This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: +fYVthqaQlaluSP0IZyao9w0C/6A40wrY0AMXc1U3ks= Subject key identifier: 41:C5:91:34:14:07:24:D9:36:90:0C:B6:43:9F:6B:1A:CD:0F:F8:3F Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 0515 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 04FC Signing time: Thu 18 Dec 2025 23:06:20 +0000 Manifest this update: Thu 18 Dec 2025 23:06:19 +0000 Manifest next update: Thu 25 Dec 2025 23:06:19 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: lxXG7IwSuvKivSzm/+C/ApjHSreQJG6IqBDiasH5W/E=) 2: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) 3: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1301 (0x515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Dec 18 23:06:19 2025 GMT Not After : Dec 25 23:06:19 2025 GMT Subject: CN=694488ec-2627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:85:d1:db:32:5a:7a:61:51:75:15:ec:a6: 45:92:25:1c:05:c9:f3:60:2a:9b:ef:39:8a:9f:82: e6:2e:97:68:82:d4:e1:19:41:a9:21:b6:ad:e7:3f: 17:36:32:c5:f2:05:9d:57:88:70:a6:01:f1:c5:de: 8d:43:49:a6:2c:16:48:62:73:5e:fe:2e:57:da:1d: 50:1a:0c:da:d7:ed:56:9a:00:eb:13:8f:fd:33:fc: 07:81:8c:84:90:5f:0b:e7:8b:54:7c:d8:aa:4e:9c: cd:21:cd:28:fd:68:f7:dd:00:ea:86:18:74:14:ff: ce:02:cf:65:5a:2b:3c:41:16:71:d6:dd:68:f8:77: 67:f9:ee:e2:22:e3:b7:ec:5a:a1:42:cb:8b:b0:49: e7:c0:cd:f8:70:f6:2a:12:90:01:82:f3:39:d5:28: 91:da:2a:d8:67:e6:c2:fc:0a:0d:82:15:c4:e3:3e: 5b:e0:5b:df:17:1f:01:aa:72:40:4d:dc:ba:e0:7b: b8:b5:a8:52:26:b4:b0:d4:d1:1e:a7:c5:2e:1e:3d: ea:0b:8c:f9:e6:8b:b4:b1:ff:8a:13:78:e4:d5:3a: dd:9e:c4:73:c1:ae:3f:4d:7b:b7:80:26:a7:a8:b9: 85:e3:9e:ab:f9:dd:7f:a3:0c:d2:66:b4:de:a0:0b: aa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C5:91:34:14:07:24:D9:36:90:0C:B6:43:9F:6B:1A:CD:0F:F8:3F X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:88:21:39:c3:67:4c:76:f3:50:2e:ec:3c:bf:97:83:89:0f: ba:ad:34:ad:dc:d3:e8:16:d8:c8:0b:b2:f8:78:78:d2:74:99: 43:3d:78:20:1a:ca:2f:f8:e1:b4:a2:74:b9:ed:25:5b:12:1f: 49:f4:cb:82:fc:07:24:07:44:52:43:8a:f1:b2:fd:91:f1:56: 2c:da:21:1f:c7:5f:18:97:f0:68:98:dc:2c:a5:2c:94:b8:3d: 5c:6b:bf:7e:0d:20:93:f7:ee:6f:e3:6e:24:4e:6d:40:6f:9f: e9:23:16:ca:1a:bf:e6:bf:49:a2:08:c6:9d:7b:1f:87:95:05: db:42:97:a2:d8:58:0e:87:26:8f:32:da:d7:70:11:fb:6b:69: 1c:fe:7d:92:e4:a4:38:0b:ce:2f:51:38:86:54:89:e2:43:d0: c3:4c:d7:04:96:92:cf:dd:59:24:6d:22:0a:0d:f7:86:59:c0: 77:86:79:6d:b7:3b:a9:3f:17:c9:80:a8:01:b8:eb:33:11:b5: 63:bd:b9:e8:0a:f7:e4:b2:cc:f7:1e:50:7f:26:35:04:52:9d: 2f:4a:c0:25:f1:7f:ea:d5:64:87:da:74:a0:f5:5f:76:c1:0d: 16:88:83:49:51:1e:b9:cf:22:9f:24:82:1a:91:fc:78:a8:c6: 40:99:c4:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUxMjE4MjMwNjE5WhcNMjUxMjI1MjMwNjE5WjAYMRYwFAYD VQQDDA02OTQ0ODhlYy0yNjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmeF0dsyWnphUXUV7KZFkiUcBcnzYCqb7zmKn4LmLpdogtThGUGpIbat5z8X NjLF8gWdV4hwpgHxxd6NQ0mmLBZIYnNe/i5X2h1QGgza1+1WmgDrE4/9M/wHgYyE kF8L54tUfNiqTpzNIc0o/Wj33QDqhhh0FP/OAs9lWis8QRZx1t1o+Hdn+e7iIuO3 7FqhQsuLsEnnwM34cPYqEpABgvM51SiR2irYZ+bC/AoNghXE4z5b4FvfFx8BqnJA Tdy64Hu4tahSJrSw1NEep8UuHj3qC4z55ou0sf+KE3jk1TrdnsRzwa4/TXu3gCan qLmF456r+d1/owzSZrTeoAuqnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHFkTQU ByTZNpAMtkOfaxrND/g/MB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZiCE5w2dMdvNQLuw8v5eDiQ+6rTSt3NPoFtjIC7L4eHjSdJlDPXgg Gsov+OG0onS57SVbEh9J9MuC/AckB0RSQ4rxsv2R8VYs2iEfx18Yl/BomNwspSyU uD1ca79+DSCT9+5v424kTm1Ab5/pIxbKGr/mv0miCMadex+HlQXbQpei2FgOhyaP MtrXcBH7a2kc/n2S5KQ4C84vUTiGVIniQ9DDTNcElpLP3VkkbSIKDfeGWcB3hnlt tzupPxfJgKgBuOszEbVjvbnoCvfkssz3HlB/JjUEUp0vSsAl8X/q1WSH2nSg9V92 wQ0WiINJUR65zyKfJIIakfx4qMZAmcQO -----END CERTIFICATE-----Generated at Fri Dec 19 17:43:51 2025 by rpki-client