This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: 3Leu7Z5cnhhBpxzwPq7b9xwvBbn7gt+HRuYUD6ea2G8= Subject key identifier: B5:8F:4E:C8:22:44:0F:E6:E5:DB:E1:95:8F:21:A6:75:B5:06:5C:AD Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 35D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 3551 Signing time: Sat 20 Dec 2025 14:24:07 +0000 Manifest this update: Sat 20 Dec 2025 14:24:07 +0000 Manifest next update: Sat 27 Dec 2025 14:24:07 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: y/euDnf023MHkxdR7G0mFyKocOumIkdBAwgUYDsef5A=) 2: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: Co7SE3g9/ARrpsRXeCTg4P0jRRisbdn9kOGmwejTlBg=) 3: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: nVehuPJuIkWIOjh795nZonFcwqqWF8/uu32Co6wlMr4=) 4: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: eobj/eFuFNpYpHWfoCh4R2f9ILietn5YmlGo8HxPsps=) 5: D0886954188811EC8E86754FC4F9AE02.roa (hash: 6VbOvgdK5CTvuRLAoKi7F+0CDGeRIa2tmkBoLvAgouA=) 6: 99CF729E221011ED980A6F47C4F9AE02.roa (hash: atHB41zC9ox7WEbx/oU2a0/b1MGieqCzosX2UKLPzlk=) 7: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: 6nK3GoLVaSP0VSJQQ8fMNbxkXH0UKpIkFpkEB95EEy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13785 (0x35d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Dec 20 14:24:07 2025 GMT Not After : Dec 27 14:24:07 2025 GMT Subject: CN=6946b187-71ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7f:b6:80:d6:32:db:ea:4e:a9:fd:0e:fc:e2: 19:84:65:83:3b:a3:3a:6b:72:5c:93:5d:b9:af:04: fe:88:84:c6:6d:09:b0:9b:bd:3f:73:0a:d7:9c:0b: ee:ff:11:bf:05:80:45:70:bb:aa:5a:5d:e3:86:8c: 1d:06:99:a5:9b:47:8a:4a:f4:3f:9b:77:53:32:fa: e4:c8:2a:6c:c0:26:7d:10:94:16:ac:7c:67:e3:a5: d3:28:aa:c2:a3:48:0d:86:7d:e3:be:6c:9a:a9:30: 4e:e9:5c:dd:98:bc:1e:bc:a4:3d:06:bb:c8:4e:70: 71:44:0e:f1:8c:54:d4:44:b5:5b:45:30:0f:6c:4f: 7b:47:47:6d:36:f3:9a:bc:f4:cd:63:50:85:b1:ca: f1:98:37:ff:41:92:d8:69:fe:ed:81:e0:d2:28:35: 73:fe:85:2e:13:c1:bf:5f:6e:67:6e:f0:ba:a7:b1: 99:93:e0:24:43:77:61:88:42:3f:50:67:a1:58:43: e8:c9:f7:d5:61:b9:de:6c:7c:0f:ea:8d:a6:56:8c: 24:1b:22:f7:29:be:fa:4d:c1:82:19:6b:78:05:91: ab:de:7d:5e:ce:fc:bc:7d:6c:27:03:fc:f3:96:00: e5:2c:78:99:f6:b9:a3:a0:15:ce:fc:cc:d9:b3:4b: f3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:8F:4E:C8:22:44:0F:E6:E5:DB:E1:95:8F:21:A6:75:B5:06:5C:AD X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:3c:ec:15:f8:b2:02:56:5a:d6:c8:63:ed:b6:74:99:79:d8: 09:22:00:cf:ae:fe:6d:bc:62:98:61:a6:50:41:78:16:f7:57: 7a:6f:64:33:2a:3d:48:c4:4e:0a:80:e7:69:08:50:e0:31:e9: d2:d9:b1:10:8d:e7:70:b0:9a:bc:fc:c3:43:e0:23:9c:d8:3c: b2:a1:6e:6c:59:0b:b6:41:c3:7a:4f:8c:55:65:a8:0f:64:8e: 1c:5b:02:38:c1:ed:d0:77:86:d0:e1:a3:29:62:42:f0:4f:c7: fe:0e:ce:9b:6b:63:be:f8:c2:4a:8e:0a:a3:09:4c:29:08:92: 61:cc:bf:94:3b:25:b2:44:50:e2:b0:d0:36:fb:df:be:66:14: 82:37:97:a5:23:10:a2:15:42:94:1c:1a:d8:01:82:c4:09:88: 39:19:86:73:cd:00:e3:c6:81:cc:e0:66:79:0a:e6:98:eb:57: 0f:04:34:6d:3a:74:9a:6b:5f:73:0f:c4:ce:05:c4:f7:cc:a7: 56:54:d2:2e:b9:22:2c:9d:52:05:be:a7:7b:93:0c:7b:ae:1b: 0c:e7:2f:f1:3c:ee:51:81:1b:ae:66:30:cb:97:ee:98:9a:50: 9a:5b:15:0e:82:99:49:7f:28:3b:5d:68:38:07:f1:91:a0:84: a1:fa:66:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUxMjIwMTQyNDA3WhcNMjUxMjI3MTQyNDA3WjAYMRYwFAYD VQQDDA02OTQ2YjE4Ny03MWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtn+2gNYy2+pOqf0O/OIZhGWDO6M6a3Jck125rwT+iITGbQmwm70/cwrXnAvu /xG/BYBFcLuqWl3jhowdBpmlm0eKSvQ/m3dTMvrkyCpswCZ9EJQWrHxn46XTKKrC o0gNhn3jvmyaqTBO6VzdmLwevKQ9BrvITnBxRA7xjFTURLVbRTAPbE97R0dtNvOa vPTNY1CFscrxmDf/QZLYaf7tgeDSKDVz/oUuE8G/X25nbvC6p7GZk+AkQ3dhiEI/ UGehWEPoyffVYbnebHwP6o2mVowkGyL3Kb76TcGCGWt4BZGr3n1ezvy8fWwnA/zz lgDlLHiZ9rmjoBXO/MzZs0vzYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWPTsgi RA/m5dvhlY8hpnW1BlytMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwPOwV+LICVlrWyGPttnSZedgJIgDPrv5tvGKYYaZQQXgW91d6b2Qz Kj1IxE4KgOdpCFDgMenS2bEQjedwsJq8/MND4COc2DyyoW5sWQu2QcN6T4xVZagP ZI4cWwI4we3Qd4bQ4aMpYkLwT8f+Ds6ba2O++MJKjgqjCUwpCJJhzL+UOyWyRFDi sNA2+9++ZhSCN5elIxCiFUKUHBrYAYLECYg5GYZzzQDjxoHM4GZ5CuaY61cPBDRt OnSaa19zD8TOBcT3zKdWVNIuuSIsnVIFvqd7kwx7rhsM5y/xPO5RgRuuZjDLl+6Y mlCaWxUOgplJfyg7XWg4B/GRoISh+mZF -----END CERTIFICATE-----Generated at Sat Dec 20 22:49:04 2025 by rpki-client