This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft File: CUoNzYAqBb91c_96buCnqXIFUNE.mft (raw, json) Hash identifier: D9QwGDHDIn03tW56B5ncBS12FmckD1qaNAayZ/v3jNU= Subject key identifier: 8B:23:F4:90:4A:18:2A:48:C1:92:E3:89:B5:EE:F5:20:31:27:E7:F4 Authority key identifier: 09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 Certificate issuer: /CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft Manifest number: 01F1 Signing time: Wed 17 Dec 2025 02:02:20 +0000 Manifest this update: Wed 17 Dec 2025 02:02:20 +0000 Manifest next update: Wed 24 Dec 2025 02:02:20 +0000 Files and hashes: 1: CUoNzYAqBb91c_96buCnqXIFUNE.crl (hash: 9V4c/RIfohRMh2Ck6tuKgz1iKLPUDxYbZ7jRfyPin5Y=) 2: 5BA557A6DEB011EDB7B0C04EC4F9AE02.roa (hash: SAjkukJRb4ZF5aM/fUJAbMY1lnAEeXzzgnRTsvAlM7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 02:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93F, serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Validity Not Before: Dec 17 02:02:20 2025 GMT Not After : Dec 24 02:02:20 2025 GMT Subject: CN=69420f2c-15f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:cb:f6:d3:76:d8:a0:e5:01:8a:2e:c4:9e:d4: 8b:07:58:95:56:8a:66:21:ad:c9:84:c9:d7:18:6e: f9:02:04:b8:87:4b:3e:11:87:74:92:f1:a8:7f:c5: b0:d0:c7:a2:43:e8:ac:9c:cf:70:f6:47:31:1e:9a: 8e:11:a4:d4:68:16:4b:8c:6b:7b:52:1c:25:ed:f0: 3c:20:5c:2d:60:45:eb:17:9d:0a:4d:0a:aa:78:7f: 5e:af:59:b9:c2:30:ba:4b:8b:2b:da:c7:15:fb:45: af:a2:6f:63:05:f9:fd:62:5f:8c:76:bb:d4:04:5d: 77:d4:76:94:be:ab:1f:24:a5:e0:9c:9d:5a:d4:c9: dc:d7:28:73:1d:aa:67:d9:04:7b:6f:bc:fa:51:74: cb:e5:da:a0:0c:2e:3f:e5:9f:7b:26:26:1a:e4:a6: de:70:2c:02:0c:14:cd:63:82:d8:6b:7d:fc:54:a8: 92:08:c4:2c:53:48:21:43:47:42:1f:5b:1d:26:be: 47:d2:64:27:11:bc:6b:a8:7e:75:e0:ed:63:b1:d8: 28:a0:dd:84:2a:c3:56:b9:24:d8:6d:9f:f8:41:01: 32:6a:d8:2d:e2:84:e5:53:67:09:93:4f:f2:70:91: fc:6b:75:a8:07:1a:14:62:6b:a4:1e:1d:97:a1:87: e7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:23:F4:90:4A:18:2A:48:C1:92:E3:89:B5:EE:F5:20:31:27:E7:F4 X509v3 Authority Key Identifier: keyid:09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:52:a7:40:fc:26:05:2b:0a:ac:02:df:80:6a:ce:2a:09:aa: 02:3c:16:a6:4b:35:4f:17:ca:3e:51:9d:2a:87:5d:d7:f3:2b: 53:db:a5:ac:6a:c0:4b:ad:81:eb:96:4f:fb:56:6b:ee:15:82: 20:74:0e:31:d4:09:04:fc:71:40:21:ac:ff:2b:82:4c:e4:ad: 2d:9b:06:d5:1d:80:fa:ee:61:34:a0:44:6c:c5:36:15:27:df: 88:b9:ed:b9:9d:bf:62:d0:08:53:17:54:aa:a3:df:7e:61:34: 48:9b:73:32:da:c5:1f:1e:e1:f9:1a:de:ea:7b:62:42:c0:29: 0e:1d:e4:90:83:10:b6:d9:0a:5e:da:c3:a0:df:79:48:80:a2: c2:35:98:68:55:98:c1:8e:b9:7f:c4:49:c7:76:99:f6:33:7d: 7c:34:eb:2d:65:e4:95:5c:88:de:19:c5:b6:b9:cc:c7:7a:c7: 10:c7:12:78:4b:dc:67:8c:2c:b4:45:15:79:ce:9d:06:51:d3: 44:c6:b4:aa:8b:4f:bc:49:67:99:53:86:3d:e0:bc:b9:40:50: ca:a1:ea:47:29:56:3e:b6:14:b3:25:66:0e:91:de:88:12:41: 27:50:f4:4f:ff:c8:17:0b:af:d1:16:a1:76:94:4b:7a:88:8c: 98:be:9f:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0YxMTAvBgNVBAUTKDA5NEEwRENEODAyQTA1QkY3NTczRkY3QTZFRTBBN0E5 NzIwNTUwRDEwHhcNMjUxMjE3MDIwMjIwWhcNMjUxMjI0MDIwMjIwWjAYMRYwFAYD VQQDDA02OTQyMGYyYy0xNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5sv203bYoOUBii7EntSLB1iVVopmIa3JhMnXGG75AgS4h0s+EYd0kvGof8Ww 0MeiQ+isnM9w9kcxHpqOEaTUaBZLjGt7Uhwl7fA8IFwtYEXrF50KTQqqeH9er1m5 wjC6S4sr2scV+0Wvom9jBfn9Yl+MdrvUBF131HaUvqsfJKXgnJ1a1Mnc1yhzHapn 2QR7b7z6UXTL5dqgDC4/5Z97JiYa5KbecCwCDBTNY4LYa338VKiSCMQsU0ghQ0dC H1sdJr5H0mQnEbxrqH514O1jsdgooN2EKsNWuSTYbZ/4QQEyatgt4oTlU2cJk0/y cJH8a3WoBxoUYmukHh2XoYfnYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsj9JBK GCpIwZLjibXu9SAxJ+f0MB8GA1UdIwQYMBaAFAlKDc2AKgW/dXP/em7gp6lyBVDR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRi82MEE4Rjg4Q0RF QUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJiOTFjXzk2YnVDbnFYSUZV TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVb056WUFxQmI5MWNfOTZidUNucVhJRlVORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzkzRi82MEE4Rjg4Q0RFQUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJi OTFjXzk2YnVDbnFYSUZVTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAUqdA/CYFKwqsAt+Aas4qCaoCPBamSzVPF8o+UZ0qh13X8ytT26Ws asBLrYHrlk/7VmvuFYIgdA4x1AkE/HFAIaz/K4JM5K0tmwbVHYD67mE0oERsxTYV J9+Iue25nb9i0AhTF1Sqo99+YTRIm3My2sUfHuH5Gt7qe2JCwCkOHeSQgxC22Qpe 2sOg33lIgKLCNZhoVZjBjrl/xEnHdpn2M318NOstZeSVXIjeGcW2uczHescQxxJ4 S9xnjCy0RRV5zp0GUdNExrSqi0+8SWeZU4Y94Ly5QFDKoepHKVY+thSzJWYOkd6I EkEnUPRP/8gXC6/RFqF2lEt6iIyYvp9i -----END CERTIFICATE-----Generated at Wed Dec 17 11:18:16 2025 by rpki-client