This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft File: A9h0_y9dMgjn62Jadzf81EzuKsI.mft (raw, json) Hash identifier: bBaSZF1KZp2rkwrJo19lMPE111FxhwyLPpGbm4PW4JM= Subject key identifier: 00:62:6C:11:94:18:50:6C:B5:8B:1D:B5:47:23:0D:D0:90:59:A3:11 Authority key identifier: 03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 Certificate issuer: /CN=A91D901E/serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft Manifest number: 3B Signing time: Wed 03 Dec 2025 05:41:04 +0000 Manifest this update: Wed 03 Dec 2025 05:41:04 +0000 Manifest next update: Wed 10 Dec 2025 05:41:04 +0000 Files and hashes: 1: A9h0_y9dMgjn62Jadzf81EzuKsI.crl (hash: LHcLwy0W94xlwVRlpD9J/qD8k63pdkAncIVw6CErQhA=) 2: 58893B2878DC11F084C71D2BC4F9AE02.roa (hash: Top1RS38Q6RG/Bo0KeriCxYaYwIm8AI46xZdJa/NP8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:41:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D901E, serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Validity Not Before: Dec 3 05:41:04 2025 GMT Not After : Dec 10 05:41:04 2025 GMT Subject: CN=692fcd70-d080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ea:3b:b1:25:c3:76:16:35:44:4d:26:19:c9: aa:65:34:80:12:ac:76:0b:e5:c6:9d:6d:48:8a:34: 81:50:eb:d7:85:0d:ea:f7:28:73:4d:50:fb:12:af: 53:ed:4e:2b:2d:bd:1c:75:82:47:78:02:9b:3a:30: 9d:55:1e:6b:06:29:51:a1:56:de:84:d8:6b:7f:ff: f9:8a:34:02:03:90:71:f1:b0:79:af:3e:1c:5a:27: 7d:8e:63:4e:10:38:48:dc:ce:a3:a2:4b:9e:31:7c: 6e:01:a4:dd:e6:b4:01:e7:23:57:02:11:37:ef:da: de:39:38:04:ef:ad:e1:6f:21:f0:0e:32:21:0c:74: c2:d5:72:13:bb:b5:52:46:7b:56:5b:94:7c:09:05: c2:cc:db:62:82:da:96:77:41:b9:7c:93:22:b3:dc: f9:18:62:41:49:bd:95:a0:a4:61:e6:37:b2:56:a5: 90:8c:38:12:48:f0:72:5c:13:e6:db:f0:49:ae:8a: bf:bf:6a:15:90:32:40:36:60:6f:09:89:fd:63:5a: c5:ea:e1:57:ab:ba:e7:61:fa:8b:52:f3:13:f1:52: 22:3f:81:06:14:70:34:05:94:7a:27:72:12:2f:87: 0b:28:01:ca:2c:b1:cc:13:29:9f:a1:60:77:82:6d: 76:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:62:6C:11:94:18:50:6C:B5:8B:1D:B5:47:23:0D:D0:90:59:A3:11 X509v3 Authority Key Identifier: keyid:03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:a1:0c:83:ba:e4:ac:94:f1:a3:bb:e6:91:52:48:37:f2:55: 92:e0:b8:93:36:ce:e4:c8:00:b5:87:42:fe:90:8e:f2:fb:b3: 63:df:a5:10:7b:b6:56:0c:38:36:c1:44:17:1b:d1:34:e7:96: a0:7c:a4:35:aa:a9:50:ed:e7:2d:c2:b7:0d:92:a2:be:16:cf: 63:77:9a:17:12:cb:b8:a1:52:8e:ea:cb:ff:28:29:b9:1c:f1: af:35:87:09:84:e1:be:fb:80:11:7d:7d:c6:f1:48:69:ff:7f: ba:db:9c:da:9c:6f:c0:fa:71:5a:ec:c2:06:9b:87:d3:13:03: be:b5:2b:75:65:0d:49:0a:53:d5:f1:ba:1e:b2:50:43:c2:66: 8b:4b:f0:0a:8c:7a:a1:ee:62:11:b0:11:2c:60:d4:eb:90:76: 46:51:30:76:ac:b1:33:4c:2f:33:98:1d:9a:d2:af:a7:cf:ac: 7c:dc:8e:4a:e9:f1:85:10:0d:fd:60:31:43:59:37:3b:01:ab: cf:b9:3d:1b:08:c9:38:50:55:a7:27:d1:32:c2:37:91:4e:4c: 62:a8:8f:a9:a7:32:b9:4a:1a:90:67:06:d6:03:1f:1e:5d:ec: db:80:4e:fb:34:e4:1b:d1:b5:d7:86:74:f6:77:49:4f:c4:0c: a9:41:a4:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTAxRTExMC8GA1UEBRMoMDNEODc0RkYyRjVEMzIwOEU3RUI2MjVBNzczN0ZDRDQ0 Q0VFMkFDMjAeFw0yNTEyMDMwNTQxMDRaFw0yNTEyMTAwNTQxMDRaMBgxFjAUBgNV BAMTDTY5MmZjZDcwLWQwODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU6juxJcN2FjVETSYZyaplNIASrHYL5cadbUiKNIFQ69eFDer3KHNNUPsSr1Pt TistvRx1gkd4Aps6MJ1VHmsGKVGhVt6E2Gt///mKNAIDkHHxsHmvPhxaJ32OY04Q OEjczqOiS54xfG4BpN3mtAHnI1cCETfv2t45OATvreFvIfAOMiEMdMLVchO7tVJG e1ZblHwJBcLM22KC2pZ3Qbl8kyKz3PkYYkFJvZWgpGHmN7JWpZCMOBJI8HJcE+bb 8Emuir+/ahWQMkA2YG8Jif1jWsXq4Veruudh+otS8xPxUiI/gQYUcDQFlHonchIv hwsoAcosscwTKZ+hYHeCbXYRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAGJsEZQY UGy1ix21RyMN0JBZoxEwHwYDVR0jBBgwFoAUA9h0/y9dMgjn62Jadzf81EzuKsIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5MDFFL0RFMkQ2NEVBNzhE QTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdqbjYySmFkemY4MUV6dUtz SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQTloMF95OWRNZ2puNjJKYWR6ZjgxRXp1S3NJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 MDFFL0RFMkQ2NEVBNzhEQTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdq bjYySmFkemY4MUV6dUtzSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJqhDIO65KyU8aO75pFSSDfyVZLguJM2zuTIALWHQv6QjvL7s2PfpRB7 tlYMODbBRBcb0TTnlqB8pDWqqVDt5y3Ctw2Sor4Wz2N3mhcSy7ihUo7qy/8oKbkc 8a81hwmE4b77gBF9fcbxSGn/f7rbnNqcb8D6cVrswgabh9MTA761K3VlDUkKU9Xx uh6yUEPCZotL8AqMeqHuYhGwESxg1OuQdkZRMHassTNMLzOYHZrSr6fPrHzcjkrp 8YUQDf1gMUNZNzsBq8+5PRsIyThQVacn0TLCN5FOTGKoj6mnMrlKGpBnBtYDHx5d 7NuATvs05BvRtdeGdPZ3SU/EDKlBpNw= -----END CERTIFICATE-----Generated at Wed Dec 3 16:22:47 2025 by rpki-client