This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: OvmPcEpPbh8u1V+byjsZFPFc+zkbikkIDMQD7bQxZMQ= Subject key identifier: A9:81:6D:3D:93:C1:56:1F:BB:93:ED:FF:93:2B:D7:23:AD:DA:87:C8 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 050E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 04F5 Signing time: Thu 04 Dec 2025 22:20:40 +0000 Manifest this update: Thu 04 Dec 2025 22:20:39 +0000 Manifest next update: Thu 11 Dec 2025 22:20:39 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: Q8GSSRfQbIfJR3uzpSYBIKQ5lbZvmF8XQy9BULXtXhM=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:20:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1294 (0x50e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Dec 4 22:20:39 2025 GMT Not After : Dec 11 22:20:39 2025 GMT Subject: CN=69320937-c9e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:74:3f:30:fa:1b:da:1c:a5:9a:1e:ab:4f:80: 10:bb:2f:92:56:0e:36:47:33:4c:84:4a:14:65:8b: 90:d6:a0:c3:1b:55:85:0d:82:e4:64:f7:99:5b:7e: fe:8e:07:7d:e8:4b:91:ba:d7:8e:ac:88:09:46:46: 1a:6f:75:46:4f:e3:61:a1:82:a5:8a:f7:be:c4:37: 5a:04:03:b7:9d:3c:61:9c:e8:31:40:71:00:23:9a: 7c:41:85:31:b7:32:0c:99:47:be:7a:43:da:e2:79: b4:55:fa:c4:76:9e:e5:b0:d7:d0:9f:89:41:6a:f2: dd:ed:b2:bc:04:64:b8:2f:40:e5:15:4a:04:36:2b: 40:80:d2:58:64:15:f8:83:f2:0c:f0:8b:d8:7f:82: 47:14:ef:8b:ba:b5:5b:d7:f8:28:ca:85:4a:4e:32: 50:d1:ae:b0:c6:4c:48:95:88:ea:7c:22:d9:64:1b: 42:c9:04:e3:b3:4e:f4:14:e6:69:92:9a:78:ef:61: 4c:e9:e2:c5:8d:46:31:1d:8a:42:53:e1:cb:a5:11: b5:2d:7c:57:cf:a9:a5:37:ec:60:5f:a6:35:b9:38: ca:27:0b:08:c0:be:56:dd:61:0d:5e:fa:4a:26:34: e6:8b:ab:17:6e:ba:84:51:98:9f:93:75:6e:b8:e9: bb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:81:6D:3D:93:C1:56:1F:BB:93:ED:FF:93:2B:D7:23:AD:DA:87:C8 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:02:6a:59:29:ec:70:c3:5b:a7:26:cb:0c:f3:e5:a8:8a:36: d0:9d:13:10:ef:60:f9:d8:5f:46:96:4e:68:17:92:f0:a2:0d: d8:2b:62:a6:0c:04:50:b5:e9:30:67:9f:6b:25:6e:23:b3:11: 5a:84:b9:1c:21:33:a1:18:69:1a:5a:fd:2a:a3:33:e9:84:60: 00:59:dc:3d:c0:53:e9:c0:bb:5a:c1:2f:b3:65:01:c9:5d:a7: c0:9b:c9:16:dc:c4:a1:4b:5c:58:e0:4e:89:a0:3a:db:86:e3: aa:85:d7:0e:12:ff:e1:b9:f3:96:77:9a:0b:0d:a0:8d:bd:f9: 06:e5:3b:1e:2a:8d:ec:f8:bb:7e:9b:37:64:8d:e9:4b:5f:09: d9:d0:d0:25:e3:a7:f2:b0:48:7e:b7:4f:9b:fc:91:c7:a3:b7: a2:e9:ee:8e:d8:15:8a:9c:2b:47:1a:87:90:1c:41:91:fe:0f: d3:62:50:be:be:7b:9d:81:6e:1b:c6:ab:dc:f3:c4:20:93:b1: 97:86:5f:93:08:f7:07:b5:35:c1:83:68:ba:03:05:b5:b9:8b: 92:3b:c4:9b:4c:fd:98:c1:26:22:ef:ad:5c:80:ef:09:8d:53: 3c:6f:c5:41:42:d8:e2:74:91:d9:e3:aa:09:a2:90:01:9d:4f: fd:ae:1f:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUxMjA0MjIyMDM5WhcNMjUxMjExMjIyMDM5WjAYMRYwFAYD VQQDEw02OTMyMDkzNy1jOWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nQ/MPob2hylmh6rT4AQuy+SVg42RzNMhEoUZYuQ1qDDG1WFDYLkZPeZW37+ jgd96EuRuteOrIgJRkYab3VGT+NhoYKlive+xDdaBAO3nTxhnOgxQHEAI5p8QYUx tzIMmUe+ekPa4nm0VfrEdp7lsNfQn4lBavLd7bK8BGS4L0DlFUoENitAgNJYZBX4 g/IM8IvYf4JHFO+LurVb1/goyoVKTjJQ0a6wxkxIlYjqfCLZZBtCyQTjs070FOZp kpp472FM6eLFjUYxHYpCU+HLpRG1LXxXz6mlN+xgX6Y1uTjKJwsIwL5W3WENXvpK JjTmi6sXbrqEUZifk3VuuOm7RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmBbT2T wVYfu5Pt/5Mr1yOt2ofIMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBAmpZKexww1unJssM8+WoijbQnRMQ72D52F9Glk5oF5Lwog3YK2Km DARQtekwZ59rJW4jsxFahLkcITOhGGkaWv0qozPphGAAWdw9wFPpwLtawS+zZQHJ XafAm8kW3MShS1xY4E6JoDrbhuOqhdcOEv/hufOWd5oLDaCNvfkG5TseKo3s+Lt+ mzdkjelLXwnZ0NAl46fysEh+t0+b/JHHo7ei6e6O2BWKnCtHGoeQHEGR/g/TYlC+ vnudgW4bxqvc88Qgk7GXhl+TCPcHtTXBg2i6AwW1uYuSO8SbTP2YwSYi761cgO8J jVM8b8VBQtjidJHZ46oJopABnU/9rh8g -----END CERTIFICATE-----Generated at Sat Dec 6 22:41:53 2025 by rpki-client