This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: gIsdQs+VOxTaSfb2w7Pz59KQaJwVBwK+STmulmDGp78= Subject key identifier: 20:5A:DB:F9:80:E4:A4:1B:B7:60:75:96:40:24:DF:AD:A6:CC:2E:BD Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 22D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 229F Signing time: Mon 22 Dec 2025 15:41:01 +0000 Manifest this update: Mon 22 Dec 2025 15:41:00 +0000 Manifest next update: Mon 29 Dec 2025 15:41:00 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: 8tHYsOjF0Fv094aPZStD3SKzNxhM0EoYJvAK20XV4Fg=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: KdmEZEpKoLyIMn6+XZO0IZiKVzRjxKxZXmexqgggUFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8913 (0x22d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Dec 22 15:41:00 2025 GMT Not After : Dec 29 15:41:00 2025 GMT Subject: CN=6949668d-a429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9b:58:e1:3f:5c:8c:30:91:ec:85:fa:f2:0e: 71:d8:58:72:7b:36:3d:81:02:48:b8:d3:f6:c3:e7: c6:24:f3:3c:6f:2e:7b:07:e7:bd:da:86:64:31:4f: 79:ef:42:55:7c:9c:12:39:6d:ce:ae:37:88:c3:48: 9f:88:57:c9:a1:c5:35:7d:ea:6e:2b:77:23:b2:60: 81:3e:f6:c7:21:29:bf:21:d7:2b:8d:7d:09:bf:c0: 30:89:a9:0e:32:aa:89:6e:ab:4f:7c:2c:5e:2b:b7: 2f:38:80:42:1f:73:ba:c0:1d:f3:0e:0e:91:79:0c: 25:5a:bb:85:b4:db:db:b1:f2:b6:2c:76:9b:7f:9d: be:c0:ab:86:6a:f6:71:3b:92:63:4a:84:c6:6c:a0: f8:4e:89:37:b1:49:c5:d9:bf:b8:b4:f2:7e:e1:e0: 33:9b:bd:05:06:69:74:11:e0:ac:33:69:74:80:16: bc:6d:9d:f9:4f:5a:9d:85:df:12:f6:02:81:26:75: 31:82:71:3a:8e:03:13:54:65:80:6e:d9:5f:64:bb: 66:e5:57:5e:fe:c5:61:85:32:1b:b3:8b:de:fd:d3: 06:40:bb:2e:a8:31:d6:22:c0:36:f7:01:29:92:41: fc:cc:e9:9c:f9:1d:c8:74:08:b4:5b:6b:8c:24:9b: 02:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:5A:DB:F9:80:E4:A4:1B:B7:60:75:96:40:24:DF:AD:A6:CC:2E:BD X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:f6:9c:c8:42:21:03:71:21:06:76:37:d3:84:03:78:53:19: 59:3d:c6:f7:82:c9:6c:f6:64:1a:a4:3b:13:a8:df:af:d9:a7: 33:84:dd:33:be:f7:d8:ed:40:0a:2b:f0:b0:56:a6:81:2d:be: f9:2a:f8:a4:ad:1d:fd:ea:33:c1:bb:f7:f5:17:7a:7d:22:72: 1b:99:ab:6f:10:29:d6:d8:f9:76:29:5b:fd:80:8a:3a:e0:b2: b0:48:b7:3a:62:5d:b1:f5:60:5e:be:89:58:66:30:88:4d:bb: d5:92:ff:b4:ff:4d:0a:5c:02:57:cb:88:4f:ce:df:2e:fe:fb: b4:fe:9f:1e:fd:9b:f2:37:a7:fd:7e:a4:13:1e:53:ce:a2:ed: b3:cf:04:94:c2:56:c3:d5:53:aa:45:81:81:d8:1c:26:3e:92: 24:a2:29:ed:40:cd:4a:11:51:f9:fc:2c:5c:96:eb:d9:a8:a6: d8:9b:bd:28:e7:d3:33:7d:28:85:6f:36:df:01:f9:68:2d:73: ab:50:b7:6a:7e:33:ca:e9:8e:57:27:67:4c:17:ce:81:5f:89: 75:33:ec:27:90:07:ef:d6:ec:a6:a8:87:77:9b:39:ba:cc:7c: 9c:e9:ef:f1:b8:7d:e6:4a:e4:4d:7e:53:3b:05:84:50:fe:5f: d3:2e:f2:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICItEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjUxMjIyMTU0MTAwWhcNMjUxMjI5MTU0MTAwWjAYMRYwFAYD VQQDDA02OTQ5NjY4ZC1hNDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZtY4T9cjDCR7IX68g5x2FhyezY9gQJIuNP2w+fGJPM8by57B+e92oZkMU95 70JVfJwSOW3OrjeIw0ifiFfJocU1fepuK3cjsmCBPvbHISm/IdcrjX0Jv8AwiakO MqqJbqtPfCxeK7cvOIBCH3O6wB3zDg6ReQwlWruFtNvbsfK2LHabf52+wKuGavZx O5JjSoTGbKD4Tok3sUnF2b+4tPJ+4eAzm70FBml0EeCsM2l0gBa8bZ35T1qdhd8S 9gKBJnUxgnE6jgMTVGWAbtlfZLtm5Vde/sVhhTIbs4ve/dMGQLsuqDHWIsA29wEp kkH8zOmc+R3IdAi0W2uMJJsCOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBa2/mA 5KQbt2B1lkAk362mzC69MB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx9pzIQiEDcSEGdjfThAN4UxlZPcb3gsls9mQapDsTqN+v2aczhN0z vvfY7UAKK/CwVqaBLb75KvikrR396jPBu/f1F3p9InIbmatvECnW2Pl2KVv9gIo6 4LKwSLc6Yl2x9WBevolYZjCITbvVkv+0/00KXAJXy4hPzt8u/vu0/p8e/ZvyN6f9 fqQTHlPOou2zzwSUwlbD1VOqRYGB2BwmPpIkointQM1KEVH5/CxcluvZqKbYm70o 59MzfSiFbzbfAfloLXOrULdqfjPK6Y5XJ2dMF86BX4l1M+wnkAfv1uymqId3mzm6 zHyc6e/xuH3mSuRNflM7BYRQ/l/TLvKC -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:16 2025 by rpki-client