This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: EyEggHKHaCtJci0z0redJsrRgZblh5AA7OK4H6ToLno= Subject key identifier: 59:E4:E1:BC:0D:75:7E:78:F4:97:CC:69:56:80:C7:13:E6:B1:DC:57 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 017E Signing time: Sun 07 Dec 2025 02:09:32 +0000 Manifest this update: Sun 07 Dec 2025 02:09:32 +0000 Manifest next update: Sun 14 Dec 2025 02:09:32 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: aSRiiRrWy/myC2yvgA/EnNkXyeDzBvVFMIU8Mn5Yjp4=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Dec 7 02:09:32 2025 GMT Not After : Dec 14 02:09:32 2025 GMT Subject: CN=6934e1dc-a3ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bb:5e:11:a9:dc:a8:3b:25:be:e7:38:52:17: f5:11:de:4e:47:65:9c:0f:e0:b5:41:af:b0:5b:42: f6:6d:9e:4c:b2:55:fc:e2:87:54:b8:de:0a:72:7f: a3:86:1f:4b:79:d7:cf:4b:1b:90:a2:4c:86:3e:e5: be:9d:45:0d:9f:14:ae:ba:0a:a1:a1:77:93:3d:62: a6:c4:79:cd:da:ef:39:e4:e5:fe:70:92:d7:7b:64: 09:54:ed:94:fa:5d:1f:87:1b:5b:8e:7d:3c:47:50: 02:ca:97:41:a8:4a:b6:fb:3a:75:fa:25:00:8e:fc: c0:b8:3d:c5:18:4e:73:25:6e:a6:4e:8b:0f:82:90: 91:a9:68:a7:50:09:57:32:10:d3:70:30:b6:ab:74: a6:dd:58:0d:a7:d7:7d:53:3f:95:8b:fa:ad:21:a7: 9f:5a:e1:3c:7e:4a:3b:a7:96:16:7a:82:0c:73:d4: 40:c7:75:a5:44:2f:0d:42:0c:13:d4:14:68:09:b5: 54:67:2b:d7:9a:9b:52:86:4d:d4:f6:9e:93:d6:65: 86:44:0c:65:a3:ee:8c:dc:5c:cc:e2:b9:2e:5c:f5: 8d:94:24:fc:cb:7e:03:7d:f6:b7:ae:16:1b:76:bb: 22:9f:36:13:f9:17:4b:9a:6a:68:de:d3:b2:6b:ca: 7d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E4:E1:BC:0D:75:7E:78:F4:97:CC:69:56:80:C7:13:E6:B1:DC:57 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:04:8f:48:5f:75:e0:51:c3:60:fa:9e:6a:e2:10:29:55:76: 31:f7:93:86:c4:2f:b1:81:18:da:fd:c2:80:b6:c0:79:cc:a7: 6a:3c:0b:64:72:9b:df:78:88:f7:2d:e1:53:8f:f8:22:35:1b: 9a:15:13:de:53:11:7b:8c:9f:90:42:7c:7d:db:09:73:c7:5d: 77:27:08:92:19:fb:df:f3:33:a6:8a:1d:d4:80:84:c4:99:1e: 1e:65:ff:80:3b:17:c7:35:ee:e2:15:5a:50:dd:80:8a:9c:8d: 50:36:2f:9d:37:52:c9:92:80:14:21:92:14:7f:63:2d:70:60: 13:fe:24:b4:64:67:dd:37:9a:1f:a7:df:0a:be:ae:0a:66:f7: cd:bd:06:f1:c6:5c:e0:0a:c7:7f:ca:57:9c:cc:54:3b:d7:ed: 32:5e:1e:c5:46:e3:d2:b6:c7:af:aa:14:2f:d8:bc:01:94:71: 90:99:33:6b:61:f5:90:92:80:7a:a4:a6:fa:ab:95:a8:19:60: 3b:c7:ce:3f:ba:c1:d1:55:8a:a1:28:25:75:c2:3e:a5:d9:fa: fe:9a:0a:45:51:5a:d3:10:f1:32:6e:fe:fe:df:ba:19:3c:fa: 02:ec:b2:5f:7f:d6:d3:49:f3:38:d4:9c:8f:33:ac:46:65:2f: 98:bd:f6:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUxMjA3MDIwOTMyWhcNMjUxMjE0MDIwOTMyWjAYMRYwFAYD VQQDEw02OTM0ZTFkYy1hM2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybteEancqDslvuc4Uhf1Ed5OR2WcD+C1Qa+wW0L2bZ5MslX84odUuN4Kcn+j hh9LedfPSxuQokyGPuW+nUUNnxSuugqhoXeTPWKmxHnN2u855OX+cJLXe2QJVO2U +l0fhxtbjn08R1ACypdBqEq2+zp1+iUAjvzAuD3FGE5zJW6mTosPgpCRqWinUAlX MhDTcDC2q3Sm3VgNp9d9Uz+Vi/qtIaefWuE8fko7p5YWeoIMc9RAx3WlRC8NQgwT 1BRoCbVUZyvXmptShk3U9p6T1mWGRAxlo+6M3FzM4rkuXPWNlCT8y34Dffa3rhYb drsinzYT+RdLmmpo3tOya8p93QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnk4bwN dX549JfMaVaAxxPmsdxXMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABBI9IX3XgUcNg+p5q4hApVXYx95OGxC+xgRja/cKAtsB5zKdqPAtk cpvfeIj3LeFTj/giNRuaFRPeUxF7jJ+QQnx92wlzx113JwiSGfvf8zOmih3UgITE mR4eZf+AOxfHNe7iFVpQ3YCKnI1QNi+dN1LJkoAUIZIUf2MtcGAT/iS0ZGfdN5of p98Kvq4KZvfNvQbxxlzgCsd/yleczFQ71+0yXh7FRuPStsevqhQv2LwBlHGQmTNr YfWQkoB6pKb6q5WoGWA7x84/usHRVYqhKCV1wj6l2fr+mgpFUVrTEPEybv7+37oZ PPoC7LJff9bTSfM41JyPM6xGZS+YvfaI -----END CERTIFICATE-----Generated at Sun Dec 7 04:43:31 2025 by rpki-client