This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: o/i8KoFuBX1gS9kZ6bxZzk8cOwxQfJJISYDoAgWCiSU= Subject key identifier: B4:85:B5:75:D2:42:FA:F5:2E:FB:AB:8F:F7:B7:FD:F2:AD:7F:23:B7 Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 0275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 0270 Signing time: Tue 23 Dec 2025 00:36:39 +0000 Manifest this update: Tue 23 Dec 2025 00:36:39 +0000 Manifest next update: Tue 30 Dec 2025 00:36:39 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: O/11S55UEac/ABoSkvo24PKHy26N3Wa1LFYZSxQopAo=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: PfkrPDG++/2Nz9EpQDe53DnK5uMvt85T4k9+4QpNzFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68, serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Dec 23 00:36:39 2025 GMT Not After : Dec 30 00:36:39 2025 GMT Subject: CN=6949e417-e940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:92:6d:c2:b7:6a:3a:d8:59:b9:e5:28:26:2c: 29:d1:4b:d8:da:f8:31:23:8f:cd:97:69:47:a1:55: a7:33:94:50:ca:62:c7:0a:e6:84:e8:4d:d8:2e:3a: b5:e1:9b:8b:d6:f2:0b:1e:a3:b8:d1:a6:fa:63:e1: 1d:b4:ff:c4:4b:e7:0e:c7:ef:7d:f2:d8:4f:45:14: 0e:ff:e6:44:67:a6:b1:2a:ca:21:c0:5b:55:71:a1: 0f:3b:d6:29:ea:da:7b:09:c0:1f:25:bb:ed:f5:6e: 61:62:ba:df:1b:2e:66:b4:99:d2:48:36:78:12:d7: 51:5b:7a:fb:08:6a:94:19:1a:14:73:c4:9b:b8:dc: 33:ac:5f:70:6f:18:d6:4a:0d:1e:c2:14:ae:13:59: c8:f9:cc:d5:8c:e7:ae:29:6e:5f:44:8b:ab:20:15: a0:c3:58:45:85:ca:ed:8d:40:04:9d:38:0c:13:1c: b2:ce:3b:38:3c:29:62:a7:f9:82:9c:50:df:23:82: 24:e7:16:46:c5:e9:77:47:c1:c7:6b:e5:ca:83:22: 71:8b:25:ce:ae:5b:92:5a:e7:b5:d9:32:e1:1a:18: 72:ac:1a:9c:bc:81:03:e0:41:56:80:05:a4:34:e5: 9f:6a:21:d1:3a:94:e8:68:7a:5e:6d:8e:98:df:b6: 48:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:85:B5:75:D2:42:FA:F5:2E:FB:AB:8F:F7:B7:FD:F2:AD:7F:23:B7 X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:17:1d:72:8a:53:32:a5:ff:31:74:9b:70:06:e7:4f:aa:05: cd:0c:34:5f:98:6e:45:ad:3f:e2:39:6d:6a:75:42:0a:a0:d7: 85:20:4f:29:ed:09:db:51:e2:e5:2f:0b:b4:ae:76:6b:56:3d: 96:f7:51:cf:b9:13:70:b0:ac:05:ac:a1:d1:6d:84:5e:a4:88: 42:a5:e7:c3:7a:47:bb:90:8e:cf:fb:a6:85:07:45:31:27:b0: e2:d4:c7:89:d8:bd:18:5f:2c:f2:87:24:3b:52:5f:b3:1f:52: 2d:c2:b0:d3:ee:d5:be:92:31:c1:80:bd:21:f2:3d:1b:77:1f: 00:b6:66:71:eb:ce:e0:b5:07:1e:bb:38:6f:84:2f:4d:63:25: 77:a5:25:87:ac:61:ef:1f:a8:39:f0:7f:1c:87:c7:10:c8:8f: a9:2b:e8:f7:7c:bc:cc:9b:09:25:f7:cf:5e:a1:68:99:94:fe: d3:f9:a1:2a:ab:37:bc:8a:35:f3:98:e0:81:d4:79:bb:94:8c: 7f:16:d8:85:92:42:19:79:1a:b4:35:b1:9c:03:a8:e8:15:ca: a3:f0:f4:61:ba:97:fe:4f:d0:83:1b:55:79:5e:60:e4:f5:02: 7d:9d:50:ee:20:f3:f7:3c:69:16:46:07:0d:e7:d4:a6:73:3a: 2a:5a:19:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjUxMjIzMDAzNjM5WhcNMjUxMjMwMDAzNjM5WjAYMRYwFAYD VQQDDA02OTQ5ZTQxNy1lOTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5JtwrdqOthZueUoJiwp0UvY2vgxI4/Nl2lHoVWnM5RQymLHCuaE6E3YLjq1 4ZuL1vILHqO40ab6Y+EdtP/ES+cOx+998thPRRQO/+ZEZ6axKsohwFtVcaEPO9Yp 6tp7CcAfJbvt9W5hYrrfGy5mtJnSSDZ4EtdRW3r7CGqUGRoUc8SbuNwzrF9wbxjW Sg0ewhSuE1nI+czVjOeuKW5fRIurIBWgw1hFhcrtjUAEnTgMExyyzjs4PClip/mC nFDfI4Ik5xZGxel3R8HHa+XKgyJxiyXOrluSWue12TLhGhhyrBqcvIED4EFWgAWk NOWfaiHROpToaHpebY6Y37ZItQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSFtXXS Qvr1Lvurj/e3/fKtfyO3MB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3Fx1yilMypf8xdJtwBudPqgXNDDRfmG5FrT/iOW1qdUIKoNeFIE8p 7QnbUeLlLwu0rnZrVj2W91HPuRNwsKwFrKHRbYRepIhCpefDeke7kI7P+6aFB0Ux J7Di1MeJ2L0YXyzyhyQ7Ul+zH1ItwrDT7tW+kjHBgL0h8j0bdx8AtmZx687gtQce uzhvhC9NYyV3pSWHrGHvH6g58H8ch8cQyI+pK+j3fLzMmwkl989eoWiZlP7T+aEq qze8ijXzmOCB1Hm7lIx/FtiFkkIZeRq0NbGcA6joFcqj8PRhupf+T9CDG1V5XmDk 9QJ9nVDuIPP3PGkWRgcN59SmczoqWhkH -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:29 2025 by rpki-client