This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft File: u5dqWY5eywXjf6wApbeIjlf1HFI.mft (raw, json) Hash identifier: T7aorJlJo6jc1npMYY0NKXHIm34FDmGeAFrKXuFtEFs= Subject key identifier: 8E:3D:54:3C:7D:3D:97:FE:4B:A7:45:0B:AF:07:01:37:AB:6F:93:3C Authority key identifier: BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 Certificate issuer: /CN=A91590E3/serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Certificate serial: 1962 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft Manifest number: 1929 Signing time: Sat 06 Dec 2025 16:05:07 +0000 Manifest this update: Sat 06 Dec 2025 16:05:07 +0000 Manifest next update: Sat 13 Dec 2025 16:05:07 +0000 Files and hashes: 1: u5dqWY5eywXjf6wApbeIjlf1HFI.crl (hash: gUzjQC5xc3W+XWOgP5qpqjjReRHCHaTY61XgOIMEVhE=) 2: 1295ACC8511811F0BC16C641C4F9AE02.roa (hash: R8XRFOIDeyA0zkEPG1aEWumISmv4uchl7mAPbuAAI+Q=) 3: 4D12993446CC11F08EB9471AC4F9AE02.roa (hash: CSY6qOROtmw30A6xQccy8vmsJfZI5dJ5MZbhg1cI3+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6498 (0x1962) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91590E3, serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Validity Not Before: Dec 6 16:05:07 2025 GMT Not After : Dec 13 16:05:07 2025 GMT Subject: CN=69345433-ff74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:41:e3:25:77:53:ed:fc:86:ae:32:6e:cb:72: 58:38:bc:04:ed:18:a7:64:cf:e0:1c:84:0b:37:d1: fd:2f:4e:b9:29:65:ca:d8:a6:63:29:59:81:25:ed: d2:63:5c:cb:20:61:f8:4a:7a:76:19:d8:f7:44:e6: 17:44:bb:85:45:ed:1a:2e:8b:68:70:23:0d:32:fe: 2c:4d:24:b0:f1:cf:54:38:c3:55:2b:04:08:63:3f: 08:2c:aa:56:a8:0b:e4:aa:c6:4b:16:f1:ad:76:34: 0c:03:7c:74:f0:e5:c2:3a:11:ef:f0:8a:bf:34:2d: d9:b0:bb:6b:96:c2:15:db:bd:09:b0:69:30:77:a7: 9c:d6:40:da:8d:25:73:be:0e:3f:35:c0:55:64:2f: 0b:75:c5:91:2b:e5:34:5a:99:35:5d:18:07:c9:11: 5a:52:b7:16:e8:34:f3:b1:2c:ee:44:60:d6:c1:1c: 97:88:46:8e:b1:84:e0:ed:5e:30:73:c5:5f:e0:3d: d0:7c:60:21:9b:c4:41:c2:9a:77:02:c3:06:87:95: 2f:81:92:ee:96:62:e6:94:b5:b5:76:4c:f6:66:80: cf:44:06:d1:53:33:e5:a4:a1:8a:e4:ad:85:51:61: bf:af:b2:00:cd:db:71:04:ca:0e:39:77:f7:80:46: 37:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:3D:54:3C:7D:3D:97:FE:4B:A7:45:0B:AF:07:01:37:AB:6F:93:3C X509v3 Authority Key Identifier: keyid:BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:f7:9e:bf:48:be:85:d7:93:c6:5b:a6:f8:fe:5c:e2:4d:aa: e1:39:61:45:19:c5:6c:00:68:1c:81:ab:44:58:d4:e9:bf:c1: 6c:89:e8:37:09:2d:a3:be:1c:b6:06:72:d0:56:47:ea:cb:e4: ac:e3:22:37:5b:d4:c9:17:86:ae:47:e8:2d:09:65:62:fd:c5: 36:aa:f0:61:2b:36:cb:d7:55:06:7b:cb:38:4b:0f:54:42:f0: 2d:5f:c5:c4:6e:0a:26:03:63:c5:c7:a6:b5:b5:51:f3:e9:9f: a8:22:b5:b7:fa:28:81:6f:20:0a:c7:4f:9c:fb:bb:d7:d5:70: 12:1c:4e:43:11:92:43:67:cc:28:24:ad:9e:26:ea:53:09:83: cb:fa:c8:6c:2d:df:32:30:18:ac:4d:b7:3a:f3:13:b9:2a:98: 82:52:93:2c:b5:5a:8d:38:c2:a7:2f:e4:4f:88:6b:39:26:d4: 5a:38:ea:1d:38:53:85:0a:2a:75:1e:f9:d9:91:ad:17:ee:6c: a3:c5:61:b1:5f:e0:e7:1d:45:ee:46:3d:d3:32:9f:4a:89:a8: 3b:38:43:33:35:80:14:31:38:9a:5b:76:cb:38:ed:41:72:ed: db:08:55:08:e1:14:c8:88:5f:ab:62:bb:e7:ad:ec:c2:7f:e2: c3:b1:92:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkwRTMxMTAvBgNVBAUTKEJCOTc2QTU5OEU1RUNCMDVFMzdGQUMwMEE1Qjc4ODhF NTdGNTFDNTIwHhcNMjUxMjA2MTYwNTA3WhcNMjUxMjEzMTYwNTA3WjAYMRYwFAYD VQQDEw02OTM0NTQzMy1mZjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUHjJXdT7fyGrjJuy3JYOLwE7RinZM/gHIQLN9H9L065KWXK2KZjKVmBJe3S Y1zLIGH4Snp2Gdj3ROYXRLuFRe0aLotocCMNMv4sTSSw8c9UOMNVKwQIYz8ILKpW qAvkqsZLFvGtdjQMA3x08OXCOhHv8Iq/NC3ZsLtrlsIV270JsGkwd6ec1kDajSVz vg4/NcBVZC8LdcWRK+U0Wpk1XRgHyRFaUrcW6DTzsSzuRGDWwRyXiEaOsYTg7V4w c8Vf4D3QfGAhm8RBwpp3AsMGh5UvgZLulmLmlLW1dkz2ZoDPRAbRUzPlpKGK5K2F UWG/r7IAzdtxBMoOOXf3gEY3UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI49VDx9 PZf+S6dFC68HATerb5M8MB8GA1UdIwQYMBaAFLuXalmOXssF43+sAKW3iI5X9RxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTBFMy9EQTE4QjE4NDlB NDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3WGpmNndBcGJlSWpsZjFI RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1ZHFXWTVleXdYamY2d0FwYmVJamxmMUhGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTBFMy9EQTE4QjE4NDlBNDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3 WGpmNndBcGJlSWpsZjFIRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS956/SL6F15PGW6b4/lziTarhOWFFGcVsAGgcgatEWNTpv8Fsieg3 CS2jvhy2BnLQVkfqy+Ss4yI3W9TJF4auR+gtCWVi/cU2qvBhKzbL11UGe8s4Sw9U QvAtX8XEbgomA2PFx6a1tVHz6Z+oIrW3+iiBbyAKx0+c+7vX1XASHE5DEZJDZ8wo JK2eJupTCYPL+shsLd8yMBisTbc68xO5KpiCUpMstVqNOMKnL+RPiGs5JtRaOOod OFOFCip1HvnZka0X7myjxWGxX+DnHUXuRj3TMp9Kiag7OEMzNYAUMTiaW3bLOO1B cu3bCFUI4RTIiF+rYrvnrezCf+LDsZLD -----END CERTIFICATE-----Generated at Sun Dec 7 00:03:48 2025 by rpki-client