This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft File: t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft (raw, json) Hash identifier: X9/yYUSmiVTGzyk/xOwT7faxRgEiRWPaXyXUmZt+ZC0= Subject key identifier: 22:EE:9D:0A:97:48:37:40:D0:35:5C:4D:FC:85:F0:08:DA:9F:95:03 Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0CF4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft Manifest number: 0CED Signing time: Sat 06 Dec 2025 17:31:41 +0000 Manifest this update: Sat 06 Dec 2025 17:31:41 +0000 Manifest next update: Sat 13 Dec 2025 17:31:41 +0000 Files and hashes: 1: t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl (hash: M93hxKLJohCL2z7Dub7/2fXdk3VGNhjs551yrZTKY7I=) 2: 8D243F849A6D11EA8674310DC4F9AE02.roa (hash: YLygHL2l+u1oyN1oC/1JspolWs3irx/GlqLYrTgxATU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3316 (0xcf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB, serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: Dec 6 17:31:41 2025 GMT Not After : Dec 13 17:31:41 2025 GMT Subject: CN=6934687d-433c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d9:e9:a8:03:ae:5c:bd:67:e0:8d:15:60:67: 47:9f:d5:32:af:eb:71:b7:17:f5:0a:99:53:65:7d: 2b:5c:1f:7a:6f:f0:7f:e4:72:e9:43:84:fe:cf:f2: db:ff:74:84:46:42:bb:0c:2d:dc:17:b6:ed:03:b2: e1:3a:85:9c:9e:5b:34:cd:2d:1f:99:a6:35:ce:e6: 6f:34:b6:41:97:76:cf:a3:f5:b6:e9:53:3c:42:44: 2d:b1:7f:e2:23:95:5f:3c:61:73:76:45:da:3f:ea: 63:ee:68:51:b7:f1:ab:9e:3b:d3:a9:4c:9d:00:1e: ec:cb:06:d5:f7:fb:50:f9:42:fd:5b:49:81:fe:cc: fe:53:18:04:b5:e7:c9:93:d2:e2:8a:25:95:32:2e: 6a:9e:15:53:c2:81:3b:78:35:8f:c5:b9:b3:d5:ff: df:c8:9b:2f:93:35:ba:06:58:17:fd:10:18:ad:33: e5:6f:71:a7:17:41:98:fd:bf:95:01:79:7a:41:48: 89:69:59:db:e9:bf:61:2b:90:20:23:18:61:e6:5c: b1:4e:59:80:79:28:ff:62:28:47:f9:58:ad:ee:47: c9:74:9b:af:4c:5c:c3:65:0c:d4:45:20:d1:5a:58: 5f:5e:2e:eb:29:96:26:de:48:bd:9e:59:f9:af:c8: 27:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:EE:9D:0A:97:48:37:40:D0:35:5C:4D:FC:85:F0:08:DA:9F:95:03 X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:98:b9:9d:bf:fa:64:6a:9f:d8:17:0f:8a:79:1a:84:dc:33: 58:d6:6b:c4:6a:2b:2a:02:3c:7b:62:4a:5d:b7:b1:eb:f4:68: c4:6e:f1:27:db:d5:d3:3b:0c:f1:b6:6d:fc:23:d9:19:5d:ee: 1b:c1:19:6a:b5:66:69:a6:e3:86:cf:f1:24:d1:ca:49:36:9c: 0d:05:03:b3:6b:7d:4c:e0:d0:ba:73:c9:bb:64:d1:bf:b9:91: 48:fa:cf:4f:96:08:c3:72:2b:b6:4c:87:da:2f:bf:42:4e:65: 35:d4:e8:78:6f:20:50:e4:32:c6:3b:0c:bd:42:47:3c:52:25: 1d:8d:a5:1f:db:e3:9c:44:0d:a6:1c:83:4a:61:f0:77:89:d2: 7a:51:5b:3b:cc:31:09:63:5a:2d:a5:39:d8:82:24:e5:5e:88: 37:da:a2:36:df:4f:a3:77:0d:32:b6:05:cf:05:46:5e:14:a7: 30:33:37:02:78:42:c3:f9:24:a4:fe:15:0d:b5:12:78:e8:6b: 7e:a8:31:ca:cf:4b:eb:a7:aa:a9:bb:8e:ae:ae:32:ac:de:41: 20:0a:18:94:48:b8:ca:79:62:f8:d4:1b:0b:37:83:cd:1e:9a: a3:dd:d6:b1:82:a6:39:fc:c0:8e:ef:3d:7e:9c:99:f3:2c:e4: ac:fc:92:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjUxMjA2MTczMTQxWhcNMjUxMjEzMTczMTQxWjAYMRYwFAYD VQQDEw02OTM0Njg3ZC00MzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytnpqAOuXL1n4I0VYGdHn9Uyr+txtxf1CplTZX0rXB96b/B/5HLpQ4T+z/Lb /3SERkK7DC3cF7btA7LhOoWcnls0zS0fmaY1zuZvNLZBl3bPo/W26VM8QkQtsX/i I5VfPGFzdkXaP+pj7mhRt/GrnjvTqUydAB7sywbV9/tQ+UL9W0mB/sz+UxgEtefJ k9LiiiWVMi5qnhVTwoE7eDWPxbmz1f/fyJsvkzW6BlgX/RAYrTPlb3GnF0GY/b+V AXl6QUiJaVnb6b9hK5AgIxhh5lyxTlmAeSj/YihH+Vit7kfJdJuvTFzDZQzURSDR WlhfXi7rKZYm3ki9nln5r8gn2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLunQqX SDdA0DVcTfyF8Ajan5UDMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTFFQi80OTdGMkJEOEY3MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZ TDFkWHlyalRTUkF5eU9HUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAamLmdv/pkap/YFw+KeRqE3DNY1mvEaisqAjx7Ykpdt7Hr9GjEbvEn 29XTOwzxtm38I9kZXe4bwRlqtWZppuOGz/Ek0cpJNpwNBQOza31M4NC6c8m7ZNG/ uZFI+s9PlgjDciu2TIfaL79CTmU11Oh4byBQ5DLGOwy9Qkc8UiUdjaUf2+OcRA2m HINKYfB3idJ6UVs7zDEJY1otpTnYgiTlXog32qI230+jdw0ytgXPBUZeFKcwMzcC eELD+SSk/hUNtRJ46Gt+qDHKz0vrp6qpu46urjKs3kEgChiUSLjKeWL41BsLN4PN Hpqj3daxgqY5/MCO7z1+nJnzLOSs/JIz -----END CERTIFICATE-----Generated at Sun Dec 7 07:29:37 2025 by rpki-client