This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft File: UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft (raw, json) Hash identifier: i8xFSa6DtMgWh6A3yZZoNXrl5NyhARUOjJbyPOCNxgw= Subject key identifier: 56:FB:44:52:FD:32:56:7F:C0:31:41:93:0B:6D:61:EC:10:4B:15:73 Authority key identifier: 51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 Certificate issuer: /CN=A91383BF/serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft Manifest number: 012B Signing time: Fri 19 Dec 2025 03:47:38 +0000 Manifest this update: Fri 19 Dec 2025 03:47:38 +0000 Manifest next update: Fri 26 Dec 2025 03:47:38 +0000 Files and hashes: 1: UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl (hash: zNbVVhyOin7foANiKdLY9rpQiDTeAE/FYsbsLNQzkM0=) 2: C23053B019A911EF97366417C4F9AE02.roa (hash: 7AHfRlf5obcLabSztF3WSrRoKuN5MOc2fWcxIFrj8UQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91383BF, serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Validity Not Before: Dec 19 03:47:38 2025 GMT Not After : Dec 26 03:47:38 2025 GMT Subject: CN=6944cada-446a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:35:ef:0f:f0:3c:b2:7b:1b:45:bb:af:c0:05: f8:d0:b5:c0:a0:73:74:44:20:f3:59:f4:52:32:64: 9f:0f:b4:80:a1:a5:ab:0d:ee:6c:e3:db:81:c7:b8: 87:27:5b:92:7b:04:a1:9a:09:e1:97:40:8f:89:ee: a0:2b:4d:ec:ab:67:88:e7:b4:d4:2c:d3:8d:76:82: 4f:c0:c8:ac:5f:4a:b2:4e:c3:ff:83:48:c6:e5:7b: cc:42:91:bb:da:7b:81:1c:90:dd:cb:8f:4d:9e:35: 32:be:c7:25:64:1a:6b:49:0c:90:0c:3d:30:b3:92: a8:42:cb:3a:08:5a:b0:bd:5d:93:4c:14:39:90:a8: 27:1b:0a:fb:37:c8:f5:9f:0b:78:1b:b8:78:c1:bd: e7:9a:b0:19:73:43:aa:46:af:5a:d6:e5:9c:42:f9: 35:fe:79:12:df:0c:77:0d:87:ea:be:c4:d1:b6:55: 21:3b:ca:72:5c:4a:99:b7:af:6e:fa:a6:b6:e9:da: 46:4f:1c:81:08:b3:9f:ef:f5:8f:57:51:85:d2:05: 6e:be:e6:f0:db:a9:67:74:da:71:a3:a2:c0:7e:0e: 06:7a:83:2c:30:c1:09:86:e7:54:62:b9:38:cc:d5: ad:4c:e8:c8:7d:6c:30:df:68:79:69:8b:47:a8:7b: 03:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:FB:44:52:FD:32:56:7F:C0:31:41:93:0B:6D:61:EC:10:4B:15:73 X509v3 Authority Key Identifier: keyid:51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:56:20:97:42:8e:10:ed:5a:05:9f:4d:b4:1e:8a:0c:26:d8: 5f:dc:ae:00:78:50:eb:4a:31:76:fc:7e:21:d4:49:a6:e9:31: 09:56:b4:90:22:bc:d7:db:65:2d:b1:af:0d:98:52:78:41:52: 53:b8:0b:d2:98:0a:27:88:bb:87:f3:d2:23:be:6a:33:ba:6a: f3:f5:f0:48:b7:db:12:a0:04:8c:65:22:0d:6a:f4:dc:b2:4a: da:85:3f:12:ba:96:fb:33:34:41:2b:a8:26:90:94:fc:d6:ef: ec:97:10:ba:f0:94:a3:98:16:f7:2d:a3:14:27:5f:5e:de:e0: 75:26:88:d6:37:c7:3e:10:99:a1:3e:8d:6f:25:93:23:cd:8c: c0:51:c3:6b:34:ef:d6:20:bd:e0:f2:71:37:f8:2e:fe:72:5c: 72:c3:c3:ec:7e:08:7a:b9:fe:f2:a0:1e:5e:75:08:77:92:8d: a7:31:b6:2e:a8:aa:9c:5c:97:2e:c7:ef:e2:08:6f:7c:30:0b: 60:c8:74:87:bf:59:3c:aa:00:d0:8c:52:87:aa:35:27:08:9a: 59:d8:0d:e7:bc:65:33:8f:b6:9e:d4:b5:23:01:51:d8:95:c1: 13:39:f0:26:0c:47:da:07:ed:a9:dc:22:07:c8:19:ab:5f:26: dd:73:43:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzQkYxMTAvBgNVBAUTKDUxQTQ4MjU4RDRDRDZFMDFEMjQ1OEM1QjkyMTZFRkE0 NTIxMEI2MjMwHhcNMjUxMjE5MDM0NzM4WhcNMjUxMjI2MDM0NzM4WjAYMRYwFAYD VQQDDA02OTQ0Y2FkYS00NDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDXvD/A8snsbRbuvwAX40LXAoHN0RCDzWfRSMmSfD7SAoaWrDe5s49uBx7iH J1uSewShmgnhl0CPie6gK03sq2eI57TULNONdoJPwMisX0qyTsP/g0jG5XvMQpG7 2nuBHJDdy49NnjUyvsclZBprSQyQDD0ws5KoQss6CFqwvV2TTBQ5kKgnGwr7N8j1 nwt4G7h4wb3nmrAZc0OqRq9a1uWcQvk1/nkS3wx3DYfqvsTRtlUhO8pyXEqZt69u +qa26dpGTxyBCLOf7/WPV1GF0gVuvubw26lndNpxo6LAfg4GeoMsMMEJhudUYrk4 zNWtTOjIfWww32h5aYtHqHsDOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFb7RFL9 MlZ/wDFBkwttYewQSxVzMB8GA1UdIwQYMBaAFFGkgljUzW4B0kWMW5IW76RSELYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODNCRi9GNjdDNjFFQTE5 ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJnSFNSWXhia2hidnBGSVF0 aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VhU0NXTlROYmdIU1JZeGJraGJ2cEZJUXRpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODNCRi9GNjdDNjFFQTE5ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJn SFNSWXhia2hidnBGSVF0aU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1ViCXQo4Q7VoFn020HooMJthf3K4AeFDrSjF2/H4h1Emm6TEJVrSQ IrzX22Utsa8NmFJ4QVJTuAvSmAoniLuH89Ijvmozumrz9fBIt9sSoASMZSINavTc skrahT8Supb7MzRBK6gmkJT81u/slxC68JSjmBb3LaMUJ19e3uB1JojWN8c+EJmh Po1vJZMjzYzAUcNrNO/WIL3g8nE3+C7+clxyw8Psfgh6uf7yoB5edQh3ko2nMbYu qKqcXJcux+/iCG98MAtgyHSHv1k8qgDQjFKHqjUnCJpZ2A3nvGUzj7ae1LUjAVHY lcETOfAmDEfaB+2p3CIHyBmrXybdc0Nn -----END CERTIFICATE-----Generated at Fri Dec 19 22:01:42 2025 by rpki-client