This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft File: t9SqT11yMa9OdH93IkWsA3ECEPA.mft (raw, json) Hash identifier: US3xHkBZog7spkXTVCSA/qNmPcIb3Mxhd6ULZMUkY1Q= Subject key identifier: 80:0F:8C:0D:48:17:1E:A0:72:57:7A:8E:6B:7F:7A:E5:F7:F8:77:41 Authority key identifier: B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 Certificate issuer: /CN=A91175F6/serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Certificate serial: 0281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft Manifest number: 027D Signing time: Sun 21 Dec 2025 00:48:04 +0000 Manifest this update: Sun 21 Dec 2025 00:48:04 +0000 Manifest next update: Sun 28 Dec 2025 00:48:04 +0000 Files and hashes: 1: t9SqT11yMa9OdH93IkWsA3ECEPA.crl (hash: luis20CLaLi1+YTXHXKF0SJagNSHSwUknwW5LH8G4JY=) 2: 5D5B0F7C34CA11EDA301482BC4F9AE02.roa (hash: 90Bhpdbkdnfedi3OPca5alDQUSOpnC2UaqisbVy8klY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:48:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175F6, serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Validity Not Before: Dec 21 00:48:04 2025 GMT Not After : Dec 28 00:48:04 2025 GMT Subject: CN=694743c4-bcec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:51:77:87:b9:48:26:09:3b:25:fb:79:6a:6e: 21:2f:39:47:8b:20:64:70:25:c9:33:70:d8:c4:15: 5c:0d:61:c1:0f:a8:ca:c1:61:b4:3e:1b:a5:cd:3d: bd:55:fb:79:cc:9e:41:e6:55:2e:3d:22:b4:dd:49: d8:cf:49:93:7c:de:48:f9:06:e4:bf:96:88:b5:71: c7:34:da:fd:5a:0f:80:a7:e3:ba:11:85:81:77:d3: 5d:8c:eb:ea:10:ac:c1:aa:c4:8d:58:1c:da:c5:41: 44:38:bd:61:44:65:fd:b3:e3:78:e0:81:30:ad:f6: 00:ed:37:13:4f:4b:27:10:7c:a4:61:a8:2f:13:43: 42:48:33:22:60:e6:45:5e:8c:3d:e0:f5:dc:0a:0a: d4:62:de:cb:6c:36:ff:2b:83:47:8d:c5:a6:40:49: 20:58:73:c8:b4:4b:5a:df:29:8b:ad:e5:2c:42:6e: ad:fb:0f:b3:6c:40:65:9e:68:fc:16:a1:43:24:eb: eb:b3:7d:35:54:a6:11:a0:4f:e9:0c:72:2e:65:87: 6f:7a:d8:f1:68:3c:4f:c4:38:af:55:ba:9d:63:5c: b0:2a:13:42:61:9e:1c:4d:53:bb:42:92:37:c7:0f: ea:e0:bb:07:3a:48:eb:7f:c3:64:08:9d:77:a5:6a: f8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:0F:8C:0D:48:17:1E:A0:72:57:7A:8E:6B:7F:7A:E5:F7:F8:77:41 X509v3 Authority Key Identifier: keyid:B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:cc:2c:35:e5:69:c1:e4:01:23:8c:fe:77:6f:7a:bb:bd:c0: 68:b5:99:53:f4:06:aa:bf:36:da:50:99:9d:0e:bb:e4:1c:6c: 3a:bf:6a:cc:00:5a:f4:28:3a:eb:28:1d:58:8b:98:91:8c:27: 7e:a5:e9:87:b2:21:b8:2c:14:24:7f:5f:d4:1e:fd:ca:1d:e3: 24:a3:f5:b2:14:55:e2:b3:cb:bb:7d:0c:19:c5:73:b4:2d:d7: c7:ae:71:57:68:af:f1:41:36:ea:f7:b4:5a:3b:5d:d9:a0:93: 66:b7:27:1f:08:da:d7:0c:47:95:f1:45:5a:3a:b3:1b:83:e3: 41:7f:d7:0f:67:6d:b6:be:30:76:57:23:41:8c:04:0c:86:4d: d1:35:f9:c8:ff:66:aa:be:e1:d9:f2:df:7d:98:9e:c9:b3:cc: e8:c8:2d:a3:93:a9:fe:40:ac:e1:53:24:26:62:e9:c9:86:b4: 02:0b:3e:fd:fd:8b:fd:b2:ab:aa:ec:f5:aa:86:63:2d:7f:b6: 49:12:6f:67:ae:de:91:e1:72:5c:4f:d6:2f:3f:62:8e:97:80: eb:05:9f:c6:e9:e6:18:54:ca:42:e4:9d:09:2a:dc:7c:ea:ca: de:ec:ca:56:e6:e2:c4:dd:21:ce:bb:9e:9a:f5:36:8c:f5:0c: c7:76:1a:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RjYxMTAvBgNVBAUTKEI3RDRBQTRGNUQ3MjMxQUY0RTc0N0Y3NzIyNDVBQzAz NzEwMjEwRjAwHhcNMjUxMjIxMDA0ODA0WhcNMjUxMjI4MDA0ODA0WjAYMRYwFAYD VQQDDA02OTQ3NDNjNC1iY2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFF3h7lIJgk7Jft5am4hLzlHiyBkcCXJM3DYxBVcDWHBD6jKwWG0PhulzT29 Vft5zJ5B5lUuPSK03UnYz0mTfN5I+Qbkv5aItXHHNNr9Wg+Ap+O6EYWBd9NdjOvq EKzBqsSNWBzaxUFEOL1hRGX9s+N44IEwrfYA7TcTT0snEHykYagvE0NCSDMiYOZF Xow94PXcCgrUYt7LbDb/K4NHjcWmQEkgWHPItEta3ymLreUsQm6t+w+zbEBlnmj8 FqFDJOvrs301VKYRoE/pDHIuZYdvetjxaDxPxDivVbqdY1ywKhNCYZ4cTVO7QpI3 xw/q4LsHOkjrf8NkCJ13pWr4owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAPjA1I Fx6gcld6jmt/euX3+HdBMB8GA1UdIwQYMBaAFLfUqk9dcjGvTnR/dyJFrANxAhDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGNi8xM0E0MjBBODM0 MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1hOU9kSDkzSWtXc0EzRUNF UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q5U3FUMTF5TWE5T2RIOTNJa1dzQTNFQ0VQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVGNi8xM0E0MjBBODM0MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1h OU9kSDkzSWtXc0EzRUNFUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAzCw15WnB5AEjjP53b3q7vcBotZlT9AaqvzbaUJmdDrvkHGw6v2rM AFr0KDrrKB1Yi5iRjCd+pemHsiG4LBQkf1/UHv3KHeMko/WyFFXis8u7fQwZxXO0 LdfHrnFXaK/xQTbq97RaO13ZoJNmtycfCNrXDEeV8UVaOrMbg+NBf9cPZ222vjB2 VyNBjAQMhk3RNfnI/2aqvuHZ8t99mJ7Js8zoyC2jk6n+QKzhUyQmYunJhrQCCz79 /Yv9squq7PWqhmMtf7ZJEm9nrt6R4XJcT9YvP2KOl4DrBZ/G6eYYVMpC5J0JKtx8 6sre7MpW5uLE3SHOu56a9TaM9QzHdhoI -----END CERTIFICATE-----Generated at Mon Dec 22 17:29:29 2025 by rpki-client