This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft File: UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft (raw, json) Hash identifier: o1n/LX/45fzaTaaEh85917xc0GNzV9P4ggdJZpuWvxY= Subject key identifier: FC:78:58:41:C9:82:B6:EF:51:96:D6:43:5F:D4:4B:56:68:10:D2:49 Authority key identifier: 51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB Certificate issuer: /CN=A91EBA1C/serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Certificate serial: 22FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft Manifest number: 22AD Signing time: Thu 18 Dec 2025 15:47:40 +0000 Manifest this update: Thu 18 Dec 2025 15:47:39 +0000 Manifest next update: Thu 25 Dec 2025 15:47:39 +0000 Files and hashes: 1: UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl (hash: nNzIA3ZYvZWf7Jy7aq/VnIa0q0l7i+cqo10A5YDAWas=) 2: 233533AABAE011F09A0D810BC4F9AE02.roa (hash: tvFbBzaDYUotRjgEHrDkKjONeDoR4INE8M3QZSE99/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8956 (0x22fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA1C, serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Validity Not Before: Dec 18 15:47:39 2025 GMT Not After : Dec 25 15:47:39 2025 GMT Subject: CN=6944221b-1ec0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4e:bb:82:74:02:cc:13:6c:6b:e6:7c:35:4a: d5:0f:60:e3:c1:92:01:51:9a:00:8f:d5:26:51:4d: 0e:b8:c9:ee:8b:eb:6e:fe:07:c7:24:c5:2e:df:4d: 5c:db:12:ef:b4:ea:fa:e0:8c:bb:13:f6:25:90:d8: 46:3b:ea:b1:3b:96:0d:60:6e:82:62:c4:aa:06:93: 43:c3:d0:94:8e:e9:fe:db:21:89:80:fe:d9:b0:0e: f3:60:02:e7:99:a4:a9:6c:31:51:26:ca:3d:60:4d: 7c:5c:43:27:95:65:3f:9a:c0:d1:70:17:85:13:6d: 7e:b8:dd:00:c4:e9:3c:80:0e:fd:b7:8e:fa:ba:28: 60:39:7a:ad:a7:99:61:43:d3:f8:77:79:11:3d:6f: d2:87:a0:21:e6:9f:cc:d7:1d:b7:be:85:d6:9e:17: 9d:e6:7a:36:96:a3:47:ed:1c:9f:c1:46:8e:92:0d: ff:94:98:81:fa:6f:99:83:8b:c3:9e:7c:b1:47:4e: 4a:73:c8:21:06:8d:d5:46:c5:c3:df:26:b9:3c:12: aa:0f:1f:c0:52:1a:aa:63:78:b3:06:08:c2:c1:ad: 71:47:5f:1c:2a:40:25:c0:64:2f:53:c8:4f:60:37: 38:d4:3e:81:51:a2:7f:51:ff:8c:c5:a2:8e:6d:a3: 58:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:78:58:41:C9:82:B6:EF:51:96:D6:43:5F:D4:4B:56:68:10:D2:49 X509v3 Authority Key Identifier: keyid:51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a4:34:21:92:12:8d:cc:de:22:e2:4b:21:24:00:31:c6:38: 07:d9:77:f5:74:e0:bb:82:9e:fd:61:91:4e:04:da:91:8f:c2: 7a:d6:e5:33:89:7f:5b:9b:82:08:98:e9:ef:e5:e0:53:47:d7: aa:c9:f9:38:e7:1c:c8:e1:31:01:06:d3:82:98:c8:d7:1d:ad: 89:97:46:74:7d:fc:c8:b1:dd:13:dd:78:00:cf:ad:d8:d6:ae: e0:c2:e0:76:14:99:fb:53:d8:ba:84:a2:1f:44:a3:98:ca:8c: 81:5c:b6:3a:31:8b:e6:71:aa:dd:c6:48:32:0b:90:d6:ce:a7: e8:cd:d9:98:a8:8c:6e:c1:57:ba:cd:82:a9:28:ee:a9:30:a2: a7:19:d0:74:4d:4b:b1:41:55:79:2f:8b:8f:f8:d9:7e:f7:b4: 57:9b:30:a7:d2:f1:36:40:43:15:f3:f4:c2:22:0d:31:cf:84: 11:d6:f3:ab:54:69:fb:87:22:d5:90:0b:e2:5d:a2:72:eb:ab: b9:3b:8d:41:20:73:c4:c6:1a:e6:a6:80:c8:c6:3f:87:ba:61: 1c:30:b1:33:1d:11:2c:3d:d5:50:ba:95:f3:ab:37:ef:b6:dd: 7f:44:42:55:b4:0a:36:88:a9:84:2b:86:ff:58:7f:a1:f9:61: c8:99:35:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMUMxMTAvBgNVBAUTKDUxQzI2MTFCNDYxREQ1MTE4MzVBNTE0MUY4QUVFNTAy RDNBMzlBRUIwHhcNMjUxMjE4MTU0NzM5WhcNMjUxMjI1MTU0NzM5WjAYMRYwFAYD VQQDDA02OTQ0MjIxYi0xZWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuk67gnQCzBNsa+Z8NUrVD2DjwZIBUZoAj9UmUU0OuMnui+tu/gfHJMUu301c 2xLvtOr64Iy7E/YlkNhGO+qxO5YNYG6CYsSqBpNDw9CUjun+2yGJgP7ZsA7zYALn maSpbDFRJso9YE18XEMnlWU/msDRcBeFE21+uN0AxOk8gA79t476uihgOXqtp5lh Q9P4d3kRPW/Sh6Ah5p/M1x23voXWnhed5no2lqNH7RyfwUaOkg3/lJiB+m+Zg4vD nnyxR05Kc8ghBo3VRsXD3ya5PBKqDx/AUhqqY3izBgjCwa1xR18cKkAlwGQvU8hP YDc41D6BUaJ/Uf+MxaKObaNYAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPx4WEHJ grbvUZbWQ1/US1ZoENJJMB8GA1UdIwQYMBaAFFHCYRtGHdURg1pRQfiu5QLTo5rr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkExQy82M0IyMTRBMkM4 MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFSR0RXbEZCLUs3bEF0T2pt dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VjSmhHMFlkMVJHRFdsRkItSzdsQXRPam11cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkExQy82M0IyMTRBMkM4MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFS R0RXbEZCLUs3bEF0T2ptdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLpDQhkhKNzN4i4kshJAAxxjgH2Xf1dOC7gp79YZFOBNqRj8J61uUz iX9bm4IImOnv5eBTR9eqyfk45xzI4TEBBtOCmMjXHa2Jl0Z0ffzIsd0T3XgAz63Y 1q7gwuB2FJn7U9i6hKIfRKOYyoyBXLY6MYvmcardxkgyC5DWzqfozdmYqIxuwVe6 zYKpKO6pMKKnGdB0TUuxQVV5L4uP+Nl+97RXmzCn0vE2QEMV8/TCIg0xz4QR1vOr VGn7hyLVkAviXaJy66u5O41BIHPExhrmpoDIxj+HumEcMLEzHREsPdVQupXzqzfv tt1/REJVtAo2iKmEK4b/WH+h+WHImTWf -----END CERTIFICATE-----Generated at Fri Dec 19 18:57:29 2025 by rpki-client