This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft File: uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json) Hash identifier: 9ciQWtt2VQq9cE/xWvMXCcVNI0FzbJ6NkG79sJzftr4= Subject key identifier: 74:B8:66:7D:8E:1C:E2:3E:35:A1:5A:D5:F6:84:FF:1F:0E:DE:4B:ED Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 Certificate issuer: /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Certificate serial: 03F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft Manifest number: 03E9 Signing time: Thu 04 Dec 2025 23:02:12 +0000 Manifest this update: Thu 04 Dec 2025 23:02:11 +0000 Manifest next update: Thu 11 Dec 2025 23:02:11 +0000 Files and hashes: 1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: FMa+qvFqL51aKf42rBFBExWFUQxkcBOQaLZoc7dn0DY=) 2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: WWLeH3632fyjkdTa5V1Kbc7nqGm176NLqMwGAoiNN0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1010 (0x3f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91103CF, serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Validity Not Before: Dec 4 23:02:11 2025 GMT Not After : Dec 11 23:02:11 2025 GMT Subject: CN=693212f4-fdb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c6:8a:13:b3:cc:15:b3:19:d4:54:8c:1a:97: 21:0e:c7:4c:6e:41:f0:91:e0:ce:19:1c:05:1f:07: 35:ac:08:da:5a:27:fc:2e:25:08:05:e4:fb:ab:47: 29:37:08:f2:51:6d:f7:a9:ab:a5:c4:0d:ac:24:9c: 71:31:cc:e1:ee:90:0a:fd:57:ef:9e:2c:fb:d3:26: 8b:37:68:fc:28:4e:7c:15:8d:04:0f:f0:e4:b4:42: a0:b7:e9:77:bd:c7:de:28:f5:d1:d2:03:a1:ea:57: 9e:10:fa:19:50:8d:15:bf:ab:a5:b0:63:2d:a7:ad: 28:e2:bb:f3:5d:cd:61:26:56:00:f8:50:20:21:2b: fb:90:b1:8c:fb:16:7c:d8:d0:2c:a5:3d:27:cc:51: fa:f6:44:86:eb:55:d1:44:78:cc:35:9f:66:2e:e6: dd:0a:2e:7b:81:68:7a:2a:20:bf:2c:4a:8f:49:c1: aa:5e:46:fe:97:bd:80:5f:99:0d:50:89:8b:6d:a1: be:43:94:7c:31:ee:b6:99:55:a2:73:cc:1e:51:4b: 8e:d1:d4:23:95:bb:34:ec:c5:22:6f:d8:43:73:22: e1:51:fe:9d:3b:59:53:65:1c:7e:28:78:1d:56:3b: bf:1e:1a:d2:50:8d:c4:4f:5f:dc:b8:d6:c1:97:f1: 96:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B8:66:7D:8E:1C:E2:3E:35:A1:5A:D5:F6:84:FF:1F:0E:DE:4B:ED X509v3 Authority Key Identifier: keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:f9:65:6f:1d:bf:71:b9:97:16:e2:74:18:46:cc:a9:f7:fa: 4b:6f:57:4c:28:50:92:02:bb:d9:b6:72:a7:2e:b1:65:74:d8: 9c:b7:e3:87:c7:32:f8:73:6b:98:7f:82:25:ad:f4:50:4e:3c: 7f:89:14:7b:9d:98:4c:ad:1e:16:98:ad:5d:fe:f4:5f:29:85: 51:9b:a0:51:9a:fd:9e:a4:77:83:44:6c:c3:34:23:54:64:ee: 38:0b:83:61:b3:26:d2:0f:80:1b:01:1c:71:01:17:13:b3:90: 2f:ec:9a:8e:84:97:fe:bc:67:5a:20:cc:23:a6:79:01:34:4d: a5:ac:70:fb:e6:f2:b0:7b:db:1d:1c:bd:f0:06:af:e1:dd:8c: 42:e0:cd:3a:4b:a7:56:4e:ba:0a:20:78:c0:41:d8:9e:b8:0b: 8d:a0:fb:1c:d3:3a:4e:48:c5:5b:8f:51:da:03:77:a1:5e:ed: ef:74:ab:c8:0e:a8:00:66:27:a6:04:dc:08:ae:79:29:c5:28: d4:17:12:35:d7:0c:3a:40:aa:68:80:68:1c:68:fc:2b:64:85: 1c:40:ab:b2:fd:75:d1:e0:06:b4:cf:8f:9f:f7:60:f5:c9:bc: b1:a0:5d:fc:41:6f:c2:76:29:e7:70:42:68:34:6b:3d:8f:e7: 90:a7:2d:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzQ0YxMTAvBgNVBAUTKEI4QUQ4RDkxNkNEOTQ4MkI2REE1NUQzMDdDRTk1QzA3 QTk1QjJGNzQwHhcNMjUxMjA0MjMwMjExWhcNMjUxMjExMjMwMjExWjAYMRYwFAYD VQQDEw02OTMyMTJmNC1mZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMaKE7PMFbMZ1FSMGpchDsdMbkHwkeDOGRwFHwc1rAjaWif8LiUIBeT7q0cp NwjyUW33qaulxA2sJJxxMczh7pAK/Vfvniz70yaLN2j8KE58FY0ED/DktEKgt+l3 vcfeKPXR0gOh6leeEPoZUI0Vv6ulsGMtp60o4rvzXc1hJlYA+FAgISv7kLGM+xZ8 2NAspT0nzFH69kSG61XRRHjMNZ9mLubdCi57gWh6KiC/LEqPScGqXkb+l72AX5kN UImLbaG+Q5R8Me62mVWic8weUUuO0dQjlbs07MUib9hDcyLhUf6dO1lTZRx+KHgd Vju/HhrSUI3ET1/cuNbBl/GWoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHS4Zn2O HOI+NaFa1faE/x8O3kvtMB8GA1UdIwQYMBaAFLitjZFs2UgrbaVdMHzpXAepWy90 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDNDRi8xN0Q2RTRDMkE2 OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlNDdHRwVjB3Zk9sY0I2bGJM M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLMk5rV3paU0N0dHBWMHdmT2xjQjZsYkwzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDNDRi8xN0Q2RTRDMkE2OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlND dHRwVjB3Zk9sY0I2bGJMM1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB+WVvHb9xuZcW4nQYRsyp9/pLb1dMKFCSArvZtnKnLrFldNict+OH xzL4c2uYf4IlrfRQTjx/iRR7nZhMrR4WmK1d/vRfKYVRm6BRmv2epHeDRGzDNCNU ZO44C4NhsybSD4AbARxxARcTs5Av7JqOhJf+vGdaIMwjpnkBNE2lrHD75vKwe9sd HL3wBq/h3YxC4M06S6dWTroKIHjAQdieuAuNoPsc0zpOSMVbj1HaA3ehXu3vdKvI DqgAZiemBNwIrnkpxSjUFxI11ww6QKpogGgcaPwrZIUcQKuy/XXR4Aa0z4+f92D1 ybyxoF38QW/CdinncEJoNGs9j+eQpy0M -----END CERTIFICATE-----Generated at Sat Dec 6 23:02:44 2025 by rpki-client