This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft File: 9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft (raw, json) Hash identifier: CA6lw/WPShXdGINE8WIsV2bDjt3NWwfTy15T3OcirSY= Subject key identifier: 53:7A:4C:B6:DC:CF:BA:78:9B:0F:89:66:66:18:13:2B:A1:D8:07:2D Authority key identifier: F5:C9:D3:0E:9D:07:71:CD:07:E5:1B:2E:4A:52:B5:22:53:AB:D0:26 Certificate issuer: /CN=A91F8928/serialNumber=F5C9D30E9D0771CD07E51B2E4A52B52253ABD026 Certificate serial: 0CC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft Manifest number: 0CA8 Signing time: Thu 18 Dec 2025 18:12:08 +0000 Manifest this update: Thu 18 Dec 2025 18:12:08 +0000 Manifest next update: Thu 25 Dec 2025 18:12:08 +0000 Files and hashes: 1: 9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl (hash: Mcf1XOuct6L16DD2mMzNXCKrYhURdku+5CIiRa1vhU4=) 2: 93840DE204E611ED89D3B27BC4F9AE02.roa (hash: cegor5RnBc3HGGToc+6Lymvpp6wumcl5jw4jwYNABG8=) 3: E6C1F0003C7E11F08A874435C4F9AE02.roa (hash: HGkfh3dEEIqv+3vFhSnMi2VsaDRfK/TUjKt6kaMeksE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3273 (0xcc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8928, serialNumber=F5C9D30E9D0771CD07E51B2E4A52B52253ABD026 Validity Not Before: Dec 18 18:12:08 2025 GMT Not After : Dec 25 18:12:08 2025 GMT Subject: CN=694443f8-4f31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:56:2b:ae:90:ac:d5:6d:90:a9:f2:12:ce:e9: 27:a6:19:96:5c:1b:d6:de:cf:6c:79:a6:aa:d1:2e: e9:8f:e0:bd:01:6b:b4:85:ae:9e:20:3f:3f:72:39: 08:bd:a3:05:9c:1f:1a:08:f0:93:9a:84:a2:24:6a: 15:a3:70:3d:97:44:da:bb:28:d6:e3:80:bb:4c:f7: 37:e8:c4:5c:10:0a:5a:7e:b7:14:8d:56:24:12:b2: f9:e0:49:da:90:d9:d1:ce:7f:95:33:e0:23:4b:a7: ff:27:09:6f:b5:a1:75:8b:96:8c:89:59:7a:c1:6f: 7f:5e:9d:de:4f:8d:aa:29:2a:1f:4e:12:be:60:a5: 81:51:85:e2:f7:c1:b0:0b:13:21:68:64:b1:bf:0b: af:3c:a2:0d:f1:ad:28:28:0d:61:6e:94:b7:64:6a: 15:74:c1:16:25:70:c5:9a:aa:69:be:71:1d:6d:80: 8c:f2:c2:bc:b7:13:98:70:3f:c5:ad:46:23:49:53: 48:25:e8:f3:dd:e5:32:be:53:cb:18:97:67:d0:e6: cd:c6:63:52:35:85:a7:64:21:5c:00:cd:da:e1:db: 1a:d7:e8:93:81:1c:0a:a3:8d:21:ab:67:d0:d8:38: 49:b1:87:05:0a:67:e0:79:b2:cf:85:1e:c6:33:ae: c0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:7A:4C:B6:DC:CF:BA:78:9B:0F:89:66:66:18:13:2B:A1:D8:07:2D X509v3 Authority Key Identifier: keyid:F5:C9:D3:0E:9D:07:71:CD:07:E5:1B:2E:4A:52:B5:22:53:AB:D0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:14:cc:ac:69:a6:de:83:df:4e:66:e0:c3:c3:38:ff:20:cc: 2b:6e:1b:ad:31:6b:db:70:bd:87:15:3b:54:61:3c:ab:94:8a: f7:c3:fe:a0:9c:31:b8:a6:74:b0:b5:2b:91:5a:bc:f9:fb:c6: 53:10:87:c3:e1:02:ae:78:c6:9b:37:b9:8c:8c:84:3d:62:7c: 0b:20:51:f1:0f:5e:9e:4d:da:95:df:0a:64:8b:1c:71:49:6c: 45:5b:6d:fa:7c:8b:0d:6d:ed:71:ea:81:af:fe:b6:ed:81:85: 20:4d:48:a3:58:75:d4:72:82:55:4a:f4:8a:e8:bd:64:46:20: 00:b1:c4:62:6e:66:92:52:48:92:f4:71:ec:22:91:87:bd:60: cb:05:90:78:15:69:de:5e:6c:20:0b:fc:9d:e8:51:b7:21:58: 4a:88:9b:36:0c:c8:19:68:7b:01:84:cd:65:6c:8a:16:86:8d: 90:e0:76:c3:e5:fa:b3:97:f9:b5:d5:6c:91:ad:b8:a1:54:ff: 3d:6f:d8:fa:ad:35:99:0c:b7:d3:4a:97:b9:94:67:33:45:01: 3e:65:e5:79:73:32:8f:35:7d:1c:8e:9d:dd:0f:70:82:15:cf: 64:3c:ab:8d:d8:95:a3:42:d1:75:9c:48:2f:ba:10:6b:3d:1d: fa:79:ea:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5MjgxMTAvBgNVBAUTKEY1QzlEMzBFOUQwNzcxQ0QwN0U1MUIyRTRBNTJCNTIy NTNBQkQwMjYwHhcNMjUxMjE4MTgxMjA4WhcNMjUxMjI1MTgxMjA4WjAYMRYwFAYD VQQDDA02OTQ0NDNmOC00ZjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8lYrrpCs1W2QqfISzuknphmWXBvW3s9seaaq0S7pj+C9AWu0ha6eID8/cjkI vaMFnB8aCPCTmoSiJGoVo3A9l0TauyjW44C7TPc36MRcEApafrcUjVYkErL54Ena kNnRzn+VM+AjS6f/JwlvtaF1i5aMiVl6wW9/Xp3eT42qKSofThK+YKWBUYXi98Gw CxMhaGSxvwuvPKIN8a0oKA1hbpS3ZGoVdMEWJXDFmqppvnEdbYCM8sK8txOYcD/F rUYjSVNIJejz3eUyvlPLGJdn0ObNxmNSNYWnZCFcAM3a4dsa1+iTgRwKo40hq2fQ 2DhJsYcFCmfgebLPhR7GM67ASwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFN6TLbc z7p4mw+JZmYYEyuh2ActMB8GA1UdIwQYMBaAFPXJ0w6dB3HNB+UbLkpStSJTq9Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODkyOC80REE3QkIyMDBC NUIxMUVBQTNFQkM2NTBDNEY5QUUwMi85Y25URHAwSGNjMEg1UnN1U2xLMUlsT3Iw Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzljblREcDBIY2MwSDVSc3VTbEsxSWxPcjBDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODkyOC80REE3QkIyMDBCNUIxMUVBQTNFQkM2NTBDNEY5QUUwMi85Y25URHAwSGNj MEg1UnN1U2xLMUlsT3IwQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTFMysaabeg99OZuDDwzj/IMwrbhutMWvbcL2HFTtUYTyrlIr3w/6g nDG4pnSwtSuRWrz5+8ZTEIfD4QKueMabN7mMjIQ9YnwLIFHxD16eTdqV3wpkixxx SWxFW236fIsNbe1x6oGv/rbtgYUgTUijWHXUcoJVSvSK6L1kRiAAscRibmaSUkiS 9HHsIpGHvWDLBZB4FWneXmwgC/yd6FG3IVhKiJs2DMgZaHsBhM1lbIoWho2Q4HbD 5fqzl/m11WyRrbihVP89b9j6rTWZDLfTSpe5lGczRQE+ZeV5czKPNX0cjp3dD3CC Fc9kPKuN2JWjQtF1nEgvuhBrPR36eeqC -----END CERTIFICATE-----Generated at Sat Dec 20 03:23:28 2025 by rpki-client