This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft File: US3AbkHAiZokofyIXrNG5FMH80c.mft (raw, json) Hash identifier: Bs0fVw1O9hlj7eLiSpjGItopI2EVXxHXjFEShY38vic= Subject key identifier: 76:F1:90:C1:C2:FA:8C:2A:F8:F9:12:B8:43:22:5C:C1:86:5E:BA:55 Authority key identifier: 51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 Certificate issuer: /CN=A91BA4F2/serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Certificate serial: 09C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft Manifest number: 09BD Signing time: Mon 22 Dec 2025 19:22:45 +0000 Manifest this update: Mon 22 Dec 2025 19:22:45 +0000 Manifest next update: Mon 29 Dec 2025 19:22:45 +0000 Files and hashes: 1: US3AbkHAiZokofyIXrNG5FMH80c.crl (hash: dPNxRIaQr2tv61KzGbfQQN75E3ZFDd/Vjyhh1aZDtjY=) 2: 9EEA3006979411EA8C6FC25AC4F9AE02.roa (hash: Y4bw++TnnqHhnQXoIqONS+4c30WzzpJSk4du/GajLxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2500 (0x9c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA4F2, serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Validity Not Before: Dec 22 19:22:45 2025 GMT Not After : Dec 29 19:22:45 2025 GMT Subject: CN=69499a85-a4f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:26:42:a5:fd:cf:d3:2f:1f:ab:23:35:ea:93: 93:ba:03:95:14:60:07:36:87:3e:a6:0a:98:3d:a8: b8:e0:a3:2d:87:07:c9:da:e0:b7:33:c6:8e:c7:76: bf:e4:64:63:54:cc:c2:87:5b:bc:4f:cc:74:73:8c: 16:72:c1:d6:6a:a5:a6:03:a7:cb:fe:89:1e:43:7a: 7d:4f:1b:d3:a2:14:cd:53:5e:f9:1d:a0:1a:d0:da: 55:88:52:85:a8:69:74:cc:89:ba:09:cf:09:69:3e: 77:7c:17:aa:de:f6:d0:fd:e4:55:38:21:49:5f:15: a7:c9:a2:a9:59:4f:49:fe:24:37:f6:59:d4:62:4e: 64:38:53:9f:ee:58:43:30:59:71:46:c8:c6:eb:37: 99:b1:9b:3c:8a:1a:cb:f5:f5:d2:9c:ba:81:76:c9: ce:c5:8d:2d:f5:2f:fb:04:f4:5f:99:87:31:a2:d4: b2:7f:ee:f9:cd:b0:cd:f1:7f:58:fa:18:72:37:85: c7:3e:a8:e8:1a:7d:ee:f3:c6:8d:b1:03:ea:b3:53: 52:74:7d:ea:df:1a:bf:a7:f3:53:c5:c8:7f:27:29: 6d:93:9a:bd:4a:b1:87:f2:25:03:b8:a1:76:03:99: d5:f2:79:2e:fd:0c:1d:c1:3b:52:b2:12:b8:56:78: cd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F1:90:C1:C2:FA:8C:2A:F8:F9:12:B8:43:22:5C:C1:86:5E:BA:55 X509v3 Authority Key Identifier: keyid:51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:74:e3:5b:55:da:f1:50:4f:f2:85:8a:8f:ad:1c:27:90:e4: 03:11:dc:0f:bd:3c:d6:54:a2:92:fa:b8:10:f5:9b:46:36:e8: 6d:e0:79:77:48:6b:0f:ee:04:8c:fe:38:31:f6:e0:8e:32:c0: 78:89:fe:c0:e0:44:73:58:61:fb:c8:d3:cf:14:54:24:ce:51: 88:aa:74:69:fa:7e:29:e0:f3:de:80:1a:7e:e4:25:c6:8e:a7: b9:16:a9:9d:e1:06:8a:2c:cc:a1:71:60:84:af:68:1a:45:d7: 34:a9:0f:85:4b:ef:6a:47:0d:af:30:c2:cf:1f:25:f1:7b:e4: d3:0b:4b:16:a6:e0:af:6f:75:6d:3f:d8:3b:8f:b4:49:1c:9e: 63:1a:6a:9d:c6:9c:cb:2e:5c:7b:f3:4b:a2:99:5b:34:7c:cd: 2a:83:f4:78:98:73:2b:de:e7:0e:71:c4:aa:6a:d2:a0:77:e5: 69:cb:19:92:af:11:7c:a1:eb:58:40:05:10:87:56:db:f1:d4: f4:3e:02:3b:22:e5:59:79:3e:f3:fb:c4:3d:b0:8e:93:90:0b: 16:6a:e4:28:13:9f:56:4c:f2:9c:02:7b:7e:62:ae:1a:af:45: 84:49:03:bf:0c:8e:9e:df:5f:e8:e4:dd:64:f2:6e:7a:16:84: 16:52:56:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0RjIxMTAvBgNVBAUTKDUxMkRDMDZFNDFDMDg5OUEyNEExRkM4ODVFQjM0NkU0 NTMwN0YzNDcwHhcNMjUxMjIyMTkyMjQ1WhcNMjUxMjI5MTkyMjQ1WjAYMRYwFAYD VQQDDA02OTQ5OWE4NS1hNGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriZCpf3P0y8fqyM16pOTugOVFGAHNoc+pgqYPai44KMthwfJ2uC3M8aOx3a/ 5GRjVMzCh1u8T8x0c4wWcsHWaqWmA6fL/okeQ3p9TxvTohTNU175HaAa0NpViFKF qGl0zIm6Cc8JaT53fBeq3vbQ/eRVOCFJXxWnyaKpWU9J/iQ39lnUYk5kOFOf7lhD MFlxRsjG6zeZsZs8ihrL9fXSnLqBdsnOxY0t9S/7BPRfmYcxotSyf+75zbDN8X9Y +hhyN4XHPqjoGn3u88aNsQPqs1NSdH3q3xq/p/NTxch/Jyltk5q9SrGH8iUDuKF2 A5nV8nku/QwdwTtSshK4VnjNNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbxkMHC +owq+PkSuEMiXMGGXrpVMB8GA1UdIwQYMBaAFFEtwG5BwImaJKH8iF6zRuRTB/NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTRGMi8yQUVERUY5QTk3 OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWlab2tvZnlJWHJORzVGTUg4 MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTM0Fia0hBaVpva29meUlYck5HNUZNSDgwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTRGMi8yQUVERUY5QTk3OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWla b2tvZnlJWHJORzVGTUg4MGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJdONbVdrxUE/yhYqPrRwnkOQDEdwPvTzWVKKS+rgQ9ZtGNuht4Hl3 SGsP7gSM/jgx9uCOMsB4if7A4ERzWGH7yNPPFFQkzlGIqnRp+n4p4PPegBp+5CXG jqe5Fqmd4QaKLMyhcWCEr2gaRdc0qQ+FS+9qRw2vMMLPHyXxe+TTC0sWpuCvb3Vt P9g7j7RJHJ5jGmqdxpzLLlx780uimVs0fM0qg/R4mHMr3ucOccSqatKgd+VpyxmS rxF8oetYQAUQh1bb8dT0PgI7IuVZeT7z+8Q9sI6TkAsWauQoE59WTPKcAnt+Yq4a r0WESQO/DI6e31/o5N1k8m56FoQWUlbl -----END CERTIFICATE-----Generated at Tue Dec 23 05:01:51 2025 by rpki-client