This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: M561uA196AODmF7yyFc/hhaPY6nYMi2ywWsLBZrWOF4= Subject key identifier: 65:A3:06:2F:88:51:1D:ED:CC:BC:7B:44:58:07:DE:84:8A:1C:20:18 Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0C5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0C58 Signing time: Thu 18 Dec 2025 18:20:32 +0000 Manifest this update: Thu 18 Dec 2025 18:20:31 +0000 Manifest next update: Thu 25 Dec 2025 18:20:31 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: xNMg0JoxdGj3JfObeqZnlSsbm8H2gS4QlbytmbSIqL0=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: cmHL+jcXVZxk1ExKQVL6FlfnXQXFN7c8jdKbgylZ/70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3167 (0xc5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778, serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: Dec 18 18:20:31 2025 GMT Not After : Dec 25 18:20:31 2025 GMT Subject: CN=694445f0-6ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d1:28:de:cc:e2:af:33:4e:86:a2:8a:ca:14: e3:f7:cb:41:97:c1:53:23:c7:f4:49:8a:aa:a6:5e: a2:07:8d:70:00:fd:da:06:67:9d:d9:ed:38:55:f4: b2:4b:87:ef:56:49:9a:d4:73:46:1c:c6:8f:fe:b8: 06:66:c6:17:61:97:e3:b6:b9:34:be:1a:3e:f2:90: 25:7c:30:a7:a7:24:d7:6a:b8:db:ae:43:74:43:78: 1c:66:e1:80:80:f6:fc:96:6d:a8:7a:aa:77:2f:ca: d0:1f:95:ca:34:2b:f1:e8:b3:09:63:17:91:06:31: fa:11:0e:02:b3:e5:c0:f8:a1:0e:58:37:f1:fe:e2: 5b:e4:b6:ad:53:0e:59:e3:ed:1c:c7:d5:ae:f5:82: 23:52:7a:ee:ce:5b:5c:b4:a0:a5:d2:a4:af:35:2f: 6c:07:54:45:41:aa:1e:96:a4:8e:22:c5:49:7c:49: 0e:93:b7:04:c0:57:27:18:c8:e5:47:8f:33:ce:9a: cb:2f:ae:e5:aa:a4:30:28:6d:59:9e:d2:03:39:e1: 4c:eb:e0:36:7b:d9:42:ab:e6:61:51:69:2a:d0:44: 3b:f2:6f:f8:31:d5:3d:d3:87:05:43:e1:8a:bb:16: c1:78:8b:9d:7a:6c:2a:6c:5d:b0:4f:b2:9c:46:99: 16:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A3:06:2F:88:51:1D:ED:CC:BC:7B:44:58:07:DE:84:8A:1C:20:18 X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:c4:10:e1:12:c6:12:6e:cd:8d:15:c5:a9:99:f8:f4:8e:26: ce:d8:1d:92:6d:43:2e:9c:ab:4b:cd:32:76:57:7a:67:e6:09: 58:ca:e2:73:f5:e8:c1:1e:ab:11:04:65:a6:2e:5d:0e:22:29: b2:d7:d0:07:96:b0:22:8f:ca:df:c8:5c:e1:74:17:e2:e5:ae: d8:8f:e3:f3:91:a8:77:82:1c:9b:64:44:ed:cd:d3:98:2e:ba: b9:c6:75:56:bc:d2:95:7b:5e:71:08:4d:dc:a0:3e:1a:b6:52: 96:86:00:80:c0:7a:3e:d0:bb:aa:3f:32:36:8c:c5:dd:e0:75: 18:83:ee:ea:73:f2:5e:7a:3f:a5:db:cc:3b:de:6c:e6:1d:18: f0:a3:75:89:4c:e1:b2:b2:43:e7:2b:3b:c9:c1:85:47:e9:63: 9c:a8:d3:49:05:63:09:3e:d5:95:85:28:d7:62:87:9a:bd:36: 0b:fd:5b:d6:28:dd:70:77:11:08:3c:d2:d2:1e:d9:73:f2:43: ff:10:da:e0:8a:3e:40:9f:89:5a:4f:04:68:00:e3:11:8e:04: 56:ec:2d:45:06:ad:2c:e3:20:1e:d0:e0:5c:78:80:1c:13:0e: fb:25:cf:53:42:83:6c:1e:5c:ac:3b:79:e0:2c:aa:b5:95:12: 8e:ee:44:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjUxMjE4MTgyMDMxWhcNMjUxMjI1MTgyMDMxWjAYMRYwFAYD VQQDDA02OTQ0NDVmMC02ZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9Eo3szirzNOhqKKyhTj98tBl8FTI8f0SYqqpl6iB41wAP3aBmed2e04VfSy S4fvVkma1HNGHMaP/rgGZsYXYZfjtrk0vho+8pAlfDCnpyTXarjbrkN0Q3gcZuGA gPb8lm2oeqp3L8rQH5XKNCvx6LMJYxeRBjH6EQ4Cs+XA+KEOWDfx/uJb5LatUw5Z 4+0cx9Wu9YIjUnruzltctKCl0qSvNS9sB1RFQaoelqSOIsVJfEkOk7cEwFcnGMjl R48zzprLL67lqqQwKG1ZntIDOeFM6+A2e9lCq+ZhUWkq0EQ78m/4MdU904cFQ+GK uxbBeIudemwqbF2wT7KcRpkWmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWjBi+I UR3tzLx7RFgH3oSKHCAYMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJxBDhEsYSbs2NFcWpmfj0jibO2B2SbUMunKtLzTJ2V3pn5glYyuJz 9ejBHqsRBGWmLl0OIimy19AHlrAij8rfyFzhdBfi5a7Yj+Pzkah3ghybZETtzdOY Lrq5xnVWvNKVe15xCE3coD4atlKWhgCAwHo+0LuqPzI2jMXd4HUYg+7qc/Jeej+l 28w73mzmHRjwo3WJTOGyskPnKzvJwYVH6WOcqNNJBWMJPtWVhSjXYoeavTYL/VvW KN1wdxEIPNLSHtlz8kP/ENrgij5An4laTwRoAOMRjgRW7C1FBq0s4yAe0OBceIAc Ew77Jc9TQoNsHlysO3ngLKq1lRKO7kQ8 -----END CERTIFICATE-----Generated at Sat Dec 20 18:47:16 2025 by rpki-client