This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft File: Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json) Hash identifier: QoHN+Af/4pEmzoEePNZa634dEz6jBn5eDnKdEfAJlnM= Subject key identifier: 77:25:96:D3:F8:B4:5E:F4:14:89:94:8B:DD:A1:48:01:72:75:BB:2B Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Certificate serial: 0335 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft Manifest number: 0332 Signing time: Mon 29 Dec 2025 00:07:16 +0000 Manifest this update: Mon 29 Dec 2025 00:07:15 +0000 Manifest next update: Mon 05 Jan 2026 00:07:15 +0000 Files and hashes: 1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: MmvnK5WWuavzYacG8/YDV9xMqNenFILSkApjDDQdP4I=) 2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: E4JlmSxgf5/1+dN+C7clJrcgIOSoxnaAMP6CuZCG7yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 00:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Validity Not Before: Dec 29 00:07:15 2025 GMT Not After : Jan 5 00:07:15 2026 GMT Subject: CN=6951c634-dddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ae:17:24:07:39:81:38:76:bf:07:fc:ff:9a: 93:17:7b:25:8c:6d:49:7f:1c:37:40:1c:25:d7:c8: b8:e1:eb:54:22:49:38:d4:53:0d:d6:e9:15:7b:0d: ad:88:11:45:7a:5e:ca:37:cb:9d:58:2c:9d:d1:8a: ca:f2:c8:28:fa:39:2f:1b:00:a7:ea:c4:33:90:11: ef:03:e3:12:8b:84:09:9a:29:fd:83:fd:47:b7:87: 17:2c:92:9f:06:21:67:1b:36:27:cf:e8:1a:d8:9d: c5:5c:ff:40:93:82:4f:0f:80:4d:f1:e4:59:ff:81: ee:87:63:ad:07:17:c0:ca:65:4f:98:be:a5:32:2f: ad:75:27:89:db:55:10:14:7b:fd:82:d8:77:7b:28: f2:b1:75:94:cb:08:7e:8a:0b:21:ed:4a:c7:6b:55: b5:2f:f5:db:bb:3e:24:92:25:1b:44:60:84:2c:86: 36:22:2e:7f:3e:2f:23:39:bb:ca:5b:e4:14:b3:6c: 83:50:9a:b1:d6:48:7a:21:73:5e:c1:61:47:72:78: f9:c4:07:96:ed:7e:fc:2d:8e:74:5a:df:9c:c5:06: 26:75:6a:b2:1c:ac:0e:c5:5b:16:f9:e4:6e:d9:e1: 5d:4e:60:66:63:ce:35:7a:07:d9:2a:9e:36:4e:00: 64:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:25:96:D3:F8:B4:5E:F4:14:89:94:8B:DD:A1:48:01:72:75:BB:2B X509v3 Authority Key Identifier: keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:42:b7:fc:3c:74:d0:4b:75:fc:0c:77:a5:40:3e:78:94:a0: 26:69:0a:51:2f:8a:86:39:d5:e1:19:8e:3f:d1:94:3a:bb:5a: 9a:d1:72:a9:e0:ec:8a:6c:63:96:96:32:90:54:33:4b:a2:6e: 2a:74:1b:4b:ce:27:53:d8:4c:fa:e0:f3:69:16:3e:e1:cd:ed: cd:fa:6a:6a:9f:fb:69:a1:e3:56:c3:0a:46:d2:8b:23:f7:98: 70:16:02:88:b8:8b:b4:dc:2b:d8:25:5a:4e:09:3a:90:81:2f: 6f:1d:fe:21:1b:eb:4a:72:77:32:39:c8:c5:bd:f6:11:ab:a8: 37:8c:cc:c8:1a:dc:6e:26:ad:ac:d8:ac:13:d7:a2:f2:f0:59: 62:e7:cd:3f:92:15:ad:7a:77:0b:5f:f4:1b:ea:6e:2a:93:38: e9:bb:c3:e0:32:08:b8:91:b0:c1:37:65:37:ed:81:17:64:72: 99:77:fc:b4:30:b5:31:4d:14:42:d8:cc:ed:fa:3b:16:51:55: 61:fb:45:f8:e1:93:f0:8d:02:5e:3f:e9:5a:b4:54:ac:a5:e3: e2:40:2d:3a:ab:7a:85:05:25:0f:2b:7b:07:13:11:29:9b:c3: ec:ab:ba:8a:9b:a4:2f:59:a7:38:c7:05:c2:2b:1e:d2:75:31: 4b:d5:a3:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF MTlFQzU4NDcwHhcNMjUxMjI5MDAwNzE1WhcNMjYwMTA1MDAwNzE1WjAYMRYwFAYD VQQDDA02OTUxYzYzNC1kZGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtK4XJAc5gTh2vwf8/5qTF3sljG1Jfxw3QBwl18i44etUIkk41FMN1ukVew2t iBFFel7KN8udWCyd0YrK8sgo+jkvGwCn6sQzkBHvA+MSi4QJmin9g/1Ht4cXLJKf BiFnGzYnz+ga2J3FXP9Ak4JPD4BN8eRZ/4Huh2OtBxfAymVPmL6lMi+tdSeJ21UQ FHv9gth3eyjysXWUywh+igsh7UrHa1W1L/Xbuz4kkiUbRGCELIY2Ii5/Pi8jObvK W+QUs2yDUJqx1kh6IXNewWFHcnj5xAeW7X78LY50Wt+cxQYmdWqyHKwOxVsW+eRu 2eFdTmBmY841egfZKp42TgBkMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHclltP4 tF70FImUi92hSAFydbsrMB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZs cXZ3RlFqek9XSTNobnNXRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuQrf8PHTQS3X8DHelQD54lKAmaQpRL4qGOdXhGY4/0ZQ6u1qa0XKp 4OyKbGOWljKQVDNLom4qdBtLzidT2Ez64PNpFj7hze3N+mpqn/tpoeNWwwpG0osj 95hwFgKIuIu03CvYJVpOCTqQgS9vHf4hG+tKcncyOcjFvfYRq6g3jMzIGtxuJq2s 2KwT16Ly8Fli580/khWtencLX/Qb6m4qkzjpu8PgMgi4kbDBN2U37YEXZHKZd/y0 MLUxTRRC2Mzt+jsWUVVh+0X44ZPwjQJeP+latFSspePiQC06q3qFBSUPK3sHExEp m8Psq7qKm6QvWac4xwXCKx7SdTFL1aN/ -----END CERTIFICATE-----Generated at Mon Dec 29 08:28:12 2025 by rpki-client