This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft File: CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft (raw, json) Hash identifier: +2ZKSzmiFX/alftfi+ZH/K4yKa6WmzQGskhID25XIz4= Subject key identifier: 7B:39:57:92:57:C4:C3:57:05:51:17:83:F6:BF:51:ED:2C:15:1D:35 Authority key identifier: 08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F Certificate issuer: /CN=A91B8D33/serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft Manifest number: 01B9 Signing time: Sun 21 Dec 2025 02:23:58 +0000 Manifest this update: Sun 21 Dec 2025 02:23:58 +0000 Manifest next update: Sun 28 Dec 2025 02:23:58 +0000 Files and hashes: 1: CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl (hash: RBJ7XobFyqHxVrdyixEP+C269J0xE+37EP4O958sqg8=) 2: 86D7DAE6D1C211EF9AA9410EC4F9AE02.roa (hash: 8qXcxCRSjyOP/oKs9vNyiIBs05KSJRouDgmhdgT6x8M=) 3: E62F8796D1BD11EFBCCC0B68C4F9AE02.roa (hash: v3dChgnA84SfDYgqRC2E+QVbu8keAWHj6W+tTQnPlbw=) 4: C698E13ED1BD11EF9C00D867C4F9AE02.roa (hash: HG1f/f+5SFm8izuIB1/hs3U0LoMscjbV7+BezDm08/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D33, serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F Validity Not Before: Dec 21 02:23:58 2025 GMT Not After : Dec 28 02:23:58 2025 GMT Subject: CN=69475a3e-f843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8a:5e:f5:7d:9f:8d:cf:f3:3b:c3:cd:59:99: 67:4b:ae:3f:96:84:77:76:4c:4c:3f:b0:40:83:6c: 3c:d8:62:84:9b:b9:c5:d3:7d:1a:8b:79:be:74:7c: 7f:84:b8:4a:de:0c:07:06:00:d2:55:e1:dd:ae:89: 54:c8:d7:44:12:50:87:e8:8b:99:fb:16:7b:04:e5: 05:84:5d:6c:f1:a4:48:5d:70:29:cc:46:4f:f7:fd: 0f:7c:6e:d5:27:f5:73:c0:83:5b:14:7a:c7:a4:4b: 42:db:15:2b:87:23:b3:5d:a8:10:b6:77:98:67:ab: 50:0b:df:bb:36:26:c3:f5:de:e3:52:78:10:19:c5: 28:63:f8:08:7f:df:c3:e9:2a:c8:65:26:bb:1c:3a: 25:de:f5:5d:2d:cf:70:ed:9e:9f:06:a7:dd:22:f2: f6:92:4f:ec:16:55:92:02:6f:7d:e2:2e:d1:5d:2b: 66:83:5a:13:6b:8a:ee:d6:88:26:3c:30:28:5c:dd: d4:e5:11:8f:8e:69:c4:1d:40:75:2c:2a:24:26:7f: 1e:2c:38:a4:44:c9:83:66:01:9f:c7:52:12:1c:1c: f9:19:91:f1:b2:c9:94:54:8f:34:b6:46:83:8e:21: 44:59:94:3d:e5:f2:a8:77:ba:4d:4f:c2:27:bb:92: fa:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:39:57:92:57:C4:C3:57:05:51:17:83:F6:BF:51:ED:2C:15:1D:35 X509v3 Authority Key Identifier: keyid:08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:10:56:ae:f1:9e:5b:cd:c3:f3:e3:07:fa:e7:1e:a2:bb:9d: a2:89:87:ef:31:c9:bd:2d:29:67:95:35:54:f1:dd:e3:e6:a7: 98:78:77:a1:88:58:52:d8:06:34:0d:3d:90:d3:1e:b9:fe:a4: 81:c3:77:34:25:2b:84:7a:fb:97:11:29:53:3a:b5:76:82:b5: 07:86:aa:58:47:ae:63:bf:02:bb:8e:84:9e:d1:07:1a:4a:09: d7:55:1b:db:f8:9d:9a:47:27:c6:81:53:73:5c:fb:8f:d9:ae: 2e:61:65:f2:4a:2d:d9:42:d8:e8:86:5c:cb:2f:be:ef:ca:f2: 5e:5b:ac:fe:12:24:2b:5a:48:d6:4d:67:91:84:aa:98:bc:62: 30:0d:15:80:8d:5e:59:53:49:32:75:b1:0e:4c:04:b2:a9:23: 0f:ed:21:e5:2a:17:71:87:74:e9:01:3e:f0:ee:c0:6a:ba:5e: 1c:e2:8f:1d:68:2c:9f:c4:85:a1:90:60:3b:51:aa:9c:e3:2b: eb:8c:2e:8b:94:38:ac:5a:13:97:11:ee:01:5c:29:91:b4:84: 39:84:bc:66:6c:ff:54:cb:ff:1c:73:b5:e7:b0:6a:b6:8c:f2: 9c:44:b4:74:5b:2b:d6:a7:88:25:a0:66:66:a4:79:fe:ca:9f: a0:38:1f:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhEMzMxMTAvBgNVBAUTKDA4RDY4Q0Y0NTAwNzQ1Mzc1RkYyQ0M1ODRCQTVGQkU1 NzdCRUUzM0YwHhcNMjUxMjIxMDIyMzU4WhcNMjUxMjI4MDIyMzU4WjAYMRYwFAYD VQQDDA02OTQ3NWEzZS1mODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIpe9X2fjc/zO8PNWZlnS64/loR3dkxMP7BAg2w82GKEm7nF030ai3m+dHx/ hLhK3gwHBgDSVeHdrolUyNdEElCH6IuZ+xZ7BOUFhF1s8aRIXXApzEZP9/0PfG7V J/VzwINbFHrHpEtC2xUrhyOzXagQtneYZ6tQC9+7NibD9d7jUngQGcUoY/gIf9/D 6SrIZSa7HDol3vVdLc9w7Z6fBqfdIvL2kk/sFlWSAm994i7RXStmg1oTa4ru1ogm PDAoXN3U5RGPjmnEHUB1LCokJn8eLDikRMmDZgGfx1ISHBz5GZHxssmUVI80tkaD jiFEWZQ95fKod7pNT8Inu5L6swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHs5V5JX xMNXBVEXg/a/Ue0sFR01MB8GA1UdIwQYMBaAFAjWjPRQB0U3X/LMWEul++V3vuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQzMy81OTYyNjcxMDQ3 NzcxMUVFQTZCRDUzN0VDNEY5QUUwMi9DTmFNOUZBSFJUZGY4c3hZUzZYNzVYZS00 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOYU05RkFIUlRkZjhzeFlTNlg3NVhlLTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEQzMy81OTYyNjcxMDQ3NzcxMUVFQTZCRDUzN0VDNEY5QUUwMi9DTmFNOUZBSFJU ZGY4c3hZUzZYNzVYZS00ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFEFau8Z5bzcPz4wf65x6iu52iiYfvMcm9LSlnlTVU8d3j5qeYeHeh iFhS2AY0DT2Q0x65/qSBw3c0JSuEevuXESlTOrV2grUHhqpYR65jvwK7joSe0Qca SgnXVRvb+J2aRyfGgVNzXPuP2a4uYWXySi3ZQtjohlzLL77vyvJeW6z+EiQrWkjW TWeRhKqYvGIwDRWAjV5ZU0kydbEOTASyqSMP7SHlKhdxh3TpAT7w7sBqul4c4o8d aCyfxIWhkGA7Uaqc4yvrjC6LlDisWhOXEe4BXCmRtIQ5hLxmbP9Uy/8cc7XnsGq2 jPKcRLR0WyvWp4gloGZmpHn+yp+gOB9g -----END CERTIFICATE-----Generated at Sun Dec 21 13:54:39 2025 by rpki-client