This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: AaHpj1lIYO2Hl9zEcT+igeJJRlivIL46cg5InYwohjE= Subject key identifier: 36:2A:E8:9F:E1:FC:05:C8:50:34:B6:3C:F3:F9:45:31:4C:CE:D2:D9 Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0FDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0FC4 Signing time: Thu 18 Dec 2025 17:20:24 +0000 Manifest this update: Thu 18 Dec 2025 17:20:23 +0000 Manifest next update: Thu 25 Dec 2025 17:20:23 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: KPesNuhpXJe7SURhqNZrEzhSRWa43iATChdcPft9acI=) 2: 8EF29168D1ED11F08D3A6B3CC4F9AE02.roa (hash: U9eaM1MuTBE4HxyD+oWfbdyrqKzDocKO0zCYwSqP5pQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4060 (0xfdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Dec 18 17:20:23 2025 GMT Not After : Dec 25 17:20:23 2025 GMT Subject: CN=694437d8-450e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:cf:d8:b0:14:2d:c1:55:b7:b7:18:f4:40:be: 29:3f:cc:4d:e8:c3:30:71:74:3b:a2:0a:b5:28:6c: 4e:a3:7d:0b:ac:f2:ac:36:20:9d:9e:da:e3:d8:04: e0:e2:01:6d:3d:33:9d:c6:66:74:4f:5e:2f:1c:96: 6c:3a:44:57:a5:ac:5d:64:04:5b:fb:e0:67:1f:52: 9e:60:39:8b:d8:ad:f7:c0:be:aa:5b:f8:5d:ce:ec: 0d:5a:15:cb:8e:7d:e0:43:43:7b:32:d6:e1:45:a9: 89:21:6d:7f:37:2f:5b:ae:84:70:9c:3f:b1:73:97: 86:5d:87:2b:41:69:17:da:9b:e5:96:b0:4f:6b:9c: 6b:95:6e:7c:dc:88:ac:9f:46:7c:46:bd:7e:c8:0a: 44:f9:f6:5c:05:48:3f:28:75:39:0d:45:c7:76:c2: db:56:42:a5:80:c5:4c:85:05:7c:02:26:9d:5c:66: f8:b5:f0:bc:cf:5b:b8:ec:ae:7b:3f:c8:18:f5:2e: 2d:1f:f4:bd:0b:aa:a8:bd:d7:be:32:7e:dc:ee:f0: ad:82:ee:f9:69:b5:6f:9c:4b:bb:c0:fc:34:d5:9e: cc:1b:ca:7d:00:e7:e5:3b:63:a8:de:d7:03:9c:49: 57:19:eb:35:79:31:09:30:df:69:18:16:03:46:6e: fb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:2A:E8:9F:E1:FC:05:C8:50:34:B6:3C:F3:F9:45:31:4C:CE:D2:D9 X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:a8:cc:6a:03:40:6c:47:b3:77:1c:20:bd:32:f0:f2:2d:a8: 9e:cf:b6:a4:ad:7f:9e:04:57:74:b5:ab:ab:4d:d3:65:4d:e9: ab:17:7a:8d:42:98:c2:36:5b:91:72:29:71:b4:27:f0:86:da: 6b:bf:db:04:be:98:eb:8e:7d:20:a6:09:25:52:bf:d8:88:26: 6b:72:ce:f2:39:7b:00:8f:7c:f6:57:aa:d8:21:e0:9c:49:ee: 6b:0a:99:fd:8f:2a:4c:14:0c:95:55:d9:61:68:02:39:52:53: 2c:4f:83:b9:61:c1:93:e9:17:25:5b:1f:9d:53:e1:6f:70:67: ca:84:f7:8f:c0:99:10:c5:c9:b5:a5:3c:39:af:f8:59:bc:6e: 74:26:21:43:46:f1:07:c7:57:15:94:97:c2:18:6d:4e:ca:68: 67:df:f9:df:b5:e3:f8:02:e0:3b:ac:62:64:08:0b:dd:54:6e: f3:00:de:6f:3a:fa:34:99:4e:a4:91:9f:55:89:96:b0:84:5a: a6:15:1b:74:06:94:ed:9e:65:7e:73:27:f0:6c:df:b2:d9:f4: e6:6d:96:b8:10:ff:09:e7:27:ad:92:59:30:17:a3:24:82:6f: d9:f8:e6:ab:6a:23:b8:7f:53:b7:f2:5a:fd:71:8e:97:8a:44: 69:f3:63:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUxMjE4MTcyMDIzWhcNMjUxMjI1MTcyMDIzWjAYMRYwFAYD VQQDDA02OTQ0MzdkOC00NTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArc/YsBQtwVW3txj0QL4pP8xN6MMwcXQ7ogq1KGxOo30LrPKsNiCdntrj2ATg 4gFtPTOdxmZ0T14vHJZsOkRXpaxdZARb++BnH1KeYDmL2K33wL6qW/hdzuwNWhXL jn3gQ0N7MtbhRamJIW1/Ny9broRwnD+xc5eGXYcrQWkX2pvllrBPa5xrlW583Iis n0Z8Rr1+yApE+fZcBUg/KHU5DUXHdsLbVkKlgMVMhQV8AiadXGb4tfC8z1u47K57 P8gY9S4tH/S9C6qovde+Mn7c7vCtgu75abVvnEu7wPw01Z7MG8p9AOflO2Oo3tcD nElXGes1eTEJMN9pGBYDRm77WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYq6J/h /AXIUDS2PPP5RTFMztLZMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLqMxqA0BsR7N3HCC9MvDyLaiez7akrX+eBFd0taurTdNlTemrF3qN QpjCNluRcilxtCfwhtprv9sEvpjrjn0gpgklUr/YiCZrcs7yOXsAj3z2V6rYIeCc Se5rCpn9jypMFAyVVdlhaAI5UlMsT4O5YcGT6RclWx+dU+FvcGfKhPePwJkQxcm1 pTw5r/hZvG50JiFDRvEHx1cVlJfCGG1Oymhn3/nfteP4AuA7rGJkCAvdVG7zAN5v Ovo0mU6kkZ9ViZawhFqmFRt0BpTtnmV+cyfwbN+y2fTmbZa4EP8J5yetklkwF6Mk gm/Z+OaraiO4f1O38lr9cY6XikRp82OW -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:06 2025 by rpki-client