This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft File: WU96C6m9HBOGhHzoljlj_k5xY2w.mft (raw, json) Hash identifier: +/tEkdC93R36xpwJipImC27qtyEZhncM0lxa3WMs6Qc= Subject key identifier: 9A:DF:2B:A2:12:4D:39:03:38:EE:8D:5C:56:4A:96:E0:1F:26:C1:37 Authority key identifier: 59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C Certificate issuer: /CN=A91FFEDB/serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Certificate serial: 0253 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft Manifest number: 024D Signing time: Sun 07 Dec 2025 00:18:25 +0000 Manifest this update: Sun 07 Dec 2025 00:18:24 +0000 Manifest next update: Sun 14 Dec 2025 00:18:24 +0000 Files and hashes: 1: WU96C6m9HBOGhHzoljlj_k5xY2w.crl (hash: BlszpNmaL3AycbZwP7wGPpnZZXrJ/+V5sLRIfqK5Ehg=) 2: 3CE5C23A550611ED96C8F350C4F9AE02.roa (hash: wfo3IJ4QVH7mLkWRPHTdhiFpu+AklmK5OoP63oQmtyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFEDB, serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Validity Not Before: Dec 7 00:18:24 2025 GMT Not After : Dec 14 00:18:24 2025 GMT Subject: CN=6934c7d1-e691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:18:f1:0e:3f:8d:66:10:33:9d:b5:54:6e:af: ca:56:48:32:6c:5b:a8:5f:93:81:46:81:c5:e5:06: f3:df:fb:f5:db:6f:09:11:5e:c6:b1:cc:34:96:54: ba:0b:79:21:d8:78:51:71:cc:a8:d0:9d:4e:a0:3a: 8e:83:68:c3:23:55:72:ee:90:63:51:8a:ea:ab:08: 30:4f:02:ad:a1:09:3a:b7:d6:99:1c:48:b6:43:7d: 09:e2:b2:68:93:3d:5d:f3:da:67:32:15:e1:b4:7e: 98:ee:16:4a:d4:8d:8f:b0:b1:49:b4:1f:27:0f:58: e7:61:35:74:dd:e3:8d:a5:02:95:22:12:17:9b:5b: 55:a6:c6:f4:a1:33:b9:0d:c0:68:21:e8:52:ef:51: 12:28:f5:06:a6:2d:d4:61:36:6e:3e:77:cd:a6:d9: 38:c6:24:c7:bb:98:89:36:4e:45:8e:68:9c:16:ec: 0e:e9:a6:6e:31:35:4f:ac:ef:4e:72:7c:a4:d4:c1: 0f:b8:74:e1:2e:0a:0a:6f:d0:7d:d0:67:78:1a:07: 3f:f3:16:9e:5f:6f:0b:74:3c:54:28:1c:f9:12:c1: 19:4b:22:05:a2:89:b6:b2:a1:1e:91:d4:75:ca:84: ec:cb:52:77:6c:cb:4f:d1:4c:5b:34:82:34:ea:ab: e7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:DF:2B:A2:12:4D:39:03:38:EE:8D:5C:56:4A:96:E0:1F:26:C1:37 X509v3 Authority Key Identifier: keyid:59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ab:e1:d9:c4:97:16:91:08:85:f1:5e:c0:79:d8:c3:b5:ee: c5:98:cf:04:8a:e6:b9:32:df:50:d8:3e:12:48:af:35:bc:4e: fc:41:bf:c1:82:a4:ff:bf:8f:e6:3b:56:56:d0:20:20:84:95: 8d:6c:83:35:64:f5:3c:0b:67:19:92:50:1d:24:97:31:df:b2: 78:92:03:ac:29:ce:10:29:e7:5f:ad:63:d5:81:80:13:db:78: c6:4b:5f:e0:f9:9a:4a:44:b8:c0:88:8c:7f:df:3f:2e:1f:4b: 5b:e4:23:40:11:a9:be:d6:42:25:c0:4e:a3:cf:73:4c:fa:d9: 22:e9:05:6e:9e:55:3e:1d:1e:10:f1:df:ee:1d:23:0e:42:1c: 83:60:d2:98:bb:74:e4:23:18:ee:15:36:60:58:d5:d3:d0:81: e6:72:fa:23:bb:79:fd:0f:70:cb:47:51:73:1b:20:d2:27:89: 4c:34:bd:1b:47:f6:fa:0c:35:38:88:f2:71:26:6d:c5:a9:98: ca:3b:b5:8e:69:d0:6f:da:3a:21:5f:64:70:2d:0a:10:83:ed: 1c:75:96:90:43:57:bc:b1:a2:59:56:68:f4:b0:1d:32:16:57: 10:56:47:6d:8c:35:76:ea:14:39:72:a5:d8:dd:67:75:14:85: 31:17:17:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZFREIxMTAvBgNVBAUTKDU5NEY3QTBCQTlCRDFDMTM4Njg0N0NFODk2Mzk2M0ZF NEU3MTYzNkMwHhcNMjUxMjA3MDAxODI0WhcNMjUxMjE0MDAxODI0WjAYMRYwFAYD VQQDEw02OTM0YzdkMS1lNjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7xjxDj+NZhAznbVUbq/KVkgybFuoX5OBRoHF5Qbz3/v1228JEV7Gscw0llS6 C3kh2HhRccyo0J1OoDqOg2jDI1Vy7pBjUYrqqwgwTwKtoQk6t9aZHEi2Q30J4rJo kz1d89pnMhXhtH6Y7hZK1I2PsLFJtB8nD1jnYTV03eONpQKVIhIXm1tVpsb0oTO5 DcBoIehS71ESKPUGpi3UYTZuPnfNptk4xiTHu5iJNk5FjmicFuwO6aZuMTVPrO9O cnyk1MEPuHThLgoKb9B90Gd4Ggc/8xaeX28LdDxUKBz5EsEZSyIFoom2sqEekdR1 yoTsy1J3bMtP0UxbNII06qvn9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrfK6IS TTkDOO6NXFZKluAfJsE3MB8GA1UdIwQYMBaAFFlPegupvRwThoR86JY5Y/5OcWNs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkVEQi8zNEQ1RDdFNjU1 MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhCT0doSHpvbGpsal9rNXhZ MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dVOTZDNm05SEJPR2hIem9samxqX2s1eFkydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkVEQi8zNEQ1RDdFNjU1MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhC T0doSHpvbGpsal9rNXhZMncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgq+HZxJcWkQiF8V7AedjDte7FmM8Eiua5Mt9Q2D4SSK81vE78Qb/B gqT/v4/mO1ZW0CAghJWNbIM1ZPU8C2cZklAdJJcx37J4kgOsKc4QKedfrWPVgYAT 23jGS1/g+ZpKRLjAiIx/3z8uH0tb5CNAEam+1kIlwE6jz3NM+tki6QVunlU+HR4Q 8d/uHSMOQhyDYNKYu3TkIxjuFTZgWNXT0IHmcvoju3n9D3DLR1FzGyDSJ4lMNL0b R/b6DDU4iPJxJm3FqZjKO7WOadBv2johX2RwLQoQg+0cdZaQQ1e8saJZVmj0sB0y FlcQVkdtjDV26hQ5cqXY3Wd1FIUxFxcv -----END CERTIFICATE-----Generated at Sun Dec 7 03:23:57 2025 by rpki-client