This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: 9GCIaJzfD9j3Tuwi3Aw/YNVKtAwZhwt4kYb2dyZRFPw= Subject key identifier: E0:8B:B3:D6:58:12:80:B1:09:1C:DD:C2:A0:56:BB:2A:47:9E:29:40 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 35D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 3549 Signing time: Thu 04 Dec 2025 14:22:56 +0000 Manifest this update: Thu 04 Dec 2025 14:22:55 +0000 Manifest next update: Thu 11 Dec 2025 14:22:55 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: i4J+8oZN63CmFN/TBCmrsnq+R/dWZndsSlsVE7sWtKo=) 2: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: 6nK3GoLVaSP0VSJQQ8fMNbxkXH0UKpIkFpkEB95EEy0=) 3: D0886954188811EC8E86754FC4F9AE02.roa (hash: 6VbOvgdK5CTvuRLAoKi7F+0CDGeRIa2tmkBoLvAgouA=) 4: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: Co7SE3g9/ARrpsRXeCTg4P0jRRisbdn9kOGmwejTlBg=) 5: 99CF729E221011ED980A6F47C4F9AE02.roa (hash: atHB41zC9ox7WEbx/oU2a0/b1MGieqCzosX2UKLPzlk=) 6: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: eobj/eFuFNpYpHWfoCh4R2f9ILietn5YmlGo8HxPsps=) 7: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: nVehuPJuIkWIOjh795nZonFcwqqWF8/uu32Co6wlMr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13777 (0x35d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Dec 4 14:22:55 2025 GMT Not After : Dec 11 14:22:55 2025 GMT Subject: CN=6931993f-fe28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:21:e6:5c:b2:e6:36:7d:44:66:69:12:69:27: 58:0c:03:82:46:5f:a5:bc:cb:6a:67:53:a1:a3:55: c8:e0:53:89:63:26:03:d1:89:6a:cd:f1:b5:82:95: 9a:60:03:a0:67:20:67:0e:56:92:d1:85:73:98:fb: f1:43:94:84:c4:bf:ad:07:19:5d:18:5b:4c:80:23: e8:57:00:a9:f7:cc:c5:8d:74:78:0e:60:f4:0e:5c: 83:ff:95:aa:a2:81:b4:55:09:f7:c8:71:a0:32:6c: 81:2c:21:b0:e3:ae:39:81:3f:fa:a6:13:14:2a:95: 0b:e6:49:8d:dd:00:c7:2e:bf:1a:97:5e:20:ed:8b: 4f:75:36:cf:a4:15:7a:6a:00:62:4b:67:a7:a6:1f: 1e:43:0e:c0:5a:9a:2e:c9:33:5f:fe:90:11:0d:aa: 04:73:97:83:8c:7b:7a:0d:70:44:21:5d:b4:8f:5f: 64:06:98:3a:fe:6d:5d:03:b7:92:5a:de:99:0c:3e: c8:fe:b6:eb:d7:b0:7b:43:2b:93:44:46:0f:fb:97: b3:9b:3e:4d:1e:f8:03:75:38:d0:b2:de:0d:04:88: 79:fa:05:3c:66:90:8b:2e:70:65:8e:d7:cb:98:7d: f0:80:cc:ba:48:16:00:26:72:9f:cb:43:bd:de:b6: 22:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:8B:B3:D6:58:12:80:B1:09:1C:DD:C2:A0:56:BB:2A:47:9E:29:40 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:49:42:7e:f7:79:68:6a:3f:14:d1:56:fb:0c:b3:a4:af:2e: a4:17:cf:08:bd:4e:ea:9c:f8:0a:71:91:fa:06:7e:27:64:de: 7c:02:b7:ae:2d:68:a5:97:94:49:e4:54:bf:9b:76:81:3c:1f: cc:83:99:50:c0:c2:41:73:34:46:38:60:86:99:27:69:21:70: cc:43:bc:b2:9d:22:f0:9e:b6:cf:ee:f3:44:e1:89:69:8a:83: ef:4b:17:b7:9e:86:14:2d:ae:15:ae:3c:4d:b7:91:b0:90:e3: fd:86:03:f7:bf:af:26:e8:9e:fe:e5:bf:90:94:09:59:fd:8f: 58:09:5a:18:84:05:5e:aa:c5:0a:84:3d:6b:ee:f2:a1:4a:bd: 06:f4:45:43:f5:91:e7:56:8b:17:9c:c6:e4:b0:d9:1a:e0:0d: 78:69:f1:8c:e0:e5:95:ea:e5:e7:e8:6f:b1:d2:42:05:c4:14: 3f:80:63:ba:25:d6:82:ae:9b:9b:0a:66:eb:51:ba:34:4e:41: ea:c4:cc:ce:5d:8a:69:71:2c:94:f8:e9:f9:15:d5:a7:66:7f: 92:19:c3:82:83:2f:99:2a:ff:5b:38:45:d4:7f:d0:3a:c3:94: 38:b6:8e:36:83:20:7e:53:21:2c:a8:7e:36:cb:f9:1c:3f:af: bd:f8:0e:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUxMjA0MTQyMjU1WhcNMjUxMjExMTQyMjU1WjAYMRYwFAYD VQQDEw02OTMxOTkzZi1mZTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4SHmXLLmNn1EZmkSaSdYDAOCRl+lvMtqZ1Oho1XI4FOJYyYD0YlqzfG1gpWa YAOgZyBnDlaS0YVzmPvxQ5SExL+tBxldGFtMgCPoVwCp98zFjXR4DmD0DlyD/5Wq ooG0VQn3yHGgMmyBLCGw4645gT/6phMUKpUL5kmN3QDHLr8al14g7YtPdTbPpBV6 agBiS2enph8eQw7AWpouyTNf/pARDaoEc5eDjHt6DXBEIV20j19kBpg6/m1dA7eS Wt6ZDD7I/rbr17B7QyuTREYP+5ezmz5NHvgDdTjQst4NBIh5+gU8ZpCLLnBljtfL mH3wgMy6SBYAJnKfy0O93rYi/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCLs9ZY EoCxCRzdwqBWuypHnilAMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeSUJ+93loaj8U0Vb7DLOkry6kF88IvU7qnPgKcZH6Bn4nZN58Areu LWill5RJ5FS/m3aBPB/Mg5lQwMJBczRGOGCGmSdpIXDMQ7yynSLwnrbP7vNE4Ylp ioPvSxe3noYULa4VrjxNt5GwkOP9hgP3v68m6J7+5b+QlAlZ/Y9YCVoYhAVeqsUK hD1r7vKhSr0G9EVD9ZHnVosXnMbksNka4A14afGM4OWV6uXn6G+x0kIFxBQ/gGO6 JdaCrpubCmbrUbo0TkHqxMzOXYppcSyU+On5FdWnZn+SGcOCgy+ZKv9bOEXUf9A6 w5Q4to42gyB+UyEsqH42y/kcP6+9+A5b -----END CERTIFICATE-----Generated at Sat Dec 6 13:50:17 2025 by rpki-client