This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: kSR3UPpeDJBbEyw0FeQxCP2r7aMHNY1dYwEVlkYNA/M= Subject key identifier: 09:0A:9D:DC:6A:5C:50:19:5E:B9:AA:06:34:F7:55:6C:16:11:B5:22 Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: 82 Signing time: Fri 05 Dec 2025 04:39:08 +0000 Manifest this update: Fri 05 Dec 2025 04:39:08 +0000 Manifest next update: Fri 12 Dec 2025 04:39:08 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: YgHKsgAFR7T7a9DrMc/aeXrch1QCh0uEhZ1KVbZfn7g=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: S0xpbapYuUp7EVUcnIqHkGByKZFeAz8MROSbzxDfhw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Dec 5 04:39:08 2025 GMT Not After : Dec 12 04:39:08 2025 GMT Subject: CN=693261ec-2cfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:00:0d:98:d5:05:81:94:c0:3b:89:74:b6:3c: dc:8a:31:1e:6f:8b:4b:dc:d9:7b:f4:cc:1f:59:82: 39:da:56:c6:3b:ae:ee:35:15:52:7a:f6:81:bf:50: ba:0f:f8:b0:60:07:42:0a:c8:d1:12:db:dd:1a:72: 5c:9d:e7:a9:80:bd:13:14:04:51:b1:99:2f:fb:20: 8d:ea:b1:46:76:32:a6:47:a2:64:8a:53:70:d1:98: f4:55:4d:28:13:96:77:f4:09:cc:5a:c0:12:7e:0c: 0f:b2:f7:09:1a:16:81:0c:ca:70:8b:23:52:e0:fd: 41:5f:9b:d0:d5:da:c5:ef:ba:e8:6d:f7:04:81:5d: a2:09:d6:b6:e1:cf:72:34:54:b0:8c:24:35:78:41: f5:af:0c:c9:d2:fc:42:40:f7:46:d1:31:5a:c4:fb: 57:ed:44:9e:88:55:eb:3a:f7:18:97:e6:7e:4d:47: 84:84:26:88:e6:e8:ea:19:21:50:65:39:a9:f4:c9: 9f:42:00:7b:3e:c6:2e:44:38:dd:41:eb:1f:1f:05: f0:c5:e0:83:a2:44:66:18:eb:b0:b8:23:59:3d:16: 4b:6c:a9:da:d2:68:f4:5b:25:73:89:27:fe:de:11: 6a:05:64:6c:01:04:87:e7:71:d5:a3:2b:3f:77:ed: 2b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:0A:9D:DC:6A:5C:50:19:5E:B9:AA:06:34:F7:55:6C:16:11:B5:22 X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:54:64:a1:57:11:0b:fc:3a:2e:fa:09:62:44:47:86:fb:6a: 2f:85:6e:bd:e0:32:ed:7b:a9:a5:37:da:e8:56:1e:70:de:24: 56:9b:f2:09:63:56:79:20:db:c5:b5:1f:b7:c0:d2:0c:5e:c5: 32:9a:84:36:ca:80:2a:f5:e3:0a:f2:5c:3d:ed:57:5e:68:27: 11:42:d7:45:33:6b:36:81:4c:9e:45:09:01:c1:a9:33:87:70: b4:2f:30:6a:34:fb:41:01:77:e0:7d:6b:4c:52:cb:df:87:6e: df:3e:e4:d4:e2:bd:f4:63:51:04:c4:4c:b5:95:ab:a6:68:36: 15:76:ab:cd:55:b6:ff:c5:1a:88:17:22:4c:c6:b7:1f:49:a3: 9c:f2:d9:a3:af:03:46:1e:9a:c1:84:2e:be:02:d9:4b:72:83: 92:6b:9c:0c:8e:b4:b8:67:1b:e8:83:56:d8:cc:6d:13:c8:1f: 1d:f9:4f:f8:67:e9:bd:82:cc:89:53:8e:2c:0d:61:69:36:ce: df:64:22:27:07:e7:da:ed:2e:97:15:d2:fe:11:80:a0:86:b3: e0:16:73:61:4e:17:8f:86:d4:d1:67:3d:74:30:2f:94:a7:5e: a6:35:19:71:81:f9:1e:f5:80:65:28:c1:90:fc:e7:3e:6b:1b: b8:a7:90:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ0QzkxMTAvBgNVBAUTKEIwRDUyNUVBOTlENEM4RUM3NTYwNzEyNkE0OUVGNjcw N0JENkY0QUQwHhcNMjUxMjA1MDQzOTA4WhcNMjUxMjEyMDQzOTA4WjAYMRYwFAYD VQQDEw02OTMyNjFlYy0yY2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwANmNUFgZTAO4l0tjzcijEeb4tL3Nl79MwfWYI52lbGO67uNRVSevaBv1C6 D/iwYAdCCsjREtvdGnJcneepgL0TFARRsZkv+yCN6rFGdjKmR6JkilNw0Zj0VU0o E5Z39AnMWsASfgwPsvcJGhaBDMpwiyNS4P1BX5vQ1drF77robfcEgV2iCda24c9y NFSwjCQ1eEH1rwzJ0vxCQPdG0TFaxPtX7USeiFXrOvcYl+Z+TUeEhCaI5ujqGSFQ ZTmp9MmfQgB7PsYuRDjdQesfHwXwxeCDokRmGOuwuCNZPRZLbKna0mj0WyVziSf+ 3hFqBWRsAQSH53HVoys/d+0rYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkKndxq XFAZXrmqBjT3VWwWEbUiMB8GA1UdIwQYMBaAFLDVJeqZ1MjsdWBxJqSe9nB71vSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDRDOS83QkEzRTcwQzBF QzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9zTlVsNnBuVXlPeDFZSEVtcEo3MmNIdlc5 SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDRDOS83QkEzRTcwQzBFQzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9zTlVsNnBuVXlP eDFZSEVtcEo3MmNIdlc5SzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALVGShVxEL/Dou+gliREeG+2ovhW694DLte6mlN9roVh5w3iRWm/IJ Y1Z5INvFtR+3wNIMXsUymoQ2yoAq9eMK8lw97VdeaCcRQtdFM2s2gUyeRQkBwakz h3C0LzBqNPtBAXfgfWtMUsvfh27fPuTU4r30Y1EExEy1laumaDYVdqvNVbb/xRqI FyJMxrcfSaOc8tmjrwNGHprBhC6+AtlLcoOSa5wMjrS4Zxvog1bYzG0TyB8d+U/4 Z+m9gsyJU44sDWFpNs7fZCInB+fa7S6XFdL+EYCghrPgFnNhThePhtTRZz10MC+U p16mNRlxgfke9YBlKMGQ/Oc+axu4p5Bc -----END CERTIFICATE-----Generated at Sat Dec 6 14:34:10 2025 by rpki-client