This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: qSDM3cSNetwE6ZVcUZUt26z003AIExwtHNUPggRMD8Q= Subject key identifier: B4:47:CF:AE:70:6A:55:59:3D:03:9D:61:0E:66:39:8C:8F:3B:AC:A5 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 01F5 Signing time: Fri 05 Dec 2025 00:50:16 +0000 Manifest this update: Fri 05 Dec 2025 00:50:16 +0000 Manifest next update: Fri 12 Dec 2025 00:50:16 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: akxUH0haLMjH6R1axilVzuqJBDrSfVMdjIWaSEgmLAA=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: tmK0iDwld+e+aTJhpXj4A3zlzhe3/irDCWSZWb2ca9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Dec 5 00:50:16 2025 GMT Not After : Dec 12 00:50:16 2025 GMT Subject: CN=69322c48-309c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:86:3c:24:e9:09:0a:5e:8b:e6:20:2d:9e:79: db:02:36:ee:e0:24:8c:ed:b1:22:d3:55:4b:df:3c: 22:b2:d3:4e:a5:12:41:f1:2c:95:3d:e0:9e:b1:0e: bd:50:c7:2a:c7:8e:0c:a3:2a:1e:79:60:84:95:16: 6a:9a:99:6e:0e:ef:86:d5:1d:f6:a1:e9:5f:46:51: 49:ce:f3:b5:ab:30:3e:15:7e:e6:14:bf:f1:5d:85: 3f:f4:42:15:d2:79:63:54:f4:ce:af:93:11:d3:3e: c6:21:85:87:f4:56:15:b0:a9:e4:5a:01:ac:c0:ec: 3d:b3:db:07:b9:bc:54:07:e9:a4:12:b2:ea:a3:e4: 5a:6e:63:96:10:41:44:b3:aa:2e:1c:df:7f:c7:db: a8:e5:c8:02:b9:09:0d:95:80:63:96:03:7b:0f:f3: 9f:f5:82:83:ea:24:b9:57:6f:f4:e7:99:d1:d7:da: e8:e7:35:4c:97:79:ea:34:b7:9f:53:cf:2d:cf:9b: 2f:6b:02:3c:a3:23:22:d2:de:70:ec:0a:ec:1f:2c: 7c:a6:8f:a7:82:7a:e8:a0:6b:2f:bb:82:98:29:6c: 46:e9:9b:f0:6b:62:5d:97:f9:15:7b:49:99:3f:1c: e6:db:96:3f:ff:7f:b4:29:2b:8c:5d:18:40:c0:69: f7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:47:CF:AE:70:6A:55:59:3D:03:9D:61:0E:66:39:8C:8F:3B:AC:A5 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:8e:aa:89:95:90:09:2c:2d:44:10:7a:73:ff:c8:b9:35:79: f9:41:cc:95:c1:60:82:0d:89:e5:4e:96:ae:9c:bc:52:2e:84: 55:82:ef:78:7f:4e:18:dc:19:e3:a3:58:03:4e:2a:12:ce:d8: 6a:94:6d:ee:03:eb:cd:af:6b:a3:e0:e5:73:53:0e:8a:d4:58: 0a:5b:9a:29:3a:78:9e:27:ae:df:ca:ea:de:74:0c:4c:05:21: 93:11:f6:1c:13:61:d8:73:c3:ce:0f:5d:be:42:04:7e:09:60: 75:03:59:49:5f:52:c1:b2:30:1f:07:8a:61:9e:3b:67:23:c2: 20:69:f6:48:cf:c8:60:aa:7f:3e:fe:24:ca:0e:4b:cb:2f:0d: 7d:d3:a6:72:ee:cb:8f:52:1c:f9:6d:6e:fa:09:8b:cf:d5:ac: af:26:de:4c:c7:9e:2f:08:19:af:d7:b3:ea:88:13:e8:73:5e: 23:e0:86:7e:79:e1:d8:db:2a:8b:59:d2:4c:bc:c0:83:3b:ff: 91:99:8e:4c:71:8d:11:0a:f8:3a:9f:b3:6d:a1:b6:b9:33:c9: 3f:ea:08:19:c2:59:1c:9d:e8:0d:dd:16:cf:6f:57:3c:e1:26: 68:57:22:8c:d4:d9:ac:a8:a5:52:4e:6a:11:9a:d2:18:8e:d7: a5:7a:d3:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUxMjA1MDA1MDE2WhcNMjUxMjEyMDA1MDE2WjAYMRYwFAYD VQQDEw02OTMyMmM0OC0zMDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk4Y8JOkJCl6L5iAtnnnbAjbu4CSM7bEi01VL3zwistNOpRJB8SyVPeCesQ69 UMcqx44MoyoeeWCElRZqmpluDu+G1R32oelfRlFJzvO1qzA+FX7mFL/xXYU/9EIV 0nljVPTOr5MR0z7GIYWH9FYVsKnkWgGswOw9s9sHubxUB+mkErLqo+RabmOWEEFE s6ouHN9/x9uo5cgCuQkNlYBjlgN7D/Of9YKD6iS5V2/055nR19ro5zVMl3nqNLef U88tz5svawI8oyMi0t5w7ArsHyx8po+ngnrooGsvu4KYKWxG6Zvwa2Jdl/kVe0mZ Pxzm25Y//3+0KSuMXRhAwGn3rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRHz65w alVZPQOdYQ5mOYyPO6ylMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWjqqJlZAJLC1EEHpz/8i5NXn5QcyVwWCCDYnlTpaunLxSLoRVgu94 f04Y3Bnjo1gDTioSzthqlG3uA+vNr2uj4OVzUw6K1FgKW5opOnieJ67fyuredAxM BSGTEfYcE2HYc8POD12+QgR+CWB1A1lJX1LBsjAfB4phnjtnI8IgafZIz8hgqn8+ /iTKDkvLLw1906Zy7suPUhz5bW76CYvP1ayvJt5Mx54vCBmv17PqiBPoc14j4IZ+ eeHY2yqLWdJMvMCDO/+RmY5McY0RCvg6n7Ntoba5M8k/6ggZwlkcnegN3RbPb1c8 4SZoVyKM1NmsqKVSTmoRmtIYjteletMZ -----END CERTIFICATE-----Generated at Sun Dec 7 02:13:24 2025 by rpki-client