This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft File: UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft (raw, json) Hash identifier: vaqVREDNlgnP4R+l2YLH0nbZGHtLp6YW2KS8Dy99JE4= Subject key identifier: F8:8A:35:71:3B:63:49:45:C6:4C:8C:C2:72:21:9F:29:59:9B:91:23 Authority key identifier: 51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 Certificate issuer: /CN=A91A7761/serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft Manifest number: 064E Signing time: Sat 20 Dec 2025 22:03:38 +0000 Manifest this update: Sat 20 Dec 2025 22:03:38 +0000 Manifest next update: Sat 27 Dec 2025 22:03:38 +0000 Files and hashes: 1: UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl (hash: OS0Sew6NS/fcd2rZBk6R2Oo4eiqdKrdBHhPkkrxrGFg=) 2: F4C73FCACD8411EF88CD1464C4F9AE02.roa (hash: EkzwfsPvhq1FP6pm5CT4LDCnqWr4szU6ESASOp0o6DU=) 3: F44E1EECCD8411EF88CD1464C4F9AE02.roa (hash: RAzhHtW1VH/eUjgZQiEsm0Ej6j+0F6PlwpjTpjOi8Jo=) 4: B6116DBEC9C811F0931CA339C4F9AE02.roa (hash: mpDokGSx8dS0Rov34wArgaejqPAfetY5gGpqf+We+RE=) 5: F559B7E2CD8411EF88CD1464C4F9AE02.roa (hash: 1YFs0Zqq59OdTTfQ9TRBhg+ye+627iyYVeuBlex3Kfk=) 6: 044C4ED6A26711ED8095F74DC4F9AE02.roa (hash: ehyJGIeBDK390bSFLx2HamOEcgKmw6zu6VhcLaVRD/0=) 7: 3FE8CD1051B111F0932E1173C4F9AE02.roa (hash: RB6HB76Hd37I1Qyua/UNLhe473Y5QaFhWKPCNvGT+Jc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7761, serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Validity Not Before: Dec 20 22:03:38 2025 GMT Not After : Dec 27 22:03:38 2025 GMT Subject: CN=69471d3a-4607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7a:97:9c:86:0e:ed:3e:57:50:87:36:c5:12: 3a:5c:6d:24:0d:11:45:6e:ce:21:80:46:9b:cb:0b: eb:81:66:ba:a9:72:9e:5c:e0:b8:fd:a5:3b:e7:b4: 9a:5d:a1:3a:ea:1b:ef:47:d4:71:88:21:df:0e:11: 28:3d:a3:77:b0:70:f9:13:c0:3c:a1:22:62:57:0a: 33:ca:67:55:d8:60:b8:93:58:b5:57:bc:de:2d:9a: 07:16:d4:9c:5e:03:b8:ea:2d:46:90:01:cc:67:b5: ca:e1:59:78:f6:13:7c:6a:2e:60:80:62:a4:b3:2f: 66:79:24:44:91:d5:27:65:92:eb:89:7f:28:d2:11: 63:84:ac:b2:79:f0:22:84:f6:35:0d:70:7c:4a:f5: 22:b1:cf:76:8a:f5:b1:2d:6a:6a:a0:ea:92:10:54: a9:46:ea:03:f6:a7:2a:56:ae:17:47:b8:f4:13:54: 5a:cb:ef:cd:7c:cb:2e:59:4d:be:27:79:20:3e:f0: 2b:b8:5e:91:89:01:db:e3:68:a2:c7:78:a9:af:40: 89:e5:7a:9c:36:5f:97:39:fe:f1:1e:5e:f7:e3:0c: 3f:45:d8:ac:3a:77:d3:b8:32:97:3a:d0:ce:d5:91: 28:97:d0:67:03:42:dd:97:1d:22:da:a2:7f:2b:38: 01:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8A:35:71:3B:63:49:45:C6:4C:8C:C2:72:21:9F:29:59:9B:91:23 X509v3 Authority Key Identifier: keyid:51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:a9:0f:29:15:4b:f3:38:45:82:8b:0c:f7:68:3d:1e:06:6d: 01:6c:99:87:0e:4b:d4:59:48:a6:eb:37:d4:31:13:26:1a:24: e9:e1:d2:04:91:18:66:86:a3:72:c2:c5:70:ba:2b:8c:6e:de: 99:57:79:64:06:57:3b:59:4a:4b:f9:38:5e:b6:eb:30:8a:0d: e5:43:2a:26:13:b9:31:cf:9b:d5:a2:25:da:01:5f:35:15:f4: f5:75:ec:00:87:43:46:0f:72:b6:b0:61:05:ed:3a:43:82:e0: 92:d2:2c:0f:2c:a1:6e:7b:9a:6a:39:6d:f0:f6:6a:c9:9b:d2: ac:e8:b5:d1:e9:8a:23:12:d9:10:db:76:44:69:34:eb:9a:14: 76:8f:3f:08:3c:19:c3:93:b8:64:ed:91:26:e8:44:f9:b3:87: 4b:7a:f6:37:24:ed:ba:01:c2:e4:c1:cb:83:2e:01:35:5e:47: 43:39:b8:3d:43:95:b3:98:20:8e:6b:49:dc:65:68:3b:4a:fb: d6:f5:fb:7f:db:40:63:13:3d:6e:9e:b0:02:9f:92:57:c5:0b: d7:34:b3:fa:31:92:42:9a:f6:90:a6:d1:c3:5b:5d:30:61:c4: fd:3f:8b:64:b4:2e:80:e3:54:13:fd:e5:70:38:0f:a1:d0:52: 0f:da:b6:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc3NjExMTAvBgNVBAUTKDUxRDVDQzJENUU0MjhGQzk1NTE0OUY1NzYyMTE5MDRG MDVCQUYyMTEwHhcNMjUxMjIwMjIwMzM4WhcNMjUxMjI3MjIwMzM4WjAYMRYwFAYD VQQDDA02OTQ3MWQzYS00NjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHqXnIYO7T5XUIc2xRI6XG0kDRFFbs4hgEabywvrgWa6qXKeXOC4/aU757Sa XaE66hvvR9RxiCHfDhEoPaN3sHD5E8A8oSJiVwozymdV2GC4k1i1V7zeLZoHFtSc XgO46i1GkAHMZ7XK4Vl49hN8ai5ggGKksy9meSREkdUnZZLriX8o0hFjhKyyefAi hPY1DXB8SvUisc92ivWxLWpqoOqSEFSpRuoD9qcqVq4XR7j0E1Ray+/NfMsuWU2+ J3kgPvAruF6RiQHb42iix3ipr0CJ5XqcNl+XOf7xHl734ww/RdisOnfTuDKXOtDO 1ZEol9BnA0Ldlx0i2qJ/KzgBZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiKNXE7 Y0lFxkyMwnIhnylZm5EjMB8GA1UdIwQYMBaAFFHVzC1eQo/JVRSfV2IRkE8FuvIR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzc2MS8wRTRCOTE2OEJE MzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4bFZGSjlYWWhHUVR3VzY4 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VkWE1MVjVDajhsVkZKOVhZaEdRVHdXNjhoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzc2MS8wRTRCOTE2OEJEMzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4 bFZGSjlYWWhHUVR3VzY4aEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7qQ8pFUvzOEWCiwz3aD0eBm0BbJmHDkvUWUim6zfUMRMmGiTp4dIE kRhmhqNywsVwuiuMbt6ZV3lkBlc7WUpL+Thetuswig3lQyomE7kxz5vVoiXaAV81 FfT1dewAh0NGD3K2sGEF7TpDguCS0iwPLKFue5pqOW3w9mrJm9Ks6LXR6YojEtkQ 23ZEaTTrmhR2jz8IPBnDk7hk7ZEm6ET5s4dLevY3JO26AcLkwcuDLgE1XkdDObg9 Q5WzmCCOa0ncZWg7SvvW9ft/20BjEz1unrACn5JXxQvXNLP6MZJCmvaQptHDW10w YcT9P4tktC6A41QT/eVwOA+h0FIP2rYB -----END CERTIFICATE-----Generated at Sun Dec 21 01:34:42 2025 by rpki-client