This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft File: dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft (raw, json) Hash identifier: 1rMFN1eAC4mGTzuGCWzhAN2udthPIsCnuyvp7207VBI= Subject key identifier: 2D:23:98:2C:B6:4D:33:5F:9E:0E:EA:7C:7D:18:A8:5A:A6:D0:68:ED Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 05E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft Manifest number: 05E3 Signing time: Thu 18 Dec 2025 22:20:15 +0000 Manifest this update: Thu 18 Dec 2025 22:20:15 +0000 Manifest next update: Thu 25 Dec 2025 22:20:15 +0000 Files and hashes: 1: dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl (hash: p65HMYq95DM6hptsCp644eizXSbxWy72oWhKNU61sOk=) 2: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (hash: pYihusS4UyoIsK9PCzKPk27dDaihl6ZYHFqiCUhf6Dc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:20:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1512 (0x5e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: Dec 18 22:20:15 2025 GMT Not After : Dec 25 22:20:15 2025 GMT Subject: CN=69447e1f-d073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:23:98:26:5c:bc:15:24:27:99:6c:48:ae:e1: 98:cd:34:2c:0a:e4:16:47:30:c0:6e:7d:6d:ac:f8: 0c:f3:32:c3:d9:a6:af:cc:41:04:72:3b:51:c4:3f: e3:4e:be:6e:f0:de:de:45:cb:9c:3a:e8:f1:7d:62: 9d:e4:0d:e0:dd:70:0a:7e:33:d5:83:3a:8c:eb:65: 0c:97:1c:de:08:a4:41:3c:d1:45:fd:f0:4d:6f:25: 6a:8e:c6:63:bd:a4:42:c9:1c:9e:81:fa:54:d9:e3: 31:96:00:40:af:7d:a9:d6:f3:63:31:01:87:93:2d: a9:ce:4a:2d:db:a4:df:41:6f:ab:1d:7f:1f:06:ed: fa:0f:cf:ea:d7:1e:d0:c9:b1:3d:b6:e3:1a:68:1a: 02:3a:d8:4a:76:43:e4:92:e7:09:f5:c7:6b:86:2e: e1:a6:76:ca:51:fc:e2:75:eb:57:40:76:a8:07:57: 0e:94:a3:3f:e3:89:53:84:f3:be:59:27:ea:c7:c3: fc:3f:53:06:c8:14:6f:86:6b:57:d0:08:71:8f:24: 76:60:0e:ff:ca:25:96:e1:4f:35:77:c8:53:0f:78: 71:9a:f7:91:ef:b3:24:4a:fa:66:78:28:56:a4:db: b3:bd:f6:73:39:57:82:d7:50:64:8f:69:b8:43:48: fe:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:23:98:2C:B6:4D:33:5F:9E:0E:EA:7C:7D:18:A8:5A:A6:D0:68:ED X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:3e:61:3e:36:9f:18:00:01:7a:94:d0:88:f3:54:b3:a0:8c: 98:7e:09:71:35:7b:9a:8a:42:70:f9:3d:e0:3b:bf:66:83:b8: 91:a1:cd:b1:0c:d9:b2:7a:62:ed:02:11:d1:c2:0f:47:59:8e: 41:c3:b6:00:eb:a4:20:4f:fa:9b:39:a8:22:52:0d:48:95:73: c3:17:d5:bb:1f:80:f1:a7:86:67:d8:6e:35:27:46:92:5a:26: af:5a:0a:0b:0a:53:a3:30:d5:2c:6d:ad:71:14:e9:14:51:ae: 8f:a0:1c:31:66:64:24:61:94:eb:65:b9:4c:64:f5:f7:51:23: bf:4e:0a:ce:f0:b6:32:bf:48:2d:79:0c:f9:5e:51:44:73:fc: a8:00:3d:fa:51:96:ee:7a:0f:98:88:6e:c8:ab:96:d5:99:61: aa:67:7e:37:96:18:ce:46:1b:41:3f:ed:cf:05:f3:04:d4:29: ac:da:8f:7d:48:5e:d4:73:ac:31:af:49:42:f0:82:3a:12:87: 1d:52:77:f6:bf:e5:fd:05:7e:79:b2:f2:4a:d9:17:00:78:29: 45:14:12:76:d7:ce:b6:d0:d7:c3:3f:f1:93:59:70:65:70:83: a0:e5:68:d1:0e:7f:1c:ff:66:c4:69:55:c9:cf:97:df:93:a1: 00:39:c5:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjUxMjE4MjIyMDE1WhcNMjUxMjI1MjIyMDE1WjAYMRYwFAYD VQQDDA02OTQ0N2UxZi1kMDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyOYJly8FSQnmWxIruGYzTQsCuQWRzDAbn1trPgM8zLD2aavzEEEcjtRxD/j Tr5u8N7eRcucOujxfWKd5A3g3XAKfjPVgzqM62UMlxzeCKRBPNFF/fBNbyVqjsZj vaRCyRyegfpU2eMxlgBAr32p1vNjMQGHky2pzkot26TfQW+rHX8fBu36D8/q1x7Q ybE9tuMaaBoCOthKdkPkkucJ9cdrhi7hpnbKUfzidetXQHaoB1cOlKM/44lThPO+ WSfqx8P8P1MGyBRvhmtX0AhxjyR2YA7/yiWW4U81d8hTD3hxmveR77MkSvpmeChW pNuzvfZzOVeC11Bkj2m4Q0j+rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0jmCy2 TTNfng7qfH0YqFqm0GjtMB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NERDMS85OTZGOThFQURCRDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6 Z01DbXZOT09rWWJlX3pHNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMPmE+Np8YAAF6lNCI81SzoIyYfglxNXuaikJw+T3gO79mg7iRoc2x DNmyemLtAhHRwg9HWY5Bw7YA66QgT/qbOagiUg1IlXPDF9W7H4Dxp4Zn2G41J0aS WiavWgoLClOjMNUsba1xFOkUUa6PoBwxZmQkYZTrZblMZPX3USO/TgrO8LYyv0gt eQz5XlFEc/yoAD36UZbueg+YiG7Iq5bVmWGqZ343lhjORhtBP+3PBfME1Cms2o99 SF7Uc6wxr0lC8II6EocdUnf2v+X9BX55svJK2RcAeClFFBJ218620NfDP/GTWXBl cIOg5WjRDn8c/2bEaVXJz5ffk6EAOcWw -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:14 2025 by rpki-client