This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: JrNKYTk8Tg87PeJ8elgg2q37VO7bHsHNVZdwUPlKFFw= Subject key identifier: 37:F1:AE:78:1D:4C:E3:0B:E0:1B:CC:2B:34:1E:43:F9:5C:1F:14:CD Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 0235 Signing time: Sun 07 Dec 2025 00:28:39 +0000 Manifest this update: Sun 07 Dec 2025 00:28:38 +0000 Manifest next update: Sun 14 Dec 2025 00:28:38 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: 42hLKcutLPuCvLS4ahFCcy0z0jMExqI7bq8cNWk0su4=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Dec 7 00:28:38 2025 GMT Not After : Dec 14 00:28:38 2025 GMT Subject: CN=6934ca36-3710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:70:2a:c3:ab:d2:af:50:f7:4a:8f:06:81:f0: b9:2a:74:4f:7e:9b:77:4c:ef:d9:1c:57:bd:8f:0d: 01:ff:b0:50:f7:c0:4e:99:6d:4c:8b:db:8d:13:b6: 69:9f:37:ca:9c:e9:b3:30:b5:b2:05:ce:42:99:83: 8f:d0:a4:24:ab:4f:ec:7d:5e:bf:43:b7:57:25:55: 5f:d7:65:d0:3b:14:79:a3:26:fd:48:25:ab:2a:a7: f8:b7:21:81:c1:5b:66:3a:43:05:be:5a:c5:4b:ab: d3:64:b6:56:1d:32:c5:e2:49:ce:5c:a3:a5:7b:a3: 70:e4:32:1f:02:43:af:cf:99:a9:69:7a:27:c7:63: c8:b9:71:67:4a:67:9f:65:50:5e:ec:f9:11:5f:84: 6d:ad:fb:0e:b5:b1:c2:d1:e4:e6:b4:68:b3:5e:b1: 6e:55:f5:af:e7:cd:fe:2b:eb:d7:6a:6f:6f:a8:8c: c5:77:ab:02:53:9e:f2:8b:6c:2b:16:0c:09:c8:f9: e9:52:67:d3:d2:78:31:2c:c5:84:f1:d1:1d:9f:0e: 9b:07:bf:0a:fb:04:c0:00:4f:1e:1f:68:6c:8f:8b: da:00:dd:4d:18:f6:de:87:65:27:d6:a4:ea:9b:c6: 16:46:af:c9:31:17:50:38:de:c4:60:b7:1b:bb:3d: 3d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F1:AE:78:1D:4C:E3:0B:E0:1B:CC:2B:34:1E:43:F9:5C:1F:14:CD X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:f7:09:a7:3e:8f:be:11:1b:85:86:96:2e:40:cf:a8:32:99: f6:29:46:e9:c5:4c:5e:97:8a:13:fa:37:0c:eb:68:fb:df:da: 1a:ab:2a:75:12:ad:5d:b4:a8:07:07:41:b6:b0:08:c6:09:18: 90:0d:9d:d4:83:80:35:31:20:af:0a:a3:06:e1:8f:69:ed:2c: 4a:4c:34:f6:c6:55:31:08:76:cc:7c:fa:c7:0e:bc:90:3c:00: 55:35:68:d2:9c:a8:8e:2e:8d:a7:d8:bc:d5:04:fd:ce:30:68: 1d:20:2a:f8:01:1e:ef:28:97:69:e5:6a:1f:e6:89:29:c2:5c: c0:13:aa:ae:9d:20:9f:13:cc:87:1d:f8:c8:c1:60:13:71:77: 60:1c:de:6f:f9:bf:61:e2:68:21:1b:db:23:72:3c:f5:f4:a3: 93:2d:76:43:93:6d:c7:fd:3c:05:8d:f8:ca:56:d1:ef:a3:0a: 51:22:a2:a6:75:99:73:10:3e:74:e8:12:83:5f:02:22:a8:5d: 56:7e:09:2f:17:0a:d7:66:3f:92:68:06:a9:a1:47:f5:b2:e3: 18:5f:03:01:77:92:8f:84:7e:ec:0b:ae:7a:81:c0:1d:b3:91: 18:81:a8:5e:f2:64:a4:2a:d4:2d:54:b0:17:93:9a:38:9b:f9: 3b:77:11:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUxMjA3MDAyODM4WhcNMjUxMjE0MDAyODM4WjAYMRYwFAYD VQQDEw02OTM0Y2EzNi0zNzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3Aqw6vSr1D3So8GgfC5KnRPfpt3TO/ZHFe9jw0B/7BQ98BOmW1Mi9uNE7Zp nzfKnOmzMLWyBc5CmYOP0KQkq0/sfV6/Q7dXJVVf12XQOxR5oyb9SCWrKqf4tyGB wVtmOkMFvlrFS6vTZLZWHTLF4knOXKOle6Nw5DIfAkOvz5mpaXonx2PIuXFnSmef ZVBe7PkRX4RtrfsOtbHC0eTmtGizXrFuVfWv583+K+vXam9vqIzFd6sCU57yi2wr FgwJyPnpUmfT0ngxLMWE8dEdnw6bB78K+wTAAE8eH2hsj4vaAN1NGPbeh2Un1qTq m8YWRq/JMRdQON7EYLcbuz09ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfxrngd TOML4BvMKzQeQ/lcHxTNMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT9wmnPo++ERuFhpYuQM+oMpn2KUbpxUxel4oT+jcM62j739oaqyp1 Eq1dtKgHB0G2sAjGCRiQDZ3Ug4A1MSCvCqMG4Y9p7SxKTDT2xlUxCHbMfPrHDryQ PABVNWjSnKiOLo2n2LzVBP3OMGgdICr4AR7vKJdp5Wof5okpwlzAE6qunSCfE8yH HfjIwWATcXdgHN5v+b9h4mghG9sjcjz19KOTLXZDk23H/TwFjfjKVtHvowpRIqKm dZlzED506BKDXwIiqF1WfgkvFwrXZj+SaAapoUf1suMYXwMBd5KPhH7sC656gcAd s5EYgahe8mSkKtQtVLAXk5o4m/k7dxE0 -----END CERTIFICATE-----Generated at Sun Dec 7 05:20:05 2025 by rpki-client