This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: 3MxJWdzXnsv3uT89RNHKrcuVMHhoaygaxjxkw8ZfOzc= Subject key identifier: E2:54:1E:A2:C3:C5:EF:19:D5:2F:86:28:A7:C1:63:B7:4A:FA:FF:46 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 01F8 Signing time: Fri 19 Dec 2025 01:42:45 +0000 Manifest this update: Fri 19 Dec 2025 01:42:44 +0000 Manifest next update: Fri 26 Dec 2025 01:42:44 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: V7pfJuz4Zhw9/rMkzgIVRQCQbCVDFD8TEJTUpJE+qpc=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: 3MNDiBeknSHzY93vsrPzAAHGYu/SDVnN9ctSXpKt+Ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Dec 19 01:42:44 2025 GMT Not After : Dec 26 01:42:44 2025 GMT Subject: CN=6944ad95-b6f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a0:57:4e:04:e7:ff:53:46:cf:4c:a5:ff:fb: 8f:de:ac:e6:8a:c8:fb:10:99:3d:d6:df:20:4f:e5: 68:a0:ec:59:bc:b5:07:80:66:aa:7d:2d:40:d1:85: 42:4b:17:0c:8e:75:14:2a:21:44:6b:37:c2:93:96: b3:58:6c:4d:88:c9:ba:c5:2c:65:c4:da:a0:0f:5a: c0:b9:1a:60:73:a3:11:f4:3f:52:65:92:5c:72:8b: d9:81:24:91:31:35:be:c4:95:0c:1b:f7:2d:14:32: 06:89:35:35:32:ef:9c:57:54:a5:f6:cb:50:e3:81: 05:51:bb:c5:e8:31:a3:ac:ad:01:b0:9d:fc:63:6d: 3a:12:2e:d3:f3:5f:37:79:d3:ab:52:67:9f:b3:59: 3a:20:30:e9:c8:b9:c6:18:1c:b1:06:95:01:b5:6e: 8b:1f:e7:d4:75:27:48:e9:12:93:99:d8:15:b0:31: ad:2e:ea:ce:6e:3f:27:4c:0f:df:c8:7e:01:89:41: 60:b7:51:1f:75:7b:ae:c8:50:b9:25:fb:04:52:29: 26:18:6a:bd:09:38:18:98:fa:91:8c:a8:c5:64:b4: 19:6c:d0:ba:de:6c:b2:90:a0:ca:67:cb:99:f5:eb: ff:7e:ca:29:3c:99:a8:b3:7b:0d:e0:5c:2c:65:34: e3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:54:1E:A2:C3:C5:EF:19:D5:2F:86:28:A7:C1:63:B7:4A:FA:FF:46 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:98:39:0c:24:b1:87:66:16:a3:19:1e:1d:07:36:15:d1:7a: 7c:c3:2d:06:bc:19:98:7b:bd:9b:c9:a9:24:61:30:50:bf:d0: 3e:ea:db:af:a2:34:63:45:39:3f:c9:c2:1c:b7:02:19:c3:3f: 11:f6:3a:08:2a:58:96:5c:f4:2c:cc:8c:9d:0e:3b:78:38:29: 31:54:8f:ca:52:2c:ac:0b:94:34:5c:d4:a2:c3:d0:38:7d:be: 21:fb:dd:5c:78:f3:16:fb:82:9c:fb:3c:84:53:d1:4e:67:4e: 6e:b3:c9:0d:92:95:b4:64:d1:d9:ec:f8:1f:fe:ed:78:6d:e9: c6:0a:d6:f0:03:79:8c:69:5a:2b:4f:00:41:97:33:44:17:35: b3:41:ac:70:95:3c:a5:15:90:fb:98:89:72:a1:59:d0:a3:d0: 99:ec:ea:0a:b7:e0:a2:8e:90:c5:32:8b:c9:1a:11:ae:15:6d: b0:04:66:d7:ba:fb:24:eb:49:0c:5e:9e:84:b6:c0:0f:e3:c5: ed:dc:dd:47:30:68:c4:8b:c7:27:6f:ed:f4:04:a3:b0:58:0d: 1b:58:46:c5:ef:01:a7:c8:32:20:36:07:e0:82:e2:cf:05:23: f2:cd:4c:5a:c1:ec:a6:62:f3:26:8d:dc:68:b6:fa:ec:dc:b4: 9e:f0:c0:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUxMjE5MDE0MjQ0WhcNMjUxMjI2MDE0MjQ0WjAYMRYwFAYD VQQDDA02OTQ0YWQ5NS1iNmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKBXTgTn/1NGz0yl//uP3qzmisj7EJk91t8gT+VooOxZvLUHgGaqfS1A0YVC SxcMjnUUKiFEazfCk5azWGxNiMm6xSxlxNqgD1rAuRpgc6MR9D9SZZJccovZgSSR MTW+xJUMG/ctFDIGiTU1Mu+cV1Sl9stQ44EFUbvF6DGjrK0BsJ38Y206Ei7T8183 edOrUmefs1k6IDDpyLnGGByxBpUBtW6LH+fUdSdI6RKTmdgVsDGtLurObj8nTA/f yH4BiUFgt1EfdXuuyFC5JfsEUikmGGq9CTgYmPqRjKjFZLQZbNC63myykKDKZ8uZ 9ev/fsopPJmos3sN4FwsZTTjrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJUHqLD xe8Z1S+GKKfBY7dK+v9GMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxmDkMJLGHZhajGR4dBzYV0Xp8wy0GvBmYe72byakkYTBQv9A+6tuv ojRjRTk/ycIctwIZwz8R9joIKliWXPQszIydDjt4OCkxVI/KUiysC5Q0XNSiw9A4 fb4h+91cePMW+4Kc+zyEU9FOZ05us8kNkpW0ZNHZ7Pgf/u14benGCtbwA3mMaVor TwBBlzNEFzWzQaxwlTylFZD7mIlyoVnQo9CZ7OoKt+CijpDFMovJGhGuFW2wBGbX uvsk60kMXp6EtsAP48Xt3N1HMGjEi8cnb+30BKOwWA0bWEbF7wGnyDIgNgfgguLP BSPyzUxaweymYvMmjdxotvrs3LSe8MC1 -----END CERTIFICATE-----Generated at Fri Dec 19 19:21:10 2025 by rpki-client