This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft File: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft (raw, json) Hash identifier: digUhV649SrAcpe8kUObz4PHbAxll8dJoZsCIcqhLs0= Subject key identifier: 60:42:CC:35:CA:5F:1E:F0:E7:96:E1:7D:B0:17:FD:95:25:11:B4:64 Authority key identifier: F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 Certificate issuer: /CN=A91ED571/serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Certificate serial: 0DC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft Manifest number: 0DBF Signing time: Sat 20 Dec 2025 17:34:21 +0000 Manifest this update: Sat 20 Dec 2025 17:34:21 +0000 Manifest next update: Sat 27 Dec 2025 17:34:21 +0000 Files and hashes: 1: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl (hash: OSiw03yS0C3UmZhXSwBWiRc1lZAEZB+bWIwpipdN/zM=) 2: C9819022CE7011E98E86DD52C4F9AE02.roa (hash: EM624Ee5dZvup/p2NN7lZAjAZv2Q+/2EJL827rz91tU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED571, serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Validity Not Before: Dec 20 17:34:21 2025 GMT Not After : Dec 27 17:34:21 2025 GMT Subject: CN=6946de1d-efed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:58:92:50:52:0c:3e:a1:fe:32:ad:bd:a2:fb: d1:57:3a:1d:81:ab:f3:96:85:3d:ee:e8:79:1a:7e: de:ff:c7:79:ed:ff:32:ae:d1:6c:86:a9:c4:04:26: bf:00:06:a6:0f:6e:0f:fd:6f:49:73:29:8d:63:46: 5f:ed:bb:f1:72:45:8e:f1:4a:66:3a:65:5f:3b:a5: 07:3a:bb:1a:d3:5e:15:9a:2b:49:c2:c5:f3:01:0d: 80:81:51:8d:14:63:73:2e:c1:e6:97:2c:3b:29:91: df:84:b2:ef:a3:f2:37:e7:0a:7e:3e:de:70:e0:43: 2b:c5:a2:8b:d4:61:c9:f5:09:a6:30:d1:1b:bf:aa: de:c7:8a:39:81:8b:cb:b2:49:ce:cf:fe:7f:f5:d5: 04:54:c3:ad:4c:e9:f0:96:1d:0b:3b:60:ff:d2:64: bb:33:24:ed:db:c0:77:c0:0b:97:f6:b3:fe:0e:7e: f8:e6:46:82:dc:02:96:36:26:86:72:3a:82:41:25: 36:ad:fb:be:78:1c:56:4a:5e:40:d3:54:f0:3e:bd: 34:69:db:41:63:1f:4f:5b:ee:b2:c5:fa:3b:bc:d3: f5:8c:da:79:b9:d1:41:85:8f:b5:01:24:ec:29:25: 31:e8:54:8d:67:5e:26:c8:0a:cb:b5:e7:99:b0:89: f7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:42:CC:35:CA:5F:1E:F0:E7:96:E1:7D:B0:17:FD:95:25:11:B4:64 X509v3 Authority Key Identifier: keyid:F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:5f:91:21:ea:91:14:18:89:bc:50:ca:95:9b:37:7f:d9:30: a5:fa:a0:ec:7e:d0:b1:d3:d6:b8:e0:46:ce:51:b6:8c:08:d3: 9a:07:d9:3f:d4:60:11:de:28:2c:03:7a:16:be:5d:93:4e:e7: ce:f1:27:b2:23:84:84:ee:92:d4:e7:e4:8e:7c:4e:d4:5b:26: 75:26:7b:60:a6:93:52:ee:64:4c:83:40:c4:45:b0:50:68:96: 9f:d4:4a:59:11:b1:f3:09:ee:14:3b:41:ca:c7:b0:6a:51:e8: d8:53:4d:c1:cd:87:d6:78:5b:c0:a4:3d:e5:19:b7:f2:4f:0d: 64:10:f8:a0:85:ab:84:32:b6:99:34:d7:df:24:c5:8f:62:56: 41:22:bc:03:03:a6:fd:72:bc:30:48:ad:0e:3b:78:8a:11:04: 80:a2:37:98:df:f0:bf:67:aa:fe:c5:51:3e:d4:7a:15:cf:f9: f8:53:f2:db:28:7f:29:38:b8:59:2f:ee:6c:ad:ff:59:ea:f2: ea:88:2f:68:b0:2f:0d:45:e8:de:9e:a9:bc:cd:55:f0:49:10: 73:3f:3d:81:41:27:1f:08:e1:fa:1e:e4:49:4f:45:78:2e:d8: 23:2c:f3:95:b9:a2:18:d7:53:b5:43:84:04:f4:9f:f6:ab:65: 90:e9:cf:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1NzExMTAvBgNVBAUTKEY0RjE1QzY3NUVEOUE1QzJEMTk5NUIyN0ZCNTNGRjYw RkYwMjQ5RTAwHhcNMjUxMjIwMTczNDIxWhcNMjUxMjI3MTczNDIxWjAYMRYwFAYD VQQDDA02OTQ2ZGUxZC1lZmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8FiSUFIMPqH+Mq29ovvRVzodgavzloU97uh5Gn7e/8d57f8yrtFshqnEBCa/ AAamD24P/W9JcymNY0Zf7bvxckWO8UpmOmVfO6UHOrsa014VmitJwsXzAQ2AgVGN FGNzLsHmlyw7KZHfhLLvo/I35wp+Pt5w4EMrxaKL1GHJ9QmmMNEbv6rex4o5gYvL sknOz/5/9dUEVMOtTOnwlh0LO2D/0mS7MyTt28B3wAuX9rP+Dn745kaC3AKWNiaG cjqCQSU2rfu+eBxWSl5A01TwPr00adtBYx9PW+6yxfo7vNP1jNp5udFBhY+1ASTs KSUx6FSNZ14myArLteeZsIn3TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBCzDXK Xx7w55bhfbAX/ZUlEbRkMB8GA1UdIwQYMBaAFPTxXGde2aXC0ZlbJ/tT/2D/Akng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU3MS9FQ0QyREY5NkNF NkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBjTFJtVnNuLTFQX1lQOENT ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQRmNaMTdacGNMUm1Wc24tMVBfWVA4Q1NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU3MS9FQ0QyREY5NkNFNkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBj TFJtVnNuLTFQX1lQOENTZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtX5Eh6pEUGIm8UMqVmzd/2TCl+qDsftCx09a44EbOUbaMCNOaB9k/ 1GAR3igsA3oWvl2TTufO8SeyI4SE7pLU5+SOfE7UWyZ1JntgppNS7mRMg0DERbBQ aJaf1EpZEbHzCe4UO0HKx7BqUejYU03BzYfWeFvApD3lGbfyTw1kEPighauEMraZ NNffJMWPYlZBIrwDA6b9crwwSK0OO3iKEQSAojeY3/C/Z6r+xVE+1HoVz/n4U/Lb KH8pOLhZL+5srf9Z6vLqiC9osC8NRejenqm8zVXwSRBzPz2BQScfCOH6HuRJT0V4 LtgjLPOVuaIY11O1Q4QE9J/2q2WQ6c9g -----END CERTIFICATE-----Generated at Sat Dec 20 22:52:50 2025 by rpki-client