This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft File: AfBcfqXyou38GDiX9YNZgrLPA78.mft (raw, json) Hash identifier: sv45+fiSRbr90y5mlbtX34Rk40UASPHOzAgNIZC8U60= Subject key identifier: 81:AE:A3:95:A8:68:9A:74:8D:99:E4:8C:36:67:B1:8E:62:1B:3B:2D Authority key identifier: 01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF Certificate issuer: /CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft Manifest number: C9 Signing time: Fri 19 Dec 2025 04:54:14 +0000 Manifest this update: Fri 19 Dec 2025 04:54:14 +0000 Manifest next update: Fri 26 Dec 2025 04:54:14 +0000 Files and hashes: 1: AfBcfqXyou38GDiX9YNZgrLPA78.crl (hash: 3vhv1F8Qrd8OEEZu9IXUbVhzue6upwtlt1qf2pcOsJE=) 2: A69DB4ACA70811EFB1511445C4F9AE02.roa (hash: ve1sSgZ6oct5AOmrySo9DC5xQlX3NPwVMFkq6CjA+1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09BC, serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Validity Not Before: Dec 19 04:54:14 2025 GMT Not After : Dec 26 04:54:14 2025 GMT Subject: CN=6944da76-1153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f6:52:99:b9:76:41:d3:18:79:65:cb:76:dd: 79:eb:a5:01:60:cc:b3:c1:61:5c:53:11:f8:32:ab: 7a:d8:5d:bc:0f:39:91:a7:23:36:bb:2e:ab:dc:3d: 39:88:9f:7b:54:bd:f5:2c:ee:b5:45:0e:f8:5b:c2: ee:82:47:2a:95:6a:2f:b9:b9:e5:4a:33:83:2d:07: 70:a9:d0:74:56:17:a0:ea:29:80:02:7d:83:98:92: 19:ca:be:31:ba:91:48:38:c9:8c:7b:0b:91:35:83: 2b:e8:8e:00:e7:df:fb:24:c6:1b:8b:70:66:15:a3: ab:68:5a:41:e6:c3:f7:a6:77:3f:15:18:46:ef:66: 04:b9:70:3e:c0:4b:dc:e5:ae:d9:2d:01:16:79:b6: 7b:2b:92:09:01:0c:8d:c0:1e:a4:03:ef:67:3b:52: af:34:7b:0a:8b:a3:51:b3:ac:fa:68:0d:6c:21:72: ac:4f:8d:97:67:e0:77:7c:eb:40:a1:4c:bd:f7:2c: c7:37:59:57:45:11:d3:3a:31:12:02:38:b3:29:42: c4:31:32:c1:c7:21:3e:2b:24:99:4e:46:5d:fb:20: 13:e5:5a:c9:a8:35:d9:1e:a9:a4:05:8c:8f:96:94: a4:d0:2d:71:0e:f3:7c:97:b8:e8:14:59:2e:00:ec: e7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:AE:A3:95:A8:68:9A:74:8D:99:E4:8C:36:67:B1:8E:62:1B:3B:2D X509v3 Authority Key Identifier: keyid:01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:65:96:22:66:af:75:d6:30:e1:55:b3:77:a9:87:6a:90:19: be:1b:6f:02:82:53:87:e8:45:fc:c5:ca:35:e8:59:16:6f:1c: f5:fb:54:e2:e9:9d:f9:47:ec:c3:b5:58:95:b8:95:01:47:be: 63:6e:07:c2:e1:7a:e2:32:3e:48:cd:86:64:09:3b:29:f6:47: 31:2e:1f:2d:36:f7:1f:b2:b7:76:82:db:6b:0a:d4:60:67:64: 85:ce:77:fe:fb:a1:22:14:42:41:3a:59:d4:1f:fa:fa:30:9c: 56:8f:81:64:26:b3:6c:28:d7:6c:ae:be:96:7c:82:33:84:f4: e9:cc:2e:97:37:8c:d6:b1:5a:4d:86:5e:59:43:3f:ba:16:7c: fb:a4:71:64:cf:28:6a:db:10:a0:33:49:c9:d4:56:74:16:fe: 71:da:64:4c:47:9d:ad:bc:9e:f9:28:5a:97:dd:42:63:4d:ea: 7d:64:fb:e2:97:3f:6f:fd:68:0c:19:99:72:df:9f:bb:dc:1b: 30:60:b0:25:48:dd:07:44:8d:8f:4d:61:71:14:8f:32:93:d6: 05:8b:de:fc:cd:5d:87:e4:ee:63:5c:0d:e6:25:50:af:6e:ff: 09:54:63:81:c5:ed:ee:36:ab:d2:3d:d7:16:4a:83:c3:d5:4d: 6e:4d:6e:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QkMxMTAvBgNVBAUTKDAxRjA1QzdFQTVGMkEyRURGQzE4Mzg5N0Y1ODM1OTgy QjJDRjAzQkYwHhcNMjUxMjE5MDQ1NDE0WhcNMjUxMjI2MDQ1NDE0WjAYMRYwFAYD VQQDDA02OTQ0ZGE3Ni0xMTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6fZSmbl2QdMYeWXLdt1566UBYMyzwWFcUxH4Mqt62F28DzmRpyM2uy6r3D05 iJ97VL31LO61RQ74W8LugkcqlWovubnlSjODLQdwqdB0Vheg6imAAn2DmJIZyr4x upFIOMmMewuRNYMr6I4A59/7JMYbi3BmFaOraFpB5sP3pnc/FRhG72YEuXA+wEvc 5a7ZLQEWebZ7K5IJAQyNwB6kA+9nO1KvNHsKi6NRs6z6aA1sIXKsT42XZ+B3fOtA oUy99yzHN1lXRRHTOjESAjizKULEMTLBxyE+KySZTkZd+yAT5VrJqDXZHqmkBYyP lpSk0C1xDvN8l7joFFkuAOznXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGuo5Wo aJp0jZnkjDZnsY5iGzstMB8GA1UdIwQYMBaAFAHwXH6l8qLt/Bg4l/WDWYKyzwO/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlCQy9EMzVCMDgyRUE3 MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi9BZkJjZnFYeW91MzhHRGlYOVlOWmdyTFBB NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmQmNmcVh5b3UzOEdEaVg5WU5aZ3JMUEE3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlCQy9EMzVCMDgyRUE3MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi9BZkJjZnFYeW91 MzhHRGlYOVlOWmdyTFBBNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQZZYiZq911jDhVbN3qYdqkBm+G28CglOH6EX8xco16FkWbxz1+1Ti 6Z35R+zDtViVuJUBR75jbgfC4XriMj5IzYZkCTsp9kcxLh8tNvcfsrd2gttrCtRg Z2SFznf++6EiFEJBOlnUH/r6MJxWj4FkJrNsKNdsrr6WfIIzhPTpzC6XN4zWsVpN hl5ZQz+6Fnz7pHFkzyhq2xCgM0nJ1FZ0Fv5x2mRMR52tvJ75KFqX3UJjTep9ZPvi lz9v/WgMGZly35+73BswYLAlSN0HRI2PTWFxFI8yk9YFi978zV2H5O5jXA3mJVCv bv8JVGOBxe3uNqvSPdcWSoPD1U1uTW6/ -----END CERTIFICATE-----Generated at Fri Dec 19 19:14:16 2025 by rpki-client