This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft File: r9CVWn3X-bDsKkShHZNyB8J1SmM.mft (raw, json) Hash identifier: 0HM70JdI6+abCSFCxaMsZ1HuxF1KxxbyWD1i3mduQ6Q= Subject key identifier: 86:8C:39:14:1A:B1:E1:9F:FC:D2:3C:26:1E:C7:B2:05:6C:43:3D:95 Authority key identifier: AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 Certificate issuer: /CN=A91B1018/serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Certificate serial: 0452 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft Manifest number: 043D Signing time: Sat 06 Dec 2025 23:01:01 +0000 Manifest this update: Sat 06 Dec 2025 23:01:00 +0000 Manifest next update: Sat 13 Dec 2025 23:01:00 +0000 Files and hashes: 1: r9CVWn3X-bDsKkShHZNyB8J1SmM.crl (hash: Ak9GGcXfeRhmj2SbrXXNoWMpNZicmU1o5QFIVigyV0c=) 2: E69ABF78033911EFBE28FC1FC4F9AE02.roa (hash: Rg7/HWvbLuN8QkYRlBgqkedDJt7Lv8j0nbDNMsIVYIo=) 3: CB8AA43A4D9B11EFB201E984C4F9AE02.roa (hash: IBTL0V7J1tBYqG7NDXusQxEwJubmZUah6ZmQZ+9P3Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1106 (0x452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1018, serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Validity Not Before: Dec 6 23:01:00 2025 GMT Not After : Dec 13 23:01:00 2025 GMT Subject: CN=6934b5ad-48a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:28:ce:d2:a2:02:16:55:83:0e:a8:19:f9:b4: 7d:9f:10:f1:4f:4c:a5:6d:39:3c:ce:8f:a3:fa:ce: 7f:24:fd:65:16:b5:33:43:10:a4:31:1d:22:e3:8c: fe:df:7c:af:80:4e:8b:86:d9:7b:aa:f4:dd:b2:6d: b9:57:56:ac:5c:f0:41:20:e7:e0:aa:66:cb:ed:4e: 5f:e0:f0:d2:ad:30:ba:f2:6b:f9:6c:33:c7:17:bf: ff:11:65:ca:57:9e:d7:68:fb:2a:a2:cd:e0:2c:4e: a8:7d:1f:90:3d:45:22:8f:de:b6:62:75:fe:56:d9: db:f9:93:bd:4a:7a:5f:82:f5:73:fc:ed:c3:c5:a3: 29:0d:e0:d0:9c:a2:2d:3d:ba:58:33:80:fd:b7:cc: 4e:ab:12:39:d4:02:88:30:50:67:83:bb:3a:68:1e: b9:8b:f6:82:67:9b:e9:51:5d:73:a3:d9:65:e2:99: 17:68:06:00:b7:b8:64:0c:5d:2c:bb:7a:c7:40:d4: 84:44:87:6e:d1:70:5c:f2:e8:e3:5b:62:3c:7b:01: 0e:81:f0:c3:1b:96:06:2d:ba:5f:a1:8c:1b:38:10: a8:07:63:26:dd:a9:70:73:88:b0:e1:22:58:77:5a: 83:62:fd:fc:3b:3e:3d:19:4d:5d:02:9b:80:92:45: 50:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8C:39:14:1A:B1:E1:9F:FC:D2:3C:26:1E:C7:B2:05:6C:43:3D:95 X509v3 Authority Key Identifier: keyid:AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ac:6e:af:0a:5d:a3:ed:bd:5a:be:68:61:c1:31:0e:ae:d5: dc:e6:61:2b:9d:f0:eb:f7:bf:be:e1:8f:ef:42:51:43:e1:61: ad:78:1a:b5:f6:5a:ac:0b:8e:9f:a9:97:b2:bd:08:b5:00:a1: 5e:73:50:38:b0:d3:a5:7c:2a:0f:5a:06:27:74:32:8e:a9:cd: 77:7b:54:80:e0:b6:d4:57:a9:de:30:98:f8:2c:7e:6a:29:28: f0:af:b7:5d:a6:e7:02:1b:80:d8:79:53:57:6e:dc:f9:11:37: 68:58:02:65:17:36:70:8c:6d:63:a1:52:60:28:be:4c:0f:c8: 72:ca:f1:5d:7c:8b:87:cb:54:9b:e2:0b:e2:17:14:aa:bc:00: e9:97:56:67:73:9b:fc:11:e4:3b:cf:a8:fb:ea:12:eb:55:16: b9:7c:da:75:5f:92:32:a8:fc:5a:5a:75:74:65:96:4d:e2:67: b1:a0:76:11:d3:d5:0e:fc:90:e2:97:0a:77:26:57:ba:40:3e: c9:36:c2:be:7a:9f:6b:08:d2:30:4e:0a:4a:b4:2b:f9:43:2f: c6:1b:68:69:23:88:b4:11:6e:2e:df:04:1c:7b:82:43:8a:69: d9:88:85:71:dd:15:d6:3f:97:a4:e2:0a:c1:56:4c:a1:4e:f1: 79:0f:ba:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwMTgxMTAvBgNVBAUTKEFGRDA5NTVBN0REN0Y5QjBFQzJBNDRBMTFEOTM3MjA3 QzI3NTRBNjMwHhcNMjUxMjA2MjMwMTAwWhcNMjUxMjEzMjMwMTAwWjAYMRYwFAYD VQQDEw02OTM0YjVhZC00OGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSjO0qICFlWDDqgZ+bR9nxDxT0ylbTk8zo+j+s5/JP1lFrUzQxCkMR0i44z+ 33yvgE6Lhtl7qvTdsm25V1asXPBBIOfgqmbL7U5f4PDSrTC68mv5bDPHF7//EWXK V57XaPsqos3gLE6ofR+QPUUij962YnX+Vtnb+ZO9SnpfgvVz/O3DxaMpDeDQnKIt PbpYM4D9t8xOqxI51AKIMFBng7s6aB65i/aCZ5vpUV1zo9ll4pkXaAYAt7hkDF0s u3rHQNSERIdu0XBc8ujjW2I8ewEOgfDDG5YGLbpfoYwbOBCoB2Mm3alwc4iw4SJY d1qDYv38Oz49GU1dApuAkkVQtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaMORQa seGf/NI8Jh7HsgVsQz2VMB8GA1UdIwQYMBaAFK/QlVp91/mw7CpEoR2TcgfCdUpj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTAxOC84ODM2RkE2MDhE NEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1iRHNLa1NoSFpOeUI4SjFT bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5Q1ZXbjNYLWJEc0trU2hIWk55QjhKMVNtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTAxOC84ODM2RkE2MDhENEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1i RHNLa1NoSFpOeUI4SjFTbU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8rG6vCl2j7b1avmhhwTEOrtXc5mErnfDr97++4Y/vQlFD4WGteBq1 9lqsC46fqZeyvQi1AKFec1A4sNOlfCoPWgYndDKOqc13e1SA4LbUV6neMJj4LH5q KSjwr7ddpucCG4DYeVNXbtz5ETdoWAJlFzZwjG1joVJgKL5MD8hyyvFdfIuHy1Sb 4gviFxSqvADpl1Znc5v8EeQ7z6j76hLrVRa5fNp1X5IyqPxaWnV0ZZZN4mexoHYR 09UO/JDilwp3Jle6QD7JNsK+ep9rCNIwTgpKtCv5Qy/GG2hpI4i0EW4u3wQce4JD imnZiIVx3RXWP5ek4grBVkyhTvF5D7rJ -----END CERTIFICATE-----Generated at Sun Dec 7 13:09:28 2025 by rpki-client