This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4CC3/89899B9CCB6011F09F9EEF0FC4F9AE02/Uf5h3GUzbaj92bxJe_pfniMuDMY.mft File: Uf5h3GUzbaj92bxJe_pfniMuDMY.mft (raw, json) Hash identifier: jBTSByBeUpjwI5vOn48dLtCsHHP4P750ynqzF4CCPGk= Subject key identifier: 7A:13:2D:A9:D3:9A:EF:2B:6F:C9:11:A0:D8:13:7A:53:CB:EA:0E:50 Authority key identifier: 51:FE:61:DC:65:33:6D:A8:FD:D9:BC:49:7B:FA:5F:9E:23:2E:0C:C6 Certificate issuer: /CN=A91A4CC3/serialNumber=51FE61DC65336DA8FDD9BC497BFA5F9E232E0CC6 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uf5h3GUzbaj92bxJe_pfniMuDMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4CC3/89899B9CCB6011F09F9EEF0FC4F9AE02/Uf5h3GUzbaj92bxJe_pfniMuDMY.mft Manifest number: 11 Signing time: Fri 19 Dec 2025 06:55:19 +0000 Manifest this update: Fri 19 Dec 2025 06:55:18 +0000 Manifest next update: Fri 26 Dec 2025 06:55:18 +0000 Files and hashes: 1: Uf5h3GUzbaj92bxJe_pfniMuDMY.crl (hash: MyLEizQKIKlPQ3/1rgeSZW/NMM7cijKrsWZx3gC09l4=) 2: BFBA7E0ECC1C11F081ABD12EC4F9AE02.roa (hash: gpIhFKpXduF2CA0ZrD84omrJjlhpDXGZWRKDumLvbBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4CC3/89899B9CCB6011F09F9EEF0FC4F9AE02/Uf5h3GUzbaj92bxJe_pfniMuDMY.crl rsync://rpki.apnic.net/member_repository/A91A4CC3/89899B9CCB6011F09F9EEF0FC4F9AE02/Uf5h3GUzbaj92bxJe_pfniMuDMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uf5h3GUzbaj92bxJe_pfniMuDMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4CC3, serialNumber=51FE61DC65336DA8FDD9BC497BFA5F9E232E0CC6 Validity Not Before: Dec 19 06:55:18 2025 GMT Not After : Dec 26 06:55:18 2025 GMT Subject: CN=6944f6d7-6a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:49:cb:22:a6:fd:d6:e7:5a:38:a8:73:48:3c: 7b:10:cc:78:26:ca:46:21:5b:3c:4f:5d:0d:e1:32: c0:40:dc:38:0c:74:e8:15:f7:80:6e:b5:f8:47:2a: c4:0f:6a:21:d8:e9:7f:fe:11:90:bd:ca:f3:59:99: ba:26:eb:9f:92:9e:8d:67:a2:23:b6:9a:95:86:95: 02:c5:79:3a:cd:d4:29:51:a0:2c:3d:ca:d2:ba:65: f0:d0:0f:fb:62:b5:5c:de:a0:cd:1f:9d:ed:88:54: 19:31:66:b9:eb:b1:00:45:72:03:1e:03:89:d5:f3: 0d:ff:8e:e8:3a:57:be:14:73:87:c0:29:ca:e8:1d: c4:3f:de:78:ef:6e:ea:8a:ed:d2:7b:fa:ba:e7:00: c8:93:f6:c5:97:ab:82:74:cb:23:0c:61:db:53:46: 5f:f8:b7:b2:75:6a:0c:0f:ef:08:80:5f:aa:23:e3: b9:a6:88:22:2d:48:63:6e:f6:ae:5a:b4:b4:07:25: 4c:42:03:7d:17:cd:46:e9:0e:1a:d0:0f:be:98:c0: 88:f4:00:ff:00:37:ca:dd:21:18:ad:9a:d0:0f:74: a1:5a:50:5e:fb:8c:9e:1f:0c:43:e6:2f:4c:8a:81: d9:44:43:80:1d:a6:97:ea:39:b3:e2:20:23:5d:47: 78:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:13:2D:A9:D3:9A:EF:2B:6F:C9:11:A0:D8:13:7A:53:CB:EA:0E:50 X509v3 Authority Key Identifier: keyid:51:FE:61:DC:65:33:6D:A8:FD:D9:BC:49:7B:FA:5F:9E:23:2E:0C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4CC3/89899B9CCB6011F09F9EEF0FC4F9AE02/Uf5h3GUzbaj92bxJe_pfniMuDMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uf5h3GUzbaj92bxJe_pfniMuDMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4CC3/89899B9CCB6011F09F9EEF0FC4F9AE02/Uf5h3GUzbaj92bxJe_pfniMuDMY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:2d:70:16:1f:e7:7b:04:d1:73:ed:8f:c6:11:4a:c3:21:2d: b1:c7:45:c1:88:25:8b:fe:a4:e8:8a:7b:fb:e7:9f:d2:8c:37: aa:41:95:33:fa:09:5a:e9:f4:dd:cb:e6:73:c9:03:c3:c0:5b: de:12:14:00:95:5a:64:95:26:ed:71:5e:86:99:d0:fb:8c:aa: d0:24:70:18:a7:8e:6d:8a:25:5c:78:13:cf:6a:cb:bf:35:ac: 5c:a5:38:85:4e:bc:80:a4:84:17:43:ff:dc:b9:20:fa:9b:c0: c8:d6:42:6e:4d:cc:49:29:d1:cb:4b:3f:ae:66:d6:66:32:26: 02:14:e2:3e:0f:16:87:78:d5:d9:f9:3c:60:75:2d:6a:34:7a: 96:20:8d:f4:02:a9:20:f2:21:f6:6d:ab:32:2c:db:a0:5e:51: 97:c2:61:54:d0:85:f7:01:3e:f2:f2:89:e6:7f:d6:74:e5:01: 4f:f0:0e:9a:e2:30:77:d5:62:dc:bb:86:b6:7d:ee:00:18:fc: 0e:5c:9c:3e:c8:83:53:9a:3c:77:f5:93:89:c4:0f:65:f6:ee: 36:b1:7f:00:0f:be:4b:8d:71:54:e0:14:1d:8f:28:8d:30:d7: 70:17:3b:7d:bd:56:93:3d:b8:0f:c3:c3:bb:80:3f:7b:56:da: 33:b2:cc:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NENDMzExMC8GA1UEBRMoNTFGRTYxREM2NTMzNkRBOEZERDlCQzQ5N0JGQTVGOUUy MzJFMENDNjAeFw0yNTEyMTkwNjU1MThaFw0yNTEyMjYwNjU1MThaMBgxFjAUBgNV BAMMDTY5NDRmNmQ3LTZhMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMScsipv3W51o4qHNIPHsQzHgmykYhWzxPXQ3hMsBA3DgMdOgV94ButfhHKsQP aiHY6X/+EZC9yvNZmbom65+Sno1noiO2mpWGlQLFeTrN1ClRoCw9ytK6ZfDQD/ti tVzeoM0fne2IVBkxZrnrsQBFcgMeA4nV8w3/jug6V74Uc4fAKcroHcQ/3njvbuqK 7dJ7+rrnAMiT9sWXq4J0yyMMYdtTRl/4t7J1agwP7wiAX6oj47mmiCItSGNu9q5a tLQHJUxCA30XzUbpDhrQD76YwIj0AP8AN8rdIRitmtAPdKFaUF77jJ4fDEPmL0yK gdlEQ4AdppfqObPiICNdR3hhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUehMtqdOa 7ytvyRGg2BN6U8vqDlAwHwYDVR0jBBgwFoAUUf5h3GUzbaj92bxJe/pfniMuDMYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0Q0MzLzg5ODk5QjlDQ0I2 MDExRjA5RjlFRUYwRkM0RjlBRTAyL1VmNWgzR1V6YmFqOTJieEplX3BmbmlNdURN WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVWY1aDNHVXpiYWo5MmJ4SmVfcGZuaU11RE1ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 Q0MzLzg5ODk5QjlDQ0I2MDExRjA5RjlFRUYwRkM0RjlBRTAyL1VmNWgzR1V6YmFq OTJieEplX3BmbmlNdURNWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGstcBYf53sE0XPtj8YRSsMhLbHHRcGIJYv+pOiKe/vnn9KMN6pBlTP6 CVrp9N3L5nPJA8PAW94SFACVWmSVJu1xXoaZ0PuMqtAkcBinjm2KJVx4E89qy781 rFylOIVOvICkhBdD/9y5IPqbwMjWQm5NzEkp0ctLP65m1mYyJgIU4j4PFod41dn5 PGB1LWo0epYgjfQCqSDyIfZtqzIs26BeUZfCYVTQhfcBPvLyieZ/1nTlAU/wDpri MHfVYty7hrZ97gAY/A5cnD7Ig1OaPHf1k4nED2X27jaxfwAPvkuNcVTgFB2PKI0w 13AXO329VpM9uA/Dw7uAP3tW2jOyzJo= -----END CERTIFICATE-----Generated at Fri Dec 19 17:41:01 2025 by rpki-client