This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft File: UT8gd9itkRrHe1tcWbPiFMeLAjs.mft (raw, json) Hash identifier: RXXdXzeDVDnYYXgfiwEEUn+Cip/9idb6FRyRex6iHBI= Subject key identifier: 31:5C:30:4B:41:E1:0C:3E:43:F9:A2:56:46:C6:BC:6A:B0:1A:A2:AA Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 061E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft Manifest number: 0618 Signing time: Sat 20 Dec 2025 22:08:51 +0000 Manifest this update: Sat 20 Dec 2025 22:08:51 +0000 Manifest next update: Sat 27 Dec 2025 22:08:51 +0000 Files and hashes: 1: UT8gd9itkRrHe1tcWbPiFMeLAjs.crl (hash: 8nyNPod+zUJvbvgGnHWYQaj7wLzs7uDzWcsp81gQUJk=) 2: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (hash: mwVl4hNEaIqbBNWJudlbCJK/THwSQhv97GiC3rtYAeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1566 (0x61e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9, serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: Dec 20 22:08:51 2025 GMT Not After : Dec 27 22:08:51 2025 GMT Subject: CN=69471e73-393d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:08:52:bd:a7:1d:00:9c:7d:5c:39:05:fd:5a: 28:16:1b:10:06:99:2b:3a:b3:bd:88:37:1c:66:7b: fd:5a:ce:30:b9:1c:88:09:a8:28:9d:0b:65:ee:32: d1:d8:2c:bb:31:23:39:2e:7f:51:35:81:13:c5:b8: 2e:f6:b5:87:39:f7:cd:15:bc:7c:ea:34:40:ae:41: 2e:8f:45:31:0e:83:3a:5e:fd:36:60:26:06:f8:ed: b7:c9:e2:52:6c:ab:0f:02:5c:c5:78:c1:b6:35:8c: 69:37:3b:b9:d4:a4:f9:2f:ee:6a:0c:3d:52:37:6c: 7a:7a:06:35:5b:d3:a2:9f:6e:35:56:19:d1:9d:66: d3:f2:a7:54:1b:65:34:f9:8f:a5:e2:ac:d8:2b:90: c3:da:5a:f4:62:aa:de:c4:4c:bb:51:5a:34:f3:9e: 0b:78:22:b9:74:16:f9:af:88:74:91:27:57:9e:a0: 3c:af:7e:a2:aa:90:db:c3:9f:e0:b4:1c:03:ab:1e: af:79:c5:86:18:e1:5d:49:df:d4:10:0a:fb:e9:69: d5:4d:f3:7d:50:bc:e0:f5:38:a6:25:ad:d5:18:90: 14:88:83:3c:d7:af:5a:8b:19:e5:f2:cb:28:4f:d5: 72:4f:2e:11:f2:10:51:1d:62:cb:0f:06:74:6e:66: 28:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5C:30:4B:41:E1:0C:3E:43:F9:A2:56:46:C6:BC:6A:B0:1A:A2:AA X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:42:9d:c4:2b:fb:ec:e4:35:36:05:93:2d:9d:64:4d:d1:05: 28:00:0a:9a:b1:25:87:ee:22:2e:43:5f:ed:b0:c9:f5:5c:93: 59:64:66:1d:c2:c5:a0:01:b7:30:ef:61:96:57:29:8b:46:ea: af:74:ef:59:cf:f4:48:08:92:32:12:ea:7e:9e:f7:f5:c7:aa: 03:6f:78:33:63:e4:32:4b:27:47:fc:f5:aa:4f:38:d9:d6:df: 81:d7:2e:4c:36:fa:8f:1e:81:fd:8d:65:ff:9f:ce:44:16:94: a2:7b:65:86:22:fb:e2:0d:91:4f:b6:17:ac:c7:bb:08:f5:5a: 1f:6b:6e:a2:dc:4c:d9:05:7d:00:a9:db:03:e6:b1:89:3d:76: a5:43:a9:a4:76:21:8b:0b:91:74:3b:e3:83:90:ee:67:e4:e3: ea:25:41:f8:a8:e6:d5:c6:c3:f4:4c:d0:09:a6:9c:8e:f7:30: 2f:4a:f0:8b:81:67:b2:cf:c2:e2:e5:28:ed:f6:26:c6:06:22: 54:9b:de:a0:cb:d8:32:50:2d:1a:03:df:2a:5f:0c:4e:fc:8e: dc:ef:90:5a:9e:23:a6:d9:b0:16:d1:7f:c0:cf:38:b9:91:94: 9b:16:5f:8a:d3:f2:d1:c0:37:1d:35:61:27:65:dd:dc:9a:71: ea:01:4f:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjUxMjIwMjIwODUxWhcNMjUxMjI3MjIwODUxWjAYMRYwFAYD VQQDDA02OTQ3MWU3My0zOTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQhSvacdAJx9XDkF/VooFhsQBpkrOrO9iDccZnv9Ws4wuRyICagonQtl7jLR 2Cy7MSM5Ln9RNYETxbgu9rWHOffNFbx86jRArkEuj0UxDoM6Xv02YCYG+O23yeJS bKsPAlzFeMG2NYxpNzu51KT5L+5qDD1SN2x6egY1W9Oin241VhnRnWbT8qdUG2U0 +Y+l4qzYK5DD2lr0YqrexEy7UVo0854LeCK5dBb5r4h0kSdXnqA8r36iqpDbw5/g tBwDqx6vecWGGOFdSd/UEAr76WnVTfN9ULzg9TimJa3VGJAUiIM8169aixnl8sso T9VyTy4R8hBRHWLLDwZ0bmYoIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFcMEtB 4Qw+Q/miVkbGvGqwGqKqMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFCOS9DREI3MDJGNkM4N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtS ckhlMXRjV2JQaUZNZUxBanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbQp3EK/vs5DU2BZMtnWRN0QUoAAqasSWH7iIuQ1/tsMn1XJNZZGYd wsWgAbcw72GWVymLRuqvdO9Zz/RICJIyEup+nvf1x6oDb3gzY+QySydH/PWqTzjZ 1t+B1y5MNvqPHoH9jWX/n85EFpSie2WGIvviDZFPthesx7sI9Vofa26i3EzZBX0A qdsD5rGJPXalQ6mkdiGLC5F0O+ODkO5n5OPqJUH4qObVxsP0TNAJppyO9zAvSvCL gWeyz8Li5Sjt9ibGBiJUm96gy9gyUC0aA98qXwxO/I7c75BaniOm2bAW0X/Azzi5 kZSbFl+K0/LRwDcdNWEnZd3cmnHqAU/U -----END CERTIFICATE-----Generated at Mon Dec 22 02:04:06 2025 by rpki-client