This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: ylM07+7DBsopau6Up5Ut9SCK5K66gQe7Eu3Y8oh4Ays= Subject key identifier: F3:A8:0D:72:1F:48:06:5C:D6:6F:54:E0:8F:B1:C8:3D:DF:F2:41:7D Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 023B Signing time: Fri 19 Dec 2025 01:07:13 +0000 Manifest this update: Fri 19 Dec 2025 01:07:12 +0000 Manifest next update: Fri 26 Dec 2025 01:07:12 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: M4sptN9V97ZIICIJVtOXUhH0poNMt59CxS04vy9aFuc=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Dec 19 01:07:12 2025 GMT Not After : Dec 26 01:07:12 2025 GMT Subject: CN=6944a540-d92f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:df:4b:e5:55:b0:f4:dd:f9:c0:1a:8a:8f:6d: 98:b2:eb:ac:6d:93:94:e6:8b:02:8c:e5:11:56:eb: 1c:e2:dc:96:5c:38:cd:49:c3:d7:07:0a:bf:6f:ce: d0:fc:ee:00:e4:5f:98:4a:ac:df:f6:86:bb:44:18: 31:31:ac:ce:e6:ab:2d:b5:a5:14:7a:2a:b2:9c:de: 8d:62:33:59:98:8f:15:4b:d8:ee:cc:da:0d:6d:bf: 6d:d6:a5:ae:49:58:74:ae:46:53:9d:60:ab:e8:f5: b5:bd:dc:08:23:a2:cf:16:23:b8:bf:4c:06:c4:4b: 34:68:60:db:92:b3:48:b2:e0:27:04:34:eb:3f:2c: 94:9b:c7:9c:b6:b5:16:86:a2:2a:97:81:0b:11:7c: 1d:e0:dd:96:89:fd:8d:51:96:f4:58:df:51:80:50: f4:c1:c3:a4:ea:1a:f5:39:aa:0c:03:75:2f:43:36: 39:47:80:e7:7d:24:7d:e1:4e:ee:ca:3c:b0:1e:04: 26:04:a7:d5:0d:6d:ca:5c:d1:c8:42:d8:21:36:85: d6:8f:85:88:3c:8b:ae:af:13:df:c3:02:d8:5d:7a: 90:3a:bd:a8:f1:57:fa:7a:35:db:f0:9e:67:3e:b8: da:31:70:b4:5e:8c:b9:36:28:49:5e:b2:a6:59:b2: d6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A8:0D:72:1F:48:06:5C:D6:6F:54:E0:8F:B1:C8:3D:DF:F2:41:7D X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:58:59:8b:17:ad:2c:12:40:b8:83:f5:38:52:8f:d5:10:ba: 05:c2:4d:9f:9b:cf:15:13:a6:d9:7f:72:91:e5:67:b3:ea:93: 7b:a6:1b:44:09:36:cc:4e:c7:2c:93:c7:1f:0c:4f:8c:6c:b6: 10:ad:3e:1c:b1:86:19:74:5a:39:3a:8e:5e:61:02:cf:54:61: a5:b8:39:43:7d:d0:9a:9b:1f:3f:63:49:b8:0b:bf:fa:5e:c2: 84:a9:4b:de:2d:1f:9b:e3:53:ef:2f:18:61:e1:f2:14:19:d1: f7:46:1c:94:aa:d1:83:c7:92:1d:34:ac:d3:b2:ae:5c:77:56: 53:cc:ae:0e:44:7f:08:09:07:8c:88:cb:20:2b:de:4e:eb:7d: e7:80:e2:a7:9d:08:fd:11:70:2d:d3:3a:01:a1:58:fd:da:bc: ca:7a:5c:11:50:69:77:61:6a:cf:7f:cf:17:a8:f0:70:eb:50: cd:8d:b8:69:40:5e:9f:6c:88:ec:14:86:79:b5:eb:9f:20:8a: 3f:c5:76:e3:89:2a:00:84:4a:94:60:10:9d:08:34:9e:65:87: ce:21:56:15:aa:d2:cb:a7:51:55:28:fa:88:49:5a:7e:14:1a: 01:aa:b5:c3:13:60:ea:15:78:6e:cb:41:be:5e:b5:c7:d7:ba: ff:fd:99:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUxMjE5MDEwNzEyWhcNMjUxMjI2MDEwNzEyWjAYMRYwFAYD VQQDDA02OTQ0YTU0MC1kOTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArt9L5VWw9N35wBqKj22YsuusbZOU5osCjOURVusc4tyWXDjNScPXBwq/b87Q /O4A5F+YSqzf9oa7RBgxMazO5qsttaUUeiqynN6NYjNZmI8VS9juzNoNbb9t1qWu SVh0rkZTnWCr6PW1vdwII6LPFiO4v0wGxEs0aGDbkrNIsuAnBDTrPyyUm8ectrUW hqIql4ELEXwd4N2Wif2NUZb0WN9RgFD0wcOk6hr1OaoMA3UvQzY5R4DnfSR94U7u yjywHgQmBKfVDW3KXNHIQtghNoXWj4WIPIuurxPfwwLYXXqQOr2o8Vf6ejXb8J5n PrjaMXC0Xoy5NihJXrKmWbLWGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOoDXIf SAZc1m9U4I+xyD3f8kF9MB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3WFmLF60sEkC4g/U4Uo/VELoFwk2fm88VE6bZf3KR5Wez6pN7phtE CTbMTscsk8cfDE+MbLYQrT4csYYZdFo5Oo5eYQLPVGGluDlDfdCamx8/Y0m4C7/6 XsKEqUveLR+b41PvLxhh4fIUGdH3RhyUqtGDx5IdNKzTsq5cd1ZTzK4ORH8ICQeM iMsgK95O633ngOKnnQj9EXAt0zoBoVj92rzKelwRUGl3YWrPf88XqPBw61DNjbhp QF6fbIjsFIZ5teufIIo/xXbjiSoAhEqUYBCdCDSeZYfOIVYVqtLLp1FVKPqISVp+ FBoBqrXDE2DqFXhuy0G+XrXH17r//Zme -----END CERTIFICATE-----Generated at Fri Dec 19 19:23:21 2025 by rpki-client