This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft File: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft (raw, json) Hash identifier: aUMXYMEEEf5wIzxz0xIV9iTPXCynt95n7uWzkKR2T9Q= Subject key identifier: 4D:87:9C:0D:82:71:7A:41:2D:65:B6:A7:3E:4A:71:82:8A:F6:50:E1 Authority key identifier: AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A Certificate issuer: /CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft Manifest number: 0240 Signing time: Thu 25 Dec 2025 00:59:06 +0000 Manifest this update: Thu 25 Dec 2025 00:59:05 +0000 Manifest next update: Thu 01 Jan 2026 00:59:05 +0000 Files and hashes: 1: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl (hash: aDjxVT/DKuRY+CvKIhGOKgFtFCc5J4frZZlV6GFS2Lc=) 2: C248DFA26DBB11EDB3635D28C4F9AE02.roa (hash: gQzK7hVZPrZ6aKsXhdiMNjPzCoQYQhoW/DlG0FlsTCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 00:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5BD4, serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Validity Not Before: Dec 25 00:59:05 2025 GMT Not After : Jan 1 00:59:05 2026 GMT Subject: CN=694c8c59-2100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7c:10:3b:f2:1b:dd:3e:43:e3:bf:ad:d5:4e: 08:b7:28:33:12:86:9a:1d:74:c2:9b:50:5e:d0:32: 22:27:f2:af:1d:20:df:b2:ef:e0:7d:59:50:61:f4: 3c:c8:31:3a:17:b9:8d:40:54:ef:b7:5f:e8:a3:c6: 66:be:d7:69:93:36:e4:c0:2b:a9:e8:bf:91:78:9e: 0e:90:cd:ef:17:2c:a9:fc:db:52:a2:7c:fe:e1:bb: f7:8c:98:08:db:b5:f3:58:c7:e4:2c:27:44:6e:45: a6:10:47:18:8f:95:9c:08:ee:39:f6:75:75:8f:02: bc:fe:5b:98:5c:7f:71:e9:5a:bc:20:04:cd:1f:35: f2:42:ae:eb:9d:24:4d:1d:b0:52:00:90:b8:38:b4: ba:e5:4e:de:8d:8f:65:af:92:72:6f:9f:a5:d5:ce: d4:f1:a9:21:e9:8b:3a:39:ae:f7:ce:09:51:f1:89: 85:93:44:b2:17:af:2b:21:09:08:c2:14:f7:95:aa: bc:53:08:c5:cf:a4:14:a1:f4:18:ed:f5:ee:0a:a4: d6:87:73:8f:9e:59:dd:33:8c:56:91:50:c8:5f:d6: 79:22:65:79:79:24:0b:79:a1:ab:bd:de:ee:b4:8c: ef:0c:be:26:4f:c4:0d:9d:96:4d:b3:db:0c:8a:04: b5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:87:9C:0D:82:71:7A:41:2D:65:B6:A7:3E:4A:71:82:8A:F6:50:E1 X509v3 Authority Key Identifier: keyid:AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:3c:3b:c0:de:2a:fc:0f:01:f3:86:b0:24:39:e3:9f:e2:e1: ce:94:23:c5:04:42:bd:aa:8f:81:d3:a3:f3:62:f7:5a:e9:74: a5:b1:49:bf:4b:e7:0d:a4:38:ab:36:bd:cc:70:21:67:77:f6: 4c:d6:e0:d3:ba:0d:d8:1a:cd:28:3c:cf:a0:16:cd:96:d4:b8: db:15:76:70:7e:41:f7:64:b7:f6:3a:30:ab:87:c9:e5:51:2b: ad:86:e5:f3:a0:11:71:22:97:1e:d6:fe:c2:37:9e:bd:8f:91: d5:a9:9d:2e:0d:c1:82:7d:6d:0e:04:9b:8c:c4:e1:35:db:e2: e8:c4:5a:50:e6:d3:a7:cc:4e:d7:ae:d5:9c:11:27:43:e3:9b: 4d:fe:44:81:62:f9:ae:b5:21:9c:d5:78:2e:76:3d:ae:55:4a: e9:4c:b6:d0:a6:c7:5e:77:29:59:2a:0d:33:23:df:db:93:61: 03:69:40:48:eb:4d:b3:52:fb:46:ad:6c:18:e6:49:eb:7d:60: 05:d9:4e:23:27:30:6c:3d:c9:1c:3b:67:3a:64:97:25:5f:48: 51:1c:f7:64:6d:dc:a1:f1:04:59:ad:42:da:b6:ce:11:cc:c0: cb:46:cc:14:d1:5c:6a:1c:5d:97:e6:6a:1d:72:df:28:a4:cc: 3f:a9:ac:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVCRDQxMTAvBgNVBAUTKEFENDFGQjgyN0Y5MzEwNEI4OUZBNkZBNzg1RjIxMTUw QkU2Rjk3OUEwHhcNMjUxMjI1MDA1OTA1WhcNMjYwMTAxMDA1OTA1WjAYMRYwFAYD VQQDDA02OTRjOGM1OS0yMTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHwQO/Ib3T5D47+t1U4ItygzEoaaHXTCm1Be0DIiJ/KvHSDfsu/gfVlQYfQ8 yDE6F7mNQFTvt1/oo8ZmvtdpkzbkwCup6L+ReJ4OkM3vFyyp/NtSonz+4bv3jJgI 27XzWMfkLCdEbkWmEEcYj5WcCO459nV1jwK8/luYXH9x6Vq8IATNHzXyQq7rnSRN HbBSAJC4OLS65U7ejY9lr5Jyb5+l1c7U8akh6Ys6Oa73zglR8YmFk0SyF68rIQkI whT3laq8UwjFz6QUofQY7fXuCqTWh3OPnlndM4xWkVDIX9Z5ImV5eSQLeaGrvd7u tIzvDL4mT8QNnZZNs9sMigS1OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2HnA2C cXpBLWW2pz5KcYKK9lDhMB8GA1UdIwQYMBaAFK1B+4J/kxBLifpvp4XyEVC+b5ea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUJENC8wOEFENkQyMjZE QjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVFdUotbS1uaGZJUlVMNXZs NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVSDdnbi1URUV1Si1tLW5oZklSVUw1dmw1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUJENC8wOEFENkQyMjZEQjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVF dUotbS1uaGZJUlVMNXZsNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLPDvA3ir8DwHzhrAkOeOf4uHOlCPFBEK9qo+B06PzYvda6XSlsUm/ S+cNpDirNr3McCFnd/ZM1uDTug3YGs0oPM+gFs2W1LjbFXZwfkH3ZLf2OjCrh8nl USuthuXzoBFxIpce1v7CN569j5HVqZ0uDcGCfW0OBJuMxOE12+LoxFpQ5tOnzE7X rtWcESdD45tN/kSBYvmutSGc1Xgudj2uVUrpTLbQpsdedylZKg0zI9/bk2EDaUBI 602zUvtGrWwY5knrfWAF2U4jJzBsPckcO2c6ZJclX0hRHPdkbdyh8QRZrULats4R zMDLRswU0VxqHF2X5modct8opMw/qayA -----END CERTIFICATE-----Generated at Thu Dec 25 04:55:44 2025 by rpki-client