This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: LYAgBx0EAufP4qInLUIUGi5PnbwmI1NwGkHiqD+0L5U= Subject key identifier: FF:27:18:EF:B2:6E:0F:FB:D9:AB:CA:35:09:41:E2:A4:CC:20:37:CD Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 35DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 3554 Signing time: Fri 26 Dec 2025 14:23:53 +0000 Manifest this update: Fri 26 Dec 2025 14:23:53 +0000 Manifest next update: Fri 02 Jan 2026 14:23:53 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: wQCKz830fMri/iqO/UyCdDxupxbR7Vf9wSNlxR2i8RQ=) 2: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: 6nK3GoLVaSP0VSJQQ8fMNbxkXH0UKpIkFpkEB95EEy0=) 3: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: eobj/eFuFNpYpHWfoCh4R2f9ILietn5YmlGo8HxPsps=) 4: D0886954188811EC8E86754FC4F9AE02.roa (hash: 6VbOvgdK5CTvuRLAoKi7F+0CDGeRIa2tmkBoLvAgouA=) 5: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: Co7SE3g9/ARrpsRXeCTg4P0jRRisbdn9kOGmwejTlBg=) 6: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: nVehuPJuIkWIOjh795nZonFcwqqWF8/uu32Co6wlMr4=) 7: 99CF729E221011ED980A6F47C4F9AE02.roa (hash: atHB41zC9ox7WEbx/oU2a0/b1MGieqCzosX2UKLPzlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 14:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13788 (0x35dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Dec 26 14:23:53 2025 GMT Not After : Jan 2 14:23:53 2026 GMT Subject: CN=694e9a79-2d48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c4:a8:83:9f:ba:3d:51:a7:db:19:a6:93:cb: 36:a1:fc:d9:71:21:7c:f1:9d:a5:8d:cf:79:d3:e1: 1e:f9:35:67:6f:c2:00:92:3e:0b:30:7e:36:fd:62: 20:86:8b:87:ae:d5:ee:b7:12:96:46:c9:9f:46:69: 36:e9:1f:23:ce:bc:04:fd:37:d6:ff:7e:29:00:58: 36:f7:9d:b4:d5:fc:3b:cb:30:61:6a:cc:0a:9e:48: 6d:40:06:7a:82:27:b6:b9:fa:6d:19:e5:d8:e9:fb: d8:93:1d:69:97:0e:08:6d:6f:a8:b9:e8:88:f5:a3: 73:63:3d:2a:49:c1:75:0a:e9:f5:fe:b9:c6:f6:c7: ed:15:fa:3b:06:1f:0a:ce:19:74:6e:c1:92:36:ec: 5b:42:7a:37:6e:8b:b0:e0:12:6a:85:df:6f:f2:16: 18:04:40:ae:4d:7d:42:73:f3:7c:65:66:90:04:9d: 4d:a8:39:82:ca:01:6e:10:fc:cf:e8:7a:06:0b:70: b8:95:a9:94:ef:ee:fb:d9:8e:0c:ad:30:c8:68:ed: 7d:ca:b9:96:2c:1e:c5:41:ce:1f:f0:f7:73:c6:c5: ad:26:7f:8d:70:da:81:71:3f:59:fb:26:50:66:bc: 06:91:a6:4d:0a:ae:7a:8a:ab:94:02:57:9c:8e:1a: 2d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:27:18:EF:B2:6E:0F:FB:D9:AB:CA:35:09:41:E2:A4:CC:20:37:CD X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b8:90:d0:10:d6:07:56:4c:fa:bf:6f:33:02:fb:8f:8f:4d: 5e:54:f3:c8:e0:96:d1:97:ec:e8:e0:8b:96:79:c4:7e:25:00: c9:ee:20:d1:33:64:52:da:79:97:cc:01:fb:f2:19:3d:21:0e: 4f:96:e0:2f:68:80:07:b6:d9:40:59:8d:f1:ff:fd:ae:c1:ac: 48:1d:e1:66:8a:d2:2a:bf:03:ab:f8:9c:a2:ee:34:8c:b3:88: 91:12:e1:2a:55:56:8c:c2:5d:52:45:29:95:be:28:0d:62:b2: d5:c7:3e:9f:54:9f:b3:f6:d0:66:82:35:ed:e1:bf:b7:ac:36: c1:7c:47:d0:b4:85:89:bc:d8:dd:0f:e4:37:9f:7c:da:ca:29: 4c:a8:c1:95:bd:5d:2f:90:a3:dc:45:7e:14:8e:16:dd:d6:e0: 6e:00:49:2b:e0:68:d8:61:b1:99:5f:b2:7b:07:90:32:2d:69: 48:42:5c:54:89:46:4c:10:cf:75:1b:ec:5a:2d:ee:6a:d0:ef: 25:5f:a9:f9:51:54:97:ac:7f:b1:6b:f6:2d:4f:ad:a9:f0:93: df:eb:6d:69:33:38:ae:36:8e:2c:fd:8b:03:c7:e1:66:19:cf: e9:21:6b:f5:68:9c:29:97:56:98:9a:ec:6c:4d:14:af:30:00: 7b:47:95:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUxMjI2MTQyMzUzWhcNMjYwMTAyMTQyMzUzWjAYMRYwFAYD VQQDDA02OTRlOWE3OS0yZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMSog5+6PVGn2xmmk8s2ofzZcSF88Z2ljc950+Ee+TVnb8IAkj4LMH42/WIg houHrtXutxKWRsmfRmk26R8jzrwE/TfW/34pAFg295201fw7yzBhaswKnkhtQAZ6 gie2ufptGeXY6fvYkx1plw4IbW+oueiI9aNzYz0qScF1Cun1/rnG9sftFfo7Bh8K zhl0bsGSNuxbQno3bouw4BJqhd9v8hYYBECuTX1Cc/N8ZWaQBJ1NqDmCygFuEPzP 6HoGC3C4lamU7+772Y4MrTDIaO19yrmWLB7FQc4f8PdzxsWtJn+NcNqBcT9Z+yZQ ZrwGkaZNCq56iquUAlecjhotaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8nGO+y bg/72avKNQlB4qTMIDfNMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfuJDQENYHVkz6v28zAvuPj01eVPPI4JbRl+zo4IuWecR+JQDJ7iDR M2RS2nmXzAH78hk9IQ5PluAvaIAHttlAWY3x//2uwaxIHeFmitIqvwOr+Jyi7jSM s4iREuEqVVaMwl1SRSmVvigNYrLVxz6fVJ+z9tBmgjXt4b+3rDbBfEfQtIWJvNjd D+Q3n3zayilMqMGVvV0vkKPcRX4Ujhbd1uBuAEkr4GjYYbGZX7J7B5AyLWlIQlxU iUZMEM91G+xaLe5q0O8lX6n5UVSXrH+xa/YtT62p8JPf621pMziuNo4s/YsDx+Fm Gc/pIWv1aJwpl1aYmuxsTRSvMAB7R5VL -----END CERTIFICATE-----Generated at Sun Dec 28 05:53:31 2025 by rpki-client