This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft File: UqHEINgnwWzqoEKD3Si2QKMVY00.mft (raw, json) Hash identifier: 5jb0LS/nRJj/RYybcvIi96fbWfpljN4fIarpQ1xpshM= Subject key identifier: 7C:96:61:84:D1:90:1F:8E:8B:9E:C5:7A:83:81:4C:40:70:BB:F8:53 Authority key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D Certificate issuer: /CN=A91B13FE/serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft Manifest number: 67 Signing time: Sun 21 Dec 2025 06:10:08 +0000 Manifest this update: Sun 21 Dec 2025 06:10:07 +0000 Manifest next update: Sun 28 Dec 2025 06:10:07 +0000 Files and hashes: 1: UqHEINgnwWzqoEKD3Si2QKMVY00.crl (hash: cNLjKw0yRah//lTQTzfmU3eJn94sqb2sJrhxee/XfUw=) 2: E5E9F8B8D0F711F0ACA5A85AC4F9AE02.roa (hash: L+R5MmpKGufoqG5JJ77d6wpZuVDjwC3CDe/wMrgik6c=) 3: C577E392D0F711F0BC02385AC4F9AE02.roa (hash: A/1e58q+MdxskPknGiwVRXPIcLRGBTcwWKriVPbQ9n4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 06:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Validity Not Before: Dec 21 06:10:07 2025 GMT Not After : Dec 28 06:10:07 2025 GMT Subject: CN=69478f40-0f98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b8:6f:57:bb:f1:70:b3:3f:5d:45:a6:fc:a0: da:5c:5d:83:4f:f9:7e:63:86:78:b4:6e:02:6e:d0: 6e:db:ff:a5:ac:59:a6:c0:98:81:39:09:0f:c7:4c: c6:d9:e2:7c:de:b1:79:6e:62:b2:45:31:be:3b:1b: a0:5b:db:48:8f:2e:d5:a4:c4:88:5d:38:35:1f:34: c0:f9:73:c1:b0:2d:37:2f:7d:80:b5:93:f2:93:74: ec:89:0e:e1:eb:a2:d2:ed:54:be:5f:50:52:76:de: 68:96:a4:07:56:a9:6f:9f:3c:88:82:fd:10:91:8e: 9e:52:8f:f7:92:12:51:3c:75:6c:ed:ca:a5:0e:8d: e2:e6:89:2f:4c:1c:c5:a2:e7:03:65:b8:41:2c:3e: 68:43:84:73:c9:e8:2e:59:1b:d6:39:8e:ac:ee:c9: ff:ec:31:29:47:86:8a:35:0d:f5:2f:cf:81:27:f8: e8:c1:82:fc:b6:ce:13:1e:36:0f:76:db:ad:21:2a: ea:21:86:24:92:43:eb:d2:f2:b7:9e:34:f7:a3:61: f0:43:37:8f:a3:48:23:1e:71:c7:14:77:d9:1f:75: d8:e3:a0:db:f2:94:9d:e2:3f:d9:6f:c8:37:ec:a9: e9:7d:60:18:34:09:6a:96:32:7a:28:bf:d9:2e:d0: 86:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:96:61:84:D1:90:1F:8E:8B:9E:C5:7A:83:81:4C:40:70:BB:F8:53 X509v3 Authority Key Identifier: keyid:52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:67:ce:88:4e:80:e1:77:a6:46:98:23:98:9c:75:76:7a:4c: c4:00:95:a3:82:9b:60:36:ef:51:1c:21:8d:a3:3d:c6:f9:05: 2e:15:fa:5a:b7:d7:f9:67:06:28:a7:57:d9:67:bf:67:8c:d0: 16:f0:23:59:d2:ec:52:e7:04:aa:aa:51:a6:44:61:eb:57:90: 2c:ae:b1:42:3b:f0:4c:9c:db:33:86:93:9f:2f:15:50:75:4e: 43:a7:24:d4:84:17:b5:5e:c0:01:57:7c:a7:d8:69:7e:2a:e3: a9:03:77:a6:c0:9f:88:84:ab:a7:f5:56:76:3e:9a:79:d2:13: 04:1b:f7:e2:10:9e:b4:19:c8:95:42:1c:16:c0:81:88:c6:06: 66:5a:ad:63:4e:23:4e:6c:38:48:7c:50:4c:5d:ba:57:c7:e9: e1:b6:85:2c:2f:7d:e5:d1:91:04:19:ff:03:16:3e:6c:ac:c9: 82:cb:5e:5b:dd:4d:0d:85:02:dc:10:39:5c:dd:d4:05:8d:c1: 02:e8:97:1f:eb:0f:0f:92:41:72:46:b9:73:c3:f3:7a:1e:49: 80:f1:98:17:d3:cb:1c:59:e8:a2:56:13:5f:b9:76:47:45:51: c1:11:f4:3e:19:e0:a3:0f:0c:4c:25:55:b3:87:9a:cc:68:cd: 70:d2:6b:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTNGRTExMC8GA1UEBRMoNTJBMUM0MjBEODI3QzE2Q0VBQTA0MjgzREQyOEI2NDBB MzE1NjM0RDAeFw0yNTEyMjEwNjEwMDdaFw0yNTEyMjgwNjEwMDdaMBgxFjAUBgNV BAMMDTY5NDc4ZjQwLTBmOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmuG9Xu/Fwsz9dRab8oNpcXYNP+X5jhni0bgJu0G7b/6WsWabAmIE5CQ/HTMbZ 4nzesXluYrJFMb47G6Bb20iPLtWkxIhdODUfNMD5c8GwLTcvfYC1k/KTdOyJDuHr otLtVL5fUFJ23miWpAdWqW+fPIiC/RCRjp5Sj/eSElE8dWztyqUOjeLmiS9MHMWi 5wNluEEsPmhDhHPJ6C5ZG9Y5jqzuyf/sMSlHhoo1DfUvz4En+OjBgvy2zhMeNg92 260hKuohhiSSQ+vS8reeNPejYfBDN4+jSCMecccUd9kfddjjoNvylJ3iP9lvyDfs qel9YBg0CWqWMnoov9ku0IZFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfJZhhNGQ H46LnsV6g4FMQHC7+FMwHwYDVR0jBBgwFoAUUqHEINgnwWzqoEKD3Si2QKMVY00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxM0ZFLzhEOEUyMkMyNTY0 MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6cW9FS0QzU2kyUUtNVlkw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVXFIRUlOZ253V3pxb0VLRDNTaTJRS01WWTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx M0ZFLzhEOEUyMkMyNTY0MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6 cW9FS0QzU2kyUUtNVlkwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJdnzohOgOF3pkaYI5icdXZ6TMQAlaOCm2A271EcIY2jPcb5BS4V+lq3 1/lnBiinV9lnv2eM0BbwI1nS7FLnBKqqUaZEYetXkCyusUI78Eyc2zOGk58vFVB1 TkOnJNSEF7VewAFXfKfYaX4q46kDd6bAn4iEq6f1VnY+mnnSEwQb9+IQnrQZyJVC HBbAgYjGBmZarWNOI05sOEh8UExdulfH6eG2hSwvfeXRkQQZ/wMWPmysyYLLXlvd TQ2FAtwQOVzd1AWNwQLolx/rDw+SQXJGuXPD83oeSYDxmBfTyxxZ6KJWE1+5dkdF UcER9D4Z4KMPDEwlVbOHmsxozXDSa0Y= -----END CERTIFICATE-----Generated at Sun Dec 21 13:25:06 2025 by rpki-client