This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft File: c9kAkk5wFUjm4yA4gPbAlypMKRo.mft (raw, json) Hash identifier: pRUEqdeU+86PFpmMz3Nny/XNvk45dwmHJU5FVYzF+5I= Subject key identifier: 99:D9:AA:AA:88:A0:C5:07:7F:17:7B:C9:8A:2B:84:CE:2F:20:E0:E8 Authority key identifier: 73:D9:00:92:4E:70:15:48:E6:E3:20:38:80:F6:C0:97:2A:4C:29:1A Certificate issuer: /CN=A91C9E72/serialNumber=73D900924E701548E6E3203880F6C0972A4C291A Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c9kAkk5wFUjm4yA4gPbAlypMKRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft Manifest number: E5 Signing time: Tue 23 Dec 2025 04:25:51 +0000 Manifest this update: Tue 23 Dec 2025 04:25:50 +0000 Manifest next update: Tue 30 Dec 2025 04:25:50 +0000 Files and hashes: 1: c9kAkk5wFUjm4yA4gPbAlypMKRo.crl (hash: l0xCM0pJ5x3O1tQSprUSMzG8DxwUxGXnFuttrqc1EpU=) 2: 5440C4C8848111EF9F3ECE34C4F9AE02.roa (hash: ngjUXbyjPJ6iVQy9pM5d20oIctL+wtrqPm7BvcCMjJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.crl rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c9kAkk5wFUjm4yA4gPbAlypMKRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E72, serialNumber=73D900924E701548E6E3203880F6C0972A4C291A Validity Not Before: Dec 23 04:25:50 2025 GMT Not After : Dec 30 04:25:50 2025 GMT Subject: CN=694a19cf-41de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:64:f4:b2:13:35:91:00:d1:bf:c1:ac:3d:ca: 81:23:ef:e4:18:d5:51:9c:2f:5c:d1:e0:f4:a7:94: e1:ec:92:e1:0a:e0:9b:2c:26:17:bf:b7:c9:52:d3: fa:ac:5a:fe:0b:60:76:65:9d:4a:d1:7d:df:e3:9f: 32:d9:ff:6a:35:52:03:7c:5e:2d:85:8b:b8:6a:a4: eb:ab:53:e1:a5:96:f8:1f:e3:04:48:d8:96:77:c3: b1:ef:cf:83:69:b1:5b:25:bd:25:87:38:b7:df:c6: 31:16:a3:52:fc:bb:1d:c5:eb:8b:61:7c:cf:fc:a0: 18:bb:09:5a:77:10:b4:87:66:3f:8f:1d:9f:12:1e: 90:a7:0b:bc:28:6f:1f:59:b8:6c:9e:9a:b0:c1:89: 09:8d:63:6f:b6:43:a3:87:e1:18:0a:fa:28:ec:b1: 73:46:2c:6c:22:17:c1:6e:95:f8:04:ba:78:fa:a9: 49:60:01:bf:35:a1:b4:93:95:41:df:e2:e1:5b:ae: a2:94:bf:62:d9:8f:63:2c:85:df:dd:ba:64:7b:5f: 50:32:3d:56:5a:6a:40:b4:ec:68:0c:04:8c:f3:b4: b8:a5:41:46:88:1d:79:8b:30:87:4f:5c:34:0c:67: f9:57:cd:fd:72:f5:6e:e2:bd:a0:af:a6:71:5c:f7: f1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D9:AA:AA:88:A0:C5:07:7F:17:7B:C9:8A:2B:84:CE:2F:20:E0:E8 X509v3 Authority Key Identifier: keyid:73:D9:00:92:4E:70:15:48:E6:E3:20:38:80:F6:C0:97:2A:4C:29:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c9kAkk5wFUjm4yA4gPbAlypMKRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:8f:dc:4e:6d:17:d7:f3:1f:d1:a9:06:88:d2:05:27:96:2e: 18:57:fa:ef:0b:a3:d1:df:95:bd:51:8c:b8:fa:6f:dd:81:bf: 58:8c:18:2f:d0:74:bd:64:1d:f5:0f:e7:0b:e3:6b:5b:5e:5a: 4b:e9:82:30:e2:b3:62:04:40:17:e3:04:29:13:8d:ef:d9:19: 70:8d:e3:b8:3f:23:60:2a:f2:ad:e7:71:1f:f0:0b:21:34:f6: 25:e3:36:f5:95:93:dc:7c:66:38:13:72:0b:4c:fa:06:ab:d6: f4:d6:78:5c:ff:21:3e:90:fb:60:fa:b6:f7:58:66:8a:ba:94: e1:30:47:71:15:f2:78:fc:b7:12:1d:e5:3f:32:c8:ca:66:89: fc:a6:f5:3d:7b:43:b0:62:8f:45:32:db:b1:87:b1:46:71:9c: c6:41:5d:27:e0:b1:0d:d0:b8:c7:55:77:2f:50:7f:92:cf:ee: 9a:37:4a:2b:02:73:a0:29:fb:40:0c:97:a5:4e:cc:bf:60:27: 73:5f:4e:da:50:ea:bf:5c:9e:d0:42:c0:ed:ed:d1:ca:07:c0: 7e:a7:80:6e:aa:09:7e:6d:0c:8d:6f:6e:0b:7d:d5:76:6f:ca: 53:8d:64:5e:c2:9c:2b:7a:f7:57:dc:b2:e5:15:eb:57:d2:70: dd:dd:68:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFNzIxMTAvBgNVBAUTKDczRDkwMDkyNEU3MDE1NDhFNkUzMjAzODgwRjZDMDk3 MkE0QzI5MUEwHhcNMjUxMjIzMDQyNTUwWhcNMjUxMjMwMDQyNTUwWjAYMRYwFAYD VQQDDA02OTRhMTljZi00MWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGT0shM1kQDRv8GsPcqBI+/kGNVRnC9c0eD0p5Th7JLhCuCbLCYXv7fJUtP6 rFr+C2B2ZZ1K0X3f458y2f9qNVIDfF4thYu4aqTrq1PhpZb4H+MESNiWd8Ox78+D abFbJb0lhzi338YxFqNS/LsdxeuLYXzP/KAYuwladxC0h2Y/jx2fEh6Qpwu8KG8f WbhsnpqwwYkJjWNvtkOjh+EYCvoo7LFzRixsIhfBbpX4BLp4+qlJYAG/NaG0k5VB 3+LhW66ilL9i2Y9jLIXf3bpke19QMj1WWmpAtOxoDASM87S4pUFGiB15izCHT1w0 DGf5V839cvVu4r2gr6ZxXPfxuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnZqqqI oMUHfxd7yYorhM4vIODoMB8GA1UdIwQYMBaAFHPZAJJOcBVI5uMgOID2wJcqTCka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU3Mi9FNkI0NDkwMjg0 ODAxMUVGQUFEOEUyMzNDNEY5QUUwMi9jOWtBa2s1d0ZVam00eUE0Z1BiQWx5cE1L Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M5a0FrazV3RlVqbTR5QTRnUGJBbHlwTUtSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU3Mi9FNkI0NDkwMjg0ODAxMUVGQUFEOEUyMzNDNEY5QUUwMi9jOWtBa2s1d0ZV am00eUE0Z1BiQWx5cE1LUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZj9xObRfX8x/RqQaI0gUnli4YV/rvC6PR35W9UYy4+m/dgb9YjBgv 0HS9ZB31D+cL42tbXlpL6YIw4rNiBEAX4wQpE43v2RlwjeO4PyNgKvKt53Ef8Ash NPYl4zb1lZPcfGY4E3ILTPoGq9b01nhc/yE+kPtg+rb3WGaKupThMEdxFfJ4/LcS HeU/MsjKZon8pvU9e0OwYo9FMtuxh7FGcZzGQV0n4LEN0LjHVXcvUH+Sz+6aN0or AnOgKftADJelTsy/YCdzX07aUOq/XJ7QQsDt7dHKB8B+p4Buqgl+bQyNb24LfdV2 b8pTjWRewpwrevdX3LLlFetX0nDd3WhQ -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:19 2025 by rpki-client