This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: sDe6wxtZc/V8iWP6zatzy6Yl2NE2UOclLot1cblVZhE= Subject key identifier: C9:57:BC:62:4D:EA:25:1F:8E:A2:CD:4A:14:C5:DA:63:61:84:9D:B8 Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 0268 Signing time: Sun 07 Dec 2025 00:10:34 +0000 Manifest this update: Sun 07 Dec 2025 00:10:34 +0000 Manifest next update: Sun 14 Dec 2025 00:10:34 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: z3P14J6p26EP/gHT+NyortH5eqduQEErYVXlrmlPHe0=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: PfkrPDG++/2Nz9EpQDe53DnK5uMvt85T4k9+4QpNzFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:10:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68, serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Dec 7 00:10:34 2025 GMT Not After : Dec 14 00:10:34 2025 GMT Subject: CN=6934c5fa-5f79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e4:b9:f6:30:02:b1:5c:4e:8c:83:b0:74:b2: 6b:a9:3a:43:72:a8:6e:bb:ba:27:e3:79:54:f8:93: d2:7d:8a:64:eb:c5:8a:a1:4b:8a:74:b2:e3:8b:d8: 40:64:26:4e:09:39:95:a8:4d:cd:7a:c7:2d:e7:97: 42:90:9a:da:5c:99:f4:3d:12:fa:52:89:26:0e:5d: 92:1f:6d:01:a2:6b:7a:bf:a0:23:ae:1d:c8:6b:51: a4:64:a9:a9:d4:b3:a7:72:56:6b:fb:e4:de:32:b4: 64:4e:43:8d:60:b2:18:e7:6b:51:a0:ef:ff:1a:5a: 80:e4:02:7f:7f:be:7b:0c:41:29:9d:34:3f:f5:08: 11:53:2d:e3:08:5e:ec:fd:04:69:75:88:2f:76:69: 41:88:77:43:43:40:11:5c:de:79:81:26:3b:98:2e: 78:7d:fb:6e:28:7c:e0:77:89:ff:ec:1d:1f:b8:e4: d4:57:47:ec:a6:bd:15:36:51:8d:68:bc:e4:69:d7: 9a:d3:3c:70:d4:a3:71:9d:c8:cc:00:84:c8:ac:61: 18:13:b1:bb:b7:e3:2d:1b:ee:d5:61:8f:9f:2e:f9: be:d5:70:90:35:3d:3c:48:95:9c:f8:cd:5a:17:62: e2:24:1e:a7:5c:cd:bd:21:a0:15:14:f2:89:54:69: 6d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:57:BC:62:4D:EA:25:1F:8E:A2:CD:4A:14:C5:DA:63:61:84:9D:B8 X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:95:e4:b0:28:92:ac:a1:f7:2a:9a:1e:4c:65:df:c9:96:01: 20:e7:cd:31:4c:50:9c:f8:9c:48:4c:b7:c6:78:28:9b:89:59: 8a:c8:3f:9e:90:fe:85:50:f8:89:d6:ea:38:d7:96:ff:34:f3: 7b:cd:48:4a:d2:e8:f6:32:98:94:4d:4b:a9:e8:60:75:bf:63: 5d:04:db:34:5f:22:2e:da:c3:ee:5a:49:53:0e:73:0b:c0:1d: 15:50:6f:d3:47:14:82:35:7b:5c:48:fc:b8:a6:c2:39:c8:45: 0d:d1:75:98:17:6e:6b:04:03:bd:8f:78:da:a7:0f:35:26:57: fe:05:26:80:45:86:a0:c7:10:a7:d3:f8:f7:66:1b:f3:b9:43: 18:cb:24:9e:57:d3:61:a2:31:94:48:3e:eb:7d:15:af:76:ca: 6c:d3:fa:9c:02:fa:6c:2b:6b:4e:12:61:8e:a0:cc:e9:0d:58: e3:3d:47:c4:8f:1d:23:6a:3a:42:de:15:9d:76:15:20:4e:3c: 31:4e:8c:b4:43:14:09:7e:18:bd:69:92:d4:4d:cd:52:fb:bf: e7:51:c6:c0:8d:e3:e8:49:9a:93:35:bf:b0:a5:11:40:a7:6a: 4c:50:b3:7f:38:cf:8d:ac:b7:f8:28:f0:a1:54:f1:48:8f:6a: 03:48:f4:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjUxMjA3MDAxMDM0WhcNMjUxMjE0MDAxMDM0WjAYMRYwFAYD VQQDEw02OTM0YzVmYS01Zjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+S59jACsVxOjIOwdLJrqTpDcqhuu7on43lU+JPSfYpk68WKoUuKdLLji9hA ZCZOCTmVqE3Nesct55dCkJraXJn0PRL6UokmDl2SH20Bomt6v6Ajrh3Ia1GkZKmp 1LOnclZr++TeMrRkTkONYLIY52tRoO//GlqA5AJ/f757DEEpnTQ/9QgRUy3jCF7s /QRpdYgvdmlBiHdDQ0ARXN55gSY7mC54fftuKHzgd4n/7B0fuOTUV0fspr0VNlGN aLzkadea0zxw1KNxncjMAITIrGEYE7G7t+MtG+7VYY+fLvm+1XCQNT08SJWc+M1a F2LiJB6nXM29IaAVFPKJVGltRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMlXvGJN 6iUfjqLNShTF2mNhhJ24MB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXleSwKJKsofcqmh5MZd/JlgEg580xTFCc+JxITLfGeCibiVmKyD+e kP6FUPiJ1uo415b/NPN7zUhK0uj2MpiUTUup6GB1v2NdBNs0XyIu2sPuWklTDnML wB0VUG/TRxSCNXtcSPy4psI5yEUN0XWYF25rBAO9j3japw81Jlf+BSaARYagxxCn 0/j3ZhvzuUMYyySeV9NhojGUSD7rfRWvdsps0/qcAvpsK2tOEmGOoMzpDVjjPUfE jx0jajpC3hWddhUgTjwxToy0QxQJfhi9aZLUTc1S+7/nUcbAjePoSZqTNb+wpRFA p2pMULN/OM+NrLf4KPChVPFIj2oDSPQJ -----END CERTIFICATE-----Generated at Sun Dec 7 03:43:00 2025 by rpki-client