This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.mft File: 2UVIdZZlg2gUctzDnfIkqtSon6o.mft (raw, json) Hash identifier: /W4OrAFRcCXHXr6SpHTrS2tlZsKWxBKxNhjUKWzRK/I= Subject key identifier: D7:8A:2D:67:26:67:EA:AC:6D:71:52:C2:37:31:0E:8C:4C:44:EF:51 Authority key identifier: D9:45:48:75:96:65:83:68:14:72:DC:C3:9D:F2:24:AA:D4:A8:9F:AA Certificate issuer: /CN=A91352D1/serialNumber=D9454875966583681472DCC39DF224AAD4A89FAA Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UVIdZZlg2gUctzDnfIkqtSon6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.mft Manifest number: 17 Signing time: Fri 19 Dec 2025 06:48:35 +0000 Manifest this update: Fri 19 Dec 2025 06:48:35 +0000 Manifest next update: Fri 26 Dec 2025 06:48:35 +0000 Files and hashes: 1: 2UVIdZZlg2gUctzDnfIkqtSon6o.crl (hash: zKigTyj0d0Xoadmda/piFzHJDLYP5Lasczb8v1wLdLI=) 2: 63AFC09EC10C11F08F1AFF7FC4F9AE02.roa (hash: 6W8pbhnGV4OI+/BAF+L1OPuH+jw3tDQBKF3blq5Eu2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.crl rsync://rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UVIdZZlg2gUctzDnfIkqtSon6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352D1, serialNumber=D9454875966583681472DCC39DF224AAD4A89FAA Validity Not Before: Dec 19 06:48:35 2025 GMT Not After : Dec 26 06:48:35 2025 GMT Subject: CN=6944f543-7e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fb:18:81:51:ae:30:65:ac:26:90:7f:ad:98: e7:7f:c4:0a:80:5b:05:fa:76:8d:e2:27:aa:36:68: 9c:e2:79:c2:7d:13:a2:9c:27:9c:38:49:b6:cb:71: 6c:5e:de:74:54:97:e3:d8:78:3f:f9:2f:d6:21:16: 54:06:f8:31:e4:ba:60:37:90:67:9b:5e:33:2f:1c: 17:17:10:a3:7a:2d:af:2f:50:3e:34:a3:12:3d:79: 58:a5:1b:db:4c:81:7f:d6:f0:0f:0d:64:44:ed:16: 94:22:54:32:d8:f9:c7:bf:ac:f6:90:b0:c7:51:26: b0:df:37:b7:92:86:c8:59:19:44:d4:e7:6d:35:ad: 97:90:39:50:02:40:99:be:72:47:a3:92:a0:25:1c: 8d:ab:28:a0:44:37:f5:39:00:e3:05:62:c7:37:54: bf:76:34:94:d7:23:f0:98:10:c2:99:bf:1b:ad:d6: 9b:f0:72:4d:85:93:04:f7:1c:e6:5b:4d:7b:18:37: c2:4c:cd:fc:14:5d:b1:a1:be:6b:bb:bf:3d:c0:06: 33:cd:fd:53:f0:ed:4f:17:04:e6:31:a7:d9:6c:95: eb:07:bc:dc:c0:c7:f0:43:90:aa:df:60:d7:70:19: f6:ce:20:34:27:80:9d:bd:66:5a:31:eb:5a:a1:56: 00:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8A:2D:67:26:67:EA:AC:6D:71:52:C2:37:31:0E:8C:4C:44:EF:51 X509v3 Authority Key Identifier: keyid:D9:45:48:75:96:65:83:68:14:72:DC:C3:9D:F2:24:AA:D4:A8:9F:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UVIdZZlg2gUctzDnfIkqtSon6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:67:21:85:f5:28:b1:28:3f:a2:e3:1c:32:e0:2b:7f:62:92: bc:07:db:36:d8:ec:2a:19:8e:f3:96:16:95:13:e1:da:19:e3: 5d:a0:3b:b5:56:13:32:0f:c5:25:16:85:e5:bf:45:a4:41:01: 78:e5:4b:5b:b3:10:a0:0a:c8:36:22:eb:e7:ef:71:86:4b:0f: 2c:8b:50:dd:f0:41:61:74:64:63:01:14:74:d4:7e:e5:ef:d6: 0b:ca:37:e3:97:36:94:5d:fb:fd:6e:d1:2e:a9:67:fe:29:7d: 0d:b3:b1:99:4c:3f:f8:0e:e6:4c:ba:ce:a7:c9:bb:00:9b:33: 97:e6:2d:22:03:a2:8b:61:d0:fe:78:38:a0:82:86:54:73:09: 05:b6:e8:ae:33:9d:3d:3e:45:f1:8d:43:04:0d:ce:77:03:a5: 39:2d:2e:73:e0:07:9f:aa:fa:a9:4d:8a:91:b9:7f:f1:08:a8: ee:ea:30:85:85:86:f4:4d:e8:30:db:72:5a:41:d2:6d:0a:08: ee:5f:f5:88:ea:3e:8c:83:b8:be:1f:8f:f2:96:cc:4d:4e:7e: c7:24:31:a4:ee:a4:71:4e:ca:1d:c2:42:a4:29:5f:45:b0:41: ab:d4:30:16:1f:a4:cb:87:83:d8:89:f0:6d:89:03:50:db:48: 8e:07:bf:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NTJEMTExMC8GA1UEBRMoRDk0NTQ4NzU5NjY1ODM2ODE0NzJEQ0MzOURGMjI0QUFE NEE4OUZBQTAeFw0yNTEyMTkwNjQ4MzVaFw0yNTEyMjYwNjQ4MzVaMBgxFjAUBgNV BAMMDTY5NDRmNTQzLTdlNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG+xiBUa4wZawmkH+tmOd/xAqAWwX6do3iJ6o2aJziecJ9E6KcJ5w4SbbLcWxe 3nRUl+PYeD/5L9YhFlQG+DHkumA3kGebXjMvHBcXEKN6La8vUD40oxI9eVilG9tM gX/W8A8NZETtFpQiVDLY+ce/rPaQsMdRJrDfN7eShshZGUTU5201rZeQOVACQJm+ ckejkqAlHI2rKKBEN/U5AOMFYsc3VL92NJTXI/CYEMKZvxut1pvwck2FkwT3HOZb TXsYN8JMzfwUXbGhvmu7vz3ABjPN/VPw7U8XBOYxp9lslesHvNzAx/BDkKrfYNdw GfbOIDQngJ29Zlox61qhVgDZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU14otZyZn 6qxtcVLCNzEOjExE71EwHwYDVR0jBBgwFoAU2UVIdZZlg2gUctzDnfIkqtSon6ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1MkQxL0RERjQyMjZDQzA0 MTExRjBCQzI1NkYxNUM0RjlBRTAyLzJVVklkWlpsZzJnVWN0ekRuZklrcXRTb242 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlVWSWRaWmxnMmdVY3R6RG5mSWtxdFNvbjZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1 MkQxL0RERjQyMjZDQzA0MTExRjBCQzI1NkYxNUM0RjlBRTAyLzJVVklkWlpsZzJn VWN0ekRuZklrcXRTb242by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHZnIYX1KLEoP6LjHDLgK39ikrwH2zbY7CoZjvOWFpUT4doZ412gO7VW EzIPxSUWheW/RaRBAXjlS1uzEKAKyDYi6+fvcYZLDyyLUN3wQWF0ZGMBFHTUfuXv 1gvKN+OXNpRd+/1u0S6pZ/4pfQ2zsZlMP/gO5ky6zqfJuwCbM5fmLSIDooth0P54 OKCChlRzCQW26K4znT0+RfGNQwQNzncDpTktLnPgB5+q+qlNipG5f/EIqO7qMIWF hvRN6DDbclpB0m0KCO5f9YjqPoyDuL4fj/KWzE1OfsckMaTupHFOyh3CQqQpX0Ww QavUMBYfpMuHg9iJ8G2JA1DbSI4Hv+0= -----END CERTIFICATE-----Generated at Fri Dec 19 18:43:55 2025 by rpki-client