This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft File: dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft (raw, json) Hash identifier: R9c1bzsK3TGAPDfZhGemcBQnpBJSSRz2zpYmUAOV6po= Subject key identifier: 93:E9:8F:3C:07:F1:32:F4:05:4D:D3:13:B6:89:95:EE:06:61:B9:1F Authority key identifier: 76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 Certificate issuer: /CN=A91B19F8/serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Certificate serial: 020D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft Manifest number: 0209 Signing time: Fri 19 Dec 2025 01:32:00 +0000 Manifest this update: Fri 19 Dec 2025 01:32:00 +0000 Manifest next update: Fri 26 Dec 2025 01:32:00 +0000 Files and hashes: 1: dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl (hash: hoSWrvwulOxYtOZ6V+xcZMCUIK3cVa2mXRLHa6vq8eo=) 2: 5E5DF206BCA411EDBD39730EC4F9AE02.roa (hash: 285R3oYGxnsmMAJjm1+eYdJApQO5EQQ/gOWcq+lr5pI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B19F8, serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Validity Not Before: Dec 19 01:32:00 2025 GMT Not After : Dec 26 01:32:00 2025 GMT Subject: CN=6944ab10-1a4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a5:45:42:c8:21:4c:8a:2e:12:b6:c2:ed:8d: 6b:ef:7f:11:1b:3d:38:d2:92:e1:c2:30:06:5e:87: 23:6b:b7:bc:bd:c0:a9:bb:ac:c4:94:58:36:c6:8c: cb:64:98:2a:29:83:ce:50:9f:69:16:de:b3:03:1d: 93:49:3a:c6:82:e1:96:8e:91:a0:2a:79:c2:a2:bc: f2:04:d7:cc:4d:1f:54:2a:79:63:8c:d8:c1:58:b6: a8:37:38:eb:e8:62:76:06:29:5b:fe:e5:5b:7a:db: 30:05:ba:cc:f7:12:fa:bf:50:81:ff:2a:a6:9c:ae: 6c:78:36:5d:cc:f6:13:50:70:bc:0e:d5:ab:aa:87: 11:78:1a:93:36:7a:ff:4e:19:e5:64:3b:3e:84:35: 30:0d:25:c2:2a:d4:03:4b:f4:46:85:68:bf:85:5c: b7:8e:51:46:6c:f1:e4:d3:bc:af:dd:f4:5a:57:39: ca:27:3f:5f:d0:a3:bc:14:62:47:da:66:8b:d9:5b: 46:10:ba:58:c3:e0:fa:3f:58:bf:20:06:8f:1d:cf: dd:2b:08:a7:fe:a4:fe:44:87:e0:8a:e5:6a:81:aa: ef:90:71:c6:d4:92:41:d7:0a:b7:f8:4d:2a:34:9a: 6e:f8:1e:87:b3:9e:a4:69:2f:0e:6a:4a:d3:e0:cb: d3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E9:8F:3C:07:F1:32:F4:05:4D:D3:13:B6:89:95:EE:06:61:B9:1F X509v3 Authority Key Identifier: keyid:76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:fc:5a:21:6b:46:43:8d:4d:7c:74:f2:73:be:1b:89:1b:aa: 66:14:7e:c2:31:3d:cf:d6:3c:77:d8:90:b1:7c:45:e2:ae:ca: 81:f7:65:8b:8a:74:08:b6:1e:02:59:a6:4e:db:d7:eb:18:b7: a2:26:d1:58:b9:e9:b0:c9:0c:48:49:df:22:96:69:0b:45:fc: 60:98:81:2d:a3:f5:71:80:f1:45:8d:99:bd:8e:16:27:b2:80: b9:37:af:52:40:27:72:2b:12:1d:b2:99:a8:d2:c2:c2:83:b3: 2d:c3:ea:f2:0d:dc:b0:e4:8d:99:e5:48:c4:75:c0:49:d8:9b: 8c:6b:fc:6a:32:4f:c4:b4:9b:dc:25:43:1b:07:f5:6b:d5:98: b3:ea:01:33:1b:ab:2f:3d:5e:f9:d1:23:05:81:a4:48:a6:3a: 04:4b:00:48:b5:33:d1:f1:16:27:a7:60:21:bd:3f:90:2d:e4: 47:ac:54:a3:8d:53:ca:b1:ab:ff:9d:95:a2:0f:dd:43:b2:c8: 94:22:1f:34:4f:a2:2f:17:48:8e:54:09:0e:1b:e3:04:66:43: a6:6e:d1:bf:32:70:62:7b:76:07:eb:e9:25:e5:78:83:d9:76: 27:58:fb:ff:30:31:83:fb:d7:ac:da:38:09:a8:54:df:d0:0b: 84:90:6a:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE5RjgxMTAvBgNVBAUTKDc2NEJCODQ3OEJGRjhDQzhCRkYxNEU4RkI2QUFEQzI4 RUQ1RTQ4NjQwHhcNMjUxMjE5MDEzMjAwWhcNMjUxMjI2MDEzMjAwWjAYMRYwFAYD VQQDDA02OTQ0YWIxMC0xYTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqVFQsghTIouErbC7Y1r738RGz040pLhwjAGXocja7e8vcCpu6zElFg2xozL ZJgqKYPOUJ9pFt6zAx2TSTrGguGWjpGgKnnCorzyBNfMTR9UKnljjNjBWLaoNzjr 6GJ2Bilb/uVbetswBbrM9xL6v1CB/yqmnK5seDZdzPYTUHC8DtWrqocReBqTNnr/ ThnlZDs+hDUwDSXCKtQDS/RGhWi/hVy3jlFGbPHk07yv3fRaVznKJz9f0KO8FGJH 2maL2VtGELpYw+D6P1i/IAaPHc/dKwin/qT+RIfgiuVqgarvkHHG1JJB1wq3+E0q NJpu+B6Hs56kaS8OakrT4MvTpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPpjzwH 8TL0BU3TE7aJle4GYbkfMB8GA1UdIwQYMBaAFHZLuEeL/4zIv/FOj7aq3CjtXkhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTlGOC9DQUU2QjRDRUJD QTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pNaV84VTZQdHFyY0tPMWVT R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrdTRSNHZfak1pXzhVNlB0cXJjS08xZVNHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTlGOC9DQUU2QjRDRUJDQTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pN aV84VTZQdHFyY0tPMWVTR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM/Foha0ZDjU18dPJzvhuJG6pmFH7CMT3P1jx32JCxfEXirsqB92WL inQIth4CWaZO29frGLeiJtFYuemwyQxISd8ilmkLRfxgmIEto/VxgPFFjZm9jhYn soC5N69SQCdyKxIdspmo0sLCg7Mtw+ryDdyw5I2Z5UjEdcBJ2JuMa/xqMk/EtJvc JUMbB/Vr1Ziz6gEzG6svPV750SMFgaRIpjoESwBItTPR8RYnp2AhvT+QLeRHrFSj jVPKsav/nZWiD91DssiUIh80T6IvF0iOVAkOG+MEZkOmbtG/MnBie3YH6+kl5XiD 2XYnWPv/MDGD+9es2jgJqFTf0AuEkGpO -----END CERTIFICATE-----Generated at Fri Dec 19 17:47:56 2025 by rpki-client