This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: TQSgmqQjC0PWuMMAds7GiZroxFTdYL//5T/MN33CgRg= Subject key identifier: 54:59:15:50:D2:63:1C:81:29:2F:20:63:79:53:9E:08:E3:7D:19:F4 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 0200 Signing time: Sat 27 Dec 2025 01:29:29 +0000 Manifest this update: Sat 27 Dec 2025 01:29:28 +0000 Manifest next update: Sat 03 Jan 2026 01:29:28 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: YEilutmJ4i55gQahhNjcsRfxn7IoW7f+ojPsEOII17E=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: tmK0iDwld+e+aTJhpXj4A3zlzhe3/irDCWSZWb2ca9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 01:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Dec 27 01:29:28 2025 GMT Not After : Jan 3 01:29:28 2026 GMT Subject: CN=694f3678-3c38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f9:c0:b5:b7:c2:d4:30:0c:e9:c2:93:37:4e: 6f:b1:fd:74:42:33:a1:91:57:1c:25:a7:28:3f:23: 3d:d9:4a:6a:b8:94:43:3e:39:bd:47:bf:86:b9:93: 86:ad:87:ce:6e:71:30:c7:30:c7:5c:7b:16:ed:d6: f9:64:28:67:d0:08:43:4b:fb:12:17:1b:cc:61:cb: 1b:5c:df:7a:6a:6c:05:cc:ab:1d:76:13:48:5c:82: 7a:5e:ba:f8:a7:5a:1b:72:3f:b1:51:46:a9:05:40: bc:a7:b8:b4:db:2e:a7:15:f6:b9:5d:ae:a8:ff:b2: a2:4b:99:9d:5a:64:c2:1f:75:41:ea:69:51:91:b7: 38:4f:60:db:7e:a3:da:71:8a:16:2d:fe:c9:c5:2c: 0a:82:49:d7:c7:d8:f1:1e:7a:08:6b:08:ab:49:a7: 2a:ac:9b:83:e2:a8:ec:f5:a5:76:11:7d:54:b8:fd: 90:c2:f6:d5:06:8d:40:33:f9:0a:7a:dc:b9:f9:9c: 5c:33:22:d2:4b:09:ae:fd:43:52:63:e0:88:01:2a: 99:46:a3:58:d5:84:96:ec:d1:90:3b:8a:75:49:5c: e8:cd:2c:7d:84:a4:5f:26:13:a3:f5:3d:10:c9:d9: 8c:69:63:04:82:d0:28:a1:5b:d8:6d:e5:fd:10:7d: 16:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:59:15:50:D2:63:1C:81:29:2F:20:63:79:53:9E:08:E3:7D:19:F4 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:95:73:8b:bd:b1:59:9c:bd:41:74:14:bc:90:4b:10:c1:15: 55:bf:f4:94:cc:e0:ea:fd:8b:6f:4e:17:a4:48:8a:91:9d:29: 31:34:ae:ec:13:62:b8:fa:78:86:52:9a:1e:af:91:7b:69:67: 64:5b:8a:c4:5d:74:ba:d4:4c:d9:b9:51:78:74:08:0d:4c:09: cb:2f:55:38:eb:9c:14:0b:88:ee:a1:30:03:40:e7:db:69:94: ad:98:39:14:cd:07:46:8c:c8:fa:78:18:6e:08:e5:b0:8c:44: c4:af:d0:6e:22:d3:5b:2d:eb:78:a2:6c:69:11:85:d2:ca:0c: 0d:05:2a:13:43:14:72:78:ad:b8:d3:49:c6:4b:d7:7d:2d:69: 1e:99:bb:5d:3b:ca:56:07:ab:7e:52:ab:c4:f9:5d:c7:d0:77: 93:ad:31:b4:50:45:fd:27:7a:c3:3a:30:c7:c2:05:03:a3:2b: 6a:5b:74:f3:29:b1:5b:96:b5:ab:56:2f:06:55:dd:16:f8:ee: 3d:e3:8e:4d:d8:ba:38:8e:84:27:10:21:3c:e0:45:f0:1b:92: ff:cf:76:76:81:e1:3b:1b:4d:4c:19:29:dd:fb:99:a4:95:76: 1e:55:ee:dd:d1:67:08:78:d6:a5:95:47:47:6c:cf:5c:e2:21: d6:a1:1e:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUxMjI3MDEyOTI4WhcNMjYwMTAzMDEyOTI4WjAYMRYwFAYD VQQDDA02OTRmMzY3OC0zYzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvnAtbfC1DAM6cKTN05vsf10QjOhkVccJacoPyM92UpquJRDPjm9R7+GuZOG rYfObnEwxzDHXHsW7db5ZChn0AhDS/sSFxvMYcsbXN96amwFzKsddhNIXIJ6Xrr4 p1obcj+xUUapBUC8p7i02y6nFfa5Xa6o/7KiS5mdWmTCH3VB6mlRkbc4T2DbfqPa cYoWLf7JxSwKgknXx9jxHnoIawirSacqrJuD4qjs9aV2EX1UuP2QwvbVBo1AM/kK ety5+ZxcMyLSSwmu/UNSY+CIASqZRqNY1YSW7NGQO4p1SVzozSx9hKRfJhOj9T0Q ydmMaWMEgtAooVvYbeX9EH0WQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRZFVDS YxyBKS8gY3lTngjjfRn0MB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCllXOLvbFZnL1BdBS8kEsQwRVVv/SUzODq/YtvThekSIqRnSkxNK7s E2K4+niGUpoer5F7aWdkW4rEXXS61EzZuVF4dAgNTAnLL1U465wUC4juoTADQOfb aZStmDkUzQdGjMj6eBhuCOWwjETEr9BuItNbLet4omxpEYXSygwNBSoTQxRyeK24 00nGS9d9LWkembtdO8pWB6t+UqvE+V3H0HeTrTG0UEX9J3rDOjDHwgUDoytqW3Tz KbFblrWrVi8GVd0W+O49445N2Lo4joQnECE84EXwG5L/z3Z2geE7G01MGSnd+5mk lXYeVe7d0WcIeNallUdHbM9c4iHWoR5X -----END CERTIFICATE-----Generated at Sun Dec 28 22:14:44 2025 by rpki-client