This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft File: t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft (raw, json) Hash identifier: x5UfIC68+kIEV/tWVbb09Cp61nS84XwXGQGZzjMrOxc= Subject key identifier: C7:E0:60:B7:6C:22:F1:9F:66:4A:0D:C3:C5:C8:2A:4A:D0:FF:93:9B Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0CF5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft Manifest number: 0CEE Signing time: Mon 08 Dec 2025 17:40:40 +0000 Manifest this update: Mon 08 Dec 2025 17:40:39 +0000 Manifest next update: Mon 15 Dec 2025 17:40:39 +0000 Files and hashes: 1: t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl (hash: HwYMxDFsppVNM1bZkSVd5p6L+8b5EcRdDR2B4CItBJk=) 2: 8D243F849A6D11EA8674310DC4F9AE02.roa (hash: YLygHL2l+u1oyN1oC/1JspolWs3irx/GlqLYrTgxATU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 17:40:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3317 (0xcf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB, serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: Dec 8 17:40:39 2025 GMT Not After : Dec 15 17:40:39 2025 GMT Subject: CN=69370d97-e16a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:93:0c:c3:f2:02:39:97:c8:60:b7:fe:f3:1a: d6:a3:2c:0f:d0:2f:94:7f:24:b2:b6:77:93:c2:a8: bb:8b:76:22:8e:2c:82:a8:72:2e:c7:74:08:04:80: 2a:39:5c:d6:22:2b:b9:3f:49:b8:a4:ed:fc:e0:04: a7:65:62:30:4c:3c:de:f2:14:6b:02:8b:f1:ee:2f: 54:4e:d8:c1:c8:dc:dd:80:6d:de:ea:a6:1d:7f:b9: bf:77:81:69:b4:fb:c0:df:c2:1d:f1:27:65:09:96: 92:85:a2:c2:fa:a9:80:28:e2:4f:16:71:d5:5b:86: 66:1c:f2:3d:67:68:25:38:77:5f:03:2f:0b:9e:1e: 21:33:36:48:bd:a7:cc:84:41:94:91:4a:ca:a8:b8: 78:f9:82:a5:e9:30:63:1e:b8:89:cf:8d:40:98:41: 41:70:ba:34:d0:03:25:ef:5d:98:5a:81:f1:12:ea: 89:0f:83:b9:5a:44:a4:5c:ab:84:d6:80:af:cd:37: 3a:3d:1d:8e:6a:d0:11:31:97:24:56:ed:8a:ef:68: af:9e:3a:45:cd:82:fd:49:88:03:7f:e5:0f:3f:1a: c4:86:34:f8:84:9e:ca:2a:ca:36:29:dd:4f:a4:0b: 1b:82:7c:8d:05:a8:4b:da:08:9d:79:04:c2:0e:8d: 58:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E0:60:B7:6C:22:F1:9F:66:4A:0D:C3:C5:C8:2A:4A:D0:FF:93:9B X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:00:bd:1f:76:6e:e7:d9:8b:04:0b:ec:59:79:12:56:80:95: 3c:d5:4f:25:f5:9b:13:89:d8:48:b6:aa:57:83:07:15:75:a2: d4:6d:02:f1:e2:c4:b2:9b:d5:cb:af:37:94:6d:97:cc:7f:eb: 64:a0:be:0b:40:19:a9:b1:57:f6:bc:c5:15:8d:a1:29:43:7b: e4:bd:b3:2f:d7:f0:44:a5:e2:52:6a:7f:61:c1:61:3c:10:54: a0:6c:2a:22:f5:66:47:d2:bc:3d:1c:4e:97:92:5f:4e:7e:0e: 62:6e:ca:ec:0f:03:e9:dd:55:88:31:47:74:17:17:af:39:f9: c7:b1:5c:0b:7d:71:3a:80:ec:8a:f3:8e:7b:0a:7b:28:19:c1: 34:1c:0e:40:b0:0f:54:3f:ba:44:2a:74:b4:21:fc:6b:91:6d: 02:d8:5a:30:b9:dc:df:fb:95:37:87:02:1f:d7:5b:0d:dc:c6: e0:9b:5a:4c:e5:4f:e5:39:04:be:34:2a:79:0e:c2:3f:bb:2b: ab:95:23:ce:d7:d8:2f:0b:ae:55:26:62:a3:72:a0:21:a9:75: ff:01:00:02:50:a0:56:f7:15:b8:aa:f9:f1:f3:44:01:0d:37: 9d:b9:a4:4c:d7:9a:21:ed:3c:cc:ab:81:f8:01:eb:c9:1f:69: 09:2a:aa:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjUxMjA4MTc0MDM5WhcNMjUxMjE1MTc0MDM5WjAYMRYwFAYD VQQDEw02OTM3MGQ5Ny1lMTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJMMw/ICOZfIYLf+8xrWoywP0C+UfySytneTwqi7i3YijiyCqHIux3QIBIAq OVzWIiu5P0m4pO384ASnZWIwTDze8hRrAovx7i9UTtjByNzdgG3e6qYdf7m/d4Fp tPvA38Id8SdlCZaShaLC+qmAKOJPFnHVW4ZmHPI9Z2glOHdfAy8Lnh4hMzZIvafM hEGUkUrKqLh4+YKl6TBjHriJz41AmEFBcLo00AMl712YWoHxEuqJD4O5WkSkXKuE 1oCvzTc6PR2OatARMZckVu2K72ivnjpFzYL9SYgDf+UPPxrEhjT4hJ7KKso2Kd1P pAsbgnyNBahL2gideQTCDo1YtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfgYLds IvGfZkoNw8XIKkrQ/5ObMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTFFQi80OTdGMkJEOEY3MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZ TDFkWHlyalRTUkF5eU9HUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUAL0fdm7n2YsEC+xZeRJWgJU81U8l9ZsTidhItqpXgwcVdaLUbQLx 4sSym9XLrzeUbZfMf+tkoL4LQBmpsVf2vMUVjaEpQ3vkvbMv1/BEpeJSan9hwWE8 EFSgbCoi9WZH0rw9HE6Xkl9Ofg5ibsrsDwPp3VWIMUd0FxevOfnHsVwLfXE6gOyK 8457CnsoGcE0HA5AsA9UP7pEKnS0IfxrkW0C2Fowudzf+5U3hwIf11sN3Mbgm1pM 5U/lOQS+NCp5DsI/uyurlSPO19gvC65VJmKjcqAhqXX/AQACUKBW9xW4qvnx80QB DTeduaRM15oh7TzMq4H4AevJH2kJKqqR -----END CERTIFICATE-----Generated at Tue Dec 9 10:38:37 2025 by rpki-client