This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft File: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft (raw, json) Hash identifier: xIRIvypJj2recllJ2BhbE2RSfm0IrLpx/H2SP2jsdSs= Subject key identifier: DA:2A:E7:0B:E6:69:FB:92:BE:3E:41:D9:4D:74:1C:5F:E2:12:89:BE Authority key identifier: 71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F Certificate issuer: /CN=A91FF84F/serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Certificate serial: 0692 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft Manifest number: 068B Signing time: Thu 04 Dec 2025 21:14:52 +0000 Manifest this update: Thu 04 Dec 2025 21:14:51 +0000 Manifest next update: Thu 11 Dec 2025 21:14:51 +0000 Files and hashes: 1: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl (hash: Nw6FC/Wyz6lrbNR8jvhb55B3hu5dKAG9mEWKJMAuDOw=) 2: 2F320256981611EB904AF150C4F9AE02.roa (hash: E4TUFKJ6pvq2MnnX/Fp4K5QwjuZ8zkimayyU0Jn+DJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:14:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1682 (0x692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF84F, serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Validity Not Before: Dec 4 21:14:51 2025 GMT Not After : Dec 11 21:14:51 2025 GMT Subject: CN=6931f9cb-036f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:10:ce:9b:55:cf:a1:d7:f5:08:1a:97:c3:6a: 74:29:f8:8c:51:50:b9:d4:d3:ac:b8:2b:30:4b:49: 8b:42:ae:b1:be:af:2d:55:51:3c:86:67:41:97:f0: 66:be:7f:83:be:16:e6:5a:76:bc:e5:d3:7b:a7:e6: f8:60:74:b2:9b:01:aa:29:1c:05:08:af:98:8e:d2: ba:f4:fa:7f:7f:bd:3d:07:de:ac:94:9e:06:73:ee: 31:b6:30:59:89:63:27:96:88:39:d7:c3:6f:0b:69: 32:e7:0a:04:7d:6d:06:78:a6:cc:46:c8:17:53:ed: 45:63:f9:cd:90:58:22:d7:dd:c9:88:1e:b5:b8:42: 1e:f9:34:e3:c9:fe:d8:e8:7b:9d:04:ef:89:c2:d7: 17:60:28:98:91:9e:d1:ee:77:eb:26:1a:26:73:e9: 76:81:3c:b5:87:8d:5b:e0:a0:5c:2c:3d:e7:1f:80: dc:c7:41:1e:8b:b5:b3:31:44:3a:e3:81:29:46:10: 4d:c3:b6:6c:25:7c:dd:5e:46:78:21:0d:08:ae:98: 38:f8:30:ac:df:b1:ef:22:66:82:61:44:e7:b5:4e: 7f:dd:31:c8:98:f0:f8:82:2c:c2:41:90:63:27:53: 2d:a7:05:52:ba:fa:92:1b:7c:c3:02:69:a7:d4:ec: c9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2A:E7:0B:E6:69:FB:92:BE:3E:41:D9:4D:74:1C:5F:E2:12:89:BE X509v3 Authority Key Identifier: keyid:71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:87:ca:91:6b:67:d7:ff:d4:db:ff:9a:d8:7c:63:f5:f8:04: 18:ef:60:6f:06:d8:26:15:d6:d7:af:c5:0a:84:1c:60:2a:46: 51:f1:76:87:28:3d:66:f4:d5:88:18:e6:16:46:d8:bf:50:d6: 31:6a:ea:58:a6:06:9a:65:0e:c2:c1:07:c4:4e:fb:c3:4b:d2: 10:7c:50:b5:32:06:da:3c:7c:92:9d:6a:bd:3e:42:ea:fa:da: a0:7e:9a:c9:fc:98:37:14:ee:08:9d:0b:d8:b3:bb:25:da:db: 36:33:d4:40:2a:9c:3e:03:cf:cf:9f:c9:6e:01:4b:fd:65:e9: 00:a9:cc:6a:34:f2:81:85:40:0e:8a:40:51:15:90:53:1a:08: 4c:af:63:c2:0d:d7:fb:83:7c:9c:83:fe:79:21:e5:2d:e5:40: 90:70:71:53:33:c9:0d:ac:05:0e:ba:0f:8b:9d:17:62:03:3e: e1:9c:93:a6:24:81:fe:5e:dd:f4:2f:af:f3:8d:80:58:e5:61: 3c:68:5c:cc:d2:70:bc:54:76:77:91:44:0e:ef:0d:06:5f:d5: 9b:c1:59:80:3f:95:99:93:90:56:26:2c:6d:68:69:23:f9:aa: ba:67:3d:35:d4:5f:a1:ad:ed:af:ef:bf:4d:67:78:d1:0a:b4: 8f:8c:44:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4NEYxMTAvBgNVBAUTKDcxNDFDMzE5QkI0NEJGQkNERTMzODJCM0JCNjkxMjY1 Rjk1RDMwOUYwHhcNMjUxMjA0MjExNDUxWhcNMjUxMjExMjExNDUxWjAYMRYwFAYD VQQDEw02OTMxZjljYi0wMzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhDOm1XPodf1CBqXw2p0KfiMUVC51NOsuCswS0mLQq6xvq8tVVE8hmdBl/Bm vn+DvhbmWna85dN7p+b4YHSymwGqKRwFCK+YjtK69Pp/f709B96slJ4Gc+4xtjBZ iWMnlog518NvC2ky5woEfW0GeKbMRsgXU+1FY/nNkFgi193JiB61uEIe+TTjyf7Y 6HudBO+JwtcXYCiYkZ7R7nfrJhomc+l2gTy1h41b4KBcLD3nH4Dcx0Eei7WzMUQ6 44EpRhBNw7ZsJXzdXkZ4IQ0Irpg4+DCs37HvImaCYUTntU5/3THImPD4gizCQZBj J1MtpwVSuvqSG3zDAmmn1OzJsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoq5wvm afuSvj5B2U10HF/iEom+MB8GA1UdIwQYMBaAFHFBwxm7RL+83jOCs7tpEmX5XTCf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg0Ri9ERDQ4N0E1Qzk4 MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3emVNNEt6dTJrU1pmbGRN SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVSERHYnRFdjd6ZU00S3p1MmtTWmZsZE1KOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg0Ri9ERDQ4N0E1Qzk4MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3 emVNNEt6dTJrU1pmbGRNSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgh8qRa2fX/9Tb/5rYfGP1+AQY72BvBtgmFdbXr8UKhBxgKkZR8XaH KD1m9NWIGOYWRti/UNYxaupYpgaaZQ7CwQfETvvDS9IQfFC1MgbaPHySnWq9PkLq +tqgfprJ/Jg3FO4InQvYs7sl2ts2M9RAKpw+A8/Pn8luAUv9ZekAqcxqNPKBhUAO ikBRFZBTGghMr2PCDdf7g3ycg/55IeUt5UCQcHFTM8kNrAUOug+LnRdiAz7hnJOm JIH+Xt30L6/zjYBY5WE8aFzM0nC8VHZ3kUQO7w0GX9WbwVmAP5WZk5BWJixtaGkj +aq6Zz011F+hre2v779NZ3jRCrSPjESO -----END CERTIFICATE-----Generated at Sat Dec 6 22:26:00 2025 by rpki-client