This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: c2KmRoYb4Mmx3dh250ANc/Pxw50q5MuLi+oTqfng5CE= Subject key identifier: 6D:9B:6A:9F:B8:B4:3F:37:B3:F7:6D:D6:51:94:19:E2:36:F4:2C:F7 Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: B9 Signing time: Fri 05 Dec 2025 04:04:39 +0000 Manifest this update: Fri 05 Dec 2025 04:04:38 +0000 Manifest next update: Fri 12 Dec 2025 04:04:38 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: ycoTOP0vue+qGdPcyNX3mZfrpJI5cArtzbWkBjKtTiU=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: gL/pv5Q4H259tRW/M/fWgTAynaK4mXLMVK09D4O3Mmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:04:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: Dec 5 04:04:38 2025 GMT Not After : Dec 12 04:04:38 2025 GMT Subject: CN=693259d6-d2a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ba:72:7d:f1:3f:24:ed:4a:a1:17:93:77:2a: 41:ff:f9:da:69:2a:a4:71:80:bf:0a:07:97:42:1f: 8d:c7:11:73:00:cd:fb:d9:1f:32:64:35:9e:85:57: 50:88:66:2f:47:5d:41:78:25:7c:6e:6f:ae:75:1e: 8d:29:84:cd:21:27:a6:c0:92:e6:87:89:4d:d3:b5: 6a:a4:50:61:fc:c5:72:2f:05:73:c5:16:84:7c:d9: ad:af:a3:8f:24:35:9c:d5:30:a8:94:22:b8:7d:6c: ee:76:ba:83:8d:ef:e2:10:aa:8c:63:18:c3:46:88: 77:4c:af:05:c1:4d:1b:26:54:7e:e4:00:f5:67:fe: 9f:3c:42:2e:0a:6b:b9:9d:37:e1:e8:ad:fa:b3:20: 7e:78:8a:68:12:58:45:1c:1b:80:47:43:49:7e:01: 8f:f7:8e:a0:ed:da:5d:76:ed:84:66:54:8d:48:40: bb:0a:90:c7:c6:3a:f2:0d:36:04:e9:97:c5:f9:55: e7:f4:01:e1:ca:87:0a:4c:88:36:41:f3:6f:fe:de: 41:2f:c7:de:15:10:2c:a5:00:91:f3:57:f3:f4:e4: eb:2c:fd:1a:9d:39:08:67:d4:a5:9c:3e:34:cb:b0: 4e:0e:d4:3f:10:88:75:bd:0e:e4:78:71:45:97:7c: 3e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:9B:6A:9F:B8:B4:3F:37:B3:F7:6D:D6:51:94:19:E2:36:F4:2C:F7 X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:fc:98:ec:38:32:db:16:b5:42:65:d3:ef:8d:b1:a0:b5:a5: 51:3f:5c:00:a2:93:e5:a3:82:a4:1b:d2:aa:6b:87:e4:86:d9: 4e:2f:1e:80:54:d4:71:70:aa:aa:a1:1e:f2:21:27:8b:88:a5: 14:93:bc:69:39:88:3a:1a:cc:a4:25:30:f7:37:36:40:bf:a6: c9:26:7f:02:ec:4a:c0:48:71:33:3f:d4:01:00:b2:b3:31:d9: 83:1d:ad:33:d7:d7:a7:ba:c0:bf:23:af:3e:45:1a:a8:2c:38: d6:af:61:09:d8:07:a3:6b:b0:a7:34:02:76:de:75:ae:f1:fa: 62:1b:5a:85:16:ca:77:e8:0a:c1:ac:e1:da:ee:c3:8b:ff:d7: 9a:a5:11:17:c7:b7:02:a9:da:d8:d6:3c:85:d0:2f:16:e9:88: db:9f:bc:19:e4:bd:eb:fb:75:45:81:a8:4f:da:43:91:1f:57: b8:4c:11:4e:c7:99:88:0c:f0:be:f7:ac:82:68:9f:61:33:c1: cb:48:1d:ca:42:d3:e2:44:50:25:b2:a5:88:92:fa:20:6a:04: 97:ca:cf:4f:88:a5:ce:8b:da:3e:70:61:06:ea:45:44:98:8c: 45:b8:3c:c1:61:a4:3d:fb:75:00:4c:f5:37:6a:b1:1e:77:d1: b4:44:a1:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCRTMxMTAvBgNVBAUTKDZGRDA4ODdBMzkwM0UzRDZFMTdCQjlDRkQ4RUYyNjky NzBCQUNCMDcwHhcNMjUxMjA1MDQwNDM4WhcNMjUxMjEyMDQwNDM4WjAYMRYwFAYD VQQDEw02OTMyNTlkNi1kMmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurpyffE/JO1KoReTdypB//naaSqkcYC/CgeXQh+NxxFzAM372R8yZDWehVdQ iGYvR11BeCV8bm+udR6NKYTNISemwJLmh4lN07VqpFBh/MVyLwVzxRaEfNmtr6OP JDWc1TColCK4fWzudrqDje/iEKqMYxjDRoh3TK8FwU0bJlR+5AD1Z/6fPEIuCmu5 nTfh6K36syB+eIpoElhFHBuAR0NJfgGP946g7dpddu2EZlSNSEC7CpDHxjryDTYE 6ZfF+VXn9AHhyocKTIg2QfNv/t5BL8feFRAspQCR81fz9OTrLP0anTkIZ9SlnD40 y7BODtQ/EIh1vQ7keHFFl3w+DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2bap+4 tD83s/dt1lGUGeI29Cz3MB8GA1UdIwQYMBaAFG/QiHo5A+PW4Xu5z9jvJpJwussH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJFMy9FNkU2QkU0NEJG OUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5YmhlN25QMk84bWtuQzZ5 d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJFMy9FNkU2QkU0NEJGOUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5 YmhlN25QMk84bWtuQzZ5d2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD/JjsODLbFrVCZdPvjbGgtaVRP1wAopPlo4KkG9Kqa4fkhtlOLx6A VNRxcKqqoR7yISeLiKUUk7xpOYg6GsykJTD3NzZAv6bJJn8C7ErASHEzP9QBALKz MdmDHa0z19enusC/I68+RRqoLDjWr2EJ2Aeja7CnNAJ23nWu8fpiG1qFFsp36ArB rOHa7sOL/9eapREXx7cCqdrY1jyF0C8W6Yjbn7wZ5L3r+3VFgahP2kORH1e4TBFO x5mIDPC+96yCaJ9hM8HLSB3KQtPiRFAlsqWIkvogagSXys9PiKXOi9o+cGEG6kVE mIxFuDzBYaQ9+3UATPU3arEed9G0RKHZ -----END CERTIFICATE-----Generated at Sat Dec 6 14:39:42 2025 by rpki-client