This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft File: 91XB4Q_ErmiS0krLh4LX5cAEGLA.mft (raw, json) Hash identifier: VpjUPsSmPmU7Jg3JCWTW+QkXaixXJV09FOWg+B+Q2uw= Subject key identifier: D7:9C:69:27:ED:F8:40:6E:47:52:E2:3D:B4:4A:C2:23:EA:75:93:31 Authority key identifier: F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 Certificate issuer: /CN=A9136F59/serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Certificate serial: 0315 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft Manifest number: 0310 Signing time: Thu 04 Dec 2025 23:31:23 +0000 Manifest this update: Thu 04 Dec 2025 23:31:22 +0000 Manifest next update: Thu 11 Dec 2025 23:31:22 +0000 Files and hashes: 1: 91XB4Q_ErmiS0krLh4LX5cAEGLA.crl (hash: AN2f8aKW3vkDaKKMCMhiPkGuAfb0n36+UGX1xxouBRc=) 2: ED0C111CF8F611ECB6DF8835C4F9AE02.roa (hash: GSaMIr6pgI7dtk3phmzJ+sITrRTfHVwUtDPjWfHSWD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 789 (0x315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136F59, serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Validity Not Before: Dec 4 23:31:22 2025 GMT Not After : Dec 11 23:31:22 2025 GMT Subject: CN=693219ca-4751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:24:32:41:ce:4e:fc:69:cc:22:18:af:29:3e: 3b:df:f2:6c:57:6d:bb:c3:03:26:31:d3:a5:86:ed: fa:48:c1:a6:da:c5:be:d7:cc:34:1b:b5:fa:e7:d9: 17:27:8b:1c:d0:44:13:7f:82:08:97:45:91:73:51: e1:e4:c8:f5:1b:d2:87:89:ae:d1:9a:13:fd:d0:d2: bf:13:b1:69:93:d9:bc:9b:14:27:78:30:3a:e9:57: 2e:a6:54:a7:7f:65:47:0e:39:27:2b:35:37:b0:7c: 62:2c:80:b6:1f:91:a9:88:01:cc:34:0d:7e:a5:52: 91:65:47:51:de:e8:b1:c3:2b:18:36:fa:bd:61:e6: a3:6c:bf:bd:b3:c2:6e:45:c5:87:f1:42:e2:54:99: 26:fc:9d:a0:ca:d6:87:e9:d2:f3:a0:2d:af:a9:3a: 37:dd:99:f0:f5:4c:4b:0d:58:83:d6:c2:e1:36:41: bf:f3:84:62:5a:35:5d:50:b7:7a:0d:c4:46:f2:3a: 88:93:62:07:73:48:9f:8b:47:07:4e:8f:ea:e9:c5: e4:cb:3a:a9:bf:f3:7f:4c:e7:07:38:8c:a5:e7:ae: ae:59:25:c4:eb:81:31:48:53:10:ce:51:6f:76:eb: f0:c9:32:3b:f4:5a:b9:58:dc:fd:9a:ce:ac:e9:8e: 1b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:9C:69:27:ED:F8:40:6E:47:52:E2:3D:B4:4A:C2:23:EA:75:93:31 X509v3 Authority Key Identifier: keyid:F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:57:0f:7e:c2:11:c6:23:55:06:b6:e2:ac:c4:02:4a:01:0c: 41:75:7a:59:b9:e7:6a:63:da:0f:6f:8c:2f:13:d9:3d:b1:9b: 31:aa:d5:4d:ab:77:c4:52:16:18:f0:3a:ca:16:d3:44:66:3a: d5:01:23:86:85:2e:45:a9:e3:32:03:63:02:f4:c7:db:17:2f: 97:24:f9:bc:77:7b:4c:89:56:6f:61:66:2f:f2:bd:88:c6:62: da:5f:20:27:dc:d6:98:18:64:bb:57:46:4b:2e:63:cf:ed:83: 28:5b:03:71:55:30:e3:7f:2f:a9:16:94:e5:91:d3:4b:0d:7a: d5:28:1c:d0:92:08:71:c2:74:8a:81:0d:7d:f1:8d:bb:76:22: 6b:40:65:67:3b:a9:8b:ac:d5:b9:43:55:50:64:63:14:35:fc: 4a:8c:96:54:0c:7f:af:97:e5:46:4f:91:c5:8f:b8:03:e5:2f: a4:68:eb:1b:18:47:ff:02:72:76:9f:a9:00:5a:24:f5:54:d2: a1:48:44:ad:cd:72:7d:72:39:b8:15:c1:78:6f:fb:17:8b:18: c3:65:5c:4d:27:26:9e:55:96:3b:85:be:d9:f6:d8:ac:66:5b: 22:7a:ca:9a:45:07:4b:d0:59:49:11:15:5d:d1:8d:d2:cd:46: bc:da:fe:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZGNTkxMTAvBgNVBAUTKEY3NTVDMUUxMEZDNEFFNjg5MkQyNEFDQjg3ODJEN0U1 QzAwNDE4QjAwHhcNMjUxMjA0MjMzMTIyWhcNMjUxMjExMjMzMTIyWjAYMRYwFAYD VQQDEw02OTMyMTljYS00NzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyQyQc5O/GnMIhivKT473/JsV227wwMmMdOlhu36SMGm2sW+18w0G7X659kX J4sc0EQTf4IIl0WRc1Hh5Mj1G9KHia7RmhP90NK/E7Fpk9m8mxQneDA66VcuplSn f2VHDjknKzU3sHxiLIC2H5GpiAHMNA1+pVKRZUdR3uixwysYNvq9YeajbL+9s8Ju RcWH8ULiVJkm/J2gytaH6dLzoC2vqTo33Znw9UxLDViD1sLhNkG/84RiWjVdULd6 DcRG8jqIk2IHc0ifi0cHTo/q6cXkyzqpv/N/TOcHOIyl566uWSXE64ExSFMQzlFv duvwyTI79Fq5WNz9ms6s6Y4bCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNecaSft +EBuR1LiPbRKwiPqdZMxMB8GA1UdIwQYMBaAFPdVweEPxK5oktJKy4eC1+XABBiw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkY1OS81NzcyQUZCRUY4 NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJtaVMwa3JMaDRMWDVjQUVH TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkxWEI0UV9Fcm1pUzBrckxoNExYNWNBRUdMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkY1OS81NzcyQUZCRUY4NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJt aVMwa3JMaDRMWDVjQUVHTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByVw9+whHGI1UGtuKsxAJKAQxBdXpZuedqY9oPb4wvE9k9sZsxqtVN q3fEUhYY8DrKFtNEZjrVASOGhS5FqeMyA2MC9MfbFy+XJPm8d3tMiVZvYWYv8r2I xmLaXyAn3NaYGGS7V0ZLLmPP7YMoWwNxVTDjfy+pFpTlkdNLDXrVKBzQkghxwnSK gQ198Y27diJrQGVnO6mLrNW5Q1VQZGMUNfxKjJZUDH+vl+VGT5HFj7gD5S+kaOsb GEf/AnJ2n6kAWiT1VNKhSEStzXJ9cjm4FcF4b/sXixjDZVxNJyaeVZY7hb7Z9tis ZlsiesqaRQdL0FlJERVd0Y3SzUa82v6y -----END CERTIFICATE-----Generated at Sat Dec 6 22:43:31 2025 by rpki-client