This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft File: s9eTeQ4RSsj43IK64zwdkr29tes.mft (raw, json) Hash identifier: NAHnC7DmNVqDodsdjd46YT1OgRBXNJ29ynWAUQJG4Vg= Subject key identifier: 62:DF:E5:FB:22:E2:85:B9:60:05:2F:23:22:81:FB:21:DD:18:1E:4A Authority key identifier: B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB Certificate issuer: /CN=A91F71E8/serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Certificate serial: 08B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft Manifest number: 1ACF Signing time: Sat 06 Dec 2025 16:39:31 +0000 Manifest this update: Sat 06 Dec 2025 16:39:30 +0000 Manifest next update: Sat 13 Dec 2025 16:39:30 +0000 Files and hashes: 1: s9eTeQ4RSsj43IK64zwdkr29tes.crl (hash: Bssb+EgoBR5y9LLvDN8Z+lwJBKLXmsT9gkr9GbuJtCU=) 2: F87AC94C35BB11EDB0314E29C4F9AE02.roa (hash: QQ2kSpkziq7c/OfdUjW7k6le4ABn54sNBVAUYS+VxSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2226 (0x8b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F71E8, serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Validity Not Before: Dec 6 16:39:30 2025 GMT Not After : Dec 13 16:39:30 2025 GMT Subject: CN=69345c43-a886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:8f:c0:5e:be:b8:3c:df:35:86:bd:f4:7b:2f: 38:3a:8f:90:98:a0:e0:77:91:03:0b:3a:11:7f:c6: 32:47:7b:3e:99:7a:c0:d3:39:6c:1e:d0:41:59:07: da:6b:7b:c6:f6:87:75:5a:88:2c:4f:45:dc:aa:c8: a8:8f:45:4d:8a:55:34:7a:8d:2d:8d:df:ed:58:08: e8:bd:ff:ba:22:5d:a0:98:a7:c1:ac:e3:3e:ae:62: 2b:14:59:a9:91:65:8a:21:a2:28:9e:95:2c:5c:2a: 15:d4:7a:7b:8b:2b:58:dd:82:59:0f:2f:54:c6:b1: ed:29:a3:3b:e3:b2:4e:4b:2b:91:30:73:89:81:04: 98:be:2c:f4:d2:f2:8a:22:e4:4c:7b:96:f9:09:a5: 8b:5b:f7:db:67:c7:0a:65:4d:47:56:d6:ec:34:03: b5:c1:02:cd:2c:b2:9b:15:75:5b:a1:6c:0d:1b:d5: 93:db:07:b2:cf:35:7a:21:7d:9e:db:d0:63:54:24: 7c:98:33:83:a1:fb:30:fb:9f:91:7a:15:7b:2b:05: 2b:76:d8:c6:cf:21:3d:79:00:ee:2d:df:3a:81:38: 1a:0d:cb:0c:1e:dd:d7:9e:37:44:3d:38:30:c3:76: ff:d2:f3:f9:bc:e5:8b:b6:f4:64:18:a4:f0:92:b4: 8a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:DF:E5:FB:22:E2:85:B9:60:05:2F:23:22:81:FB:21:DD:18:1E:4A X509v3 Authority Key Identifier: keyid:B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:0b:33:d6:0d:e1:4e:30:3c:47:1a:7a:8a:1e:a5:2e:72:a1: cd:29:69:18:15:41:e4:c7:3c:26:57:5a:28:3a:f2:4b:13:93: f5:07:24:6a:ea:07:ba:50:b8:64:3d:c8:a5:a8:0f:4e:3c:ad: a1:64:0f:c8:ff:68:3a:23:b5:51:47:c1:4b:16:b0:8a:9a:1f: 00:ea:18:ea:c4:52:c4:e2:c8:1e:c2:97:ad:16:60:16:df:83: b0:90:75:55:91:5c:db:9b:45:71:eb:f0:7e:06:d4:2a:1c:84: 69:b9:65:75:18:88:0c:24:be:e9:cb:65:af:d4:56:3e:0e:54: 0a:8e:24:07:85:7d:29:09:d9:3d:1c:08:0f:cf:62:d2:5f:cb: 5e:cf:34:26:cf:3c:8c:fb:b2:a7:24:7f:18:2b:1f:da:74:d9: d2:69:96:15:92:3e:13:a1:a7:98:42:a3:04:09:29:b4:bf:be: cf:4e:46:5a:62:81:f1:ed:62:f4:c7:41:4a:12:11:9a:18:18: 95:30:76:d9:94:36:7d:95:87:62:a6:5a:8d:e4:48:11:2b:fd: be:17:7a:bd:57:ee:a9:e4:ca:84:6f:e6:c2:8c:45:1d:11:9b: 2d:6e:64:ca:d1:fd:da:be:20:3c:20:86:a9:36:60:fb:67:d4: 2c:8a:f6:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxRTgxMTAvBgNVBAUTKEIzRDc5Mzc5MEUxMTRBQzhGOERDODJCQUUzM0MxRDky QkRCREI1RUIwHhcNMjUxMjA2MTYzOTMwWhcNMjUxMjEzMTYzOTMwWjAYMRYwFAYD VQQDEw02OTM0NWM0My1hODg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Y/AXr64PN81hr30ey84Oo+QmKDgd5EDCzoRf8YyR3s+mXrA0zlsHtBBWQfa a3vG9od1WogsT0Xcqsioj0VNilU0eo0tjd/tWAjovf+6Il2gmKfBrOM+rmIrFFmp kWWKIaIonpUsXCoV1Hp7iytY3YJZDy9UxrHtKaM747JOSyuRMHOJgQSYviz00vKK IuRMe5b5CaWLW/fbZ8cKZU1HVtbsNAO1wQLNLLKbFXVboWwNG9WT2weyzzV6IX2e 29BjVCR8mDODofsw+5+RehV7KwUrdtjGzyE9eQDuLd86gTgaDcsMHt3XnjdEPTgw w3b/0vP5vOWLtvRkGKTwkrSKNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLf5fsi 4oW5YAUvIyKB+yHdGB5KMB8GA1UdIwQYMBaAFLPXk3kOEUrI+NyCuuM8HZK9vbXr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzFFOC82MkI3ODdBMEVF RTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNzajQzSUs2NHp3ZGtyMjl0 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M5ZVRlUTRSU3NqNDNJSzY0endka3IyOXRlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzFFOC82MkI3ODdBMEVFRTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNz ajQzSUs2NHp3ZGtyMjl0ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmCzPWDeFOMDxHGnqKHqUucqHNKWkYFUHkxzwmV1ooOvJLE5P1ByRq 6ge6ULhkPcilqA9OPK2hZA/I/2g6I7VRR8FLFrCKmh8A6hjqxFLE4sgewpetFmAW 34OwkHVVkVzbm0Vx6/B+BtQqHIRpuWV1GIgMJL7py2Wv1FY+DlQKjiQHhX0pCdk9 HAgPz2LSX8tezzQmzzyM+7KnJH8YKx/adNnSaZYVkj4ToaeYQqMECSm0v77PTkZa YoHx7WL0x0FKEhGaGBiVMHbZlDZ9lYdiplqN5EgRK/2+F3q9V+6p5MqEb+bCjEUd EZstbmTK0f3aviA8IIapNmD7Z9QsivaS -----END CERTIFICATE-----Generated at Sat Dec 6 20:29:46 2025 by rpki-client