This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: mHAcMmX6ItcKvO86eqXWzbZGCZ6OEicUHBk+L/jSIGE= Subject key identifier: FD:9F:6A:EF:53:95:98:2E:9F:45:37:DB:1E:93:B6:3E:93:49:AD:59 Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0C97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0C8B Signing time: Thu 18 Dec 2025 18:14:17 +0000 Manifest this update: Thu 18 Dec 2025 18:14:17 +0000 Manifest next update: Thu 25 Dec 2025 18:14:17 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: lP1733GGZ13SHInh9lFy539NwhzOgvdqajjwCHVcAJE=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: sMJ9ABTkBjJpmsGpVTgN6KS8wLvV90Yar62yGx5iotI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3223 (0xc97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151, serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Dec 18 18:14:17 2025 GMT Not After : Dec 25 18:14:17 2025 GMT Subject: CN=69444479-95df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:38:a3:59:60:02:d1:e7:85:ea:6b:e6:c5:19: 0c:87:99:d0:11:80:cd:be:19:cc:e7:70:7d:9b:8c: fc:80:85:c7:77:c0:1f:a6:54:0b:4f:b9:9b:20:92: 7d:93:8e:8f:fb:44:1a:47:2b:ed:0d:fd:68:a7:f6: b3:21:92:e6:4b:06:21:65:3a:03:84:63:80:24:88: 4a:ff:c8:ca:ee:47:37:44:aa:4b:a3:7a:32:9a:4a: e4:8e:8d:02:23:cc:2c:83:96:e6:05:72:05:79:ac: 83:c5:8c:ee:75:f0:a7:bf:a8:ff:a8:e5:b2:dd:fd: 6e:53:4b:00:85:a9:4b:74:98:68:0d:88:99:f9:55: 88:ef:c5:eb:00:ef:80:80:6f:e2:d5:ab:0c:75:3b: 5c:bf:51:ec:24:14:59:a4:e3:42:77:7e:b2:93:9d: bf:f2:c7:ab:b6:cf:c7:1a:e3:dd:16:56:3d:8d:ee: 0f:88:63:64:bc:f0:0d:19:32:e9:ca:7e:ec:3c:1a: af:c1:0b:df:80:a7:89:e4:ac:34:75:fc:4b:d6:f1: f1:1b:82:82:92:63:e4:69:54:a1:0c:c3:42:6c:4a: bf:32:d3:ef:26:ba:a4:a3:56:24:9c:33:65:6d:ae: 54:b1:6a:83:d8:ce:4d:2a:af:9f:56:6d:e5:49:28: 03:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9F:6A:EF:53:95:98:2E:9F:45:37:DB:1E:93:B6:3E:93:49:AD:59 X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:de:89:3c:29:09:97:73:e5:4c:80:9b:dc:69:49:d3:39:4b: de:eb:a2:63:cd:f1:0d:db:6f:55:30:49:04:67:f7:56:b6:b9: 6e:51:7f:85:7f:d9:4c:65:b4:7e:b8:26:bd:af:70:41:a7:ea: 44:d7:38:f9:01:59:ee:e7:54:73:7c:fa:47:c7:e5:59:e4:6e: a9:6c:6b:c1:bf:77:82:2e:22:36:2c:4c:64:c9:35:19:12:f2: 4b:a6:65:0f:fc:e9:ca:ab:fb:52:95:af:e4:38:9d:76:4d:73: c5:86:05:a5:a1:66:12:8e:a2:c0:39:d8:0b:74:65:50:c0:3e: ce:08:d0:e8:3b:a2:1c:21:7f:c2:ba:13:1a:b6:38:f8:a3:8c: 5f:ad:27:22:eb:66:b4:92:6d:e7:07:59:5d:bc:c6:74:b6:5b: fc:87:04:51:3c:33:68:7f:79:3e:2c:3e:04:73:a9:e3:0d:3b: ba:91:a9:e5:b9:c3:0b:04:b2:25:a2:34:d9:c0:61:fa:55:8e: 5a:7c:1b:de:9c:81:45:c4:37:b4:04:a6:23:e1:4c:3a:bf:8b: 2c:dd:47:aa:e3:39:a0:45:7c:16:68:ec:9e:f9:e9:1b:84:62: 3f:16:56:7b:8d:cf:68:93:f4:f6:04:26:18:df:05:11:57:58: 49:9c:88:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjUxMjE4MTgxNDE3WhcNMjUxMjI1MTgxNDE3WjAYMRYwFAYD VQQDDA02OTQ0NDQ3OS05NWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DijWWAC0eeF6mvmxRkMh5nQEYDNvhnM53B9m4z8gIXHd8AfplQLT7mbIJJ9 k46P+0QaRyvtDf1op/azIZLmSwYhZToDhGOAJIhK/8jK7kc3RKpLo3oymkrkjo0C I8wsg5bmBXIFeayDxYzudfCnv6j/qOWy3f1uU0sAhalLdJhoDYiZ+VWI78XrAO+A gG/i1asMdTtcv1HsJBRZpONCd36yk52/8serts/HGuPdFlY9je4PiGNkvPANGTLp yn7sPBqvwQvfgKeJ5Kw0dfxL1vHxG4KCkmPkaVShDMNCbEq/MtPvJrqko1YknDNl ba5UsWqD2M5NKq+fVm3lSSgDpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2fau9T lZgun0U32x6Ttj6TSa1ZMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU3ok8KQmXc+VMgJvcaUnTOUve66JjzfEN229VMEkEZ/dWtrluUX+F f9lMZbR+uCa9r3BBp+pE1zj5AVnu51RzfPpHx+VZ5G6pbGvBv3eCLiI2LExkyTUZ EvJLpmUP/OnKq/tSla/kOJ12TXPFhgWloWYSjqLAOdgLdGVQwD7OCNDoO6IcIX/C uhMatjj4o4xfrSci62a0km3nB1ldvMZ0tlv8hwRRPDNof3k+LD4Ec6njDTu6kanl ucMLBLIlojTZwGH6VY5afBvenIFFxDe0BKYj4Uw6v4ss3Ueq4zmgRXwWaOye+ekb hGI/FlZ7jc9ok/T2BCYY3wURV1hJnIh2 -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:51 2025 by rpki-client