This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: 8sBNaNl3lmlJRD7GRNme2gOUU8b4iOte2ZB7OnGuET8= Subject key identifier: 1C:79:6B:55:87:23:A0:36:80:34:BE:56:02:4A:C2:BB:43:B6:A2:1A Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: 010E Signing time: Fri 05 Dec 2025 02:59:05 +0000 Manifest this update: Fri 05 Dec 2025 02:59:05 +0000 Manifest next update: Fri 12 Dec 2025 02:59:05 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: pqTZawjIxS8oNn/baby/5h4n3qNxkBgHJ+YegyTFmlU=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: EPqvpxlJgwQtY4nw1cFwMuEYfLLzI7V4J9A9JpW8gvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F, serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: Dec 5 02:59:05 2025 GMT Not After : Dec 12 02:59:05 2025 GMT Subject: CN=69324a79-bffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6d:dc:80:b7:4d:67:1f:60:f0:aa:25:a2:a9: 17:5f:8c:4f:07:76:16:c0:6c:68:f1:2e:e9:53:a0: 4d:73:e6:66:9c:74:36:7d:ad:92:db:db:f7:1a:82: 1a:fc:96:b2:a7:49:c0:cc:3f:d5:e4:cb:b6:47:5f: 9c:11:cd:3d:9d:b7:d5:82:a8:d6:cf:7a:2a:c5:f0: 66:b1:55:97:a4:80:48:ed:bf:a4:dc:ad:5a:09:0e: 28:9f:2b:33:aa:ca:01:3d:c6:35:1e:02:a7:85:cb: 61:df:e5:26:d3:2e:70:25:cb:29:bd:d3:ac:d2:9c: 48:a1:6a:d7:73:9c:41:64:14:67:4d:17:bf:5f:42: 39:7f:7f:71:40:a2:10:3b:c9:6c:68:ef:dd:18:68: f3:22:87:72:3f:ae:28:e0:67:bd:6f:6b:1e:b3:cc: e7:fb:09:89:76:9f:91:47:7c:91:f3:94:0a:47:6b: 31:93:aa:9d:64:c9:09:8d:62:a5:fb:cb:6a:af:21: d4:d2:ba:77:1f:8e:ac:86:d8:3e:cf:75:3e:aa:10: 3b:8a:f1:dd:d0:76:6b:df:d9:d8:d6:b3:0d:03:28: 6f:8f:4e:d3:d1:c5:46:ae:f2:4c:24:68:2f:84:2d: 6c:33:5c:dd:48:c6:f1:aa:54:01:49:dd:51:85:e9: 88:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:79:6B:55:87:23:A0:36:80:34:BE:56:02:4A:C2:BB:43:B6:A2:1A X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:f8:7f:ca:e6:12:68:e2:86:7b:9a:80:81:61:46:72:2d:8a: b5:ce:35:c2:e4:73:f3:23:8d:b7:c6:5f:1e:02:01:77:d1:c4: 17:9b:7c:cc:dd:1e:e2:4b:19:2d:a5:43:e2:ce:76:e7:98:83: ec:f3:07:f5:45:18:b2:28:b8:8b:3b:8b:57:3a:58:ff:d4:2b: 4f:7e:ad:a5:68:d5:8d:04:bd:5a:91:ed:38:c2:76:2b:a5:a0: 5a:5c:01:f6:ec:45:d6:96:1d:60:c4:ce:b7:02:13:54:64:a7: e6:8a:7e:5b:32:d9:cc:29:39:d8:6d:e6:ac:ca:59:0a:21:3b: 91:d4:01:b8:d0:ac:a1:0a:7a:9f:fc:9f:56:c1:ec:42:a5:46: 9c:5b:8e:e1:bc:d9:41:ec:3b:b2:3d:4a:c2:af:49:1c:44:75: c0:7f:65:39:bf:ab:6b:d7:c8:af:a1:38:26:80:d2:e2:28:d4: b2:71:bc:9a:1f:c6:5c:a9:85:76:c8:29:01:81:77:f7:1b:85: c2:71:12:57:58:54:b9:d2:c4:e0:52:76:93:cf:97:00:67:36: fa:71:76:a4:13:e1:f7:28:40:a1:7e:58:fd:c0:68:f8:1d:2f: 6d:51:1b:22:ea:0a:06:2f:6f:e4:f9:9e:13:4d:a0:97:ac:58: 7d:91:3f:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2OUYxMTAvBgNVBAUTKEIyRTg4RUREMzYxQkNDNjE5NEM5N0Y2OEM0NzI1MTgw RkYwMkY3MjQwHhcNMjUxMjA1MDI1OTA1WhcNMjUxMjEyMDI1OTA1WjAYMRYwFAYD VQQDEw02OTMyNGE3OS1iZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsm3cgLdNZx9g8KoloqkXX4xPB3YWwGxo8S7pU6BNc+ZmnHQ2fa2S29v3GoIa /Jayp0nAzD/V5Mu2R1+cEc09nbfVgqjWz3oqxfBmsVWXpIBI7b+k3K1aCQ4onysz qsoBPcY1HgKnhcth3+Um0y5wJcspvdOs0pxIoWrXc5xBZBRnTRe/X0I5f39xQKIQ O8lsaO/dGGjzIodyP64o4Ge9b2ses8zn+wmJdp+RR3yR85QKR2sxk6qdZMkJjWKl +8tqryHU0rp3H46shtg+z3U+qhA7ivHd0HZr39nY1rMNAyhvj07T0cVGrvJMJGgv hC1sM1zdSMbxqlQBSd1RhemIsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBx5a1WH I6A2gDS+VgJKwrtDtqIaMB8GA1UdIwQYMBaAFLLojt02G8xhlMl/aMRyUYD/Avck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY5Ri9CRDg1OUY5NjMz QTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpHR1V5WDlveEhKUmdQOEM5 eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY5Ri9CRDg1OUY5NjMzQTMxMUVGQTVCNDlCMjNDNEY5QUUwMi9zdWlPM1RZYnpH R1V5WDlveEhKUmdQOEM5eVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6+H/K5hJo4oZ7moCBYUZyLYq1zjXC5HPzI423xl8eAgF30cQXm3zM 3R7iSxktpUPiznbnmIPs8wf1RRiyKLiLO4tXOlj/1CtPfq2laNWNBL1ake04wnYr paBaXAH27EXWlh1gxM63AhNUZKfmin5bMtnMKTnYbeasylkKITuR1AG40KyhCnqf /J9WwexCpUacW47hvNlB7DuyPUrCr0kcRHXAf2U5v6tr18ivoTgmgNLiKNSycbya H8ZcqYV2yCkBgXf3G4XCcRJXWFS50sTgUnaTz5cAZzb6cXakE+H3KEChflj9wGj4 HS9tURsi6goGL2/k+Z4TTaCXrFh9kT9l -----END CERTIFICATE-----Generated at Sat Dec 6 21:29:09 2025 by rpki-client