This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: /JMZJzjs+gF7152ulP5T9CoHUkqcjnJupwGJSBcOpKc= Subject key identifier: 50:93:59:E6:9C:EA:FB:05:31:35:0D:65:DC:BC:6B:86:88:2F:4E:D0 Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 351B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 3507 Signing time: Wed 24 Dec 2025 14:28:46 +0000 Manifest this update: Wed 24 Dec 2025 14:28:45 +0000 Manifest next update: Wed 31 Dec 2025 14:28:45 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: l2QfNXykZQmzeuxX1R/OuOUBCol9MGCCq42Kz58JXwE=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: 9sEgtc+Sp4Uok1SqtxGHbFLBelwmukEEkeYE5w5yi/o=) 3: D4A8FF0273ED11F08E63C02DC4F9AE02.roa (hash: ApP9kmn+5JHiG5SuT5S92MP3i+OCCKbJEPxMhqV6acY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 14:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13595 (0x351b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Dec 24 14:28:45 2025 GMT Not After : Dec 31 14:28:45 2025 GMT Subject: CN=694bf89e-1464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e1:9b:e0:2b:8c:ab:bc:53:2a:02:bf:96:83: 52:df:2b:84:f6:de:cf:84:a7:d8:ac:47:2f:87:0b: 3b:b8:73:a2:68:a8:a1:8d:77:3e:7a:4f:30:43:94: 91:c1:f6:b7:51:b3:ab:b9:cf:40:40:e1:d7:5b:8c: 91:f3:ad:46:e9:f1:89:8d:3c:98:3a:e2:6b:f0:2a: 9e:bb:6a:15:3a:4e:ff:0e:41:49:88:89:ed:e2:f6: 35:35:36:33:2d:52:9f:8e:7f:c8:40:8f:2c:a5:3c: d9:1c:2b:d3:81:0c:c4:5f:12:b9:6a:4c:c6:cc:86: 74:ef:42:16:fc:ac:72:8d:68:e4:3f:be:11:b9:ea: a2:f3:22:29:64:9d:7b:37:81:25:8d:d1:e8:65:fe: 20:f8:3c:0b:5c:1a:9b:95:0e:1d:77:7a:22:99:3e: 0d:e2:18:17:06:2e:23:ea:d4:69:3e:aa:13:2d:3f: 9e:a7:5c:46:c8:8f:e1:85:a9:b5:91:45:01:57:dc: 02:e3:a2:cf:bb:dc:c1:89:8a:a9:f2:d2:97:79:64: 2d:3f:18:23:02:ce:51:5a:cb:a3:75:d2:e9:b5:ea: 2f:9d:a4:54:b0:c6:d7:96:51:89:86:59:d2:c1:17: 35:ee:a2:1c:ca:72:8c:6a:23:ed:f5:93:12:69:de: 87:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:93:59:E6:9C:EA:FB:05:31:35:0D:65:DC:BC:6B:86:88:2F:4E:D0 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:56:e6:86:f8:78:0e:8a:30:d2:51:7f:d8:d6:32:8f:3f:d3: 77:67:4d:74:1b:f5:cf:d2:ad:df:aa:54:c4:0e:01:b7:6e:ca: 91:f5:24:aa:00:1e:5c:80:a2:83:74:71:f7:0b:d1:33:7c:81: d1:aa:24:38:84:93:8d:af:d6:46:cc:38:ee:82:ef:39:ab:96: dd:df:a3:61:72:93:80:eb:ca:2d:a3:91:86:66:03:2b:b8:19: 0a:c6:d0:2f:f1:e1:e6:7b:26:0a:37:ba:d2:5c:28:35:00:2f: 08:4e:b8:7f:03:84:74:98:e6:aa:de:27:b5:b2:77:1e:cf:2a: 8e:f4:cf:11:61:59:de:3d:0c:fd:2b:5f:24:6e:12:11:00:e7: 21:b4:f1:d7:b4:c9:af:6c:6e:1b:94:6c:c8:fe:93:41:57:9b: 0d:b2:3f:c1:79:59:2a:a2:93:35:41:da:ca:5c:8d:0f:9c:d5: cb:5b:f3:77:99:f5:18:c1:40:b4:f9:21:54:d9:bc:a1:09:76: 52:b7:21:72:01:24:7d:7a:6a:47:84:1f:9c:0e:7c:1d:d7:26: ac:7b:91:ed:c0:40:e6:d8:58:15:38:f0:aa:a5:b0:0c:f9:dd: 77:99:0c:8a:2d:1f:a0:2c:51:53:55:fd:dd:66:fa:11:18:58: 0d:3c:fc:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjUxMjI0MTQyODQ1WhcNMjUxMjMxMTQyODQ1WjAYMRYwFAYD VQQDDA02OTRiZjg5ZS0xNDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuGb4CuMq7xTKgK/loNS3yuE9t7PhKfYrEcvhws7uHOiaKihjXc+ek8wQ5SR wfa3UbOruc9AQOHXW4yR861G6fGJjTyYOuJr8Cqeu2oVOk7/DkFJiInt4vY1NTYz LVKfjn/IQI8spTzZHCvTgQzEXxK5akzGzIZ070IW/KxyjWjkP74Rueqi8yIpZJ17 N4EljdHoZf4g+DwLXBqblQ4dd3oimT4N4hgXBi4j6tRpPqoTLT+ep1xGyI/hham1 kUUBV9wC46LPu9zBiYqp8tKXeWQtPxgjAs5RWsujddLpteovnaRUsMbXllGJhlnS wRc17qIcynKMaiPt9ZMSad6HKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCTWeac 6vsFMTUNZdy8a4aIL07QMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClVuaG+HgOijDSUX/Y1jKPP9N3Z010G/XP0q3fqlTEDgG3bsqR9SSq AB5cgKKDdHH3C9EzfIHRqiQ4hJONr9ZGzDjugu85q5bd36NhcpOA68oto5GGZgMr uBkKxtAv8eHmeyYKN7rSXCg1AC8ITrh/A4R0mOaq3ie1sncezyqO9M8RYVnePQz9 K18kbhIRAOchtPHXtMmvbG4blGzI/pNBV5sNsj/BeVkqopM1QdrKXI0PnNXLW/N3 mfUYwUC0+SFU2byhCXZStyFyASR9empHhB+cDnwd1yase5HtwEDm2FgVOPCqpbAM +d13mQyKLR+gLFFTVf3dZvoRGFgNPPw/ -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:02 2025 by rpki-client