This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft File: 9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft (raw, json) Hash identifier: m/cw6TjahwuXyAhAsBilwNL8lfKrk9K4DP8auyilr0U= Subject key identifier: BB:60:91:87:CA:5E:45:E5:39:95:64:E6:67:0C:4E:C1:9E:27:F5:FF Authority key identifier: F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 Certificate issuer: /CN=A91BDD82/serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft Manifest number: 10A4 Signing time: Thu 18 Dec 2025 17:26:12 +0000 Manifest this update: Thu 18 Dec 2025 17:26:12 +0000 Manifest next update: Thu 25 Dec 2025 17:26:12 +0000 Files and hashes: 1: 9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl (hash: uTIOXI4Fs7ByFQjgQ2UHXc5VOewZj+esXolwZtprYcU=) 2: 324967826D8D11EE9883B985C4F9AE02.roa (hash: MZyOtnzSYRn5H5siK78kl2QRZxsNV35INBP6UfbHk9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDD82, serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Validity Not Before: Dec 18 17:26:12 2025 GMT Not After : Dec 25 17:26:12 2025 GMT Subject: CN=69443934-5709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6a:5a:c2:ed:7a:6b:31:90:83:46:5d:f6:b2: b5:c6:4e:1f:81:35:49:cb:c8:7e:db:a2:75:5c:76: 40:33:43:8a:f9:8e:f7:d9:f1:e9:20:aa:e6:f2:48: d1:65:10:d6:a3:51:9d:ff:b1:a4:ca:29:a9:50:7c: 83:c5:56:c8:2e:99:f0:b5:ed:dd:bf:43:51:c2:70: 6e:e7:35:0d:c2:0b:39:91:41:d4:c0:77:0e:d2:de: 7b:5d:cf:92:04:c3:78:e6:70:05:54:70:2c:71:82: 97:6d:dc:85:ee:16:a0:b7:aa:14:15:30:94:5b:6a: b5:0f:db:c6:6e:dd:46:df:8e:a1:d3:11:32:5d:da: 28:ba:b9:9f:c7:d8:0a:67:5b:c6:c3:a0:1c:b2:b5: 25:6c:4c:37:aa:fb:00:7b:ab:41:f0:88:0b:8c:b5: e0:7f:d0:6f:de:fc:88:92:a4:1c:4d:86:46:75:0e: 28:89:e0:ff:5a:07:3d:a0:b6:d3:c0:3e:92:05:72: b4:db:de:6d:7b:d2:c9:93:98:fb:0b:b6:9f:a3:18: 8a:d4:d4:07:aa:4c:1c:e7:09:40:52:7b:ea:12:c3: 23:7a:fe:18:34:d1:5e:07:ae:b5:95:8b:5d:3a:60: 85:fd:2a:4d:0d:54:62:6f:a0:6c:0d:0f:e5:ba:76: 23:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:60:91:87:CA:5E:45:E5:39:95:64:E6:67:0C:4E:C1:9E:27:F5:FF X509v3 Authority Key Identifier: keyid:F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b8:cd:47:47:6b:73:af:44:76:d2:f4:03:78:04:96:63:86: 6c:d2:aa:e4:a4:e9:ab:27:d4:9c:75:55:da:98:97:64:fe:c0: 6a:10:f9:16:8b:23:f8:bf:7d:79:3c:b9:6e:04:e9:4c:b2:6e: d0:d2:9f:2e:b1:80:14:a4:51:98:d0:61:ae:d6:68:58:bd:9e: b5:e1:2c:8c:a6:d2:7b:d9:b5:00:63:bc:e4:b9:38:a6:49:69: 2b:9c:be:5c:b0:8a:66:11:a5:08:8e:29:b5:d2:18:99:e2:96: 53:eb:f2:00:e3:70:bb:0c:38:36:e1:d9:53:d4:28:ff:9b:a7: a9:f9:55:02:4e:09:18:e4:c1:cd:7f:85:b8:af:ca:d4:2f:d0: 31:40:e8:05:9f:91:65:28:8f:7e:55:b7:5d:c2:48:8c:b8:d8: 6f:63:4b:83:23:c2:62:bf:e6:9d:8e:0d:bc:44:ea:c3:ce:36: c9:7e:eb:e4:06:6a:33:6e:9a:2d:e8:0e:ff:36:cb:6a:b5:a9: e8:4e:26:bd:b2:ce:05:9f:46:40:17:7f:b6:4f:98:1b:dd:d8: 01:b4:6f:bb:dc:2b:7c:77:53:e4:33:3c:53:71:5d:30:b1:3f: f4:b7:0f:67:ad:d5:86:b4:57:5b:17:09:c6:57:9f:05:be:5d: 84:47:c4:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkREODIxMTAvBgNVBAUTKEY0NDAxODE4MUVFNUM2MjQwRTEzOTQzOTVBNUNDQzRE MkY2MjMxQTQwHhcNMjUxMjE4MTcyNjEyWhcNMjUxMjI1MTcyNjEyWjAYMRYwFAYD VQQDDA02OTQ0MzkzNC01NzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2pawu16azGQg0Zd9rK1xk4fgTVJy8h+26J1XHZAM0OK+Y732fHpIKrm8kjR ZRDWo1Gd/7GkyimpUHyDxVbILpnwte3dv0NRwnBu5zUNwgs5kUHUwHcO0t57Xc+S BMN45nAFVHAscYKXbdyF7hagt6oUFTCUW2q1D9vGbt1G346h0xEyXdoourmfx9gK Z1vGw6AcsrUlbEw3qvsAe6tB8IgLjLXgf9Bv3vyIkqQcTYZGdQ4oieD/Wgc9oLbT wD6SBXK0295te9LJk5j7C7afoxiK1NQHqkwc5wlAUnvqEsMjev4YNNFeB661lYtd OmCF/SpNDVRib6BsDQ/lunYjPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtgkYfK XkXlOZVk5mcMTsGeJ/X/MB8GA1UdIwQYMBaAFPRAGBge5cYkDhOUOVpczE0vYjGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREQ4Mi8xOTdGOUQ5Mjkx RTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhpUU9FNVE1V2x6TVRTOWlN YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlFQVlHQjdseGlRT0U1UTVXbHpNVFM5aU1hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REQ4Mi8xOTdGOUQ5MjkxRTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhp UU9FNVE1V2x6TVRTOWlNYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVuM1HR2tzr0R20vQDeASWY4Zs0qrkpOmrJ9ScdVXamJdk/sBqEPkW iyP4v315PLluBOlMsm7Q0p8usYAUpFGY0GGu1mhYvZ614SyMptJ72bUAY7zkuTim SWkrnL5csIpmEaUIjim10hiZ4pZT6/IA43C7DDg24dlT1Cj/m6ep+VUCTgkY5MHN f4W4r8rUL9AxQOgFn5FlKI9+VbddwkiMuNhvY0uDI8Jiv+adjg28ROrDzjbJfuvk Bmozbpot6A7/NstqtanoTia9ss4Fn0ZAF3+2T5gb3dgBtG+73Ct8d1PkMzxTcV0w sT/0tw9nrdWGtFdbFwnGV58Fvl2ER8Rw -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:50 2025 by rpki-client