This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft File: cM9awmFE6NdDsVID4mwiBG-iQHo.mft (raw, json) Hash identifier: vcxyGRbQB7woP2AADpISO6tfuu5Bs2+PHVHyB3syKGM= Subject key identifier: 4E:36:33:E8:29:F7:71:4A:5C:41:91:65:7C:92:F1:21:50:AA:3C:3F Authority key identifier: 70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A Certificate issuer: /CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft Manifest number: 01F9 Signing time: Tue 23 Dec 2025 01:32:31 +0000 Manifest this update: Tue 23 Dec 2025 01:32:31 +0000 Manifest next update: Tue 30 Dec 2025 01:32:31 +0000 Files and hashes: 1: cM9awmFE6NdDsVID4mwiBG-iQHo.crl (hash: EHemlS+DtfAt9pWcC2WP+1y+yCpAd4cl20mROq2gr4Q=) 2: ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa (hash: ViKM5e5iyaoZ2fwSNhoyHsddKA5yuwX0C7qKIyKJX7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB128, serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Validity Not Before: Dec 23 01:32:31 2025 GMT Not After : Dec 30 01:32:31 2025 GMT Subject: CN=6949f12f-56e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8d:9d:b6:a4:c3:6b:50:09:be:77:89:13:11: c6:10:90:c5:bb:c4:b5:8a:1d:3b:f1:b9:7e:d4:5b: 42:e4:bf:77:b3:8c:8e:bb:98:6a:49:77:a4:39:b5: c4:77:91:af:fc:7f:af:25:57:80:e1:29:62:f7:f8: 26:52:02:59:89:b4:43:17:25:b1:06:5e:e4:89:01: 20:a2:45:bd:54:5f:4c:3e:f0:c4:59:c4:de:e3:df: d8:9e:25:e5:b4:09:02:e9:94:00:0e:08:b4:ac:d9: 01:ed:b0:02:16:ff:a7:76:f3:32:50:aa:e7:1e:07: e6:02:b0:83:7d:9b:8a:51:ac:ab:2f:df:96:f6:c4: ef:e9:de:10:79:56:25:aa:b7:f2:3e:f0:c3:d2:95: c1:2c:e4:c3:78:17:f9:26:49:6a:42:8e:50:81:f1: 2c:b4:8a:67:7d:9e:9b:ed:84:2d:96:d3:96:0b:4b: 3f:4e:af:1b:af:5d:5b:63:0e:d3:58:3b:ab:72:44: 6d:f2:cd:a9:52:00:4b:37:e6:44:c8:f6:fb:0b:c6: f4:28:89:e5:72:71:3b:47:96:a6:bb:88:3f:89:89: 5a:c7:e2:a8:8f:0d:ba:5d:99:7e:db:8d:e1:83:a2: 3a:bd:2b:2f:b0:b7:a9:9e:26:53:64:5b:a8:64:cb: 7a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:36:33:E8:29:F7:71:4A:5C:41:91:65:7C:92:F1:21:50:AA:3C:3F X509v3 Authority Key Identifier: keyid:70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:74:7a:5a:13:b7:fe:f1:bf:5e:86:b5:e6:92:51:ce:7b:39: f1:a8:ed:00:b1:a6:2f:de:0f:85:f8:b2:e4:7c:19:10:03:9a: a8:22:e5:7a:7a:6d:15:6e:1b:82:86:17:95:26:d3:53:2a:7c: 5d:2f:ed:93:52:49:9d:77:c7:ab:0f:c5:30:02:2f:98:96:b3: e3:22:4c:84:cf:d7:a8:30:48:71:cc:6b:ac:f2:78:47:d9:63: 83:c0:86:be:9e:d6:14:f9:2f:e8:95:dc:ad:53:29:3b:28:71: d1:58:ea:95:86:08:a4:bf:79:06:6f:47:83:ce:47:66:4d:a0: e4:24:e9:ac:42:b7:6c:7b:69:84:c6:d7:23:8d:54:83:85:3e: b2:08:e9:59:0b:87:40:f9:4b:db:05:6f:68:d2:58:94:ae:f4: f7:6f:c6:4d:b3:86:2b:a8:d8:49:c8:4d:d0:92:c1:56:58:ec: eb:0d:bc:50:9f:49:50:14:a0:23:b3:df:ba:b9:f2:d1:ee:b7: 98:d8:e8:2e:9e:17:7d:cd:dd:bc:2f:47:bf:37:d2:c6:84:eb: 6b:8b:61:13:94:38:a6:66:e7:8a:1d:1a:a9:85:61:39:71:94: 51:05:8c:b8:f7:0c:a0:0d:94:f9:39:c3:64:0f:30:20:7a:de: 4d:e9:b2:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIxMjgxMTAvBgNVBAUTKDcwQ0Y1QUMyNjE0NEU4RDc0M0IxNTIwM0UyNkMyMjA0 NkZBMjQwN0EwHhcNMjUxMjIzMDEzMjMxWhcNMjUxMjMwMDEzMjMxWjAYMRYwFAYD VQQDDA02OTQ5ZjEyZi01NmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzo2dtqTDa1AJvneJExHGEJDFu8S1ih078bl+1FtC5L93s4yOu5hqSXekObXE d5Gv/H+vJVeA4Sli9/gmUgJZibRDFyWxBl7kiQEgokW9VF9MPvDEWcTe49/YniXl tAkC6ZQADgi0rNkB7bACFv+ndvMyUKrnHgfmArCDfZuKUayrL9+W9sTv6d4QeVYl qrfyPvDD0pXBLOTDeBf5JklqQo5QgfEstIpnfZ6b7YQtltOWC0s/Tq8br11bYw7T WDurckRt8s2pUgBLN+ZEyPb7C8b0KInlcnE7R5amu4g/iYlax+Kojw26XZl+243h g6I6vSsvsLepniZTZFuoZMt6twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE42M+gp 93FKXEGRZXyS8SFQqjw/MB8GA1UdIwQYMBaAFHDPWsJhROjXQ7FSA+JsIgRvokB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjEyOC83QkYyM0FDNERE RTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZOZERzVklENG13aUJHLWlR SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNOWF3bUZFNk5kRHNWSUQ0bXdpQkctaVFIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjEyOC83QkYyM0FDNERERTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZO ZERzVklENG13aUJHLWlRSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0dHpaE7f+8b9ehrXmklHOeznxqO0AsaYv3g+F+LLkfBkQA5qoIuV6 em0VbhuChheVJtNTKnxdL+2TUkmdd8erD8UwAi+YlrPjIkyEz9eoMEhxzGus8nhH 2WODwIa+ntYU+S/oldytUyk7KHHRWOqVhgikv3kGb0eDzkdmTaDkJOmsQrdse2mE xtcjjVSDhT6yCOlZC4dA+UvbBW9o0liUrvT3b8ZNs4YrqNhJyE3QksFWWOzrDbxQ n0lQFKAjs9+6ufLR7reY2Ogunhd9zd28L0e/N9LGhOtri2ETlDimZueKHRqphWE5 cZRRBYy49wygDZT5OcNkDzAget5N6bL1 -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:00 2025 by rpki-client