This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft File: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft (raw, json) Hash identifier: Hey5xNGoy9lZk9g0pftkgQTjLRuZpCJGiAfZCEk1mac= Subject key identifier: BE:66:EB:A8:F8:44:15:21:82:9C:26:3C:EA:92:06:23:FC:D6:65:53 Authority key identifier: 97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 Certificate issuer: /CN=A91DF8DB/serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Certificate serial: 13EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft Manifest number: 13E2 Signing time: Sat 06 Dec 2025 16:28:46 +0000 Manifest this update: Sat 06 Dec 2025 16:28:45 +0000 Manifest next update: Sat 13 Dec 2025 16:28:45 +0000 Files and hashes: 1: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl (hash: DVZ6HH52opmaY3UHdKvcFrTfCydpemhFIhfPRiU8/q8=) 2: A6C9934CA74111E88B3EAB2BC4F9AE02.roa (hash: Ps2kpMcHFW9xZn4cXtCxGzuJfkKA6kvJeaElditES+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5099 (0x13eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF8DB, serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Validity Not Before: Dec 6 16:28:45 2025 GMT Not After : Dec 13 16:28:45 2025 GMT Subject: CN=693459be-fe6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4f:76:3b:a0:15:08:67:32:3f:3b:c2:e1:e9: 8c:1a:73:cb:c6:4b:a4:7a:34:32:0c:a8:d1:35:89: 4e:4f:64:3f:3c:75:ec:d6:22:f8:d9:a3:ed:a3:5f: a8:b8:a8:b6:f0:12:c8:02:24:f4:15:7d:ce:a6:46: eb:ed:01:33:a4:5c:68:8b:28:1b:a7:79:2e:60:a1: 6b:8d:54:3a:87:f0:f4:fd:04:6c:81:fa:df:bf:47: 60:9c:88:6d:41:e9:d1:92:4a:08:6e:c3:24:7b:fe: 27:a3:56:cb:0e:96:df:f6:22:32:6c:89:7a:9f:38: fb:65:49:2d:57:18:6c:9f:79:2b:5e:92:1b:dd:da: 7a:15:0b:bb:f4:57:dc:c5:39:71:8e:21:d2:9b:83: df:04:22:ec:ae:80:53:70:05:34:fa:55:3f:52:34: e1:99:29:05:1e:b4:0d:a4:25:09:e4:0e:bc:70:40: cd:48:09:d7:43:55:7b:c1:d3:9c:c2:11:c4:4f:42: 01:bf:6f:0a:be:04:6b:54:98:7b:3c:93:28:10:7e: af:23:73:78:1e:21:0c:15:53:07:1f:12:89:14:d9: 8b:91:6e:74:06:4e:9a:2e:20:4a:c7:3b:27:de:09: ba:1e:ad:3a:92:fb:3c:b4:f7:22:8b:31:1f:68:50: 9e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:66:EB:A8:F8:44:15:21:82:9C:26:3C:EA:92:06:23:FC:D6:65:53 X509v3 Authority Key Identifier: keyid:97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:c6:66:21:90:86:14:ae:7a:14:e6:d6:9b:78:2b:7a:50:15: 85:85:0c:dc:80:34:b1:cf:30:a0:8c:d9:32:2d:5d:25:ad:f7: ad:70:08:1c:3b:96:11:a6:7e:03:5a:f8:cc:65:13:43:dc:47: c5:92:a8:d8:79:88:40:61:d0:96:11:23:e7:0a:64:97:21:c2: e5:86:b0:ba:c9:99:8a:cb:b2:54:f7:f6:d2:a9:71:87:07:a5: bf:af:c0:50:a3:99:5b:45:3b:5d:ae:81:ba:44:88:3b:33:05: 78:a5:fc:08:1f:11:6d:9c:5b:dc:7f:c9:5d:50:ab:e0:78:d7: 11:d3:16:3c:a6:48:87:ed:ce:c4:e7:d1:88:53:e1:10:33:f5: 65:d7:da:45:17:21:9b:9b:ef:97:d0:ef:76:0f:04:2e:21:6b: c2:f5:96:1b:49:da:5c:97:f9:7c:a5:e6:3d:54:86:da:80:9e: ea:8b:d3:8f:16:9e:31:f3:a2:96:37:7f:23:65:b1:77:84:24: 9b:f7:57:59:f1:82:79:da:d1:c2:a2:3e:22:af:ca:36:fd:a5: 4e:38:41:dc:44:d0:86:76:11:6d:de:4d:91:ee:be:c5:3c:b6: c1:59:b8:15:85:04:0f:62:48:11:fe:5b:b6:1b:bf:df:30:f2: 53:89:ec:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4REIxMTAvBgNVBAUTKDk3RDI5QjBEMzI0NTVCQjVDNkYxMjU3ODVGNDBGNUJD MjcwOUY3RDQwHhcNMjUxMjA2MTYyODQ1WhcNMjUxMjEzMTYyODQ1WjAYMRYwFAYD VQQDEw02OTM0NTliZS1mZTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn092O6AVCGcyPzvC4emMGnPLxkukejQyDKjRNYlOT2Q/PHXs1iL42aPto1+o uKi28BLIAiT0FX3Opkbr7QEzpFxoiygbp3kuYKFrjVQ6h/D0/QRsgfrfv0dgnIht QenRkkoIbsMke/4no1bLDpbf9iIybIl6nzj7ZUktVxhsn3krXpIb3dp6FQu79Ffc xTlxjiHSm4PfBCLsroBTcAU0+lU/UjThmSkFHrQNpCUJ5A68cEDNSAnXQ1V7wdOc whHET0IBv28KvgRrVJh7PJMoEH6vI3N4HiEMFVMHHxKJFNmLkW50Bk6aLiBKxzsn 3gm6Hq06kvs8tPciizEfaFCetQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5m66j4 RBUhgpwmPOqSBiP81mVTMB8GA1UdIwQYMBaAFJfSmw0yRVu1xvEleF9A9bwnCffU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjhEQi82NTc5Mzc4Qzk5 MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3WEc4U1Y0WDBEMXZDY0o5 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5S2JEVEpGVzdYRzhTVjRYMEQxdkNjSjk5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjhEQi82NTc5Mzc4Qzk5MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3 WEc4U1Y0WDBEMXZDY0o5OVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8xmYhkIYUrnoU5tabeCt6UBWFhQzcgDSxzzCgjNkyLV0lrfetcAgc O5YRpn4DWvjMZRND3EfFkqjYeYhAYdCWESPnCmSXIcLlhrC6yZmKy7JU9/bSqXGH B6W/r8BQo5lbRTtdroG6RIg7MwV4pfwIHxFtnFvcf8ldUKvgeNcR0xY8pkiH7c7E 59GIU+EQM/Vl19pFFyGbm++X0O92DwQuIWvC9ZYbSdpcl/l8peY9VIbagJ7qi9OP Fp4x86KWN38jZbF3hCSb91dZ8YJ52tHCoj4ir8o2/aVOOEHcRNCGdhFt3k2R7r7F PLbBWbgVhQQPYkgR/lu2G7/fMPJTiewf -----END CERTIFICATE-----Generated at Sun Dec 7 01:09:28 2025 by rpki-client