This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft File: A9h0_y9dMgjn62Jadzf81EzuKsI.mft (raw, json) Hash identifier: qOm8VBOJTah4LQsQ/0YhWKazUXKa4O4Bjc+shB+C1Ow= Subject key identifier: 41:59:0F:A9:87:81:43:1E:2B:E2:4C:C0:F0:60:D0:C3:21:56:6A:23 Authority key identifier: 03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 Certificate issuer: /CN=A91D901E/serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft Manifest number: 3C Signing time: Fri 05 Dec 2025 05:19:39 +0000 Manifest this update: Fri 05 Dec 2025 05:19:39 +0000 Manifest next update: Fri 12 Dec 2025 05:19:39 +0000 Files and hashes: 1: A9h0_y9dMgjn62Jadzf81EzuKsI.crl (hash: PlJHEi09oHey3RGHmctVS5lPTzvPfCAViUK7PX/lqOY=) 2: 58893B2878DC11F084C71D2BC4F9AE02.roa (hash: Top1RS38Q6RG/Bo0KeriCxYaYwIm8AI46xZdJa/NP8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D901E, serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Validity Not Before: Dec 5 05:19:39 2025 GMT Not After : Dec 12 05:19:39 2025 GMT Subject: CN=69326b6b-27d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1f:a1:d8:8a:f3:3b:c5:eb:44:70:d2:24:1b: 79:36:86:ac:84:c0:57:dc:32:27:e5:84:7c:9a:01: b0:df:ca:20:ac:82:0d:9c:dc:47:d4:40:01:c4:d2: 3d:43:7d:e8:17:b8:58:ba:0a:65:e9:58:8f:43:f7: ce:fd:30:26:ff:75:0d:92:d8:68:21:d0:3e:68:91: c0:69:00:ab:73:1e:76:0d:93:74:49:2b:1a:45:92: 0b:a2:95:db:6b:87:46:53:28:e0:c7:53:b0:8e:12: ee:2b:ab:a7:c6:58:1e:52:cf:3f:84:aa:bd:ee:9f: f7:c9:8c:d4:e5:ee:9f:e9:78:b0:8a:25:40:88:06: 87:5f:53:e3:7d:76:6f:bd:05:64:3e:80:0f:5f:d3: 9d:4e:56:89:39:95:4c:d2:bf:e4:d1:e4:0e:8b:ce: 04:46:5e:28:4a:0e:20:0e:2a:ad:4f:65:85:72:61: 1c:57:c2:80:84:da:7d:25:e3:6a:49:50:ec:6c:86: 56:b9:6b:3c:6d:47:b5:7a:73:35:aa:9e:8b:41:56: 2d:38:0c:0d:f3:c6:be:91:fc:6a:85:b2:c7:61:d2: bf:b5:2c:b9:20:0a:76:63:f5:ab:22:67:e6:c9:86: 89:83:f5:55:91:50:6a:99:6b:5a:d6:82:4d:e4:ae: 48:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:59:0F:A9:87:81:43:1E:2B:E2:4C:C0:F0:60:D0:C3:21:56:6A:23 X509v3 Authority Key Identifier: keyid:03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:c8:96:60:2e:90:42:8d:29:a2:4e:78:be:3d:af:30:ff:56: 8f:8c:35:a1:0f:a1:e3:58:5d:e0:f4:8c:43:e7:fc:8f:6b:8b: 51:a5:fe:f3:4c:05:a3:44:1d:df:dd:91:c2:5b:34:fb:b6:b3: 62:3c:f3:1f:f1:1c:43:78:2e:dc:7f:3e:7a:f0:39:85:dd:fe: bd:46:7c:45:44:e4:17:9e:4f:7d:cc:51:a4:8a:e1:b0:31:41: f2:96:b7:3c:97:14:83:2f:a6:12:4f:71:be:19:fa:d0:a8:ed: 3b:14:b9:4c:0d:b7:e4:62:e6:e7:7d:45:f7:e7:e3:8a:55:d4: 2e:62:f0:72:12:be:20:6a:e2:eb:0e:64:ee:b1:80:76:14:44: 2e:1e:86:e3:a8:a1:89:97:60:7e:86:c7:48:81:bc:57:d9:16: 79:59:0b:c9:b1:00:d3:73:9a:00:8e:7f:47:22:3e:57:82:79: 46:1d:3b:cf:1f:23:43:01:d3:15:dd:d9:53:ca:8b:65:93:84: 3d:fe:a7:fd:60:a1:ac:05:0c:54:08:9b:bb:c8:d1:a5:e0:4d: 23:68:2f:56:9d:88:0c:bf:25:1f:97:89:09:7a:db:48:c0:62: 33:d2:74:55:6c:6b:c5:61:40:61:64:07:ac:4e:e8:ba:c8:22: bd:33:19:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTAxRTExMC8GA1UEBRMoMDNEODc0RkYyRjVEMzIwOEU3RUI2MjVBNzczN0ZDRDQ0 Q0VFMkFDMjAeFw0yNTEyMDUwNTE5MzlaFw0yNTEyMTIwNTE5MzlaMBgxFjAUBgNV BAMTDTY5MzI2YjZiLTI3ZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHH6HYivM7xetEcNIkG3k2hqyEwFfcMiflhHyaAbDfyiCsgg2c3EfUQAHE0j1D fegXuFi6CmXpWI9D9879MCb/dQ2S2Ggh0D5okcBpAKtzHnYNk3RJKxpFkguildtr h0ZTKODHU7COEu4rq6fGWB5Szz+Eqr3un/fJjNTl7p/peLCKJUCIBodfU+N9dm+9 BWQ+gA9f051OVok5lUzSv+TR5A6LzgRGXihKDiAOKq1PZYVyYRxXwoCE2n0l42pJ UOxshla5azxtR7V6czWqnotBVi04DA3zxr6R/GqFssdh0r+1LLkgCnZj9asiZ+bJ homD9VWRUGqZa1rWgk3krkihAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQVkPqYeB Qx4r4kzA8GDQwyFWaiMwHwYDVR0jBBgwFoAUA9h0/y9dMgjn62Jadzf81EzuKsIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5MDFFL0RFMkQ2NEVBNzhE QTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdqbjYySmFkemY4MUV6dUtz SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQTloMF95OWRNZ2puNjJKYWR6ZjgxRXp1S3NJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 MDFFL0RFMkQ2NEVBNzhEQTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdq bjYySmFkemY4MUV6dUtzSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEjIlmAukEKNKaJOeL49rzD/Vo+MNaEPoeNYXeD0jEPn/I9ri1Gl/vNM BaNEHd/dkcJbNPu2s2I88x/xHEN4Ltx/PnrwOYXd/r1GfEVE5BeeT33MUaSK4bAx QfKWtzyXFIMvphJPcb4Z+tCo7TsUuUwNt+Ri5ud9Rffn44pV1C5i8HISviBq4usO ZO6xgHYURC4ehuOooYmXYH6Gx0iBvFfZFnlZC8mxANNzmgCOf0ciPleCeUYdO88f I0MB0xXd2VPKi2WThD3+p/1goawFDFQIm7vI0aXgTSNoL1adiAy/JR+XiQl620jA YjPSdFVsa8VhQGFkB6xO6LrIIr0zGfI= -----END CERTIFICATE-----Generated at Sun Dec 7 02:58:59 2025 by rpki-client