This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: ESrgZ9kUhQ3cfQWVwezhap6cH4VNCjhJoAk0vncA3BQ= Subject key identifier: 71:56:EE:18:D5:B8:4E:DA:55:2A:29:18:D2:E6:33:D4:95:17:E0:60 Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1771 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 210C Signing time: Sat 06 Dec 2025 16:11:43 +0000 Manifest this update: Sat 06 Dec 2025 16:11:42 +0000 Manifest next update: Sat 13 Dec 2025 16:11:42 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: 7XEtaJ73Yj6yYPTMoq/NqNEP6xj3Vhv1VwxT00ETrkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:11:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6001 (0x1771) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Dec 6 16:11:42 2025 GMT Not After : Dec 13 16:11:42 2025 GMT Subject: CN=693455be-7c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:97:5f:6a:c2:d3:f5:11:4a:86:38:80:e5:f8: 91:47:01:49:b1:9d:8a:71:40:e7:70:db:79:e7:e8: 0b:ce:4b:d2:41:34:c2:94:df:33:50:4c:34:a0:5f: cb:39:65:60:08:81:4c:71:18:c3:b5:d5:e6:64:95: c1:60:32:11:ef:44:c7:31:21:26:06:17:fd:67:a6: 80:b3:83:07:49:55:9f:11:14:05:1b:84:fd:95:e1: 58:58:4c:2c:bb:d9:02:94:f7:53:1c:ff:21:4f:31: 89:24:dc:bc:84:91:58:63:18:3b:df:42:ff:d6:8a: 6b:fb:47:f5:08:b2:b6:57:07:8d:d2:92:1c:b3:5e: bf:9e:12:5b:99:e1:73:d2:e1:2d:68:10:b2:93:19: 3d:a7:31:b9:ed:d2:eb:7c:51:f1:23:7b:7b:39:93: 6e:57:1a:da:d8:49:d2:21:d3:43:ee:a2:d9:d7:04: a0:3b:36:17:21:76:9c:8f:09:6d:bf:1a:75:ad:85: ea:7c:17:9b:eb:a5:ec:3b:2e:9c:d9:37:04:5d:c6: 04:08:d6:29:e8:62:c6:2c:f0:6e:3b:2a:61:66:af: 73:f6:e0:a9:54:01:83:6d:8a:62:2f:cb:cd:66:07: 69:35:3a:0b:dc:89:9b:ed:69:c2:49:df:57:3d:75: fc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:56:EE:18:D5:B8:4E:DA:55:2A:29:18:D2:E6:33:D4:95:17:E0:60 X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ca:9f:4e:8e:3d:f0:65:e0:a8:db:01:c0:9e:0a:70:0f:73: bb:33:48:7b:50:64:4a:5d:7e:52:1a:27:87:2f:f2:60:43:89: e7:f8:4b:8b:df:11:71:f2:2f:19:58:6e:68:34:20:e7:c9:2e: cb:92:63:41:a8:1a:54:e8:80:d0:5a:91:fb:89:8a:54:16:fa: cb:36:5f:b5:af:0f:ba:96:6b:43:64:98:fc:4c:86:f8:c7:fc: e7:b9:e6:a6:d9:12:fa:17:70:b0:cb:7f:2c:43:0b:7e:c1:8e: 95:eb:9c:85:42:a3:e8:b6:32:af:19:ad:44:a6:36:1b:6d:c8: ca:e9:26:79:af:25:c5:c3:08:3d:c8:38:df:4b:eb:2c:38:94: 7e:33:2f:a0:84:ec:0f:23:a0:20:01:93:b5:86:d2:ae:a9:b5: 1c:23:d6:4d:7e:37:89:30:ba:af:66:9c:27:f6:ee:70:df:9a: 0e:72:7d:7d:2e:3d:36:d9:ab:64:b8:68:22:7d:a0:18:51:c4: 2a:0a:d2:54:5c:3a:27:97:b1:1f:e3:df:f0:48:c3:74:2e:82: 97:ea:e9:ba:be:7e:f6:01:3b:ef:6f:0d:b1:0f:21:cf:b5:19: 89:af:7a:89:4c:32:2d:09:a5:ad:02:cc:5a:a2:a4:e3:f7:f4: 42:3c:64:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUxMjA2MTYxMTQyWhcNMjUxMjEzMTYxMTQyWjAYMRYwFAYD VQQDEw02OTM0NTViZS03YzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZdfasLT9RFKhjiA5fiRRwFJsZ2KcUDncNt55+gLzkvSQTTClN8zUEw0oF/L OWVgCIFMcRjDtdXmZJXBYDIR70THMSEmBhf9Z6aAs4MHSVWfERQFG4T9leFYWEws u9kClPdTHP8hTzGJJNy8hJFYYxg730L/1opr+0f1CLK2VweN0pIcs16/nhJbmeFz 0uEtaBCykxk9pzG57dLrfFHxI3t7OZNuVxra2EnSIdND7qLZ1wSgOzYXIXacjwlt vxp1rYXqfBeb66XsOy6c2TcEXcYECNYp6GLGLPBuOyphZq9z9uCpVAGDbYpiL8vN ZgdpNToL3Imb7WnCSd9XPXX88QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFW7hjV uE7aVSopGNLmM9SVF+BgMB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAyp9Ojj3wZeCo2wHAngpwD3O7M0h7UGRKXX5SGieHL/JgQ4nn+EuL 3xFx8i8ZWG5oNCDnyS7LkmNBqBpU6IDQWpH7iYpUFvrLNl+1rw+6lmtDZJj8TIb4 x/znueam2RL6F3Cwy38sQwt+wY6V65yFQqPotjKvGa1EpjYbbcjK6SZ5ryXFwwg9 yDjfS+ssOJR+My+ghOwPI6AgAZO1htKuqbUcI9ZNfjeJMLqvZpwn9u5w35oOcn19 Lj022atkuGgifaAYUcQqCtJUXDonl7Ef49/wSMN0LoKX6um6vn72ATvvbw2xDyHP tRmJr3qJTDItCaWtAsxaoqTj9/RCPGSq -----END CERTIFICATE-----Generated at Sun Dec 7 01:50:30 2025 by rpki-client