This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: 9Nj2ic1IsYduJ8POpxMYX+l8Bs7w/mDH8Ipvtbkpv8s= Subject key identifier: 78:6B:35:D4:14:BF:09:0C:31:8E:7C:9C:CB:6B:B8:D2:3F:CE:07:36 Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: FB Signing time: Sun 21 Dec 2025 04:22:24 +0000 Manifest this update: Sun 21 Dec 2025 04:22:23 +0000 Manifest next update: Sun 28 Dec 2025 04:22:23 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: Ee2O/PL1igeVTMTzCFrYTuq9iyj2nhvDi1KkWVutjFo=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: GCMBGFfjL07x7SqicgzDicIqCejugsZ+LueaE228tBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Dec 21 04:22:23 2025 GMT Not After : Dec 28 04:22:23 2025 GMT Subject: CN=69477600-5992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:3a:30:4d:9b:2a:0f:b0:d3:18:9a:2c:1e:ad: 99:eb:24:1e:12:d5:4a:f8:3a:bf:65:e4:98:97:e5: ec:3e:7a:8e:35:36:b8:a0:96:8b:53:3a:3f:4b:b6: 04:e0:fe:bb:30:73:34:64:a2:89:a5:2b:16:15:fa: bf:b7:ec:b9:fc:aa:80:41:04:85:90:19:d5:30:5f: 21:7b:94:3d:12:4d:73:62:6d:fc:96:dc:00:34:0b: 79:c5:a4:a0:39:ae:90:7a:8f:0e:dd:b9:44:1a:58: f1:5c:e9:00:c0:a2:b7:7e:4f:e6:fd:ec:9c:53:dd: 86:44:1e:3c:4f:9e:75:1d:12:37:87:39:a2:b8:5f: 27:79:64:c9:20:ba:13:57:5a:75:51:bc:a9:f4:41: eb:12:a4:d9:86:f2:31:43:81:21:a7:eb:d5:37:5f: c8:61:06:f1:8a:7e:13:84:00:2d:f0:d2:44:8f:dc: c2:dd:ed:52:ee:20:bd:2e:9a:4b:e7:93:99:67:b8: c3:37:ef:f3:ee:67:4f:89:82:0c:29:ce:a7:37:09: da:38:f1:3e:01:09:d8:ae:d0:b8:5b:b1:8f:7e:65: b5:25:29:cb:30:c4:91:93:48:ec:73:f8:71:8e:43: 36:58:33:53:e4:24:28:53:a2:03:3c:ca:42:20:f9: 9d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:6B:35:D4:14:BF:09:0C:31:8E:7C:9C:CB:6B:B8:D2:3F:CE:07:36 X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:6a:a9:da:6f:85:69:45:c7:41:ea:ce:42:68:5f:4b:b6:17: 04:94:5d:21:97:97:76:4d:28:15:18:f9:70:d3:2b:28:72:6e: 4b:55:c6:8e:fe:9b:03:bc:92:fc:62:5c:b0:a4:ce:28:f4:76: 28:08:10:97:cb:dc:0f:93:00:c1:3d:14:65:4f:39:dc:17:3b: 12:45:60:f9:85:d7:f8:32:48:26:0b:f4:4b:d0:db:23:ef:3d: 90:19:cd:b0:c7:ee:0d:01:91:12:24:0d:33:90:63:49:cf:50: 6d:7f:22:c8:1f:9c:43:50:e7:5a:6f:6c:fe:88:2f:3a:d8:65: 21:31:2b:59:e8:16:c2:ce:97:5d:7a:df:62:de:6a:5a:a3:df: f3:ed:66:2b:a4:fd:dc:c3:ac:ad:dc:33:ad:2f:61:aa:7f:85: d2:80:57:a0:5b:04:ad:36:75:0f:3c:e2:5d:ab:4f:bf:0f:b1: 67:89:2a:9e:0b:35:ca:48:05:04:43:6e:1b:05:6c:64:9a:98: dc:9a:2f:a6:88:6d:ee:bb:c7:cf:09:51:93:c4:2e:2f:e3:cc: 10:75:82:17:11:22:ec:2d:e6:74:d3:3e:a7:6a:0d:3f:0a:4b: dd:e3:af:76:45:c1:01:f9:88:32:8e:48:57:83:58:94:68:53: 87:14:da:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjUxMjIxMDQyMjIzWhcNMjUxMjI4MDQyMjIzWjAYMRYwFAYD VQQDDA02OTQ3NzYwMC01OTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkzowTZsqD7DTGJosHq2Z6yQeEtVK+Dq/ZeSYl+XsPnqONTa4oJaLUzo/S7YE 4P67MHM0ZKKJpSsWFfq/t+y5/KqAQQSFkBnVMF8he5Q9Ek1zYm38ltwANAt5xaSg Oa6Qeo8O3blEGljxXOkAwKK3fk/m/eycU92GRB48T551HRI3hzmiuF8neWTJILoT V1p1Ubyp9EHrEqTZhvIxQ4Ehp+vVN1/IYQbxin4ThAAt8NJEj9zC3e1S7iC9LppL 55OZZ7jDN+/z7mdPiYIMKc6nNwnaOPE+AQnYrtC4W7GPfmW1JSnLMMSRk0jsc/hx jkM2WDNT5CQoU6IDPMpCIPmdHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhrNdQU vwkMMY58nMtruNI/zgc2MB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9EMEU5QjFFRTYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNH TkhPS29SV2E0cmxWa04zWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/aqnab4VpRcdB6s5CaF9LthcElF0hl5d2TSgVGPlw0ysocm5LVcaO /psDvJL8YlywpM4o9HYoCBCXy9wPkwDBPRRlTzncFzsSRWD5hdf4MkgmC/RL0Nsj 7z2QGc2wx+4NAZESJA0zkGNJz1BtfyLIH5xDUOdab2z+iC862GUhMStZ6BbCzpdd et9i3mpao9/z7WYrpP3cw6yt3DOtL2Gqf4XSgFegWwStNnUPPOJdq0+/D7FniSqe CzXKSAUEQ24bBWxkmpjcmi+miG3uu8fPCVGTxC4v48wQdYIXESLsLeZ00z6nag0/ Ckvd4692RcEB+YgyjkhXg1iUaFOHFNq0 -----END CERTIFICATE-----Generated at Mon Dec 22 03:49:56 2025 by rpki-client