This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: /0NUKXFySNYHV6qSPP8xVitGfni8gokT/3Y7y3NelGs= Subject key identifier: 01:5A:99:3F:A3:E8:61:94:52:1C:20:27:4F:94:AB:8B:3B:E4:CC:09 Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 07EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 07E1 Signing time: Sat 06 Dec 2025 20:14:40 +0000 Manifest this update: Sat 06 Dec 2025 20:14:40 +0000 Manifest next update: Sat 13 Dec 2025 20:14:40 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: GEnQahSgrp47Pl9AWfLIdlJ5aF4lpe+j4aDgOK9E+dU=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: SqNXqLNgkpLICxW/LBSYL1V/21ZqqGqKzf6yPi47f5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2026 (0x7ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Dec 6 20:14:40 2025 GMT Not After : Dec 13 20:14:40 2025 GMT Subject: CN=69348eb0-c781 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:76:33:7f:33:c1:81:57:2a:18:d8:31:36:8a: 90:be:06:b8:95:74:8d:64:54:f2:59:77:b5:c3:ec: e6:66:9e:65:ea:d8:98:09:d0:91:e7:2e:8b:c9:d4: d4:e8:1f:d6:1c:60:9d:aa:ce:18:37:ec:94:72:ad: cf:57:7f:f7:4d:69:7f:b2:08:4b:2f:d5:b1:9e:44: 94:25:f9:cf:fc:a5:fc:2f:c0:65:d6:60:77:1b:00: 13:88:61:7c:72:04:2b:26:f9:bb:c8:e2:05:de:3b: 96:8b:70:4e:5c:60:e7:ec:32:88:0f:a8:6e:66:d9: 19:95:86:d2:de:90:9b:5d:66:81:b5:88:4d:bd:b2: c5:7d:5d:78:7e:83:3d:d8:4a:1e:aa:a1:9f:a3:3d: 22:83:ee:b7:36:95:91:46:82:c3:18:15:c2:9b:c8: e0:fc:02:ae:aa:83:13:c8:b0:e0:5e:64:62:45:c6: 15:91:db:8d:81:98:83:fe:b4:c3:8e:8d:3f:48:18: 97:2f:db:8d:1d:09:6a:a3:a9:ab:f4:97:eb:47:6f: 83:2e:6b:df:8e:74:da:20:74:9b:9b:55:1a:61:78: 64:5e:b3:8b:58:ce:15:c3:74:9f:3a:10:67:72:12: a2:3d:76:00:a4:84:a0:b8:35:d0:6a:d7:5e:c7:11: dc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5A:99:3F:A3:E8:61:94:52:1C:20:27:4F:94:AB:8B:3B:E4:CC:09 X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:b0:9b:0e:19:60:26:f0:d5:f8:e0:7f:53:c6:43:eb:a5:f9: 05:e6:9a:b5:97:a2:38:4e:98:59:9b:fb:26:20:17:40:a7:a4: 61:a8:c3:97:8b:11:10:f8:00:1a:4b:32:8e:4d:55:f7:7f:5f: 75:53:00:b4:3f:87:04:f1:9a:4f:3e:9a:bc:24:5e:99:63:3b: 3d:1b:c8:e0:7f:be:3e:d0:e3:14:82:b1:d1:c1:2f:46:60:fc: 95:89:7c:f3:fb:fc:55:3c:2e:14:0f:62:15:a5:8b:db:09:3e: 43:18:07:f6:62:f8:97:b8:d4:c6:9a:38:cd:9d:d5:fd:c7:92: a8:17:27:ea:2b:ae:31:5b:95:f2:54:77:5b:e5:8c:41:de:18: c4:fd:42:0d:87:79:7f:49:81:94:ac:c1:49:57:28:f0:b5:e5: 71:f6:8b:85:07:c2:79:a5:17:5e:27:0e:3a:74:9b:aa:eb:c7: f4:22:2d:56:5a:69:5a:f5:21:5d:0b:2d:14:5a:26:87:11:21: 9c:c4:6b:bb:f6:d2:b5:33:41:f9:84:6b:27:d7:52:5d:48:62: 9d:97:f3:8e:b3:28:39:98:27:c4:55:cb:d1:77:84:69:f5:41: 33:86:f4:20:ab:ea:57:d8:81:0b:bc:15:3e:c3:31:37:54:26: 34:97:e3:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjUxMjA2MjAxNDQwWhcNMjUxMjEzMjAxNDQwWjAYMRYwFAYD VQQDEw02OTM0OGViMC1jNzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHYzfzPBgVcqGNgxNoqQvga4lXSNZFTyWXe1w+zmZp5l6tiYCdCR5y6LydTU 6B/WHGCdqs4YN+yUcq3PV3/3TWl/sghLL9WxnkSUJfnP/KX8L8Bl1mB3GwATiGF8 cgQrJvm7yOIF3juWi3BOXGDn7DKID6huZtkZlYbS3pCbXWaBtYhNvbLFfV14foM9 2EoeqqGfoz0ig+63NpWRRoLDGBXCm8jg/AKuqoMTyLDgXmRiRcYVkduNgZiD/rTD jo0/SBiXL9uNHQlqo6mr9JfrR2+DLmvfjnTaIHSbm1UaYXhkXrOLWM4Vw3SfOhBn chKiPXYApISguDXQatdexxHcOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFamT+j 6GGUUhwgJ0+Uq4s75MwJMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqsJsOGWAm8NX44H9TxkPrpfkF5pq1l6I4TphZm/smIBdAp6RhqMOX ixEQ+AAaSzKOTVX3f191UwC0P4cE8ZpPPpq8JF6ZYzs9G8jgf74+0OMUgrHRwS9G YPyViXzz+/xVPC4UD2IVpYvbCT5DGAf2YviXuNTGmjjNndX9x5KoFyfqK64xW5Xy VHdb5YxB3hjE/UINh3l/SYGUrMFJVyjwteVx9ouFB8J5pRdeJw46dJuq68f0Ii1W Wmla9SFdCy0UWiaHESGcxGu79tK1M0H5hGsn11JdSGKdl/OOsyg5mCfEVcvRd4Rp 9UEzhvQgq+pX2IELvBU+wzE3VCY0l+OI -----END CERTIFICATE-----Generated at Sun Dec 7 01:55:11 2025 by rpki-client