This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: zKK979TmXAekoYeTd8wVZsZaOPA/Cl+j9fk6kD27h9Y= Subject key identifier: 36:6A:BB:36:DD:78:83:54:7F:A2:EC:EF:6E:C2:01:2A:8B:37:2C:A1 Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: BB Signing time: Tue 09 Dec 2025 04:01:55 +0000 Manifest this update: Tue 09 Dec 2025 04:01:55 +0000 Manifest next update: Tue 16 Dec 2025 04:01:55 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: 1RjyGFIyXiNzjFH9trD3oLH/xKKbuuuXHUZ9WF1ALyE=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: gL/pv5Q4H259tRW/M/fWgTAynaK4mXLMVK09D4O3Mmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 04:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: Dec 9 04:01:55 2025 GMT Not After : Dec 16 04:01:55 2025 GMT Subject: CN=69379f33-400b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ac:25:4e:37:32:f4:88:03:7e:21:b4:7b:bc: a4:eb:d4:0d:c3:ba:ed:92:78:5b:12:16:53:cc:80: 1a:15:6a:8f:2d:56:ff:bd:55:33:49:df:3e:da:77: 53:d6:de:af:78:e6:cd:40:51:1c:1e:ab:1e:60:a8: 52:38:08:95:a9:e6:e5:f5:b9:ff:30:5f:d9:bf:83: 79:ee:43:13:ba:01:83:be:90:3d:4a:98:50:d4:26: 54:e9:bf:31:57:c9:71:dc:4b:cf:b5:ea:bc:63:10: 3c:99:77:cc:b5:79:59:dd:db:89:b7:69:8a:2c:a1: 49:da:c5:cf:cb:56:b2:6d:28:bd:3d:78:f3:f5:8a: 68:d8:ac:f5:02:43:e4:25:44:a6:2d:e3:38:ef:e5: 58:52:46:de:23:12:47:18:89:7a:c9:33:08:03:72: f3:0b:fb:75:d4:e7:05:5c:b1:00:e3:7b:56:96:6b: ad:1c:ed:f7:85:c0:77:04:76:42:f5:98:1f:de:16: 73:98:bb:7d:d0:1a:52:31:68:25:84:65:ef:cc:8a: 4a:5d:48:b7:2d:68:7b:25:02:0f:cb:0a:1a:21:6d: 7e:7d:5a:26:aa:fc:c7:1b:2b:d8:1a:a9:71:bf:e4: 0d:c7:c0:21:aa:00:3c:cd:7e:74:4f:20:8f:d8:eb: 1e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:6A:BB:36:DD:78:83:54:7F:A2:EC:EF:6E:C2:01:2A:8B:37:2C:A1 X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:bd:e5:55:b6:15:9c:fe:f3:b1:87:b2:a9:25:ef:4a:eb:20: 48:35:05:61:c2:e9:26:f6:56:e3:5b:53:75:2a:16:d2:3f:d8: f2:df:0b:91:15:d7:9a:56:ef:a3:73:81:ff:ca:8f:f3:b4:bb: 90:fc:b3:4e:28:37:4e:73:75:7e:97:d6:12:54:c4:2a:a7:0a: 02:06:87:70:e3:15:0e:c0:58:31:e1:7b:ee:03:a0:61:8c:05: 7a:bc:87:7c:f1:cc:84:d7:ae:e2:9a:d0:48:09:fe:8d:f8:38: 93:fb:ca:3f:5c:26:9b:0f:7a:24:9f:81:4b:61:91:cb:5b:ad: 57:1c:67:5c:5e:6b:82:27:bf:44:10:03:d6:97:14:88:d5:3b: dd:95:1a:79:40:f9:57:c1:2f:1a:12:6c:e5:09:f3:f0:6b:45: 34:9a:c7:0b:e3:97:dd:6d:26:ab:be:b8:7d:67:c2:3a:08:e5: 2e:0a:6d:d2:2d:fa:2f:f4:6b:45:22:d1:1c:93:58:84:82:48: 2c:8d:19:15:02:28:1b:44:bd:e4:85:c2:e3:ab:ca:8e:17:88: c5:aa:73:30:ab:54:96:6e:a6:f1:7b:75:06:6b:cb:18:80:a0: bd:4a:a2:d3:83:c8:f0:42:27:12:8e:67:09:53:c1:f1:13:0f: 8c:2f:47:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCRTMxMTAvBgNVBAUTKDZGRDA4ODdBMzkwM0UzRDZFMTdCQjlDRkQ4RUYyNjky NzBCQUNCMDcwHhcNMjUxMjA5MDQwMTU1WhcNMjUxMjE2MDQwMTU1WjAYMRYwFAYD VQQDEw02OTM3OWYzMy00MDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqwlTjcy9IgDfiG0e7yk69QNw7rtknhbEhZTzIAaFWqPLVb/vVUzSd8+2ndT 1t6veObNQFEcHqseYKhSOAiVqebl9bn/MF/Zv4N57kMTugGDvpA9SphQ1CZU6b8x V8lx3EvPteq8YxA8mXfMtXlZ3duJt2mKLKFJ2sXPy1aybSi9PXjz9Ypo2Kz1AkPk JUSmLeM47+VYUkbeIxJHGIl6yTMIA3LzC/t11OcFXLEA43tWlmutHO33hcB3BHZC 9Zgf3hZzmLt90BpSMWglhGXvzIpKXUi3LWh7JQIPywoaIW1+fVomqvzHGyvYGqlx v+QNx8AhqgA8zX50TyCP2Ose9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZquzbd eINUf6Ls727CASqLNyyhMB8GA1UdIwQYMBaAFG/QiHo5A+PW4Xu5z9jvJpJwussH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJFMy9FNkU2QkU0NEJG OUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5YmhlN25QMk84bWtuQzZ5 d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJFMy9FNkU2QkU0NEJGOUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5 YmhlN25QMk84bWtuQzZ5d2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuveVVthWc/vOxh7KpJe9K6yBINQVhwukm9lbjW1N1KhbSP9jy3wuR FdeaVu+jc4H/yo/ztLuQ/LNOKDdOc3V+l9YSVMQqpwoCBodw4xUOwFgx4XvuA6Bh jAV6vId88cyE167imtBICf6N+DiT+8o/XCabD3okn4FLYZHLW61XHGdcXmuCJ79E EAPWlxSI1TvdlRp5QPlXwS8aEmzlCfPwa0U0mscL45fdbSarvrh9Z8I6COUuCm3S Lfov9GtFItEck1iEgkgsjRkVAigbRL3khcLjq8qOF4jFqnMwq1SWbqbxe3UGa8sY gKC9SqLTg8jwQicSjmcJU8HxEw+ML0fY -----END CERTIFICATE-----Generated at Wed Dec 10 17:21:02 2025 by rpki-client