This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft File: SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft (raw, json) Hash identifier: JOzBn08JH/ugiiWCGeVP/c3UT94YjsWYJxB2yfQdBUw= Subject key identifier: F4:BC:FD:BE:81:F0:BC:4C:48:1F:9C:8E:E4:B5:C1:84:06:CC:AD:B4 Authority key identifier: 49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F Certificate issuer: /CN=A91BC4FF/serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft Manifest number: DD Signing time: Fri 05 Dec 2025 03:34:10 +0000 Manifest this update: Fri 05 Dec 2025 03:34:09 +0000 Manifest next update: Fri 12 Dec 2025 03:34:09 +0000 Files and hashes: 1: SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl (hash: Bo62g/T846Qemp0c/rSDTMQG0kNavQ8btcHs9slLl1A=) 2: 35525B92845611EFB053C341C4F9AE02.roa (hash: VrKew/904a7WGaHwfTfVmRygoJsUgD+2JGEhLd8TxAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC4FF, serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Validity Not Before: Dec 5 03:34:09 2025 GMT Not After : Dec 12 03:34:09 2025 GMT Subject: CN=693252b2-8a92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:59:c2:a8:44:97:71:8f:58:e2:53:e3:49:a4: 74:02:90:b1:69:1d:d6:5b:3c:b9:e0:f8:40:08:9e: f6:0a:9e:17:14:33:9b:3e:5a:3e:63:b6:04:48:53: 73:3b:5f:68:7a:fc:83:15:37:cd:8f:57:ea:b1:79: 8c:4c:c2:0a:b0:40:56:86:cf:b3:d0:24:ea:9e:20: a1:57:86:aa:fd:72:28:b6:38:b4:b3:5b:59:a5:61: 20:1a:5a:70:c2:76:55:58:b4:8b:4e:35:32:df:2a: ab:31:bf:e7:eb:a8:92:60:af:53:3e:39:f0:11:7f: 07:e9:3f:88:97:fd:77:e3:c6:e7:7d:cb:e6:45:0b: 5e:33:d6:a9:0b:93:bd:22:e8:1f:cf:21:6e:5e:aa: 98:fa:db:4e:aa:19:24:5a:e9:95:31:3a:9d:7c:a6: 3f:48:d4:ad:3d:9a:78:ad:59:7c:0b:24:53:14:67: 8c:df:3c:7c:3b:c5:b9:c0:ee:63:c5:26:68:d2:7f: 8a:ca:96:01:ab:ab:be:06:31:e0:bc:d1:dd:19:d1: 31:f1:ce:e7:fb:4f:59:5d:a9:ad:57:bc:a1:49:18: 82:91:9b:9c:e1:eb:0f:06:de:65:81:cd:8e:79:0e: 4a:46:20:4c:3c:c3:cd:b0:d1:b5:29:aa:e4:52:03: 0e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BC:FD:BE:81:F0:BC:4C:48:1F:9C:8E:E4:B5:C1:84:06:CC:AD:B4 X509v3 Authority Key Identifier: keyid:49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:6a:13:f4:a1:21:4f:6a:bf:db:66:ac:9a:4d:42:69:8d:fe: 84:a4:4c:9b:b7:9c:ee:d7:54:32:23:18:ac:6d:4b:e7:42:d0: 1f:47:9f:bc:3b:43:d9:eb:fd:e6:82:f7:6a:6c:fb:c0:90:34: 1b:65:83:01:83:e0:60:52:29:e4:0c:ea:98:20:3a:63:d5:d7: db:b2:d8:41:e1:57:4b:36:d0:57:76:eb:b4:12:73:fb:c1:16: 8d:1a:07:85:22:1a:36:3e:6d:44:4e:9d:e0:c9:d4:37:e4:7b: e6:4f:25:fa:6a:58:e3:71:c6:69:22:78:fb:60:30:11:dd:08: 57:de:16:13:9d:dd:7e:8b:1a:88:70:7b:30:21:93:5e:48:1d: 4b:8c:28:9d:dc:f7:72:31:bc:87:04:85:19:91:bd:ed:55:f2: 61:77:7f:07:92:8d:3b:c5:98:63:7b:c6:73:b8:1c:f1:30:dc: 98:9e:0b:5f:82:b9:25:90:6e:30:a1:80:02:f3:51:d2:b6:ed: d7:66:9c:db:6a:25:59:5f:00:7f:70:bd:78:08:a9:be:9b:ec: 67:9e:d5:7b:69:20:b2:06:88:9a:46:fe:97:ca:14:d8:77:16: dc:ff:9d:c8:c7:35:6a:5f:1a:a2:01:69:93:f9:66:06:18:f8: 71:65:a3:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM0RkYxMTAvBgNVBAUTKDQ5NDc1QjU5NzVGMTk3OTg5NUEzQzZFNDQxODNFNEJD QTJFODM0NkYwHhcNMjUxMjA1MDMzNDA5WhcNMjUxMjEyMDMzNDA5WjAYMRYwFAYD VQQDEw02OTMyNTJiMi04YTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9lnCqESXcY9Y4lPjSaR0ApCxaR3WWzy54PhACJ72Cp4XFDObPlo+Y7YESFNz O19oevyDFTfNj1fqsXmMTMIKsEBWhs+z0CTqniChV4aq/XIotji0s1tZpWEgGlpw wnZVWLSLTjUy3yqrMb/n66iSYK9TPjnwEX8H6T+Il/1348bnfcvmRQteM9apC5O9 IugfzyFuXqqY+ttOqhkkWumVMTqdfKY/SNStPZp4rVl8CyRTFGeM3zx8O8W5wO5j xSZo0n+KypYBq6u+BjHgvNHdGdEx8c7n+09ZXamtV7yhSRiCkZuc4esPBt5lgc2O eQ5KRiBMPMPNsNG1KarkUgMOSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPS8/b6B 8LxMSB+cjuS1wYQGzK20MB8GA1UdIwQYMBaAFElHW1l18ZeYlaPG5EGD5Lyi6DRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzRGRi85QzU2QkU0Mjg0 NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi9TVWRiV1hYeGw1aVZvOGJrUVlQa3ZLTG9O RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVZGJXWFh4bDVpVm84YmtRWVBrdktMb05HOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzRGRi85QzU2QkU0Mjg0NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi9TVWRiV1hYeGw1 aVZvOGJrUVlQa3ZLTG9ORzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8ahP0oSFPar/bZqyaTUJpjf6EpEybt5zu11QyIxisbUvnQtAfR5+8 O0PZ6/3mgvdqbPvAkDQbZYMBg+BgUinkDOqYIDpj1dfbsthB4VdLNtBXduu0EnP7 wRaNGgeFIho2Pm1ETp3gydQ35HvmTyX6aljjccZpInj7YDAR3QhX3hYTnd1+ixqI cHswIZNeSB1LjCid3PdyMbyHBIUZkb3tVfJhd38Hko07xZhje8ZzuBzxMNyYngtf grklkG4woYAC81HStu3XZpzbaiVZXwB/cL14CKm+m+xnntV7aSCyBoiaRv6XyhTY dxbc/53IxzVqXxqiAWmT+WYGGPhxZaP9 -----END CERTIFICATE-----Generated at Sun Dec 7 03:40:07 2025 by rpki-client