This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft File: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft (raw, json) Hash identifier: WjBjhXZ5pCYvDuVLquFX3A39kMltI3OqHTgbKKCm3sQ= Subject key identifier: F7:40:89:74:B9:8F:85:E3:E3:11:3C:02:1B:A3:53:4C:C8:E4:76:1C Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Certificate serial: 05AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft Manifest number: 05A2 Signing time: Mon 22 Dec 2025 22:18:01 +0000 Manifest this update: Mon 22 Dec 2025 22:18:01 +0000 Manifest next update: Mon 29 Dec 2025 22:18:01 +0000 Files and hashes: 1: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl (hash: ZAppvEndfbP/IEESGh3tKFhLV8ul/s3grqwTwssB8j8=) 2: DEA2CCF8050511EEB4D8141FC4F9AE02.roa (hash: CWQZ2s8MFSjBmURLoXYowyPCs3y0c7wnZAfg2tROfa4=) 3: 567C8DB8354111ECBCC05B63C4F9AE02.roa (hash: bYFWsdvkvj/YP0lWqT722iQHX6ldCjoCu3l/f+mKfk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:18:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1452 (0x5ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA251, serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Validity Not Before: Dec 22 22:18:01 2025 GMT Not After : Dec 29 22:18:01 2025 GMT Subject: CN=6949c399-a64f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:29:fd:81:ab:da:eb:3b:ba:64:6d:4a:92:86: 23:f0:42:07:e5:78:07:b3:5b:ef:e3:e5:1a:95:73: f4:33:91:fb:5a:e0:d6:3f:a6:fa:ef:71:57:49:10: f6:dd:3a:78:a2:2d:05:74:49:c9:b9:e6:59:bc:2a: e9:cd:32:06:e7:a4:c4:b6:2f:06:8c:d0:11:21:48: ac:88:6c:d4:2a:6e:39:1b:37:72:d2:89:64:3d:70: 7e:bc:3e:1b:c0:a4:65:10:9d:ed:b5:f9:27:77:69: de:d5:29:44:6e:47:bc:e7:5b:de:7b:02:db:6f:62: 70:b6:54:07:90:e6:68:ae:9a:01:e5:de:54:73:bc: d0:96:49:f9:64:8d:2b:9e:bd:b2:e2:1c:16:83:7f: 69:64:b7:c2:f1:52:33:27:a0:8b:0b:e1:12:5f:e8: 40:db:4a:50:ce:31:b7:26:23:39:6b:1e:00:9f:b9: 65:0f:49:e0:60:e7:ab:66:1e:ae:7e:d6:3c:69:5e: 15:fa:2d:5d:38:f6:65:3f:99:88:f8:24:c1:c5:82: 57:45:44:49:a8:a6:50:39:fd:c4:a2:64:2b:d9:de: bb:75:48:5f:40:65:16:61:5d:94:89:be:a1:c2:fa: bd:5a:08:b1:e7:1a:2f:88:09:e3:53:2b:9e:cc:ec: 9a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:40:89:74:B9:8F:85:E3:E3:11:3C:02:1B:A3:53:4C:C8:E4:76:1C X509v3 Authority Key Identifier: keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:c7:84:cb:c1:1e:90:b7:b7:c3:93:37:b2:89:33:f5:d6:07: 14:80:40:79:08:5d:d8:c9:c6:63:51:85:a2:ec:12:57:f7:d1: 6c:96:37:7a:b5:4e:70:ec:28:15:32:86:e1:28:f4:8b:27:52: d4:46:74:22:04:a2:77:dc:a1:cc:04:d9:61:5c:c0:e3:69:d1: 37:ff:35:06:da:61:97:b2:e6:52:f9:4b:f8:c8:33:d3:5a:f5: 44:58:b3:d5:ef:90:fa:47:de:56:4b:ba:44:48:7d:23:81:47: 35:15:85:2f:97:7c:19:8a:5c:28:df:00:ae:7c:e4:ce:3d:4d: 0d:b9:f0:62:0f:7b:22:b3:4d:14:d2:ec:b1:14:6f:eb:ca:d7: 2c:9d:ce:d9:2e:98:35:d2:93:46:e8:82:c3:76:79:93:ba:9c: 84:3e:14:b5:2b:b8:db:24:b0:05:e5:73:27:c4:fe:5e:c7:3e: f5:98:a6:e0:00:51:72:37:ff:75:56:9f:cb:46:a8:2c:01:db: ab:13:49:15:3e:b1:f9:9c:63:5c:be:85:04:f5:15:97:75:13: 84:e5:b3:cf:46:1a:be:90:74:a4:71:63:3f:61:bc:b5:13:07: 1b:18:22:68:ee:45:a2:d7:ca:e8:e0:af:10:85:f3:f1:64:b3: 78:ff:46:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyNTExMTAvBgNVBAUTKDUzRDVEQjg3MEU1Q0NENDhFOThENzM1NjBEQkQ1RTY1 OTQ2QzJERDQwHhcNMjUxMjIyMjIxODAxWhcNMjUxMjI5MjIxODAxWjAYMRYwFAYD VQQDDA02OTQ5YzM5OS1hNjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6in9gava6zu6ZG1KkoYj8EIH5XgHs1vv4+UalXP0M5H7WuDWP6b673FXSRD2 3Tp4oi0FdEnJueZZvCrpzTIG56TEti8GjNARIUisiGzUKm45Gzdy0olkPXB+vD4b wKRlEJ3ttfknd2ne1SlEbke851veewLbb2JwtlQHkOZorpoB5d5Uc7zQlkn5ZI0r nr2y4hwWg39pZLfC8VIzJ6CLC+ESX+hA20pQzjG3JiM5ax4An7llD0ngYOerZh6u ftY8aV4V+i1dOPZlP5mI+CTBxYJXRURJqKZQOf3EomQr2d67dUhfQGUWYV2Uib6h wvq9Wgix5xoviAnjUyuezOyacwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdAiXS5 j4Xj4xE8AhujU0zI5HYcMB8GA1UdIwQYMBaAFFPV24cOXM1I6Y1zVg29XmWUbC3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTI1MS9EOTNENzk2MEY3 NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pVanBqWE5XRGIxZVpaUnNM ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U5WGJodzVjelVqcGpYTldEYjFlWlpSc0xkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTI1MS9EOTNENzk2MEY3NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pV anBqWE5XRGIxZVpaUnNMZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSx4TLwR6Qt7fDkzeyiTP11gcUgEB5CF3YycZjUYWi7BJX99Fsljd6 tU5w7CgVMobhKPSLJ1LURnQiBKJ33KHMBNlhXMDjadE3/zUG2mGXsuZS+Uv4yDPT WvVEWLPV75D6R95WS7pESH0jgUc1FYUvl3wZilwo3wCufOTOPU0NufBiD3sis00U 0uyxFG/rytcsnc7ZLpg10pNG6ILDdnmTupyEPhS1K7jbJLAF5XMnxP5exz71mKbg AFFyN/91Vp/LRqgsAdurE0kVPrH5nGNcvoUE9RWXdROE5bPPRhq+kHSkcWM/Yby1 EwcbGCJo7kWi18ro4K8QhfPxZLN4/0Y3 -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:31 2025 by rpki-client