This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: uh51H44TXgCEr+hc/P0PLAZGEK/OSQyENB5Qm3cmg08= Subject key identifier: EE:B1:39:64:A8:58:25:F5:5E:BF:27:78:7B:5A:05:53:C7:BA:AD:25 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 023E Signing time: Fri 19 Dec 2025 01:08:37 +0000 Manifest this update: Fri 19 Dec 2025 01:08:37 +0000 Manifest next update: Fri 26 Dec 2025 01:08:37 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: GthOQPjCMQgHCuPOa2PH4EsGc6wSIhXbDGJPD/JnuHU=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: 5f74h8n3N2lPubEJTNiK66D1BQc1WtrIYebG81I+9UM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A, serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: Dec 19 01:08:37 2025 GMT Not After : Dec 26 01:08:37 2025 GMT Subject: CN=6944a595-7670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d5:fe:01:b7:31:25:55:bb:46:ad:29:83:8f: c4:90:94:e2:c9:c3:46:28:0f:87:0d:0c:94:88:cc: 2b:57:2d:d8:a9:0f:60:11:91:73:ca:dd:b8:23:2b: 37:87:0c:e7:9f:51:4b:fd:bd:2a:ed:66:08:f9:3c: f4:4e:69:cb:a3:89:48:a5:ad:46:15:77:b1:74:8d: a2:f9:fd:fc:9c:6c:df:c4:3d:e7:75:3f:a7:3f:8b: 3f:12:7f:86:e1:78:fa:b0:21:dc:a1:50:fa:28:26: 6b:b6:fe:2c:bc:07:c9:ec:2e:5a:d1:0e:9b:51:a9: f2:ba:7b:ea:63:af:ff:38:a3:ba:b8:a8:6a:0a:d4: bd:d7:4d:ae:21:7d:81:6a:65:d2:1d:02:db:14:cb: e9:bb:67:53:63:48:a9:9e:2e:98:99:74:ea:7c:aa: 3c:c0:ee:ff:9e:69:94:6d:65:3e:4d:e5:b1:d9:4a: 1f:48:d9:15:40:3b:2f:3e:1d:f1:6c:36:75:66:8b: 22:50:8e:a4:87:f9:ae:fe:31:02:e8:aa:51:70:17: 70:82:98:10:79:f3:34:a2:4c:2e:a1:35:24:7e:e1: 8d:ea:37:e2:7a:bc:ad:95:a4:c7:bf:48:7e:61:ac: fa:ba:b4:23:6c:2b:ee:76:a0:74:1e:f6:9f:8d:dc: ce:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B1:39:64:A8:58:25:F5:5E:BF:27:78:7B:5A:05:53:C7:BA:AD:25 X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:4f:3f:c8:07:21:58:3a:8b:82:e2:07:69:f5:11:58:5c:db: 1f:25:9d:10:82:40:1c:93:bd:f4:c0:4e:9e:54:24:08:b3:4b: 49:ff:9f:59:70:c7:8c:9a:4a:93:a2:08:5a:f5:91:8a:af:83: 0e:ef:2f:0a:85:c5:05:6e:58:91:7f:e9:83:6c:b8:d5:6e:35: 0a:cc:78:ec:80:c8:3b:f6:b1:55:61:a6:75:f9:6f:be:03:72: 75:c0:fa:7f:26:9e:42:ed:a7:f3:88:51:e5:92:39:f1:6c:b0: af:fd:80:22:a3:f8:d2:74:c4:70:5a:4f:dd:a4:a9:46:1b:68: 3c:cc:71:13:72:f6:92:27:21:12:cb:98:00:7b:40:41:6c:dc: 6a:25:0a:a7:f3:50:42:12:b0:4b:31:6c:f0:6a:cc:29:f2:c5: 69:34:e7:5a:23:f9:44:b3:b2:b8:86:e6:8a:27:bc:b3:0f:20: c6:dc:48:ee:2c:f2:54:81:7c:cf:45:73:f6:91:4b:f4:22:8b: e9:e2:b3:b9:9b:a7:a9:9a:70:6d:db:0f:69:6b:6e:d4:1c:f4: bb:00:7d:54:bf:8e:ab:fc:4c:eb:40:22:a9:3c:19:82:49:18: 5f:9d:5e:0a:9b:86:f8:ec:ca:8a:65:6d:fc:95:79:fb:90:7a: 07:07:5c:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjUxMjE5MDEwODM3WhcNMjUxMjI2MDEwODM3WjAYMRYwFAYD VQQDDA02OTQ0YTU5NS03NjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAodX+AbcxJVW7Rq0pg4/EkJTiycNGKA+HDQyUiMwrVy3YqQ9gEZFzyt24Iys3 hwznn1FL/b0q7WYI+Tz0TmnLo4lIpa1GFXexdI2i+f38nGzfxD3ndT+nP4s/En+G 4Xj6sCHcoVD6KCZrtv4svAfJ7C5a0Q6bUanyunvqY6//OKO6uKhqCtS9102uIX2B amXSHQLbFMvpu2dTY0ipni6YmXTqfKo8wO7/nmmUbWU+TeWx2UofSNkVQDsvPh3x bDZ1ZosiUI6kh/mu/jEC6KpRcBdwgpgQefM0okwuoTUkfuGN6jfierytlaTHv0h+ Yaz6urQjbCvudqB0HvafjdzOBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6xOWSo WCX1Xr8neHtaBVPHuq0lMB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLTz/IByFYOouC4gdp9RFYXNsfJZ0QgkAck730wE6eVCQIs0tJ/59Z cMeMmkqTogha9ZGKr4MO7y8KhcUFbliRf+mDbLjVbjUKzHjsgMg79rFVYaZ1+W++ A3J1wPp/Jp5C7afziFHlkjnxbLCv/YAio/jSdMRwWk/dpKlGG2g8zHETcvaSJyES y5gAe0BBbNxqJQqn81BCErBLMWzwaswp8sVpNOdaI/lEs7K4huaKJ7yzDyDG3Eju LPJUgXzPRXP2kUv0Iovp4rO5m6epmnBt2w9pa27UHPS7AH1Uv46r/EzrQCKpPBmC SRhfnV4Km4b47MqKZW38lXn7kHoHB1xF -----END CERTIFICATE-----Generated at Fri Dec 19 19:24:08 2025 by rpki-client