This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: 3mPTpXHAojPLyjiIKG8wQQr7IJONMrVkO451w+1ky70= Subject key identifier: 1E:80:38:89:DA:18:3E:C1:66:CB:48:17:43:8E:61:F1:6E:88:EB:99 Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1777 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 2118 Signing time: Thu 18 Dec 2025 16:27:48 +0000 Manifest this update: Thu 18 Dec 2025 16:27:47 +0000 Manifest next update: Thu 25 Dec 2025 16:27:47 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: JQ2KTFQY8S36NUItNiHMw5kiIYSDwbZ1XVdHiHPf2+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6007 (0x1777) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Dec 18 16:27:47 2025 GMT Not After : Dec 25 16:27:47 2025 GMT Subject: CN=69442b84-ae52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:df:27:02:92:9f:1f:be:1d:90:1c:77:61:29: b1:dd:7a:4f:4a:9c:93:2c:10:6d:00:cd:21:bb:78: 3c:4e:74:78:2b:7f:3d:46:c8:ee:44:f4:ea:13:b1: e9:ca:f0:e7:2e:4b:bd:38:ad:61:a5:02:65:f5:de: f2:1e:75:5a:de:91:6a:18:75:37:5a:c1:40:97:b9: f2:cf:af:53:f3:41:d6:15:c4:4b:41:68:01:c2:16: 5f:5f:d3:56:9b:23:22:ac:2f:5b:93:88:23:95:dd: a7:e3:d2:7f:05:88:9a:c3:59:ae:0c:ee:2d:1b:75: 6c:48:01:0d:8e:c8:bd:6f:80:c8:ee:b8:d5:ac:b8: 3f:97:e1:0e:de:3b:f5:64:25:49:a0:d9:86:04:44: ff:0f:fa:d3:f9:f5:20:f9:2b:ed:3f:fa:6b:06:ca: ab:48:0b:be:cb:b0:90:b0:5e:dc:1b:66:d6:b3:20: a7:6d:ba:44:76:31:59:69:77:a0:5e:f4:5e:2c:23: ca:83:2f:72:26:dc:5d:7b:09:45:77:ae:8a:fd:88: fa:28:13:34:b2:e0:5d:f9:ca:b6:ac:30:78:ef:ef: c3:c8:2c:d9:cd:5c:f4:b4:77:1a:4d:33:21:4e:df: 2b:5f:e9:d4:76:2d:c9:5f:0f:40:b7:5d:3d:ef:bc: 1d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:80:38:89:DA:18:3E:C1:66:CB:48:17:43:8E:61:F1:6E:88:EB:99 X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:45:dd:80:67:67:62:57:a1:d1:8e:18:82:55:af:6c:a8:f1: b2:b6:12:71:2b:c0:80:e1:0b:80:8c:77:ba:93:33:b9:1c:f0: 07:71:46:43:38:12:8f:43:e5:9d:21:52:5a:61:ae:be:d4:be: de:7e:2e:f1:84:f1:15:77:e0:fc:62:56:c5:9c:da:d9:c6:fe: c2:f3:cc:73:a4:fe:16:45:11:a0:23:86:bd:d0:61:7b:0c:44: 29:d5:26:c8:3a:63:89:c5:74:07:11:5f:0b:24:23:a3:80:c0: a9:ce:45:8c:c5:35:65:e5:19:33:fb:a1:b5:a6:e1:ff:ea:eb: 94:85:04:83:70:ad:30:23:02:7f:f3:6b:ec:4d:a9:b1:2f:c3: ae:ad:54:7c:97:a7:d1:c3:eb:07:7b:b6:81:07:18:46:bc:82: 88:d7:cc:5e:db:63:10:ad:29:a1:63:ef:87:1e:fe:b1:4f:a1: a4:48:98:e4:26:1a:67:09:26:a7:b4:a8:ca:4b:d4:d7:8e:66: 91:b1:69:7a:31:ec:f4:96:47:39:6f:ba:d0:c0:c6:a4:3c:26: 75:0e:da:0a:27:21:b1:59:9a:bc:04:c7:57:f3:7f:b0:2d:34: 9c:50:3c:c6:98:84:ba:ff:66:92:05:5e:2f:cd:62:24:86:2a: b8:ba:98:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUxMjE4MTYyNzQ3WhcNMjUxMjI1MTYyNzQ3WjAYMRYwFAYD VQQDDA02OTQ0MmI4NC1hZTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu98nApKfH74dkBx3YSmx3XpPSpyTLBBtAM0hu3g8TnR4K389RsjuRPTqE7Hp yvDnLku9OK1hpQJl9d7yHnVa3pFqGHU3WsFAl7nyz69T80HWFcRLQWgBwhZfX9NW myMirC9bk4gjld2n49J/BYiaw1muDO4tG3VsSAENjsi9b4DI7rjVrLg/l+EO3jv1 ZCVJoNmGBET/D/rT+fUg+SvtP/prBsqrSAu+y7CQsF7cG2bWsyCnbbpEdjFZaXeg XvReLCPKgy9yJtxdewlFd66K/Yj6KBM0suBd+cq2rDB47+/DyCzZzVz0tHcaTTMh Tt8rX+nUdi3JXw9At10977wduwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6AOIna GD7BZstIF0OOYfFuiOuZMB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANRd2AZ2diV6HRjhiCVa9sqPGythJxK8CA4QuAjHe6kzO5HPAHcUZD OBKPQ+WdIVJaYa6+1L7efi7xhPEVd+D8YlbFnNrZxv7C88xzpP4WRRGgI4a90GF7 DEQp1SbIOmOJxXQHEV8LJCOjgMCpzkWMxTVl5Rkz+6G1puH/6uuUhQSDcK0wIwJ/ 82vsTamxL8OurVR8l6fRw+sHe7aBBxhGvIKI18xe22MQrSmhY++HHv6xT6GkSJjk JhpnCSantKjKS9TXjmaRsWl6Mez0lkc5b7rQwMakPCZ1DtoKJyGxWZq8BMdX83+w LTScUDzGmIS6/2aSBV4vzWIkhiq4upij -----END CERTIFICATE-----Generated at Fri Dec 19 23:59:10 2025 by rpki-client