This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft File: uMGYUq7H2lGkUL59p9lYc77eNzQ.mft (raw, json) Hash identifier: An4rNOmKsgRniwDt9/ZawaCCFG2rFw5raEeHTwGMgRM= Subject key identifier: FE:EB:EC:EA:C7:76:25:B0:17:C1:4F:D3:4C:D6:2D:05:FF:CB:C3:79 Authority key identifier: B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 Certificate issuer: /CN=A917C78E/serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft Manifest number: E0 Signing time: Fri 19 Dec 2025 04:37:40 +0000 Manifest this update: Fri 19 Dec 2025 04:37:40 +0000 Manifest next update: Fri 26 Dec 2025 04:37:40 +0000 Files and hashes: 1: uMGYUq7H2lGkUL59p9lYc77eNzQ.crl (hash: PKsIOpLJGks8WIjKEjJk/hGnbuSI7rzvnhG41KlVX/w=) 2: 91F29F5E86DD11EFB3D7A929C4F9AE02.roa (hash: ZCgG7FYX4Z+FrZu/NpwbDBG7rLXKjEvv9WpnC42UALI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C78E, serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Validity Not Before: Dec 19 04:37:40 2025 GMT Not After : Dec 26 04:37:40 2025 GMT Subject: CN=6944d694-4324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:7f:14:ce:e5:ad:72:85:c3:e6:e5:9f:34:a1: 46:3c:ff:80:a7:d7:80:c6:70:a2:46:ef:11:34:30: 35:62:ed:4b:0c:eb:c9:af:fe:b6:f8:a4:78:a6:34: b3:2c:f2:f3:de:cb:89:d0:12:c3:ae:56:e5:cb:9b: c7:26:64:68:3c:96:26:7b:10:e9:3b:10:85:c1:56: 72:f4:bf:ef:b5:cc:3e:9c:e6:83:2b:bf:e8:21:4e: fb:8c:ed:67:72:a8:09:65:94:ab:85:9b:cb:0e:ea: da:32:14:fe:99:4b:38:bc:65:a5:b1:a8:0e:41:c7: 5c:c7:be:68:3c:cd:21:c8:f5:fe:03:b6:ba:cc:75: 05:7c:b5:1d:22:63:9a:4c:a8:cb:fb:1f:5a:2a:c1: 43:da:0c:2a:e6:86:c2:08:a1:04:5e:30:7a:66:a8: 04:96:d3:7a:9f:ed:7f:ae:66:e6:e3:36:52:51:31: d8:60:82:f9:c9:5b:a6:ed:ab:26:85:62:64:55:30: b6:76:75:b9:b6:32:ae:57:34:9e:fe:2a:e3:53:1b: 19:e3:b1:79:89:9e:4a:84:7c:b6:a7:c2:b2:7c:c3: 38:37:ee:c2:0d:da:83:c6:c1:6f:31:15:fd:ea:19: 2a:c0:0f:3f:16:34:86:04:dc:19:4d:9b:a0:de:9a: 8e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:EB:EC:EA:C7:76:25:B0:17:C1:4F:D3:4C:D6:2D:05:FF:CB:C3:79 X509v3 Authority Key Identifier: keyid:B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:e3:af:6f:88:e1:dd:a0:a1:90:b8:06:9b:25:09:47:db:23: 8b:b0:ed:de:ba:8d:28:61:48:74:89:66:90:c9:92:b7:6c:92: c5:fb:5c:d0:f0:69:09:5d:0e:ff:4a:c5:aa:ec:a9:72:32:d1: 8c:6e:4c:75:80:b4:40:04:56:f1:56:06:61:d5:5e:f3:61:33: 1e:95:4e:ba:1f:24:f7:03:62:6b:cd:3b:82:70:0a:d9:66:8e: 8c:c2:f1:6a:4a:a5:4e:f1:ce:4f:a5:fd:1f:2a:c8:0a:cb:59: 85:40:7b:18:07:ee:5e:8b:1d:80:e6:67:b6:36:7a:f1:d3:28: da:74:e3:c2:71:84:bf:d7:c7:c2:20:8a:8c:7f:36:cb:66:66: f9:cd:22:83:dd:ed:20:46:f2:e3:01:c9:18:21:1f:60:84:94: 10:1a:91:99:4b:4b:a6:c4:fd:55:1f:af:df:d8:47:01:f2:f7: 99:54:8b:25:8c:8b:7a:f0:a8:0f:9b:12:9e:a3:3f:5c:b5:44: a6:cc:dd:3f:0e:a0:f7:b3:d1:88:e1:40:4a:04:47:a2:ee:8c: 75:4a:d2:0a:55:22:0e:f1:66:88:a5:23:f8:ec:2d:63:68:1e: dc:56:f5:ca:bb:b7:7f:22:58:52:ee:4d:a9:c0:71:1a:1d:69: 0b:f9:97:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3OEUxMTAvBgNVBAUTKEI4QzE5ODUyQUVDN0RBNTFBNDUwQkU3REE3RDk1ODcz QkVERTM3MzQwHhcNMjUxMjE5MDQzNzQwWhcNMjUxMjI2MDQzNzQwWjAYMRYwFAYD VQQDDA02OTQ0ZDY5NC00MzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7X8UzuWtcoXD5uWfNKFGPP+Ap9eAxnCiRu8RNDA1Yu1LDOvJr/62+KR4pjSz LPLz3suJ0BLDrlbly5vHJmRoPJYmexDpOxCFwVZy9L/vtcw+nOaDK7/oIU77jO1n cqgJZZSrhZvLDuraMhT+mUs4vGWlsagOQcdcx75oPM0hyPX+A7a6zHUFfLUdImOa TKjL+x9aKsFD2gwq5obCCKEEXjB6ZqgEltN6n+1/rmbm4zZSUTHYYIL5yVum7asm hWJkVTC2dnW5tjKuVzSe/irjUxsZ47F5iZ5KhHy2p8KyfMM4N+7CDdqDxsFvMRX9 6hkqwA8/FjSGBNwZTZug3pqOwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7r7OrH diWwF8FP00zWLQX/y8N5MB8GA1UdIwQYMBaAFLjBmFKux9pRpFC+fafZWHO+3jc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Qzc4RS9BMDIwMUIyMDg2 REMxMUVGQjlFQUQwMjdDNEY5QUUwMi91TUdZVXE3SDJsR2tVTDU5cDlsWWM3N2VO elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VNR1lVcTdIMmxHa1VMNTlwOWxZYzc3ZU56US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Qzc4RS9BMDIwMUIyMDg2REMxMUVGQjlFQUQwMjdDNEY5QUUwMi91TUdZVXE3SDJs R2tVTDU5cDlsWWM3N2VOelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW469viOHdoKGQuAabJQlH2yOLsO3euo0oYUh0iWaQyZK3bJLF+1zQ 8GkJXQ7/SsWq7KlyMtGMbkx1gLRABFbxVgZh1V7zYTMelU66HyT3A2JrzTuCcArZ Zo6MwvFqSqVO8c5Ppf0fKsgKy1mFQHsYB+5eix2A5me2Nnrx0yjadOPCcYS/18fC IIqMfzbLZmb5zSKD3e0gRvLjAckYIR9ghJQQGpGZS0umxP1VH6/f2EcB8veZVIsl jIt68KgPmxKeoz9ctUSmzN0/DqD3s9GI4UBKBEei7ox1StIKVSIO8WaIpSP47C1j aB7cVvXKu7d/IlhS7k2pwHEaHWkL+ZfF -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:41 2025 by rpki-client