This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: a8logvMBE/kDjk2IQfFWyaNqVp64dBn2VvKNSnUuXL8= Subject key identifier: 86:7E:9B:53:07:5F:3A:57:9E:8D:58:05:36:58:AA:39:B5:37:4A:68 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 01D1 Signing time: Fri 19 Dec 2025 01:43:21 +0000 Manifest this update: Fri 19 Dec 2025 01:43:21 +0000 Manifest next update: Fri 26 Dec 2025 01:43:21 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: LnA77xN4IebO1CDSdiRXKt4lGSmthbefo0L1iwn6pNE=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Dec 19 01:43:21 2025 GMT Not After : Dec 26 01:43:21 2025 GMT Subject: CN=6944adb9-6acd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2e:a6:a2:8d:15:5a:01:03:2c:1a:99:ec:cc: 5e:ed:8b:c5:c4:ab:82:3d:42:a6:3b:6f:3b:d2:08: 24:48:df:fe:c8:04:50:36:ce:6e:8d:bc:a1:37:6a: fc:05:34:5a:10:ed:04:cf:b4:18:76:0d:72:82:d1: d1:80:5a:38:53:f1:b3:22:02:0c:04:24:be:09:88: f6:9a:85:af:bf:e5:fe:43:92:bc:ba:7e:f3:c5:a2: 07:9d:9c:e1:c8:3b:8d:65:46:d0:03:3f:69:24:40: 18:39:ba:ee:ea:7e:fa:0e:a8:74:11:10:d2:4a:59: e6:df:fa:d9:29:38:15:76:0e:2a:26:7d:9c:cd:99: e6:54:b4:bd:75:07:31:85:7c:63:3e:ff:24:8d:ab: 2e:2b:01:c5:13:b7:d3:c4:b1:7a:7d:d4:1f:3f:e1: 99:5f:9f:ed:88:5d:b8:30:62:b6:cd:7f:ea:6b:ce: 41:66:ee:26:08:a7:01:21:f8:fc:e0:c1:45:c1:93: 23:30:8e:d7:55:ac:60:9f:37:22:bf:e6:f3:06:4a: 9d:83:62:21:a5:df:83:ca:70:e7:07:45:a5:bd:74: 9a:9c:c9:85:57:5a:ef:f7:ad:f9:67:62:ca:44:72: 48:38:de:2d:43:de:ae:72:75:40:f6:f4:78:16:f9: 41:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:7E:9B:53:07:5F:3A:57:9E:8D:58:05:36:58:AA:39:B5:37:4A:68 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:56:6a:86:8e:87:49:73:ed:56:7d:63:de:3c:c0:d4:12:9a: 49:7a:24:a9:cc:99:ec:2f:f7:cc:43:54:91:9e:b2:9d:66:3f: 70:49:85:1f:10:fe:c0:45:d5:7a:86:1c:f5:0c:52:2f:04:92: 31:50:a4:c8:72:d1:81:35:db:b3:20:90:95:6a:22:80:fb:20: 3e:cf:7f:03:9e:77:3c:52:d5:6a:b4:93:5c:5e:f1:a5:e2:37: bc:60:73:bb:d5:45:1e:7d:6f:53:f8:6d:d1:70:18:e8:cf:07: 8b:5a:46:53:b5:71:71:72:29:65:95:31:62:91:18:00:2c:01: 11:da:10:0f:fa:57:67:c0:cf:ca:52:bf:06:37:69:7a:05:bb: 8d:f5:1f:c5:d9:9c:6b:82:10:ab:d5:4a:a9:32:74:94:7e:56: bc:40:58:a3:01:39:76:c3:43:80:c9:9d:2a:22:e0:87:af:05: 25:fa:66:88:fd:c0:aa:06:6c:84:7c:ed:cd:a8:34:d2:8a:96: 94:7d:d4:c0:fd:b8:d9:43:95:eb:9d:af:61:f9:df:d2:a6:e8: 66:00:f6:7d:10:12:60:ca:d6:55:40:73:eb:29:04:a9:ba:6e: 67:4e:b5:de:18:9a:72:98:62:ef:d9:e9:eb:f1:32:8e:87:05: e2:77:ac:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUxMjE5MDE0MzIxWhcNMjUxMjI2MDE0MzIxWjAYMRYwFAYD VQQDDA02OTQ0YWRiOS02YWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1C6moo0VWgEDLBqZ7Mxe7YvFxKuCPUKmO2870ggkSN/+yARQNs5ujbyhN2r8 BTRaEO0Ez7QYdg1ygtHRgFo4U/GzIgIMBCS+CYj2moWvv+X+Q5K8un7zxaIHnZzh yDuNZUbQAz9pJEAYObru6n76Dqh0ERDSSlnm3/rZKTgVdg4qJn2czZnmVLS9dQcx hXxjPv8kjasuKwHFE7fTxLF6fdQfP+GZX5/tiF24MGK2zX/qa85BZu4mCKcBIfj8 4MFFwZMjMI7XVaxgnzciv+bzBkqdg2Ihpd+DynDnB0WlvXSanMmFV1rv9635Z2LK RHJION4tQ96ucnVA9vR4FvlBoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZ+m1MH XzpXno1YBTZYqjm1N0poMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnVmqGjodJc+1WfWPePMDUEppJeiSpzJnsL/fMQ1SRnrKdZj9wSYUf EP7ARdV6hhz1DFIvBJIxUKTIctGBNduzIJCVaiKA+yA+z38Dnnc8UtVqtJNcXvGl 4je8YHO71UUefW9T+G3RcBjozweLWkZTtXFxcilllTFikRgALAER2hAP+ldnwM/K Ur8GN2l6BbuN9R/F2ZxrghCr1UqpMnSUfla8QFijATl2w0OAyZ0qIuCHrwUl+maI /cCqBmyEfO3NqDTSipaUfdTA/bjZQ5Xrna9h+d/SpuhmAPZ9EBJgytZVQHPrKQSp um5nTrXeGJpymGLv2enr8TKOhwXid6xU -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:18 2025 by rpki-client