This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft File: W9l8Mex4xvFX13LBu1drgCSCtyg.mft (raw, json) Hash identifier: CyXnL+TjvC3uJCO1VVuNsl5LTw+J1o/eHEBZmzgvVfo= Subject key identifier: A7:77:72:B4:3E:21:FA:26:A0:13:38:BC:DC:FA:3C:98:DA:19:43:9D Authority key identifier: 5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 Certificate issuer: /CN=A91764A1/serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Certificate serial: 0CB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft Manifest number: 0CAA Signing time: Thu 04 Dec 2025 17:45:04 +0000 Manifest this update: Thu 04 Dec 2025 17:45:04 +0000 Manifest next update: Thu 11 Dec 2025 17:45:04 +0000 Files and hashes: 1: W9l8Mex4xvFX13LBu1drgCSCtyg.crl (hash: dGcZER2ka+9NwTuUKsBpMDkrOc1Dy5KqPnHGSAmBnyM=) 2: 753703FE045C11EAB8BF0932C4F9AE02.roa (hash: iEFdnNUSTVmlnEmHIkSfOkDzcc3pJG72lpQKbTvUl98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:45:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764A1, serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Validity Not Before: Dec 4 17:45:04 2025 GMT Not After : Dec 11 17:45:04 2025 GMT Subject: CN=6931c8a0-94d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a1:d0:9f:98:2b:b7:58:5b:f0:63:c7:bf:bf: 40:b2:3f:a8:ae:34:e8:18:3a:93:b2:a1:5c:c3:a3: bc:b3:6d:99:59:d9:2e:37:3b:68:b9:ca:40:c5:e2: 4a:85:8a:97:3e:98:83:dc:f6:96:c1:cf:f3:2d:d6: ac:47:24:f8:b1:5a:cf:44:54:c5:53:10:b3:28:c0: 06:d6:74:94:d4:a3:c2:87:31:a3:7d:5f:d6:50:35: 91:96:df:7d:ae:47:75:42:12:a9:9f:e8:b5:2e:d3: bc:80:5e:d6:13:80:0b:8a:30:ee:33:7c:f4:77:66: bc:ca:e2:f4:ea:b2:6a:3f:3a:c5:63:e0:15:61:23: 5a:3d:18:84:f5:4a:59:51:e1:da:b0:99:81:c1:9a: 00:d7:5f:9c:26:08:0a:16:94:df:75:67:01:3b:5e: d9:2c:34:be:72:8a:81:4b:69:57:d4:6f:a0:bb:71: bd:0b:1b:e8:db:1c:a0:54:0f:58:0f:44:fa:9e:31: 2d:51:c0:86:9a:70:b3:7d:7d:c0:c9:6d:03:9a:f2: 99:d4:f3:64:18:42:40:e4:9c:d5:d7:37:60:bd:ec: 1b:2e:dd:c3:80:3a:4e:d8:48:87:09:58:81:bc:7a: 09:28:a4:5d:18:b6:45:4e:2a:ce:92:cc:b6:18:b4: 74:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:77:72:B4:3E:21:FA:26:A0:13:38:BC:DC:FA:3C:98:DA:19:43:9D X509v3 Authority Key Identifier: keyid:5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:a4:d7:4a:64:fb:09:72:b1:e5:e7:9e:e9:1e:14:ce:00:b9: b3:09:5e:00:99:2f:c9:1f:b3:c2:e4:e0:f0:e4:69:df:c0:50: 3a:fb:a7:8b:ff:13:02:9d:d6:2b:a1:ab:a3:79:7f:e7:a1:43: 7a:f8:01:f3:08:fa:e2:88:e9:8c:2b:f8:5b:bb:4d:05:66:28: 2a:5f:d7:72:f5:96:17:ca:4d:4f:61:cd:85:62:d0:e9:a4:a2: e7:df:9c:6a:2d:1b:25:c8:b9:d4:ed:37:6a:9f:8b:fa:69:7c: 75:10:a2:75:66:fd:3c:ab:10:d0:7c:d9:81:e9:70:54:a0:08: ac:2f:2c:14:86:62:a0:2d:6f:53:88:5a:5b:6a:e8:31:63:b8: 33:ec:90:4c:75:1f:9c:61:80:5e:69:1f:4e:19:cb:4b:17:8c: 33:e6:82:f6:cc:c7:9b:0a:d0:aa:23:11:47:42:74:47:b8:e0: 5e:01:65:e1:09:4d:02:fe:9f:8c:3c:1f:c1:fe:77:0d:7c:5b: fe:fc:6d:88:53:0b:fc:63:90:c4:b3:79:62:99:24:56:aa:ae: 2f:b5:b7:cb:bc:53:9b:23:40:f8:92:7e:28:8f:d1:9a:8a:34: 72:8b:45:da:b6:67:ba:81:b0:d8:5b:0b:f5:5c:e4:86:df:1a: 66:f0:88:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0QTExMTAvBgNVBAUTKDVCRDk3QzMxRUM3OEM2RjE1N0Q3NzJDMUJCNTc2Qjgw MjQ4MkI3MjgwHhcNMjUxMjA0MTc0NTA0WhcNMjUxMjExMTc0NTA0WjAYMRYwFAYD VQQDEw02OTMxYzhhMC05NGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaHQn5grt1hb8GPHv79Asj+orjToGDqTsqFcw6O8s22ZWdkuNztoucpAxeJK hYqXPpiD3PaWwc/zLdasRyT4sVrPRFTFUxCzKMAG1nSU1KPChzGjfV/WUDWRlt99 rkd1QhKpn+i1LtO8gF7WE4ALijDuM3z0d2a8yuL06rJqPzrFY+AVYSNaPRiE9UpZ UeHasJmBwZoA11+cJggKFpTfdWcBO17ZLDS+coqBS2lX1G+gu3G9Cxvo2xygVA9Y D0T6njEtUcCGmnCzfX3AyW0DmvKZ1PNkGEJA5JzV1zdgvewbLt3DgDpO2EiHCViB vHoJKKRdGLZFTirOksy2GLR0dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKd3crQ+ IfomoBM4vNz6PJjaGUOdMB8GA1UdIwQYMBaAFFvZfDHseMbxV9dywbtXa4Akgrco MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRBMS82QjdENjlBNjA0 NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2RlgxM0xCdTFkcmdDU0N0 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c5bDhNZXg0eHZGWDEzTEJ1MWRyZ0NTQ3R5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRBMS82QjdENjlBNjA0NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2 RlgxM0xCdTFkcmdDU0N0eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBepNdKZPsJcrHl557pHhTOALmzCV4AmS/JH7PC5ODw5GnfwFA6+6eL /xMCndYroaujeX/noUN6+AHzCPriiOmMK/hbu00FZigqX9dy9ZYXyk1PYc2FYtDp pKLn35xqLRslyLnU7Tdqn4v6aXx1EKJ1Zv08qxDQfNmB6XBUoAisLywUhmKgLW9T iFpbaugxY7gz7JBMdR+cYYBeaR9OGctLF4wz5oL2zMebCtCqIxFHQnRHuOBeAWXh CU0C/p+MPB/B/ncNfFv+/G2IUwv8Y5DEs3limSRWqq4vtbfLvFObI0D4kn4oj9Ga ijRyi0Xatme6gbDYWwv1XOSG3xpm8IgJ -----END CERTIFICATE-----Generated at Sat Dec 6 18:15:00 2025 by rpki-client