This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft File: o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft (raw, json) Hash identifier: rZwkdqAQRhYlsfi2RaryYO5mdd34DpxvgpxFjsgDLgM= Subject key identifier: 61:14:A1:C9:3C:FC:C7:8C:88:CA:48:BE:BE:CF:69:07:BF:09:B9:C9 Authority key identifier: A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 Certificate issuer: /CN=A91FEF3B/serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft Manifest number: 9F Signing time: Fri 19 Dec 2025 05:23:44 +0000 Manifest this update: Fri 19 Dec 2025 05:23:43 +0000 Manifest next update: Fri 26 Dec 2025 05:23:43 +0000 Files and hashes: 1: o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl (hash: F6/utaYoJBTMoaraKsrSeVKSGcaILdMz24rvlSX+eR0=) 2: 10800248E9C711EFA1589312C4F9AE02.roa (hash: NgHWuWasRdq7/Tb6jtbOAPkZk5G59CnEADx3vts0M7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEF3B, serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Validity Not Before: Dec 19 05:23:43 2025 GMT Not After : Dec 26 05:23:43 2025 GMT Subject: CN=6944e160-68af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:1d:a6:1a:a2:34:54:ae:e9:1b:66:ce:f4:0c: b9:f1:cf:85:1e:ab:a2:c3:e2:d4:87:54:7b:28:87: 9d:57:f8:85:48:d2:1a:9b:48:e5:b3:8b:8b:de:8e: 96:ba:f9:80:02:e2:87:05:07:10:ba:0b:bc:c5:fb: e3:64:25:59:0e:50:81:f4:0b:34:70:ba:1b:12:71: 3a:4a:9b:d5:8d:a4:02:38:c4:41:95:1e:be:b8:7e: b1:5f:af:a0:75:c9:b9:c7:4b:47:b4:f6:02:7c:e2: 86:65:15:f4:b5:9e:7a:da:e9:d4:44:30:3c:cd:56: 55:25:6b:cb:80:f3:cf:2e:ed:5a:43:62:95:d8:78: 77:f9:c2:27:23:02:d9:d1:17:0c:0b:47:9c:90:79: 2a:a1:fb:5b:8e:19:47:09:46:68:dc:a0:6b:e2:ef: 85:64:2b:d2:8c:ee:58:df:49:84:ac:c8:db:65:1c: 90:4f:61:04:f2:60:f5:70:90:a3:d0:65:a0:c4:90: a2:41:e2:a9:a8:a9:e9:1b:a7:02:cd:1a:06:17:69: a2:0e:05:b3:76:c0:a5:5a:15:f1:c7:f6:87:7f:5a: a6:d1:e0:70:1c:73:d4:63:12:23:bd:85:de:43:44: c1:69:e6:21:cb:8b:da:77:6a:95:a2:c2:fc:5f:e3: e4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:14:A1:C9:3C:FC:C7:8C:88:CA:48:BE:BE:CF:69:07:BF:09:B9:C9 X509v3 Authority Key Identifier: keyid:A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:1c:79:1b:25:60:0e:7c:a5:af:98:36:06:b5:61:68:bc:d3: da:c0:f8:f7:d2:8a:f8:6b:cf:df:90:21:18:9a:ea:d8:63:e3: 92:82:a4:bb:6a:f7:d6:0b:de:5d:4c:91:46:23:89:22:18:c7: cf:9b:0b:a6:41:c4:2e:34:1b:ab:a0:86:72:cc:bc:da:d1:84: 17:fb:83:ec:e7:65:81:6d:fc:7f:eb:e7:3d:fe:0b:95:34:2d: ec:0f:63:57:fb:5f:63:22:d6:a2:7a:17:bd:6d:06:96:9e:53: 79:30:d7:bf:54:b6:28:58:ea:ef:06:b0:43:ee:68:8f:c4:a4: a8:e3:da:e2:af:5e:50:71:ff:bd:de:fd:b0:b8:65:f4:56:a2: 02:e4:aa:d3:98:ce:e5:2d:d0:d2:fc:94:60:7e:89:6a:79:fa: aa:89:0d:44:45:ac:ea:ee:12:fc:05:cd:d5:c0:c5:66:cd:08: dd:16:21:61:67:ca:87:63:e5:cc:ca:87:1b:63:4a:f6:bb:42: dd:38:7d:44:fd:31:7c:52:68:0e:53:a7:80:51:75:4a:82:77: e0:8e:16:44:88:38:ee:ff:27:f9:58:42:b0:c9:7e:45:e6:b8: e4:b8:90:b9:01:1a:c0:71:76:b3:61:46:23:a9:a5:7a:86:82: 44:f1:9a:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGM0IxMTAvBgNVBAUTKEEzOEQ0ODdCRDVEOUE4QTg5NDgwMjc0RkU2RjdDMDYx QzYyNEJDQzAwHhcNMjUxMjE5MDUyMzQzWhcNMjUxMjI2MDUyMzQzWjAYMRYwFAYD VQQDDA02OTQ0ZTE2MC02OGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiB2mGqI0VK7pG2bO9Ay58c+FHquiw+LUh1R7KIedV/iFSNIam0jls4uL3o6W uvmAAuKHBQcQugu8xfvjZCVZDlCB9As0cLobEnE6SpvVjaQCOMRBlR6+uH6xX6+g dcm5x0tHtPYCfOKGZRX0tZ562unURDA8zVZVJWvLgPPPLu1aQ2KV2Hh3+cInIwLZ 0RcMC0eckHkqoftbjhlHCUZo3KBr4u+FZCvSjO5Y30mErMjbZRyQT2EE8mD1cJCj 0GWgxJCiQeKpqKnpG6cCzRoGF2miDgWzdsClWhXxx/aHf1qm0eBwHHPUYxIjvYXe Q0TBaeYhy4vad2qVosL8X+PkxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGEUock8 /MeMiMpIvr7PaQe/CbnJMB8GA1UdIwQYMBaAFKONSHvV2aiolIAnT+b3wGHGJLzA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUYzQi9BQzc2MjIwMEU5 QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi9vNDFJZTlYWnFLaVVnQ2RQNXZmQVljWWt2 TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL280MUllOVhacUtpVWdDZFA1dmZBWWNZa3ZNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUYzQi9BQzc2MjIwMEU5QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi9vNDFJZTlYWnFL aVVnQ2RQNXZmQVljWWt2TUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTHHkbJWAOfKWvmDYGtWFovNPawPj30or4a8/fkCEYmurYY+OSgqS7 avfWC95dTJFGI4kiGMfPmwumQcQuNBuroIZyzLza0YQX+4Ps52WBbfx/6+c9/guV NC3sD2NX+19jItaiehe9bQaWnlN5MNe/VLYoWOrvBrBD7miPxKSo49rir15Qcf+9 3v2wuGX0VqIC5KrTmM7lLdDS/JRgfolqefqqiQ1ERazq7hL8Bc3VwMVmzQjdFiFh Z8qHY+XMyocbY0r2u0LdOH1E/TF8UmgOU6eAUXVKgnfgjhZEiDju/yf5WEKwyX5F 5rjkuJC5ARrAcXazYUYjqaV6hoJE8ZqN -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:01 2025 by rpki-client