This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: saNJ1l/ZJ5/6aJN9llkWsPuw1M0cd8VrnwzJzwgnuXo= Subject key identifier: E6:21:AC:F5:99:4E:0B:C6:3B:EB:0E:3F:FC:A2:76:15:C7:C6:06:29 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 08B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 08A9 Signing time: Sat 06 Dec 2025 19:38:57 +0000 Manifest this update: Sat 06 Dec 2025 19:38:56 +0000 Manifest next update: Sat 13 Dec 2025 19:38:56 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: qKx1kqyaHpcCRlYjs6S6ljDSdvJeLKPGPAfnYpm66Hw=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: YDlJJK3r3QY2jge7AOb3CYnCW+wC8nrMDrmyeODCDi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2226 (0x8b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Dec 6 19:38:56 2025 GMT Not After : Dec 13 19:38:56 2025 GMT Subject: CN=69348650-d3e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d2:c5:43:72:d5:d7:15:5a:2d:a3:8e:ed:74: a8:34:d6:55:ee:cd:d3:ec:83:bb:88:65:f3:8a:c4: 16:47:e9:01:a0:16:a1:7f:09:b1:e3:ce:e5:9e:46: 3a:59:67:b9:ec:a9:c8:bf:96:64:ee:94:c2:00:8c: cc:35:47:5e:70:2c:1a:19:93:39:0b:8c:fc:c0:c8: be:af:28:9a:7a:a3:e4:90:1a:f7:5e:8e:28:9b:31: f6:ac:88:a4:11:90:e3:94:2b:27:48:d3:72:08:87: 9a:f8:9b:ea:8e:51:a9:b4:30:de:90:a1:00:f7:04: ee:b5:61:8d:f8:6a:f7:f5:ad:ad:76:86:e8:24:21: 83:60:b2:20:66:a9:d3:99:ef:12:5b:4b:d7:ca:76: 5c:e4:a3:51:74:58:e0:42:16:09:de:45:71:eb:39: db:e4:b1:ee:7c:3d:ea:16:b4:4f:6f:ba:20:66:7a: fe:bd:b3:c7:b1:83:b6:58:8d:a2:ab:40:c2:1f:09: b7:5e:c9:0c:21:dc:a4:65:8f:f6:67:0b:a0:7c:84: d8:7b:a5:9f:82:e3:29:46:78:f7:d7:78:26:e9:83: 49:a2:a4:2c:93:92:79:39:36:47:c7:da:ad:98:88: 1e:ae:03:8f:77:13:9e:0c:c5:52:ee:05:19:a0:10: 32:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:21:AC:F5:99:4E:0B:C6:3B:EB:0E:3F:FC:A2:76:15:C7:C6:06:29 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:4e:94:21:73:46:3d:47:2f:27:d2:f8:a8:1d:f8:73:59:47: d5:26:b6:83:6e:f8:fc:6a:85:03:97:fa:01:6c:33:c0:6e:1a: e5:be:30:57:f7:a8:be:6d:73:1c:ea:5e:7e:e8:78:71:2e:8f: 5a:a0:96:2d:db:7e:a9:a9:25:b2:a8:20:2e:2c:b1:c1:7f:2a: 2d:e2:ed:98:60:8b:f2:69:eb:fc:2b:66:2e:1e:d9:62:9f:aa: 2d:12:dd:a5:2e:f9:24:ea:b5:bb:28:7b:95:d9:11:3a:f5:8b: 89:cb:59:b4:8b:92:d0:50:e2:c9:26:e3:69:87:20:fa:41:ab: 7a:31:62:a2:4f:80:58:a6:01:c3:c4:27:24:e7:94:bc:fe:f8: 49:db:d0:83:8e:df:ad:90:a0:d1:68:3c:03:1d:6f:9d:43:2b: 79:20:b5:87:cc:5e:14:d2:87:0b:b8:49:3f:d7:cb:aa:cf:9e: 49:80:fe:f0:54:ea:86:4a:15:50:d2:2b:1c:95:30:c8:95:cc: df:78:91:b6:84:dc:bb:c9:f8:c9:ae:50:78:62:b8:66:46:71: 37:e1:fd:22:bd:5f:87:1c:7b:bd:fc:03:09:a5:c4:26:31:40: 24:9d:2f:27:ba:80:ea:77:bd:86:c4:6b:17:c1:a6:e1:25:91: 8a:fb:13:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjUxMjA2MTkzODU2WhcNMjUxMjEzMTkzODU2WjAYMRYwFAYD VQQDEw02OTM0ODY1MC1kM2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29LFQ3LV1xVaLaOO7XSoNNZV7s3T7IO7iGXzisQWR+kBoBahfwmx487lnkY6 WWe57KnIv5Zk7pTCAIzMNUdecCwaGZM5C4z8wMi+ryiaeqPkkBr3Xo4omzH2rIik EZDjlCsnSNNyCIea+JvqjlGptDDekKEA9wTutWGN+Gr39a2tdoboJCGDYLIgZqnT me8SW0vXynZc5KNRdFjgQhYJ3kVx6znb5LHufD3qFrRPb7ogZnr+vbPHsYO2WI2i q0DCHwm3XskMIdykZY/2ZwugfITYe6WfguMpRnj313gm6YNJoqQsk5J5OTZHx9qt mIgergOPdxOeDMVS7gUZoBAygQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYhrPWZ TgvGO+sOP/yidhXHxgYpMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRTpQhc0Y9Ry8n0vioHfhzWUfVJraDbvj8aoUDl/oBbDPAbhrlvjBX 96i+bXMc6l5+6HhxLo9aoJYt236pqSWyqCAuLLHBfyot4u2YYIvyaev8K2YuHtli n6otEt2lLvkk6rW7KHuV2RE69YuJy1m0i5LQUOLJJuNphyD6Qat6MWKiT4BYpgHD xCck55S8/vhJ29CDjt+tkKDRaDwDHW+dQyt5ILWHzF4U0ocLuEk/18uqz55JgP7w VOqGShVQ0isclTDIlczfeJG2hNy7yfjJrlB4YrhmRnE34f0ivV+HHHu9/AMJpcQm MUAknS8nuoDqd72GxGsXwabhJZGK+xOc -----END CERTIFICATE-----Generated at Sun Dec 7 02:37:39 2025 by rpki-client