This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: xW7l2GyJvYJYyZ/M9B8RrMEBe50gjWFMjuo6jTIrnQI= Subject key identifier: A5:3B:AD:0A:8E:2E:1D:A5:E9:F6:41:92:E3:12:65:7E:E9:EF:78:C6 Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 0571 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 0566 Signing time: Wed 31 Dec 2025 22:51:08 +0000 Manifest this update: Wed 31 Dec 2025 22:51:08 +0000 Manifest next update: Wed 07 Jan 2026 22:51:08 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: 9Qpfbup4hQcZrCcDDmwD+Rtey1mIa+UaVg3Rk0TjYJU=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: 4gKis+++tXEeHG38EwpejzSM+kE6A6gIMsrjZpkNJeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 22:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1393 (0x571) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490, serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Dec 31 22:51:08 2025 GMT Not After : Jan 7 22:51:08 2026 GMT Subject: CN=6955a8dc-3fa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bf:49:7c:8a:73:10:6b:2d:f8:91:71:a1:c4: 4b:62:03:71:b6:85:6f:3f:02:1e:54:02:c0:36:eb: b4:ae:3d:68:d6:36:dc:57:f1:ab:9c:fc:66:09:be: 6c:c1:66:c7:bc:69:fa:ac:1e:0b:f9:d7:7f:e8:b6: 47:79:1d:12:01:91:f8:32:b1:b1:59:3e:eb:26:d7: 31:75:3c:3c:cc:ce:6e:34:c8:4e:dc:da:0e:0f:49: b1:ce:f5:03:85:ec:7b:a9:02:1f:ec:54:7b:74:d8: 10:6c:7b:6a:db:1e:02:da:dc:cd:aa:30:7b:0a:e6: f2:18:1c:ef:2e:d5:e6:b2:8f:92:88:f5:a2:0b:b7: 5a:d0:97:a7:d1:d4:08:56:92:02:44:ad:dc:d8:83: 24:87:15:1d:56:52:c7:83:4b:ee:d2:0a:49:fe:d1: f7:ce:26:3d:18:1f:9f:0b:8e:8d:dd:62:77:68:94: 68:c7:d0:dc:fc:7a:97:85:78:56:57:c1:07:70:9f: cb:b0:75:5b:c4:a0:a0:5e:0a:d6:79:59:fb:48:fb: d9:98:a2:93:e9:58:c1:20:90:d5:35:2c:6a:df:ff: 65:8f:4f:b9:d9:88:d6:03:49:b0:8c:8e:1d:4b:d0: 64:8f:a2:6b:c0:fa:10:87:c1:44:ab:b0:3c:ad:9f: b4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:3B:AD:0A:8E:2E:1D:A5:E9:F6:41:92:E3:12:65:7E:E9:EF:78:C6 X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:c8:cd:0d:c0:82:a5:97:ec:64:2e:16:01:98:9d:5d:9e:ef: 3b:d5:1d:bb:c5:e5:f6:e4:6e:5e:af:ed:d1:b2:57:6f:1f:1a: 38:fa:0a:c0:9d:67:5e:83:a4:b5:d8:e4:a4:19:c2:8e:ce:e8: 5c:15:9c:00:3b:f4:58:0a:65:40:f8:7d:fd:cd:b0:6b:9f:41: c5:93:c9:d0:7d:55:39:b7:0a:35:d3:d1:50:de:17:8d:3d:83: e7:96:b0:48:d1:57:c3:a4:de:dc:83:60:6f:1d:f7:11:f5:69: da:4b:d5:52:64:46:ce:a0:b7:a3:40:e0:9a:ab:eb:80:f3:98: 17:fd:9e:3f:80:4f:39:de:8b:69:e5:5f:8a:74:86:fe:d4:f1: e4:6e:94:bf:54:6f:b0:9b:77:b0:16:bd:61:24:d6:95:3f:16: 8e:1e:a4:32:89:26:ab:75:15:83:b2:d2:5b:96:2b:92:40:b0: 2b:c0:98:ad:c1:8e:de:71:d8:0a:93:3e:ef:fa:33:83:14:92: 33:b8:5e:14:ad:21:9c:65:3d:e8:1c:f6:62:da:48:56:d6:93: c5:e5:d5:86:29:26:4e:12:d4:c4:40:fd:19:4e:0a:57:c9:0f: 7c:85:a3:c9:99:55:28:c5:60:5c:c5:f9:26:ff:98:74:52:87: b8:88:85:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjUxMjMxMjI1MTA4WhcNMjYwMTA3MjI1MTA4WjAYMRYwFAYD VQQDDA02OTU1YThkYy0zZmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApL9JfIpzEGst+JFxocRLYgNxtoVvPwIeVALANuu0rj1o1jbcV/GrnPxmCb5s wWbHvGn6rB4L+dd/6LZHeR0SAZH4MrGxWT7rJtcxdTw8zM5uNMhO3NoOD0mxzvUD hex7qQIf7FR7dNgQbHtq2x4C2tzNqjB7CubyGBzvLtXmso+SiPWiC7da0Jen0dQI VpICRK3c2IMkhxUdVlLHg0vu0gpJ/tH3ziY9GB+fC46N3WJ3aJRox9Dc/HqXhXhW V8EHcJ/LsHVbxKCgXgrWeVn7SPvZmKKT6VjBIJDVNSxq3/9lj0+52YjWA0mwjI4d S9Bkj6JrwPoQh8FEq7A8rZ+05QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKU7rQqO Lh2l6fZBkuMSZX7p73jGMB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJyM0NwIKll+xkLhYBmJ1dnu871R27xeX25G5er+3RsldvHxo4+grA nWdeg6S12OSkGcKOzuhcFZwAO/RYCmVA+H39zbBrn0HFk8nQfVU5two109FQ3heN PYPnlrBI0VfDpN7cg2BvHfcR9WnaS9VSZEbOoLejQOCaq+uA85gX/Z4/gE853otp 5V+KdIb+1PHkbpS/VG+wm3ewFr1hJNaVPxaOHqQyiSardRWDstJbliuSQLArwJit wY7ecdgKkz7v+jODFJIzuF4UrSGcZT3oHPZi2khW1pPF5dWGKSZOEtTEQP0ZTgpX yQ98haPJmVUoxWBcxfkm/5h0Uoe4iIWr -----END CERTIFICATE-----Generated at Thu Jan 1 05:51:56 2026 by rpki-client