This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft File: C9q2CGF_PDGDxHD05hmyeV91w4k.mft (raw, json) Hash identifier: JV6S0mvUx4TmWhMm13fL4PCw3Z1SmT2+7zHdu/P4LWs= Subject key identifier: 32:C7:76:81:4E:84:9E:8C:AF:55:8B:5D:56:A2:0E:97:1A:13:87:92 Authority key identifier: 0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 Certificate issuer: /CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Certificate serial: 0147 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft Manifest number: 0143 Signing time: Sun 07 Dec 2025 02:44:14 +0000 Manifest this update: Sun 07 Dec 2025 02:44:14 +0000 Manifest next update: Sun 14 Dec 2025 02:44:14 +0000 Files and hashes: 1: C9q2CGF_PDGDxHD05hmyeV91w4k.crl (hash: zukv/p3HkOwLm3gs/wDXekNb3xPNGveVS6okqDdyfGo=) 2: E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa (hash: EyKD4I3R8YSy4asXY+8xvf07IP4owJwI772hb1AAhAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3, serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Validity Not Before: Dec 7 02:44:14 2025 GMT Not After : Dec 14 02:44:14 2025 GMT Subject: CN=6934e9fe-95f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:48:f7:90:b0:a0:20:b8:ae:ff:1d:5e:46:97: 1d:68:1c:19:e2:fe:39:86:64:29:28:ff:ab:9c:78: 41:81:69:4b:2c:32:e0:0a:f3:8a:d6:42:44:e8:03: 8b:4f:9b:dd:ed:ef:65:c6:d9:96:41:31:20:d0:8b: 39:b0:cf:90:ce:1a:9d:81:74:fa:e3:fa:87:e7:46: 9a:b9:d4:9f:07:45:5b:09:a9:fa:f7:3a:08:aa:64: a5:ac:d2:23:21:81:25:cd:90:c3:0d:32:29:7e:04: 01:c0:25:05:ba:f6:aa:40:24:17:38:ca:ac:34:51: 6a:fb:35:38:51:55:74:4f:88:f8:5d:31:00:4f:39: 48:2f:f8:9f:b1:6d:30:d6:8a:c3:b1:cc:50:c6:64: 06:fd:6b:c7:fe:0f:fc:9a:74:99:3b:6b:3b:d9:5f: 93:4f:88:25:61:2f:48:c6:ea:85:95:fa:fc:fa:15: b7:02:7f:63:fd:0c:f1:5f:40:72:59:a8:6b:bf:24: 6f:c9:d8:68:c8:ee:48:51:e9:5a:20:57:d8:c9:8d: ca:df:86:90:cc:8a:c2:16:1a:83:9a:a1:3d:a2:8f: ea:87:01:7f:88:e0:63:13:cc:95:9d:c7:80:a6:e1: 94:08:be:7b:5a:2e:67:12:72:54:11:b5:6f:27:e2: 85:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:C7:76:81:4E:84:9E:8C:AF:55:8B:5D:56:A2:0E:97:1A:13:87:92 X509v3 Authority Key Identifier: keyid:0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:a4:68:2c:53:c3:98:ca:78:60:aa:0a:3e:41:be:36:1c:2c: ff:61:48:2f:87:6c:06:c7:c2:4b:d3:be:4c:97:73:d9:a5:88: 5c:20:59:1b:12:3e:b5:10:15:ef:d8:5b:86:e5:86:73:63:6d: 86:31:6f:8f:3e:cd:c0:57:e8:f4:d9:18:39:54:bf:e7:bf:78: db:95:10:8b:93:e2:a9:45:c7:e4:1c:59:88:9c:53:aa:ad:0a: 13:19:d0:72:f9:f3:15:16:e2:cd:eb:c3:0b:36:44:e4:f6:78: e5:f5:c3:95:da:00:0a:76:5b:99:2b:bb:aa:89:e4:e9:aa:f1: d1:f6:5a:6b:71:0b:f7:c7:b4:58:83:49:fc:72:de:02:21:0a: 04:2f:e1:6a:11:35:75:d3:ae:25:ff:1e:06:cd:83:d5:8b:47: c6:f5:d4:12:bd:2c:0e:b2:11:f4:87:5b:f5:2a:43:b6:aa:53: 5c:85:2e:2a:18:d8:6e:ca:fa:5d:6d:09:37:52:5c:5b:54:0e: e2:d6:b6:68:ec:57:c7:04:21:be:4d:09:99:29:34:6d:0c:26: ca:0c:73:3e:96:2f:75:6f:11:fd:c1:04:bf:29:d4:13:9f:fd: 4b:bb:cd:73:84:d7:55:c9:1c:b5:8e:a4:b5:f2:c5:eb:bf:64: e2:f8:72:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI2QjMxMTAvBgNVBAUTKDBCREFCNjA4NjE3RjNDMzE4M0M0NzBGNEU2MTlCMjc5 NUY3NUMzODkwHhcNMjUxMjA3MDI0NDE0WhcNMjUxMjE0MDI0NDE0WjAYMRYwFAYD VQQDEw02OTM0ZTlmZS05NWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0j3kLCgILiu/x1eRpcdaBwZ4v45hmQpKP+rnHhBgWlLLDLgCvOK1kJE6AOL T5vd7e9lxtmWQTEg0Is5sM+QzhqdgXT64/qH50aaudSfB0VbCan69zoIqmSlrNIj IYElzZDDDTIpfgQBwCUFuvaqQCQXOMqsNFFq+zU4UVV0T4j4XTEATzlIL/ifsW0w 1orDscxQxmQG/WvH/g/8mnSZO2s72V+TT4glYS9IxuqFlfr8+hW3An9j/QzxX0By WahrvyRvydhoyO5IUelaIFfYyY3K34aQzIrCFhqDmqE9oo/qhwF/iOBjE8yVnceA puGUCL57Wi5nEnJUEbVvJ+KFWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLHdoFO hJ6Mr1WLXVaiDpcaE4eSMB8GA1UdIwQYMBaAFAvatghhfzwxg8Rw9OYZsnlfdcOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjZCMy9DNTU0MjNBQUU2 OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BER0R4SEQwNWhteWVWOTF3 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M5cTJDR0ZfUERHRHhIRDA1aG15ZVY5MXc0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjZCMy9DNTU0MjNBQUU2OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BE R0R4SEQwNWhteWVWOTF3NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+pGgsU8OYynhgqgo+Qb42HCz/YUgvh2wGx8JL075Ml3PZpYhcIFkb Ej61EBXv2FuG5YZzY22GMW+PPs3AV+j02Rg5VL/nv3jblRCLk+KpRcfkHFmInFOq rQoTGdBy+fMVFuLN68MLNkTk9njl9cOV2gAKdluZK7uqieTpqvHR9lprcQv3x7RY g0n8ct4CIQoEL+FqETV1064l/x4GzYPVi0fG9dQSvSwOshH0h1v1KkO2qlNchS4q GNhuyvpdbQk3UlxbVA7i1rZo7FfHBCG+TQmZKTRtDCbKDHM+li91bxH9wQS/KdQT n/1Lu81zhNdVyRy1jqS18sXrv2Ti+HLG -----END CERTIFICATE-----Generated at Sun Dec 7 04:43:16 2025 by rpki-client