This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft File: u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft (raw, json) Hash identifier: bstdnlImtu63+p60WA9e68OTJmu0fw/9PSurqaa1EIo= Subject key identifier: F7:23:CD:20:BF:E6:F4:2E:54:87:43:5A:D2:22:0B:21:28:AD:B2:C8 Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 Certificate issuer: /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft Manifest number: 010E Signing time: Tue 23 Dec 2025 03:57:42 +0000 Manifest this update: Tue 23 Dec 2025 03:57:42 +0000 Manifest next update: Tue 30 Dec 2025 03:57:42 +0000 Files and hashes: 1: u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl (hash: nH/JM71OM6MeXlSQMJzWMwjm+2OblBR3786m7cQlkdA=) 2: 4D189DD4728311EFA9CECE43C4F9AE02.roa (hash: Ge+55CQegGWCZISlkeWVyEDQbw8xhE1lFYLjXYnwl5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Validity Not Before: Dec 23 03:57:42 2025 GMT Not After : Dec 30 03:57:42 2025 GMT Subject: CN=694a1336-222d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:90:8a:c0:a1:e2:fd:66:e1:f5:a0:75:07:32: 46:6d:d3:27:48:71:78:0d:18:7c:db:d0:06:09:f6: 77:09:55:d3:b7:89:f6:0f:7d:4c:cf:83:74:9a:8a: 81:0f:04:2b:46:06:0e:a3:0d:32:2e:43:cc:f3:7e: 4a:35:dd:1e:8d:a3:b1:0e:00:1f:85:dc:61:0d:ae: b3:97:bd:cc:3e:10:a7:11:b2:09:7e:97:53:10:17: 59:3a:81:98:9f:df:69:36:1f:94:f2:87:c6:62:b6: eb:ca:04:b0:0f:23:f9:3e:be:d9:96:c8:10:a2:29: a6:4e:60:ea:8e:65:1d:72:79:fc:61:0d:39:0d:d4: 19:87:27:7a:8e:ad:48:f3:12:80:d4:f7:aa:53:e4: 0b:eb:7e:11:76:3c:f7:24:e7:88:39:4e:81:fe:95: 6d:7e:ad:33:1d:82:c0:1b:a5:c7:bc:e2:5a:9d:2d: 90:7f:28:d2:e7:82:62:73:c0:4b:c0:c8:f6:fb:ca: d2:58:56:5e:e2:7e:2c:5e:2c:c3:da:7e:29:f2:59: 3a:91:7d:79:1e:8a:31:b0:a3:02:b3:72:0c:a1:c9: 6c:b2:73:4a:e3:8b:bd:22:49:c3:4b:01:87:98:88: ec:f4:a9:d8:fd:b8:8a:bd:38:1c:99:8c:53:5c:44: c6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:23:CD:20:BF:E6:F4:2E:54:87:43:5A:D2:22:0B:21:28:AD:B2:C8 X509v3 Authority Key Identifier: keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:35:bc:a8:36:9b:3a:38:8e:19:47:cd:e4:dd:bf:7b:16:96: 7c:94:22:55:47:a5:da:8e:eb:b0:4b:ae:4f:d1:5a:a8:29:8f: ae:1f:49:08:c0:ff:be:d8:af:c6:cd:dc:cc:de:b4:49:bf:aa: e0:3c:16:07:70:ae:a2:ab:9c:ce:de:a5:3b:1d:62:25:85:ec: e0:23:76:d3:81:24:7d:ad:12:2c:32:32:35:4b:e9:21:c1:ee: 5c:6a:ab:e9:30:7d:02:25:37:12:6d:27:fc:0f:4b:20:aa:86: 86:7c:2d:23:3f:ed:48:05:10:5c:61:4c:b3:62:6c:17:da:cf: 25:22:45:f7:42:6c:06:38:e1:6c:20:2a:22:ab:a4:9f:99:02: 2f:a6:f5:c7:f3:19:96:13:e1:eb:ab:52:53:4e:17:45:fd:85: 48:b5:91:a3:b4:ca:a1:5a:e0:a2:89:2a:53:25:1e:c2:02:42: 2d:28:cf:31:e4:32:0b:c6:65:6a:92:9d:18:d7:31:03:51:b2: 87:49:bf:6f:a5:b4:cc:65:d3:55:cf:c5:60:a6:68:b8:90:f3: 0d:d3:ea:f7:70:fc:95:cb:fd:4a:75:1d:5f:61:1b:b3:56:54: 02:d0:48:18:9e:2e:71:ef:ea:a1:5a:6b:5a:0f:73:77:ee:41: 43:ca:60:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKEJCRTgwM0ZCNzU3RTBDNDdEMzIwNDU0NTIxODdCNzRB RTI3MTExRjAwHhcNMjUxMjIzMDM1NzQyWhcNMjUxMjMwMDM1NzQyWjAYMRYwFAYD VQQDDA02OTRhMTMzNi0yMjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJCKwKHi/Wbh9aB1BzJGbdMnSHF4DRh829AGCfZ3CVXTt4n2D31Mz4N0moqB DwQrRgYOow0yLkPM835KNd0ejaOxDgAfhdxhDa6zl73MPhCnEbIJfpdTEBdZOoGY n99pNh+U8ofGYrbrygSwDyP5Pr7ZlsgQoimmTmDqjmUdcnn8YQ05DdQZhyd6jq1I 8xKA1PeqU+QL634Rdjz3JOeIOU6B/pVtfq0zHYLAG6XHvOJanS2QfyjS54Jic8BL wMj2+8rSWFZe4n4sXizD2n4p8lk6kX15HooxsKMCs3IMoclssnNK44u9IknDSwGH mIjs9KnY/biKvTgcmYxTXETGtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcjzSC/ 5vQuVIdDWtIiCyEorbLIMB8GA1UdIwQYMBaAFLvoA/t1fgxH0yBFRSGHt0ricRHw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS8wNUE3Q0U2ODQ1 QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURFZlRJRVZGSVllM1N1SnhF ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS8wNUE3Q0U2ODQ1QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURF ZlRJRVZGSVllM1N1SnhFZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsNbyoNps6OI4ZR83k3b97FpZ8lCJVR6XajuuwS65P0VqoKY+uH0kI wP++2K/GzdzM3rRJv6rgPBYHcK6iq5zO3qU7HWIlhezgI3bTgSR9rRIsMjI1S+kh we5caqvpMH0CJTcSbSf8D0sgqoaGfC0jP+1IBRBcYUyzYmwX2s8lIkX3QmwGOOFs ICoiq6SfmQIvpvXH8xmWE+Hrq1JTThdF/YVItZGjtMqhWuCiiSpTJR7CAkItKM8x 5DILxmVqkp0Y1zEDUbKHSb9vpbTMZdNVz8Vgpmi4kPMN0+r3cPyVy/1KdR1fYRuz VlQC0EgYni5x7+qhWmtaD3N37kFDymCL -----END CERTIFICATE-----Generated at Tue Dec 23 07:05:56 2025 by rpki-client