUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqqFSyKhYAyZtTkIu/8O+K98lv0f5dPPV9Ckx6BE3KXM8UnMbxwzu/ wVcUBkNj1fo02xoQ1cJweL76l64VLKOnRvpKcpvci+S31L3r6cdu5Trz0HsLKsu/ EW4FsUgxA8n05oBJ4LJ/2no/dx1XwMOFSG+qGRJHlzOrjrCy3LxMGQew+iJIX1qT GXTckfQPoL+6/pRxZoRMhFoPpfgindIwjvaCY7qI3rXEavhbDyA43DqaVPc3/s58 KtxkQb9Wok/4qIsSKmH9ZEPCcI92iLSNSchglJOVfbH622oq7O2Y4kq2o8s+nZQu fgaLfXWPNUlD4WvFx8NEh715Z1WzhZ1C -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:09 2025 by rpki-client