This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: Q75aU9u/ckA+sXzBvWX+1ISRasEYQJEZcqoN1y4ZHzA= Subject key identifier: 60:B0:A2:5A:04:F8:37:0D:5E:20:24:EE:B9:DF:B0:3C:C9:40:8C:0B Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 0517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 04FE Signing time: Mon 22 Dec 2025 22:51:08 +0000 Manifest this update: Mon 22 Dec 2025 22:51:08 +0000 Manifest next update: Mon 29 Dec 2025 22:51:08 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: jqr8FE2wLPmfujsIOPPC5+ZBXhS5kiAhM69Yv3f28PU=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1303 (0x517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Dec 22 22:51:08 2025 GMT Not After : Dec 29 22:51:08 2025 GMT Subject: CN=6949cb5c-9620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:d3:36:73:58:11:41:47:bc:22:c9:3b:97:7f: e0:c6:ee:c5:3c:9d:12:9e:d4:84:85:92:af:6e:28: 8a:6c:d1:ab:86:15:14:00:07:e0:07:70:63:f7:d9: e0:eb:17:00:5d:f7:5b:b0:73:d2:1f:c0:72:37:7a: 86:20:a3:a1:6e:e6:00:15:71:81:d8:00:a5:54:10: 18:b1:7f:68:bf:e5:1d:a5:5d:b6:53:98:a4:4f:d2: ec:46:d7:f3:9d:2f:51:57:1c:49:72:33:1a:21:00: 8a:3b:a9:d2:24:1c:bc:52:ec:56:f8:55:56:6f:94: 12:1f:d7:90:9f:c1:79:5a:a8:3a:cb:10:d3:6e:42: 4e:23:c7:3a:cb:17:b7:1b:f6:15:a5:2d:95:1f:75: 33:0a:97:0b:d3:92:57:95:e6:e2:c3:9b:eb:57:da: 15:fd:fc:57:fe:5f:6a:5c:23:bc:d8:70:6c:44:40: 14:af:1c:a9:bd:44:35:a9:1b:8c:97:63:b9:e4:87: c5:10:ed:97:86:2b:4e:99:e7:05:a1:95:2e:d0:7f: 3f:41:b6:af:22:89:e3:13:4a:63:bd:16:4d:37:2e: 14:fe:d7:43:1f:f4:34:b4:93:c6:42:21:9e:63:e9: 23:9f:ea:18:0c:f5:7e:ee:f2:2c:04:22:e1:c3:50: 25:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B0:A2:5A:04:F8:37:0D:5E:20:24:EE:B9:DF:B0:3C:C9:40:8C:0B X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:5f:2d:c3:6b:dc:4a:6b:0b:8f:b3:69:35:2c:66:cc:0d:2e: 96:40:cc:f9:c5:3e:8a:f5:28:d2:e6:70:06:05:04:a5:c6:b2: 5a:be:48:8d:85:a2:15:9b:0b:f9:74:54:e3:8e:54:a2:9c:f8: f8:99:2d:02:66:50:04:5d:5e:98:e4:87:01:f6:6c:a4:a8:af: c8:22:67:e2:0b:c0:f1:a0:18:df:4e:12:ab:65:e8:f7:8b:2e: 23:11:ce:08:4a:6e:75:f2:96:18:9c:08:34:a1:1d:50:17:d5: 0a:86:96:66:bd:5c:a6:7f:5c:d0:30:b7:c1:17:ff:42:a2:2f: c4:cc:4b:a5:21:f1:3c:c4:b6:1b:c4:35:25:af:86:6f:fa:7c: 93:37:5a:7b:dc:69:60:11:96:f6:1d:16:a9:c0:07:8b:d4:cf: 5e:18:6d:7c:0c:8d:90:b9:3d:f2:49:b8:d1:85:bf:b4:86:25: 9e:5c:c6:86:3d:e0:1e:0e:ab:11:2e:15:7d:90:ad:c2:eb:fd: 5f:f4:13:58:ef:32:59:2d:99:15:7f:e1:6b:b8:95:88:1a:0c: 86:44:2f:58:e6:d2:d6:86:13:d7:79:86:68:78:5b:e9:a5:56: 24:4e:15:b1:cb:33:51:11:75:e1:8d:64:04:41:97:89:7e:e1: 23:6a:72:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUxMjIyMjI1MTA4WhcNMjUxMjI5MjI1MTA4WjAYMRYwFAYD VQQDDA02OTQ5Y2I1Yy05NjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh9M2c1gRQUe8Isk7l3/gxu7FPJ0SntSEhZKvbiiKbNGrhhUUAAfgB3Bj99ng 6xcAXfdbsHPSH8ByN3qGIKOhbuYAFXGB2AClVBAYsX9ov+UdpV22U5ikT9LsRtfz nS9RVxxJcjMaIQCKO6nSJBy8UuxW+FVWb5QSH9eQn8F5Wqg6yxDTbkJOI8c6yxe3 G/YVpS2VH3UzCpcL05JXlebiw5vrV9oV/fxX/l9qXCO82HBsREAUrxypvUQ1qRuM l2O55IfFEO2XhitOmecFoZUu0H8/QbavIonjE0pjvRZNNy4U/tdDH/Q0tJPGQiGe Y+kjn+oYDPV+7vIsBCLhw1Al5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCwoloE +DcNXiAk7rnfsDzJQIwLMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnXy3Da9xKawuPs2k1LGbMDS6WQMz5xT6K9SjS5nAGBQSlxrJavkiN haIVmwv5dFTjjlSinPj4mS0CZlAEXV6Y5IcB9mykqK/IImfiC8DxoBjfThKrZej3 iy4jEc4ISm518pYYnAg0oR1QF9UKhpZmvVymf1zQMLfBF/9Coi/EzEulIfE8xLYb xDUlr4Zv+nyTN1p73GlgEZb2HRapwAeL1M9eGG18DI2QuT3ySbjRhb+0hiWeXMaG PeAeDqsRLhV9kK3C6/1f9BNY7zJZLZkVf+FruJWIGgyGRC9Y5tLWhhPXeYZoeFvp pVYkThWxyzNREXXhjWQEQZeJfuEjanKm -----END CERTIFICATE-----Generated at Tue Dec 23 00:01:28 2025 by rpki-client