This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: gNxoWYUpta4dnC5uxndjO/lbrDMzCrJgiDFvXy5splM= Subject key identifier: 4E:0E:59:DB:FD:68:82:F9:B7:8D:9C:FA:42:A3:CB:F2:1B:B9:D2:82 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 0186 Signing time: Tue 23 Dec 2025 02:40:10 +0000 Manifest this update: Tue 23 Dec 2025 02:40:10 +0000 Manifest next update: Tue 30 Dec 2025 02:40:10 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: mtil3PjnW63e3KHTIhJt7p5JcQY6Vjx7A1a9YqNYim8=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Dec 23 02:40:10 2025 GMT Not After : Dec 30 02:40:10 2025 GMT Subject: CN=694a010a-c346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b6:b9:4e:d9:82:b3:82:5f:71:3e:5e:bc:37: 65:99:33:46:38:99:9a:65:9e:c6:b1:fb:28:d6:a6: 96:67:41:15:b5:4e:61:94:61:c0:b7:56:37:1d:c3: 38:46:bf:9a:8c:15:fe:dc:21:15:8c:b9:fa:c9:5a: 07:9f:a8:ae:4f:15:4f:73:3c:92:7f:4b:1a:47:50: 07:ce:d7:07:ca:5c:d9:95:01:6b:0c:37:48:60:dd: 36:0c:04:21:48:aa:93:3f:5a:b8:33:05:05:2e:0d: 21:6c:11:9d:a7:4c:f2:23:cf:04:be:a9:77:f1:6a: 6b:3c:04:ba:55:c3:11:47:d0:13:bf:f9:4e:5e:a4: ba:3a:34:e6:1f:99:20:56:2b:77:59:42:9d:16:e1: 16:e4:ce:10:02:75:38:97:a9:04:ac:13:3c:a9:a9: 48:c1:0f:ba:55:03:a5:32:54:d3:46:6b:2e:63:42: 09:aa:6b:c5:dd:94:23:9b:7b:99:f0:b3:8f:04:6f: e6:f8:01:3e:1b:8f:05:7a:f3:81:72:6a:18:70:15: 01:d1:14:ee:16:5f:d8:5d:de:78:b8:40:1f:54:16: f0:b1:58:fc:db:2b:10:32:d3:3f:9f:27:51:2d:39: 0a:b7:e4:23:88:2b:74:86:4c:06:cf:25:85:1b:48: 50:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:0E:59:DB:FD:68:82:F9:B7:8D:9C:FA:42:A3:CB:F2:1B:B9:D2:82 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:90:4e:90:21:cd:1f:2a:b8:5d:f6:09:1a:93:43:8a:f6:6d: b8:24:41:6c:1f:81:ac:66:da:a5:9f:71:ec:98:e6:e8:c1:57: aa:80:ba:3d:fb:3d:b8:87:82:2b:b4:ee:f5:4e:e8:d1:8e:f0: 1f:2a:ab:99:2c:e7:79:dc:c6:9e:e7:d7:91:4d:f9:78:a1:f0: 06:70:69:23:24:ed:a4:96:f5:f7:4c:f8:05:2c:74:33:66:8d: ab:19:86:61:d1:b2:d8:1b:d1:22:2b:26:6f:fb:d6:59:e3:a6: d0:d7:02:a3:76:bb:cc:61:35:db:98:e9:52:2a:c9:3a:a3:2b: af:c4:56:29:57:86:c7:62:23:3c:2c:80:8d:9a:3b:e9:a1:93: 5a:23:3c:ea:c0:f9:6a:03:6e:31:9c:d4:cb:64:89:08:2c:1c: 4b:39:7f:d2:17:33:47:71:9f:5b:2e:85:5f:2d:a2:e3:18:1d: 75:ec:f1:22:2a:b7:aa:21:60:88:97:d4:f3:26:93:db:ee:ad: 0b:66:a3:f6:43:09:b4:63:c4:7b:d6:7e:17:4b:63:7c:0d:37: 64:95:96:a8:c9:dd:0e:2f:96:c4:56:09:f8:98:88:6b:f1:bc: 93:00:0d:b4:8b:b3:40:c4:78:54:73:58:ab:90:d1:f1:4a:45: 04:e6:ff:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUxMjIzMDI0MDEwWhcNMjUxMjMwMDI0MDEwWjAYMRYwFAYD VQQDDA02OTRhMDEwYS1jMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAura5TtmCs4JfcT5evDdlmTNGOJmaZZ7Gsfso1qaWZ0EVtU5hlGHAt1Y3HcM4 Rr+ajBX+3CEVjLn6yVoHn6iuTxVPczySf0saR1AHztcHylzZlQFrDDdIYN02DAQh SKqTP1q4MwUFLg0hbBGdp0zyI88Evql38WprPAS6VcMRR9ATv/lOXqS6OjTmH5kg Vit3WUKdFuEW5M4QAnU4l6kErBM8qalIwQ+6VQOlMlTTRmsuY0IJqmvF3ZQjm3uZ 8LOPBG/m+AE+G48FevOBcmoYcBUB0RTuFl/YXd54uEAfVBbwsVj82ysQMtM/nydR LTkKt+QjiCt0hkwGzyWFG0hQJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4OWdv9 aIL5t42c+kKjy/IbudKCMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJkE6QIc0fKrhd9gkak0OK9m24JEFsH4GsZtqln3HsmObowVeqgLo9 +z24h4IrtO71TujRjvAfKquZLOd53Mae59eRTfl4ofAGcGkjJO2klvX3TPgFLHQz Zo2rGYZh0bLYG9EiKyZv+9ZZ46bQ1wKjdrvMYTXbmOlSKsk6oyuvxFYpV4bHYiM8 LICNmjvpoZNaIzzqwPlqA24xnNTLZIkILBxLOX/SFzNHcZ9bLoVfLaLjGB117PEi KreqIWCIl9TzJpPb7q0LZqP2Qwm0Y8R71n4XS2N8DTdklZaoyd0OL5bEVgn4mIhr 8byTAA20i7NAxHhUc1irkNHxSkUE5v+l -----END CERTIFICATE-----Generated at Wed Dec 24 15:59:05 2025 by rpki-client