This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft File: UCfzGS691UlQo5w9EwlKcfHTMmY.mft (raw, json) Hash identifier: kQSUHoOag3Xx040aTc6XoqWOCisLO+SDBO9DVVieKxU= Subject key identifier: EA:5D:E2:E0:38:72:CF:44:9A:0C:F7:69:27:E7:33:75:57:11:BD:91 Authority key identifier: 50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 Certificate issuer: /CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Certificate serial: 0B70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft Manifest number: 0B51 Signing time: Mon 22 Dec 2025 18:43:52 +0000 Manifest this update: Mon 22 Dec 2025 18:43:52 +0000 Manifest next update: Mon 29 Dec 2025 18:43:52 +0000 Files and hashes: 1: UCfzGS691UlQo5w9EwlKcfHTMmY.crl (hash: Ktpa5IkZ/pLl9TS+KnSgfC5Zb21hWW2+en7HmPWaZUE=) 2: CDD62642854E11EBA2CFDC87C4F9AE02.roa (hash: EMIkCzah8q7OcQkgGcb8CJSovHyJ1MV1+D6g6V84DdU=) 3: F3F7D2B0CE9711ECA2477C19C4F9AE02.roa (hash: YSanlXPMFGlUc59onSU43QiRooXV0uHeNRhQl6sQvzs=) 4: CEFEEFEA854E11EBA2CFDC87C4F9AE02.roa (hash: neskcJ2ryIraX5yGhHnDKoHimVr5nfZfeUgF/8p7xpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2928 (0xb70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3078, serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Validity Not Before: Dec 22 18:43:52 2025 GMT Not After : Dec 29 18:43:52 2025 GMT Subject: CN=69499168-64c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1b:8e:97:ab:08:95:34:10:35:42:14:f3:82: 3b:c2:1f:3b:6a:0b:58:36:83:94:10:b8:40:e6:1f: 10:fc:7e:2e:a6:08:b2:90:9e:09:0f:53:81:5c:1c: 4a:a9:b8:f3:d9:ba:b6:b3:ec:b4:22:02:17:d1:62: 96:12:28:5b:08:5e:e1:7e:2f:83:66:ca:23:2d:7e: 52:35:6d:fe:d6:e7:29:49:f6:d5:a8:d9:68:a9:7d: e0:b0:9c:f3:bc:b1:2f:10:05:88:b7:3e:cb:0d:94: a3:f9:62:66:f7:92:3a:b4:63:66:9d:92:40:d6:6a: f0:21:e0:29:6a:48:32:08:c7:53:33:a8:45:31:3d: 2d:f0:72:46:5b:38:fe:53:f1:41:70:31:f3:c8:f1: 70:d1:87:9a:6b:2d:29:c0:4f:de:3e:0a:c4:ee:29: ff:4c:55:58:98:d6:b1:ec:d9:86:51:73:7b:2a:7f: 00:17:36:a8:bd:e5:61:6d:fa:60:7d:fa:36:c8:a6: 2f:86:e0:6a:1e:cc:6d:09:4d:f9:09:a7:31:69:85: a9:97:20:7d:b4:ce:10:82:ce:77:63:a0:c7:66:87: d0:25:78:66:de:7a:6e:ae:a6:7b:9b:a5:3e:34:ff: cf:31:13:58:41:0b:34:10:54:c4:f2:ce:88:f5:69: c7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:5D:E2:E0:38:72:CF:44:9A:0C:F7:69:27:E7:33:75:57:11:BD:91 X509v3 Authority Key Identifier: keyid:50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:2f:7e:bd:33:0b:51:bb:48:5d:71:cf:95:a9:53:86:5a:01: 4b:5f:8c:4a:61:eb:46:ea:fa:c8:c9:97:f1:79:86:4b:8c:40: 25:bb:7c:31:bd:c9:49:f1:70:fd:82:09:f1:ef:28:a8:d0:15: c9:1a:5e:da:b5:83:39:6a:05:bc:46:5e:ea:a8:b9:bb:c9:19: 8c:68:e9:9b:c2:34:8b:86:49:93:e3:69:cb:82:4e:39:88:80: 40:88:84:11:25:d4:bf:4f:21:1b:de:12:92:6e:d0:da:b9:a3: b6:01:c5:2e:70:af:b4:ec:82:4f:3f:c3:fc:ad:96:53:89:4c: 91:64:58:24:3a:10:15:f8:02:ca:66:99:82:1f:1e:54:b3:3d: 3a:d6:e9:72:2a:db:95:6c:6f:52:f0:40:19:00:a0:30:12:79: b1:f8:d7:83:f3:87:6a:07:2f:1e:df:5e:10:6a:a0:77:cb:f2: 82:db:f2:f8:d0:86:98:26:89:22:29:b4:e9:45:2d:b3:26:2c: c8:07:6d:59:6a:f5:2b:3e:05:07:12:a1:d2:02:ad:78:d3:ad: c2:e3:32:e1:1c:fa:c4:14:66:09:76:81:e8:f2:0a:57:b5:7d: 1e:72:db:70:14:38:c2:a5:b7:9a:e9:91:01:fa:6e:0b:50:ba: a4:bd:64:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwNzgxMTAvBgNVBAUTKDUwMjdGMzE5MkVCREQ1NDk1MEEzOUMzRDEzMDk0QTcx RjFEMzMyNjYwHhcNMjUxMjIyMTg0MzUyWhcNMjUxMjI5MTg0MzUyWjAYMRYwFAYD VQQDDA02OTQ5OTE2OC02NGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2huOl6sIlTQQNUIU84I7wh87agtYNoOUELhA5h8Q/H4upgiykJ4JD1OBXBxK qbjz2bq2s+y0IgIX0WKWEihbCF7hfi+DZsojLX5SNW3+1ucpSfbVqNloqX3gsJzz vLEvEAWItz7LDZSj+WJm95I6tGNmnZJA1mrwIeApakgyCMdTM6hFMT0t8HJGWzj+ U/FBcDHzyPFw0Yeaay0pwE/ePgrE7in/TFVYmNax7NmGUXN7Kn8AFzaoveVhbfpg ffo2yKYvhuBqHsxtCU35CacxaYWplyB9tM4Qgs53Y6DHZofQJXhm3npurqZ7m6U+ NP/PMRNYQQs0EFTE8s6I9WnHcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpd4uA4 cs9Emgz3aSfnM3VXEb2RMB8GA1UdIwQYMBaAFFAn8xkuvdVJUKOcPRMJSnHx0zJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA3OC84NjMwQjFDODRD OEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFVbFFvNXc5RXdsS2NmSFRN bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VDZnpHUzY5MVVsUW81dzlFd2xLY2ZIVE1tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzA3OC84NjMwQjFDODRDOEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFV bFFvNXc5RXdsS2NmSFRNbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjL369MwtRu0hdcc+VqVOGWgFLX4xKYetG6vrIyZfxeYZLjEAlu3wx vclJ8XD9ggnx7yio0BXJGl7atYM5agW8Rl7qqLm7yRmMaOmbwjSLhkmT42nLgk45 iIBAiIQRJdS/TyEb3hKSbtDauaO2AcUucK+07IJPP8P8rZZTiUyRZFgkOhAV+ALK ZpmCHx5Usz061ulyKtuVbG9S8EAZAKAwEnmx+NeD84dqBy8e314QaqB3y/KC2/L4 0IaYJokiKbTpRS2zJizIB21ZavUrPgUHEqHSAq14063C4zLhHPrEFGYJdoHo8gpX tX0ecttwFDjCpbea6ZEB+m4LULqkvWQP -----END CERTIFICATE-----Generated at Tue Dec 23 10:52:47 2025 by rpki-client