This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: aYxzvInlPOKmD2TGNzB7RQUSlfsDy25w0m5ha746K5M= Subject key identifier: 55:2E:9A:EA:5C:06:F9:C6:0D:05:19:21:81:44:F0:04:E7:1C:96:9E Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 07F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 07E9 Signing time: Mon 22 Dec 2025 20:28:46 +0000 Manifest this update: Mon 22 Dec 2025 20:28:46 +0000 Manifest next update: Mon 29 Dec 2025 20:28:46 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: +vmzSwIx2nBSXZRgef6CEdAkm44bwLqBoSgqPGye5S4=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: SqNXqLNgkpLICxW/LBSYL1V/21ZqqGqKzf6yPi47f5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2034 (0x7f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Dec 22 20:28:46 2025 GMT Not After : Dec 29 20:28:46 2025 GMT Subject: CN=6949a9fe-c091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:ed:40:c5:6b:d9:16:8d:73:40:0b:da:a6:ce: 66:2d:8a:e3:c7:d0:8d:a4:8c:41:17:df:78:db:05: 6e:f1:ed:de:92:c9:9c:8f:d1:60:55:8d:50:85:f0: fc:ac:78:dd:44:62:88:ad:d6:eb:a8:18:be:ca:ab: 85:0d:11:c0:8b:ae:17:6b:d9:1d:ea:32:44:08:ff: e6:f0:48:66:89:d8:56:24:8e:f1:15:b3:68:70:7c: 4f:b6:d2:4d:ff:56:37:38:42:e0:a9:88:d3:00:f4: 56:8b:23:72:78:35:54:d2:68:db:05:dd:63:17:1e: f2:b2:cc:ae:94:43:7c:73:25:83:6e:55:a4:c9:94: 06:58:90:eb:83:a1:2d:5b:3e:6e:1c:03:7a:a8:e8: 52:89:45:69:2e:7c:05:8d:1b:47:02:2b:6d:70:dd: fe:64:59:18:b3:87:cd:a4:9e:27:21:31:56:6d:cf: a2:a6:e2:57:36:30:cf:19:d8:10:55:86:04:0f:50: 06:81:e3:28:de:6c:9c:ac:ad:0f:f0:a9:64:d5:d6: 83:7a:c5:06:47:c3:5f:8a:61:27:36:63:20:b0:e7: e0:94:80:f2:71:50:02:7a:3f:f2:58:02:6d:82:2d: d0:df:47:b7:76:90:d3:2f:fc:7b:46:7c:82:0a:8d: 3c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:2E:9A:EA:5C:06:F9:C6:0D:05:19:21:81:44:F0:04:E7:1C:96:9E X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:2a:5d:73:b1:ae:fc:e9:22:a5:72:7d:71:6d:30:22:7a:55: 54:4a:e4:36:03:b2:62:c6:99:93:db:6b:8d:de:0b:48:3d:29: 16:4a:66:4d:31:a0:f4:4b:ee:e4:75:6e:9d:e5:eb:9f:e2:4d: 58:77:89:ed:a1:cd:e1:4f:01:49:0a:aa:9a:55:11:a6:dc:4d: 76:ae:12:14:09:16:10:48:66:7b:eb:d3:e7:ac:92:1c:94:da: 8d:c9:ce:12:46:98:8e:54:15:54:1f:34:00:d2:dc:65:dc:7d: ae:db:16:c6:d9:57:bc:72:c5:d8:5a:91:15:ee:f3:ec:35:97: d5:8f:d3:eb:25:bb:8e:e9:b8:2b:66:21:7a:90:98:69:fd:b8: eb:e4:95:64:4a:94:6b:50:c6:fe:02:96:5d:e8:c6:87:86:85: 19:bb:06:79:c8:e9:e7:c9:ff:1b:c2:5e:a6:8a:ca:05:fc:31: da:4d:0e:df:fb:89:d6:6e:63:95:86:6c:c9:50:9a:16:47:84: cf:9d:c3:5b:24:4c:f5:63:5e:c8:45:45:25:1a:56:3e:50:0f: 06:03:a4:d3:7a:ae:49:84:ba:66:2b:ec:9c:fb:47:fe:a2:62: 89:6b:51:d0:2b:29:40:80:d9:3c:e0:e8:f8:80:7f:72:1d:70: c6:3c:81:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjUxMjIyMjAyODQ2WhcNMjUxMjI5MjAyODQ2WjAYMRYwFAYD VQQDDA02OTQ5YTlmZS1jMDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAje1AxWvZFo1zQAvaps5mLYrjx9CNpIxBF9942wVu8e3eksmcj9FgVY1QhfD8 rHjdRGKIrdbrqBi+yquFDRHAi64Xa9kd6jJECP/m8EhmidhWJI7xFbNocHxPttJN /1Y3OELgqYjTAPRWiyNyeDVU0mjbBd1jFx7yssyulEN8cyWDblWkyZQGWJDrg6Et Wz5uHAN6qOhSiUVpLnwFjRtHAittcN3+ZFkYs4fNpJ4nITFWbc+ipuJXNjDPGdgQ VYYED1AGgeMo3mycrK0P8Klk1daDesUGR8NfimEnNmMgsOfglIDycVACej/yWAJt gi3Q30e3dpDTL/x7RnyCCo08+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUumupc BvnGDQUZIYFE8ATnHJaeMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKKl1zsa786SKlcn1xbTAielVUSuQ2A7JixpmT22uN3gtIPSkWSmZN MaD0S+7kdW6d5euf4k1Yd4ntoc3hTwFJCqqaVRGm3E12rhIUCRYQSGZ769PnrJIc lNqNyc4SRpiOVBVUHzQA0txl3H2u2xbG2Ve8csXYWpEV7vPsNZfVj9PrJbuO6bgr ZiF6kJhp/bjr5JVkSpRrUMb+ApZd6MaHhoUZuwZ5yOnnyf8bwl6misoF/DHaTQ7f +4nWbmOVhmzJUJoWR4TPncNbJEz1Y17IRUUlGlY+UA8GA6TTeq5JhLpmK+yc+0f+ omKJa1HQKylAgNk84Oj4gH9yHXDGPIHi -----END CERTIFICATE-----Generated at Tue Dec 23 07:56:25 2025 by rpki-client