This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft File: dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft (raw, json) Hash identifier: tBoFK+MI+drefzfAt2xPkPPEWLSKUFKhVnTOuMj5bB8= Subject key identifier: 8F:47:0E:EC:0A:35:24:A3:E6:C1:07:00:5F:BA:0D:5A:33:46:93:CF Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 05E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft Manifest number: 05DD Signing time: Sat 06 Dec 2025 21:50:44 +0000 Manifest this update: Sat 06 Dec 2025 21:50:43 +0000 Manifest next update: Sat 13 Dec 2025 21:50:43 +0000 Files and hashes: 1: dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl (hash: aN+3cD8UFREf26Z+tSUilfEZTuYoqmubCM/NV7CWrmg=) 2: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (hash: pYihusS4UyoIsK9PCzKPk27dDaihl6ZYHFqiCUhf6Dc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1506 (0x5e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: Dec 6 21:50:43 2025 GMT Not After : Dec 13 21:50:43 2025 GMT Subject: CN=6934a534-0165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:00:af:4c:18:e4:fc:0f:0e:25:d1:dd:a8:05: 55:69:be:50:9c:cc:2a:df:9e:a3:51:9c:08:15:d6: 77:d4:fc:28:eb:b4:04:be:5c:95:e2:6c:ad:89:42: 30:d4:5c:51:c0:c9:43:23:64:7e:2b:36:68:57:49: 34:75:05:56:78:a7:29:94:db:19:dd:f2:21:a6:fc: 53:ef:7d:36:6b:e8:b6:be:75:51:dd:a6:db:97:4a: 14:60:37:1c:d9:75:c3:b0:5e:17:a2:d4:0f:7a:2b: 42:b0:59:1c:20:b3:bd:aa:b4:02:a1:a0:c8:3a:74: 56:fd:1c:85:c6:cf:8c:4e:36:ba:4f:40:63:32:50: bf:50:fb:7d:02:55:37:22:c3:5f:62:f4:b2:0a:fe: 93:98:dc:3b:93:46:0e:21:5d:ab:ca:cd:0d:95:1b: d0:90:cc:ff:ca:d2:a7:3c:61:b4:46:07:92:97:c5: 0f:69:89:5a:56:f3:18:15:d7:09:0c:aa:4a:b4:c6: 15:0a:81:23:e6:8c:3d:38:71:08:86:00:82:09:8a: f6:80:ec:5a:e1:3d:e3:2f:a4:a2:ef:f2:66:e2:d7: e9:80:db:6b:d4:6e:b0:a1:94:46:e0:09:de:39:8d: e2:8c:c7:0d:92:c6:b9:f0:7f:eb:43:f1:97:46:00: 63:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:47:0E:EC:0A:35:24:A3:E6:C1:07:00:5F:BA:0D:5A:33:46:93:CF X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:5e:03:75:0b:75:63:03:3b:34:47:8b:0b:a3:11:f1:1f:63: 9f:a2:58:cb:d8:9f:80:be:15:57:20:42:50:89:f6:1d:ca:c2: 6e:12:1f:15:ef:6c:14:dd:dc:6f:84:8f:cf:86:70:e6:3d:4d: 5e:96:f6:c5:63:a3:d3:ba:e8:bb:bf:fa:b2:83:fd:b4:01:de: 89:a5:77:8f:ab:28:bb:6d:de:9f:7c:b5:67:d4:2b:2c:b7:09: 4d:a1:17:0c:e0:a2:fe:29:48:4f:9b:0d:cb:bd:b7:07:d7:5d: d2:fd:d6:78:b0:59:3b:43:88:7b:1e:45:ca:ee:e6:b4:86:4d: be:39:f3:56:0b:42:60:22:1b:21:f1:6a:cb:b8:83:60:5e:ea: 7f:d2:b3:ac:56:cd:2f:2a:31:10:47:c0:28:aa:d8:87:86:7b: 1c:77:74:8c:35:ef:d0:f2:a6:07:43:ce:91:65:de:61:63:1f: 36:8d:e7:8d:a4:e3:35:a2:4b:7c:aa:bb:73:14:c1:dc:86:a8: 6f:05:88:d7:24:63:79:76:e3:84:d8:57:ae:b1:25:b8:ad:c0: cb:b2:34:47:10:53:21:db:c5:51:03:ac:14:99:10:0f:7e:9a: 7b:d8:c8:a7:a7:d5:04:54:74:cf:51:ee:f4:f8:72:5d:f0:de: 9f:8b:dd:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjUxMjA2MjE1MDQzWhcNMjUxMjEzMjE1MDQzWjAYMRYwFAYD VQQDEw02OTM0YTUzNC0wMTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgCvTBjk/A8OJdHdqAVVab5QnMwq356jUZwIFdZ31Pwo67QEvlyV4mytiUIw 1FxRwMlDI2R+KzZoV0k0dQVWeKcplNsZ3fIhpvxT7302a+i2vnVR3abbl0oUYDcc 2XXDsF4XotQPeitCsFkcILO9qrQCoaDIOnRW/RyFxs+MTja6T0BjMlC/UPt9AlU3 IsNfYvSyCv6TmNw7k0YOIV2rys0NlRvQkMz/ytKnPGG0RgeSl8UPaYlaVvMYFdcJ DKpKtMYVCoEj5ow9OHEIhgCCCYr2gOxa4T3jL6Si7/Jm4tfpgNtr1G6woZRG4Ane OY3ijMcNksa58H/rQ/GXRgBj4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9HDuwK NSSj5sEHAF+6DVozRpPPMB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NERDMS85OTZGOThFQURCRDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6 Z01DbXZOT09rWWJlX3pHNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeXgN1C3VjAzs0R4sLoxHxH2OfoljL2J+AvhVXIEJQifYdysJuEh8V 72wU3dxvhI/PhnDmPU1elvbFY6PTuui7v/qyg/20Ad6JpXePqyi7bd6ffLVn1Css twlNoRcM4KL+KUhPmw3LvbcH113S/dZ4sFk7Q4h7HkXK7ua0hk2+OfNWC0JgIhsh 8WrLuINgXup/0rOsVs0vKjEQR8AoqtiHhnscd3SMNe/Q8qYHQ86RZd5hYx82jeeN pOM1okt8qrtzFMHchqhvBYjXJGN5duOE2FeusSW4rcDLsjRHEFMh28VRA6wUmRAP fpp72Minp9UEVHTPUe70+HJd8N6fi92S -----END CERTIFICATE-----Generated at Sun Dec 7 03:58:00 2025 by rpki-client