This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft File: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft (raw, json) Hash identifier: 4hEBKmqi8O+0/3IJKUeReQYF+CC1KnyZTuYZtnriPhA= Subject key identifier: AB:A9:D2:76:E6:3A:59:B5:0B:89:D3:25:8B:16:6D:51:42:92:9A:8F Authority key identifier: 71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F Certificate issuer: /CN=A91FF84F/serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Certificate serial: 069E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft Manifest number: 0697 Signing time: Sun 28 Dec 2025 21:39:31 +0000 Manifest this update: Sun 28 Dec 2025 21:39:31 +0000 Manifest next update: Sun 04 Jan 2026 21:39:31 +0000 Files and hashes: 1: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl (hash: dDFtH9n1xBciPk+PxxBkSpspIilBkYz7vdJADGwgIOI=) 2: 2F320256981611EB904AF150C4F9AE02.roa (hash: E4TUFKJ6pvq2MnnX/Fp4K5QwjuZ8zkimayyU0Jn+DJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 21:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1694 (0x69e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF84F, serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Validity Not Before: Dec 28 21:39:31 2025 GMT Not After : Jan 4 21:39:31 2026 GMT Subject: CN=6951a393-fcfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:55:bc:c1:84:e3:ff:6b:ec:ea:4d:72:58:6b: 19:56:17:e0:a3:83:b4:ea:d0:1a:b1:87:ed:f0:e7: fc:e1:d4:06:fd:fe:14:34:6b:6d:27:5c:18:d6:f1: 8a:98:cd:17:56:65:0f:d9:16:c1:9d:e8:af:17:d9: f9:0f:81:b4:1b:4e:45:78:a2:d5:2e:25:3d:d1:c8: 31:45:84:15:95:cc:61:2d:40:6c:9b:65:e5:24:8f: ea:f3:6c:bb:c2:51:f7:49:9a:52:38:a7:11:28:45: cc:8d:07:35:64:69:e1:2f:eb:06:0d:cd:90:c5:3c: 71:85:e9:e2:4c:27:d4:73:fc:ab:c1:c8:80:77:d9: 21:cb:95:e0:e6:aa:be:00:e6:96:4b:4a:a5:8b:31: a3:a6:32:63:51:dd:3a:2b:38:48:99:33:56:70:b0: 20:e7:7a:8c:50:5a:7c:e2:c5:c0:bf:03:a2:f7:86: 03:d3:20:f7:8a:17:1e:46:79:cb:b5:ee:11:0b:ec: 4c:e1:6d:22:2e:15:c0:a7:ad:f5:a9:bf:9c:67:59: e3:28:0d:2d:f5:53:c3:c6:af:79:13:81:d2:18:8f: 1e:4c:60:8b:e2:22:9e:6b:00:53:30:e3:29:66:55: 06:33:eb:f6:2f:ee:79:5f:e4:7a:7c:e4:51:00:ff: 0a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:A9:D2:76:E6:3A:59:B5:0B:89:D3:25:8B:16:6D:51:42:92:9A:8F X509v3 Authority Key Identifier: keyid:71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:a6:28:17:f8:26:db:cd:c4:9c:e4:2b:fa:b0:eb:36:61:72: 1d:c2:07:d6:a4:41:9f:0b:00:a8:e1:52:15:22:91:17:62:3a: 6e:47:76:82:39:b2:97:97:c1:2b:30:6f:91:91:46:28:32:b0: 19:f8:4e:9d:a0:b7:75:48:98:ff:17:a3:4f:c9:b1:b1:0d:13: 17:ac:82:76:5f:5a:97:0d:f9:4c:f2:eb:10:ff:8f:69:02:25: 7f:6d:b2:55:4f:b3:c1:01:01:32:b5:79:0a:89:d6:43:62:14: 1f:25:c9:5c:d2:cc:1b:87:ea:2b:1b:01:b8:94:aa:aa:18:85: 03:61:55:fd:52:dd:85:7c:fa:c4:4f:9c:c9:51:07:5f:4b:e5: ba:0e:18:31:8d:ae:5a:cb:98:9e:6a:35:bf:7a:ab:11:75:9f: 5e:9a:33:81:d1:70:e8:15:37:83:32:92:66:0d:a0:66:a2:8f: 4c:14:67:2d:a1:c4:29:86:3e:cf:5f:1b:19:0a:13:01:e5:6c: a5:ab:4c:d8:53:6c:db:9e:e9:7e:93:0c:93:ca:7c:d0:be:96: 20:fe:4f:7a:a2:8e:5f:a6:d5:ff:df:20:70:dc:d4:75:8c:92: 68:e2:4c:c5:68:e4:dc:7e:41:4b:24:cc:24:6b:ec:e7:30:07: f9:dc:e6:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4NEYxMTAvBgNVBAUTKDcxNDFDMzE5QkI0NEJGQkNERTMzODJCM0JCNjkxMjY1 Rjk1RDMwOUYwHhcNMjUxMjI4MjEzOTMxWhcNMjYwMTA0MjEzOTMxWjAYMRYwFAYD VQQDDA02OTUxYTM5My1mY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlW8wYTj/2vs6k1yWGsZVhfgo4O06tAasYft8Of84dQG/f4UNGttJ1wY1vGK mM0XVmUP2RbBneivF9n5D4G0G05FeKLVLiU90cgxRYQVlcxhLUBsm2XlJI/q82y7 wlH3SZpSOKcRKEXMjQc1ZGnhL+sGDc2QxTxxheniTCfUc/yrwciAd9khy5Xg5qq+ AOaWS0qlizGjpjJjUd06KzhImTNWcLAg53qMUFp84sXAvwOi94YD0yD3ihceRnnL te4RC+xM4W0iLhXAp631qb+cZ1njKA0t9VPDxq95E4HSGI8eTGCL4iKeawBTMOMp ZlUGM+v2L+55X+R6fORRAP8KDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKup0nbm Olm1C4nTJYsWbVFCkpqPMB8GA1UdIwQYMBaAFHFBwxm7RL+83jOCs7tpEmX5XTCf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg0Ri9ERDQ4N0E1Qzk4 MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3emVNNEt6dTJrU1pmbGRN SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVSERHYnRFdjd6ZU00S3p1MmtTWmZsZE1KOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg0Ri9ERDQ4N0E1Qzk4MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3 emVNNEt6dTJrU1pmbGRNSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNpigX+CbbzcSc5Cv6sOs2YXIdwgfWpEGfCwCo4VIVIpEXYjpuR3aC ObKXl8ErMG+RkUYoMrAZ+E6doLd1SJj/F6NPybGxDRMXrIJ2X1qXDflM8usQ/49p AiV/bbJVT7PBAQEytXkKidZDYhQfJclc0swbh+orGwG4lKqqGIUDYVX9Ut2FfPrE T5zJUQdfS+W6Dhgxja5ay5ieajW/eqsRdZ9emjOB0XDoFTeDMpJmDaBmoo9MFGct ocQphj7PXxsZChMB5Wylq0zYU2zbnul+kwyTynzQvpYg/k96oo5fptX/3yBw3NR1 jJJo4kzFaOTcfkFLJMwka+znMAf53OaI -----END CERTIFICATE-----Generated at Tue Dec 30 08:51:57 2025 by rpki-client