This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft File: CUoNzYAqBb91c_96buCnqXIFUNE.mft (raw, json) Hash identifier: VVXqmsiqDPvD+QuT0UFsDt0W1AiSjNWXhWhoA9JZdS0= Subject key identifier: 6D:8B:E7:68:34:07:98:A9:BE:3D:F8:50:D2:43:86:2F:3D:CA:13:A5 Authority key identifier: 09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 Certificate issuer: /CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft Manifest number: 01F4 Signing time: Tue 23 Dec 2025 01:32:45 +0000 Manifest this update: Tue 23 Dec 2025 01:32:44 +0000 Manifest next update: Tue 30 Dec 2025 01:32:44 +0000 Files and hashes: 1: CUoNzYAqBb91c_96buCnqXIFUNE.crl (hash: oanlDtrVjEmH+6AiFMZX7F9mKkdVBAbMbji29dC5un4=) 2: 5BA557A6DEB011EDB7B0C04EC4F9AE02.roa (hash: SAjkukJRb4ZF5aM/fUJAbMY1lnAEeXzzgnRTsvAlM7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:32:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93F, serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Validity Not Before: Dec 23 01:32:44 2025 GMT Not After : Dec 30 01:32:44 2025 GMT Subject: CN=6949f13c-4cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:44:15:f3:e6:bb:3e:1c:f5:48:74:7a:e8:71: 39:0f:ac:93:40:1f:dd:e2:fe:f3:06:29:d4:7c:d1: 58:b4:92:22:1b:43:b6:d3:cb:66:92:02:c8:32:9a: 0d:0e:5a:7f:42:03:87:9e:4d:c2:11:c2:cc:56:3b: b6:52:68:40:3d:60:52:19:f8:f6:d6:23:c0:ba:eb: f6:60:c6:cf:21:74:51:b6:b0:b3:ae:7b:77:ca:d8: 24:56:d1:36:ba:81:78:32:e8:07:e7:d4:08:85:26: b4:20:c2:1b:d1:4d:fd:e4:29:6c:c7:b8:df:b3:37: 65:8d:d6:93:04:39:e6:65:9a:ae:58:25:70:3f:46: f9:42:43:81:80:34:ea:5a:7a:5e:24:86:e7:c3:e8: 6b:46:5c:95:3a:1e:fb:c3:7a:5e:bc:33:a6:7e:15: fa:5e:fe:67:ad:37:a8:80:ad:80:c6:89:40:b3:03: 4c:2d:01:3a:90:cf:5c:7a:19:3e:3d:8b:6e:71:0d: 14:87:6c:b8:15:cf:23:7f:ae:e1:4d:dc:28:84:6e: a0:d3:56:86:70:22:62:c3:5d:b7:f0:55:e6:d5:8e: dc:89:65:a5:37:0b:c9:10:da:ec:97:92:51:58:84: bd:c9:87:3c:d1:0c:fb:11:7b:f2:f3:46:62:37:8e: 9d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:8B:E7:68:34:07:98:A9:BE:3D:F8:50:D2:43:86:2F:3D:CA:13:A5 X509v3 Authority Key Identifier: keyid:09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:b7:ce:52:30:04:56:99:45:eb:6b:31:c2:db:37:63:bb:97: 18:cb:5d:ab:f4:0f:45:e7:ae:d1:4c:75:75:12:01:4c:4c:56: 43:9a:40:79:7c:b6:e7:4c:d3:63:3d:8e:f0:98:8d:bd:79:67: bd:cf:ec:3e:c9:da:a3:bf:58:c8:1a:7c:b6:84:1b:b0:cb:ea: 09:c3:13:3f:36:47:91:16:37:df:6c:ee:44:e5:80:71:34:0c: 71:13:7c:22:1f:8f:03:e5:fc:4d:88:13:f9:29:25:32:a5:86: af:4b:4c:6f:80:07:8a:41:52:a3:bb:e4:6d:e0:3c:20:96:4b: 95:fc:16:a9:08:5c:24:de:b0:4e:2f:82:00:f4:7b:58:37:2e: fc:81:ad:0c:c4:70:c6:26:47:54:63:5a:6a:eb:55:c5:74:06: 3f:5c:c8:0f:c2:d0:ba:ed:27:a6:ca:e8:d4:89:d4:97:e4:28: f5:d3:84:2a:a3:80:f6:16:6c:cb:66:35:d6:33:fc:20:14:cb: 8e:e7:f1:0b:e3:b0:23:5e:b1:f1:f3:9b:37:4a:3d:d7:69:38: 3d:36:45:2a:fe:7d:8b:4a:11:bc:01:0d:63:04:a8:44:5f:34: 76:ae:4b:e7:33:b7:ed:22:03:19:c1:f8:a0:46:1e:03:31:5e: 2a:76:c8:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0YxMTAvBgNVBAUTKDA5NEEwRENEODAyQTA1QkY3NTczRkY3QTZFRTBBN0E5 NzIwNTUwRDEwHhcNMjUxMjIzMDEzMjQ0WhcNMjUxMjMwMDEzMjQ0WjAYMRYwFAYD VQQDDA02OTQ5ZjEzYy00Y2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0QV8+a7Phz1SHR66HE5D6yTQB/d4v7zBinUfNFYtJIiG0O208tmkgLIMpoN Dlp/QgOHnk3CEcLMVju2UmhAPWBSGfj21iPAuuv2YMbPIXRRtrCzrnt3ytgkVtE2 uoF4MugH59QIhSa0IMIb0U395Clsx7jfszdljdaTBDnmZZquWCVwP0b5QkOBgDTq WnpeJIbnw+hrRlyVOh77w3pevDOmfhX6Xv5nrTeogK2AxolAswNMLQE6kM9cehk+ PYtucQ0Uh2y4Fc8jf67hTdwohG6g01aGcCJiw1238FXm1Y7ciWWlNwvJENrsl5JR WIS9yYc80Qz7EXvy80ZiN46d+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2L52g0 B5ipvj34UNJDhi89yhOlMB8GA1UdIwQYMBaAFAlKDc2AKgW/dXP/em7gp6lyBVDR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRi82MEE4Rjg4Q0RF QUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJiOTFjXzk2YnVDbnFYSUZV TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVb056WUFxQmI5MWNfOTZidUNucVhJRlVORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzkzRi82MEE4Rjg4Q0RFQUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJi OTFjXzk2YnVDbnFYSUZVTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOt85SMARWmUXrazHC2zdju5cYy12r9A9F567RTHV1EgFMTFZDmkB5 fLbnTNNjPY7wmI29eWe9z+w+ydqjv1jIGny2hBuwy+oJwxM/NkeRFjffbO5E5YBx NAxxE3wiH48D5fxNiBP5KSUypYavS0xvgAeKQVKju+Rt4DwglkuV/BapCFwk3rBO L4IA9HtYNy78ga0MxHDGJkdUY1pq61XFdAY/XMgPwtC67SemyujUidSX5Cj104Qq o4D2FmzLZjXWM/wgFMuO5/EL47AjXrHx85s3Sj3XaTg9NkUq/n2LShG8AQ1jBKhE XzR2rkvnM7ftIgMZwfigRh4DMV4qdsjC -----END CERTIFICATE-----Generated at Wed Dec 24 19:27:14 2025 by rpki-client