This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: 9Khdcc0QycQD23S4p2pQ1JgWAo106xPELO6C8Rde7zk= Subject key identifier: E7:4A:F7:7A:21:8A:63:3C:CE:E5:88:55:55:6B:F7:1C:65:60:79:D9 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 01F9 Signing time: Sun 21 Dec 2025 01:44:39 +0000 Manifest this update: Sun 21 Dec 2025 01:44:38 +0000 Manifest next update: Sun 28 Dec 2025 01:44:38 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: 2g6myXU+f+eMD5wK8YcWm3fVnQ7bpwYOa9iRQqvGgEM=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: 3MNDiBeknSHzY93vsrPzAAHGYu/SDVnN9ctSXpKt+Ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Dec 21 01:44:38 2025 GMT Not After : Dec 28 01:44:38 2025 GMT Subject: CN=69475107-e469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:57:4d:b8:eb:92:a3:00:31:54:ae:95:ee:0c: 4d:ee:b8:bf:d6:c8:df:f3:c8:10:ff:8c:92:3a:51: 33:d3:50:90:51:7c:95:71:4a:db:ed:64:d6:fd:f1: 3a:c2:62:3b:bd:58:eb:85:f7:5b:49:7c:78:9a:a0: 32:ff:20:9e:c6:73:32:ba:66:3a:7f:6d:9e:f4:7c: 7f:fb:45:eb:9c:c6:51:66:d1:fa:8c:f5:8e:4d:b4: a0:ba:65:e2:73:98:e5:fc:40:97:e7:a2:61:2e:5c: 15:2a:61:e4:2e:5e:d5:f1:b3:ef:1c:49:68:87:9f: a6:9e:d4:a5:3a:45:36:11:02:e1:28:d3:92:b3:ab: 49:3a:bb:80:57:a5:ac:07:42:a0:61:90:70:a8:e9: 4a:f5:ab:ae:82:be:a4:0a:4f:ab:1b:07:30:89:2a: ed:3e:37:c1:0e:a1:db:21:79:f0:71:a1:90:b7:e3: fa:8e:15:9b:5f:5b:92:54:1d:5a:81:df:85:a4:a7: 33:d1:ea:87:73:62:7f:a7:7c:da:5c:0e:ff:bd:21: 3f:b5:42:91:92:fe:34:3b:db:0a:bf:df:41:58:5b: 56:c8:b3:74:55:0e:b8:3d:58:85:fe:50:68:72:60: f8:16:8a:99:4c:10:8d:dd:ee:bd:b2:93:01:15:99: 54:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4A:F7:7A:21:8A:63:3C:CE:E5:88:55:55:6B:F7:1C:65:60:79:D9 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:a2:7a:f3:fd:13:c7:9d:16:14:90:20:cb:e0:6f:a0:63:05: 24:62:0b:6e:c4:55:ac:ec:c2:1a:4c:44:c0:2b:5e:42:78:85: 1e:4f:4c:75:30:5b:fd:97:f0:d9:d2:28:a5:8a:43:c6:d1:d6: 5d:76:d6:60:f4:a2:b0:2a:fd:0d:ae:d2:91:29:47:da:4f:e9: d1:2b:6f:90:19:af:36:19:fa:e2:55:ab:d7:94:4c:45:04:64: a6:f6:00:b8:8d:02:d9:2e:96:84:e2:f6:d0:06:fa:d6:1d:34: 23:20:28:47:17:3a:59:3e:e7:9c:29:5e:a9:d6:48:53:64:93: 96:4e:ad:5f:4b:b0:cd:79:10:df:b3:a0:a3:c8:81:76:bb:89: 9c:d5:47:2f:98:31:2b:6f:ca:c3:f0:8f:e8:c2:2b:18:7c:44: 65:57:ee:5e:7b:5a:ea:c4:a8:86:04:a5:7a:57:f2:00:82:8f: f0:c4:4e:ea:9f:60:0b:b3:3f:27:7c:d9:23:26:97:90:79:ba: fa:fa:5b:60:66:e9:6a:4c:30:e5:db:b7:89:14:3f:a0:14:ee: a6:d1:e0:4d:d5:4a:55:76:70:bf:d7:a3:9b:0e:7c:eb:7b:00: 5b:ea:00:8f:ac:35:f4:f7:ad:4c:66:99:7f:e8:9b:34:3f:d0: 9b:e7:1d:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUxMjIxMDE0NDM4WhcNMjUxMjI4MDE0NDM4WjAYMRYwFAYD VQQDDA02OTQ3NTEwNy1lNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FdNuOuSowAxVK6V7gxN7ri/1sjf88gQ/4ySOlEz01CQUXyVcUrb7WTW/fE6 wmI7vVjrhfdbSXx4mqAy/yCexnMyumY6f22e9Hx/+0XrnMZRZtH6jPWOTbSgumXi c5jl/ECX56JhLlwVKmHkLl7V8bPvHEloh5+mntSlOkU2EQLhKNOSs6tJOruAV6Ws B0KgYZBwqOlK9auugr6kCk+rGwcwiSrtPjfBDqHbIXnwcaGQt+P6jhWbX1uSVB1a gd+FpKcz0eqHc2J/p3zaXA7/vSE/tUKRkv40O9sKv99BWFtWyLN0VQ64PViF/lBo cmD4FoqZTBCN3e69spMBFZlU4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdK93oh imM8zuWIVVVr9xxlYHnZMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFonrz/RPHnRYUkCDL4G+gYwUkYgtuxFWs7MIaTETAK15CeIUeT0x1 MFv9l/DZ0iilikPG0dZddtZg9KKwKv0NrtKRKUfaT+nRK2+QGa82GfriVavXlExF BGSm9gC4jQLZLpaE4vbQBvrWHTQjIChHFzpZPuecKV6p1khTZJOWTq1fS7DNeRDf s6CjyIF2u4mc1UcvmDErb8rD8I/owisYfERlV+5ee1rqxKiGBKV6V/IAgo/wxE7q n2ALsz8nfNkjJpeQebr6+ltgZulqTDDl27eJFD+gFO6m0eBN1UpVdnC/16ObDnzr ewBb6gCPrDX0961MZpl/6Js0P9Cb5x0b -----END CERTIFICATE-----Generated at Mon Dec 22 09:45:59 2025 by rpki-client