This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: 3PTs5ija9mO2CIPJv+kSxQy3WWdGHvjRWGxcayzp3/I= Subject key identifier: 8C:D3:0B:F0:C1:27:F3:B7:95:59:AA:68:71:8F:A5:AA:70:12:F3:60 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 6C Signing time: Wed 03 Dec 2025 05:09:35 +0000 Manifest this update: Wed 03 Dec 2025 05:09:34 +0000 Manifest next update: Wed 10 Dec 2025 05:09:34 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: S+enejukd7ppdnESlkrIVscfZC5OwDDeyjM1lXea6D4=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Dec 3 05:09:34 2025 GMT Not After : Dec 10 05:09:34 2025 GMT Subject: CN=692fc60f-124f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:83:4d:8d:59:d9:a5:b9:ed:38:06:0a:07:51: f8:cf:30:f6:8d:43:a9:23:73:0e:fa:12:82:9c:8d: e3:06:40:e7:d5:c7:d4:81:a9:66:57:e9:56:43:83: 1e:28:ba:7c:c3:ef:3c:3e:13:15:6c:87:4c:e1:47: 59:60:47:92:ce:0f:75:3a:3f:db:7c:bb:dd:60:b8: 53:f7:7a:66:6b:61:fd:a1:cc:ac:a5:5e:fd:da:5b: 3e:7c:2a:03:5c:45:94:34:06:97:a1:f2:95:97:ca: 3c:f6:3b:ef:98:3b:fa:52:35:0d:48:74:16:51:a8: c5:f4:2a:65:e1:5a:e3:11:85:ac:0c:ae:55:5d:69: 00:08:78:f7:4c:82:87:eb:3a:34:56:d3:3f:b0:fb: a5:86:89:44:b4:62:a6:e2:ed:13:95:1d:dd:65:82: de:97:43:9b:5d:d5:aa:4a:22:cf:8e:90:fd:ad:53: 56:9d:06:f4:75:77:29:19:2f:f8:33:f4:3d:71:6d: aa:7d:f4:c0:98:6e:f9:ba:08:31:99:98:3c:aa:32: 01:bd:fb:a9:e3:34:63:4c:62:c6:c1:3b:37:65:49: 27:bf:0d:6a:87:80:98:fb:e7:d9:07:ec:9a:89:6e: 34:0c:cd:5f:29:dd:83:8e:06:c9:ca:b6:f4:96:08: 39:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D3:0B:F0:C1:27:F3:B7:95:59:AA:68:71:8F:A5:AA:70:12:F3:60 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:a0:6a:cc:58:69:b4:bd:c1:12:47:da:09:f9:db:b8:b2:fd: ff:f4:77:e8:20:0b:fa:3b:3c:e4:79:65:c0:24:be:3b:90:3d: 1e:94:72:75:b6:bd:cd:18:29:02:74:b0:97:41:00:df:a0:61: e9:8d:70:2b:a6:b4:61:10:41:0a:af:ef:76:34:b7:ef:d7:a7: 36:63:e9:5f:43:89:95:cc:2b:2d:52:2c:6d:76:32:d7:f0:66: cf:43:54:6f:f5:38:a5:22:03:55:4e:0c:92:7a:d8:32:4c:f4: c7:6f:8d:65:c6:cb:b4:48:65:cd:eb:56:71:d5:4c:e9:57:ec: 64:e1:58:36:e9:05:5b:59:72:95:db:b4:25:df:3f:f2:e7:66: 37:3a:c5:91:e9:24:d9:40:cc:46:56:19:a4:44:fb:56:77:80: ad:a7:91:ac:7e:f1:56:55:82:7c:43:ae:cd:6d:eb:cd:52:8a: e8:b5:c6:ab:6e:dd:b3:d1:5d:1b:ec:e3:bb:57:b6:ed:ff:f1: 86:4e:1f:fa:28:ff:a8:48:2d:65:59:b5:3c:1a:91:aa:1f:b5: ac:1c:18:5e:ed:87:d0:a5:69:4d:86:ce:de:8d:79:94:f6:1b: 39:ab:8f:0d:70:7d:5d:86:56:87:38:88:82:6a:8a:f9:05:e3: 83:b6:a5:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTEyMDMwNTA5MzRaFw0yNTEyMTAwNTA5MzRaMBgxFjAUBgNV BAMTDTY5MmZjNjBmLTEyNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtg02NWdmlue04BgoHUfjPMPaNQ6kjcw76EoKcjeMGQOfVx9SBqWZX6VZDgx4o unzD7zw+ExVsh0zhR1lgR5LOD3U6P9t8u91guFP3emZrYf2hzKylXv3aWz58KgNc RZQ0Bpeh8pWXyjz2O++YO/pSNQ1IdBZRqMX0KmXhWuMRhawMrlVdaQAIePdMgofr OjRW0z+w+6WGiUS0Yqbi7ROVHd1lgt6XQ5td1apKIs+OkP2tU1adBvR1dykZL/gz 9D1xbap99MCYbvm6CDGZmDyqMgG9+6njNGNMYsbBOzdlSSe/DWqHgJj759kH7JqJ bjQMzV8p3YOOBsnKtvSWCDn/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjNML8MEn 87eVWapocY+lqnAS82AwHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RENCL0Y4M0FDNDk0Mjk0NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1Ri OHIwZVM2XzBBNW82aDAyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKigasxYabS9wRJH2gn527iy/f/0d+ggC/o7POR5ZcAkvjuQPR6UcnW2 vc0YKQJ0sJdBAN+gYemNcCumtGEQQQqv73Y0t+/XpzZj6V9DiZXMKy1SLG12Mtfw Zs9DVG/1OKUiA1VODJJ62DJM9MdvjWXGy7RIZc3rVnHVTOlX7GThWDbpBVtZcpXb tCXfP/LnZjc6xZHpJNlAzEZWGaRE+1Z3gK2nkax+8VZVgnxDrs1t681Siui1xqtu 3bPRXRvs47tXtu3/8YZOH/oo/6hILWVZtTwakaoftawcGF7th9ClaU2Gzt6NeZT2 Gzmrjw1wfV2GVoc4iIJqivkF44O2pc4= -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:33 2025 by rpki-client