This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft File: U4XhOhtYRftEzutr7Y3rTomvOCk.mft (raw, json) Hash identifier: ExVI8FBV7IuIYQAnJqsqWI2q7MFC0TF3alheY9j/wms= Subject key identifier: CB:E1:EC:A4:D0:DD:9D:21:7E:C3:96:94:F6:72:BB:44:34:C2:02:A2 Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 09DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft Manifest number: 09CD Signing time: Thu 04 Dec 2025 19:12:39 +0000 Manifest this update: Thu 04 Dec 2025 19:12:39 +0000 Manifest next update: Thu 11 Dec 2025 19:12:39 +0000 Files and hashes: 1: U4XhOhtYRftEzutr7Y3rTomvOCk.crl (hash: zHe651BqMyut3sQlyuy7PdFW6nc5fCodHdtZDzRrJYk=) 2: 3636BCD2937011EA8A795583C4F9AE02.roa (hash: Xd/9pByFb2cbZ9xoUnmDVjNmjmus87X0lFOERhfsZNI=) 3: 35831FCE937011EA8A795583C4F9AE02.roa (hash: N79J5/addSjvuTRJUjHpGEDoonJ5OZtfdl2v8Aonsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2525 (0x9dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB, serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: Dec 4 19:12:39 2025 GMT Not After : Dec 11 19:12:39 2025 GMT Subject: CN=6931dd27-3676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0c:06:ce:29:e3:73:32:07:c0:a2:53:95:8e: db:3b:be:ab:62:35:6d:72:db:47:9a:ab:cb:51:1a: c6:d4:b7:51:25:69:ab:90:ce:6e:2a:e9:f9:0f:f8: 73:d4:b8:91:db:aa:ca:e5:25:d2:08:d8:1e:54:fa: cc:a0:5d:6b:90:1d:a0:a0:ab:06:07:50:34:09:04: e3:e9:aa:cf:ed:6f:9a:8c:4c:1f:f1:37:ce:b4:95: c3:a2:1f:22:d2:2a:36:bf:c4:b3:a9:b8:12:fb:d2: 5c:ae:5b:30:8d:7c:6e:14:16:d8:f1:01:eb:ca:c0: d4:87:d8:11:30:be:5c:50:49:a4:7c:60:5d:82:b9: 2e:f8:80:a5:ea:c5:27:2f:fa:be:d6:52:9f:73:33: 63:28:27:17:eb:32:a7:c6:69:0c:b9:1f:31:e8:b6: 80:dc:d0:1e:5f:39:16:49:40:da:4a:57:39:25:2b: b2:a8:ef:15:b4:46:c3:d6:2a:fd:4b:9c:c6:79:56: 81:6f:a1:0e:4e:7f:ef:a0:1e:73:f0:91:ec:d4:18: ca:1d:04:ee:fb:0b:39:7a:05:fe:7f:03:80:37:a0: 51:d2:f4:0f:3e:ae:fe:5f:56:97:7c:6d:2f:03:ac: 08:f6:a2:d8:f1:71:6d:05:73:1f:29:98:7b:06:1f: db:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E1:EC:A4:D0:DD:9D:21:7E:C3:96:94:F6:72:BB:44:34:C2:02:A2 X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:11:5e:12:e3:a9:39:40:af:5d:6c:e2:7e:19:c9:d2:bf:7b: 83:c2:fb:6f:d9:02:03:55:59:c4:fd:db:f7:23:c6:f1:a7:70: 7f:00:e1:48:cf:37:b6:e1:82:fd:60:9e:ab:08:0a:f8:8e:16: 7f:c6:2d:2e:ef:c6:fc:b1:2a:32:1d:08:bc:8e:7f:89:6c:b2: a7:f8:77:1e:3e:96:25:4b:28:c5:b8:f3:bd:52:ff:1c:8b:c7: d3:74:2c:96:c6:c2:80:ee:0f:cc:0f:5d:70:25:5f:7b:96:be: e6:df:04:2a:6e:00:43:fe:64:c7:a0:2f:ca:38:d4:de:b9:dd: c9:bf:da:d2:78:33:f6:cf:8e:b7:a0:62:42:e6:ed:68:80:26: 22:fe:c0:76:f2:d1:d3:b1:9f:bc:5f:55:8b:0e:d5:4b:43:a1: 80:f7:a8:59:c6:f0:ab:ea:6f:8e:17:69:ca:aa:da:5b:58:87: 79:49:a6:2e:dd:3c:1f:2f:15:9f:75:c5:32:48:c5:6b:9d:11: 00:53:70:8a:ae:2e:7a:93:0f:51:21:35:21:cf:f4:a8:6f:df: f2:4d:98:99:13:29:8a:c4:2d:09:26:17:e0:40:70:61:65:8e: d6:d7:9a:90:d4:38:b4:95:5b:bd:19:dc:d2:5d:39:91:dd:f9: 31:8c:f9:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjUxMjA0MTkxMjM5WhcNMjUxMjExMTkxMjM5WjAYMRYwFAYD VQQDEw02OTMxZGQyNy0zNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QwGzinjczIHwKJTlY7bO76rYjVtcttHmqvLURrG1LdRJWmrkM5uKun5D/hz 1LiR26rK5SXSCNgeVPrMoF1rkB2goKsGB1A0CQTj6arP7W+ajEwf8TfOtJXDoh8i 0io2v8SzqbgS+9JcrlswjXxuFBbY8QHrysDUh9gRML5cUEmkfGBdgrku+ICl6sUn L/q+1lKfczNjKCcX6zKnxmkMuR8x6LaA3NAeXzkWSUDaSlc5JSuyqO8VtEbD1ir9 S5zGeVaBb6EOTn/voB5z8JHs1BjKHQTu+ws5egX+fwOAN6BR0vQPPq7+X1aXfG0v A6wI9qLY8XFtBXMfKZh7Bh/bdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvh7KTQ 3Z0hfsOWlPZyu0Q0wgKiMB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0ZFQi9DQjJDMzNFNjkzNkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJm dEV6dXRyN1kzclRvbXZPQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJEV4S46k5QK9dbOJ+GcnSv3uDwvtv2QIDVVnE/dv3I8bxp3B/AOFI zze24YL9YJ6rCAr4jhZ/xi0u78b8sSoyHQi8jn+JbLKn+HcePpYlSyjFuPO9Uv8c i8fTdCyWxsKA7g/MD11wJV97lr7m3wQqbgBD/mTHoC/KONTeud3Jv9rSeDP2z463 oGJC5u1ogCYi/sB28tHTsZ+8X1WLDtVLQ6GA96hZxvCr6m+OF2nKqtpbWId5SaYu 3TwfLxWfdcUySMVrnREAU3CKri56kw9RITUhz/Sob9/yTZiZEymKxC0JJhfgQHBh ZY7W15qQ1Di0lVu9GdzSXTmR3fkxjPlz -----END CERTIFICATE-----Generated at Sat Dec 6 15:37:23 2025 by rpki-client