This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.mft File: UT7Oc-6eoyXqRCkxsAYr2L8wSnY.mft (raw, json) Hash identifier: SgidQrj9qHD5fOSrfmhjcndxqhjkagzlFcKt64Igwos= Subject key identifier: 7A:7D:0F:60:58:AF:7E:B9:26:8A:34:F9:54:B7:0B:77:86:FE:62:36 Authority key identifier: 51:3E:CE:73:EE:9E:A3:25:EA:44:29:31:B0:06:2B:D8:BF:30:4A:76 Certificate issuer: /CN=A91C575E/serialNumber=513ECE73EE9EA325EA442931B0062BD8BF304A76 Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.mft Manifest number: 33 Signing time: Fri 05 Dec 2025 05:26:39 +0000 Manifest this update: Fri 05 Dec 2025 05:26:38 +0000 Manifest next update: Fri 12 Dec 2025 05:26:38 +0000 Files and hashes: 1: UT7Oc-6eoyXqRCkxsAYr2L8wSnY.crl (hash: rXwPJ+d3cH8LSmrTRzgUrCf0DfA8eyONYz1L4Nu6G/0=) 2: 3FD60CEC896B11F0A99C2258C4F9AE02.roa (hash: L2I2C5AaIi5CRCmOivb7F6/dBQAFh3PeT7bznCfpjdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.crl rsync://rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:26:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C575E, serialNumber=513ECE73EE9EA325EA442931B0062BD8BF304A76 Validity Not Before: Dec 5 05:26:38 2025 GMT Not After : Dec 12 05:26:38 2025 GMT Subject: CN=69326d0e-d094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f4:e4:78:7d:a5:0a:e2:28:ea:ba:54:d8:dc: 78:91:15:ba:b3:62:43:b5:f4:63:5f:75:7e:15:c9: ea:9f:93:10:68:50:c5:d4:97:77:55:59:86:04:9d: 42:48:d3:ff:ea:20:d5:49:f3:0a:b7:f3:30:fc:19: 75:cc:08:3b:67:27:35:0f:12:f5:81:aa:61:70:41: 28:65:bd:ff:0a:9c:99:23:a2:01:6f:84:a9:61:9a: e1:69:9c:2e:27:65:f7:87:81:f6:d0:d6:76:8d:e5: 6e:26:11:80:7c:12:7a:8c:12:58:44:5e:7b:65:22: 79:a7:35:e3:b8:b9:dc:96:bf:dc:dd:bb:e4:23:dd: b7:70:2d:31:4a:1c:c6:ff:09:2a:7a:25:84:85:24: 22:00:03:f0:83:fd:b8:65:71:85:93:87:aa:d6:d9: 87:87:bd:01:19:04:49:ff:5c:ec:65:b0:fb:c7:eb: 54:ad:1c:2d:1c:8b:29:9f:4f:d1:a1:85:30:77:21: a4:11:27:cd:af:4b:eb:40:d0:18:4a:3e:c1:aa:44: 6e:3f:ac:0c:5e:09:d6:12:80:30:a5:c0:7e:51:cb: d4:3c:7e:db:a0:66:c6:2c:80:be:fc:63:73:9f:a7: c1:99:b7:53:8a:23:81:e3:f7:e8:06:4f:cf:66:55: 26:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:7D:0F:60:58:AF:7E:B9:26:8A:34:F9:54:B7:0B:77:86:FE:62:36 X509v3 Authority Key Identifier: keyid:51:3E:CE:73:EE:9E:A3:25:EA:44:29:31:B0:06:2B:D8:BF:30:4A:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C575E/E2ACB43A896A11F081E44D57C4F9AE02/UT7Oc-6eoyXqRCkxsAYr2L8wSnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:a5:6a:b6:d6:26:da:d1:81:1c:41:4c:82:9a:be:9f:5f:ba: 14:ab:ee:28:5e:c4:95:6f:b5:61:be:d2:0d:85:9a:12:4b:ca: d6:57:12:84:ac:12:7e:c1:9d:30:99:8f:53:93:20:da:d5:bb: d6:f2:d5:27:b6:c6:44:72:74:45:8b:0d:78:a1:63:f2:d1:24: eb:f9:56:ba:8f:47:c9:e0:16:15:9f:4e:62:1f:82:79:93:b2: c0:93:48:24:ce:ed:eb:11:2a:a6:5c:51:22:81:a7:e2:82:0f: 15:49:9b:9d:e9:c9:cc:6c:71:ff:69:c0:0d:45:89:0d:87:53: 72:21:e8:cf:52:82:b9:2b:9e:06:ad:74:e2:ee:1e:40:02:e5: ae:99:da:66:c4:df:12:9a:38:19:bb:6d:eb:39:68:7e:10:02: d2:a6:1f:dd:6a:03:7a:4e:ea:7e:d6:84:c9:c3:69:05:c7:b4: 34:21:06:cd:ae:cc:2d:6e:e7:53:bc:69:70:86:e8:38:4d:60: bb:4b:bf:71:92:37:b6:82:4c:2e:cc:6c:c0:c2:36:7f:5b:22: db:95:97:e4:0c:ce:eb:56:3f:6f:25:33:8e:54:fd:48:e9:91: 6b:fc:2a:27:dc:c5:8f:12:d0:1e:4c:05:12:95:52:c0:77:f0: d2:c7:44:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTc1RTExMC8GA1UEBRMoNTEzRUNFNzNFRTlFQTMyNUVBNDQyOTMxQjAwNjJCRDhC RjMwNEE3NjAeFw0yNTEyMDUwNTI2MzhaFw0yNTEyMTIwNTI2MzhaMBgxFjAUBgNV BAMTDTY5MzI2ZDBlLWQwOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC79OR4faUK4ijqulTY3HiRFbqzYkO19GNfdX4VyeqfkxBoUMXUl3dVWYYEnUJI 0//qINVJ8wq38zD8GXXMCDtnJzUPEvWBqmFwQShlvf8KnJkjogFvhKlhmuFpnC4n ZfeHgfbQ1naN5W4mEYB8EnqMElhEXntlInmnNeO4udyWv9zdu+Qj3bdwLTFKHMb/ CSp6JYSFJCIAA/CD/bhlcYWTh6rW2YeHvQEZBEn/XOxlsPvH61StHC0ciymfT9Gh hTB3IaQRJ82vS+tA0BhKPsGqRG4/rAxeCdYSgDClwH5Ry9Q8ftugZsYsgL78Y3Of p8GZt1OKI4Hj9+gGT89mVSbxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUen0PYFiv frkmijT5VLcLd4b+YjYwHwYDVR0jBBgwFoAUUT7Oc+6eoyXqRCkxsAYr2L8wSnYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1NzVFL0UyQUNCNDNBODk2 QTExRjA4MUU0NEQ1N0M0RjlBRTAyL1VUN09jLTZlb3lYcVJDa3hzQVlyMkw4d1Nu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVVQ3T2MtNmVveVhxUkNreHNBWXIyTDh3U25ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 NzVFL0UyQUNCNDNBODk2QTExRjA4MUU0NEQ1N0M0RjlBRTAyL1VUN09jLTZlb3lY cVJDa3hzQVlyMkw4d1NuWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKilarbWJtrRgRxBTIKavp9fuhSr7ihexJVvtWG+0g2FmhJLytZXEoSs En7BnTCZj1OTINrVu9by1Se2xkRydEWLDXihY/LRJOv5VrqPR8ngFhWfTmIfgnmT ssCTSCTO7esRKqZcUSKBp+KCDxVJm53pycxscf9pwA1FiQ2HU3Ih6M9Sgrkrngat dOLuHkAC5a6Z2mbE3xKaOBm7bes5aH4QAtKmH91qA3pO6n7WhMnDaQXHtDQhBs2u zC1u51O8aXCG6DhNYLtLv3GSN7aCTC7MbMDCNn9bItuVl+QMzutWP28lM45U/Ujp kWv8KifcxY8S0B5MBRKVUsB38NLHRCQ= -----END CERTIFICATE-----Generated at Sat Dec 6 21:29:19 2025 by rpki-client