This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft File: 0UdMHaQ5s05IfCjCRynmh-CUfXM.mft (raw, json) Hash identifier: MMZqgjhRxEuc/ZCiC69r0/fv79Bxwv0kjXkY0hzkUw0= Subject key identifier: 5D:6A:EF:8D:2C:A2:D9:BA:01:A6:84:B7:64:F0:8D:C4:3C:D5:B1:68 Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 06B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft Manifest number: 0695 Signing time: Wed 24 Dec 2025 21:48:13 +0000 Manifest this update: Wed 24 Dec 2025 21:48:13 +0000 Manifest next update: Wed 31 Dec 2025 21:48:13 +0000 Files and hashes: 1: 0UdMHaQ5s05IfCjCRynmh-CUfXM.crl (hash: OqaHeNDMe1c95ZGwKRdA1+PLuiQHQxw2XEQaM4ArNBY=) 2: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (hash: 5xwHH4/f23qWAT+TboZC+tRvenA32AbWJXTfPPug25w=) 3: AB4B141CA24211ED92C4107BC4F9AE02.roa (hash: gznbpzQsXm6xdg/ldBzHxBtH3yLXVXqXYnLIiSuqeug=) 4: E9FB74DCE57711ECBC483554C4F9AE02.roa (hash: t68ri8+sG+PCgnACutRhiIQMtoo2iXpsz04+S32xy6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 21:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1713 (0x6b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8, serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: Dec 24 21:48:13 2025 GMT Not After : Dec 31 21:48:13 2025 GMT Subject: CN=694c5f9d-9186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:37:a2:cf:71:25:55:bd:5f:46:d4:87:45:b5: 4b:16:82:4b:35:71:2b:34:3d:7e:dc:aa:92:df:2f: 8f:1b:85:c0:6b:6c:2f:49:5b:a6:f6:60:62:9e:87: 1c:89:02:32:7f:eb:ff:73:e2:25:cd:18:21:78:3a: 81:9e:84:01:3e:a7:17:21:f7:81:ea:48:0e:25:4d: 23:25:b3:94:63:5c:5b:eb:42:3c:51:09:49:3a:97: b0:fe:04:dc:81:a4:88:64:ef:7b:20:94:b3:83:aa: 50:5c:91:36:18:d9:93:36:dd:2e:ce:bf:cd:84:dd: 4b:0f:72:1e:9b:10:1c:25:58:27:7c:f5:99:15:5c: 2d:8b:3c:3f:34:aa:ea:80:a1:fe:89:17:c1:19:6c: cb:2d:80:4f:2c:a9:29:6b:4d:58:12:7b:7d:52:f8: 20:3f:6f:fe:93:90:6e:6b:f9:f2:40:71:fb:8e:25: ce:89:fa:54:36:82:b0:fb:3a:bf:28:6b:08:ab:60: d1:5e:30:39:55:a9:e8:35:46:ec:4a:d1:28:1a:9d: 40:2c:93:e8:30:7c:a2:ed:33:85:29:ff:6f:ee:9f: 0a:22:33:4a:73:d4:64:25:09:71:63:62:80:b6:90: 52:7d:48:29:ed:9e:66:e4:9b:e1:b3:64:3e:1f:16: 42:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6A:EF:8D:2C:A2:D9:BA:01:A6:84:B7:64:F0:8D:C4:3C:D5:B1:68 X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:72:42:50:12:fa:60:69:de:c1:78:2a:30:00:a5:78:0b:a9: 63:4a:25:b3:85:35:6c:7f:63:e4:52:86:39:c6:16:3d:1a:5b: 27:f1:9e:95:87:e9:91:77:7e:26:5e:f5:56:db:9a:1e:7d:6e: 65:87:88:a6:45:0b:65:5f:4d:8a:a5:1f:ad:23:81:d1:b0:77: f6:cb:fd:48:44:e5:51:2d:ac:7c:0a:09:85:71:2e:32:bf:44: 66:f7:da:e7:76:30:e1:6a:3f:ce:cf:55:a7:a8:12:84:ba:92: 03:40:8a:80:3c:cc:d5:7b:8f:f4:76:cf:2f:13:af:c5:10:0a: c9:a9:35:0c:53:7b:d3:33:29:5f:ac:34:c1:57:6b:84:2c:1a: f5:5e:9a:8b:9e:4f:4f:f6:78:11:b3:b8:62:bc:36:34:a2:b5: 54:e2:07:a0:75:bc:09:4e:1d:d3:33:b8:48:2c:e8:92:b7:e7: 92:8e:f7:e2:cd:e2:e3:d7:21:7e:40:2f:a9:68:7b:0a:73:00: 5c:ae:9c:0f:0c:3e:61:c4:5e:94:71:db:9c:91:d4:78:f1:5b: 66:a1:70:e1:7e:5b:55:b2:f5:f7:49:bc:e9:8d:89:e2:2e:3c: 16:fe:39:f8:83:d2:2e:33:fc:2f:0c:6d:5b:fd:7a:80:98:f9: b5:43:ce:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjUxMjI0MjE0ODEzWhcNMjUxMjMxMjE0ODEzWjAYMRYwFAYD VQQDDA02OTRjNWY5ZC05MTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5zeiz3ElVb1fRtSHRbVLFoJLNXErND1+3KqS3y+PG4XAa2wvSVum9mBinocc iQIyf+v/c+IlzRgheDqBnoQBPqcXIfeB6kgOJU0jJbOUY1xb60I8UQlJOpew/gTc gaSIZO97IJSzg6pQXJE2GNmTNt0uzr/NhN1LD3IemxAcJVgnfPWZFVwtizw/NKrq gKH+iRfBGWzLLYBPLKkpa01YEnt9UvggP2/+k5Bua/nyQHH7jiXOifpUNoKw+zq/ KGsIq2DRXjA5VanoNUbsStEoGp1ALJPoMHyi7TOFKf9v7p8KIjNKc9RkJQlxY2KA tpBSfUgp7Z5m5Jvhs2Q+HxZCUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1q740s otm6AaaEt2TwjcQ81bFoMB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDBBOC83MEMyRUI3QUExOTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMw NUlmQ2pDUnlubWgtQ1VmWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2ckJQEvpgad7BeCowAKV4C6ljSiWzhTVsf2PkUoY5xhY9Glsn8Z6V h+mRd34mXvVW25oefW5lh4imRQtlX02KpR+tI4HRsHf2y/1IROVRLax8CgmFcS4y v0Rm99rndjDhaj/Oz1WnqBKEupIDQIqAPMzVe4/0ds8vE6/FEArJqTUMU3vTMylf rDTBV2uELBr1XpqLnk9P9ngRs7hivDY0orVU4gegdbwJTh3TM7hILOiSt+eSjvfi zeLj1yF+QC+paHsKcwBcrpwPDD5hxF6UcduckdR48VtmoXDhfltVsvX3SbzpjYni LjwW/jn4g9IuM/wvDG1b/XqAmPm1Q86R -----END CERTIFICATE-----Generated at Thu Dec 25 00:35:43 2025 by rpki-client