This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft File: UtXW_72oj1ReUbr5n32s4ZPAblc.mft (raw, json) Hash identifier: fb5v1FNanbjXCj18gM9mtNqyaSl0oArITuaDpH4VPK4= Subject key identifier: 78:EB:72:93:CB:D4:D7:5A:F0:D6:09:A9:7A:3C:95:79:4C:94:C3:6C Authority key identifier: 52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 Certificate issuer: /CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Certificate serial: 0841 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft Manifest number: 083A Signing time: Wed 24 Dec 2025 20:12:52 +0000 Manifest this update: Wed 24 Dec 2025 20:12:52 +0000 Manifest next update: Wed 31 Dec 2025 20:12:52 +0000 Files and hashes: 1: UtXW_72oj1ReUbr5n32s4ZPAblc.crl (hash: zaDElvzgfJ9WLcnR78S0GHSr7/SbkAHeD+RQm1dKY2g=) 2: AF95E6D8F2B711EAA1C01744C4F9AE02.roa (hash: X3Zxmzy65RFAr4wRuSkQChvufHFA8zifcOkEqKI8dKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 20:12:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2113 (0x841) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17F6, serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Validity Not Before: Dec 24 20:12:52 2025 GMT Not After : Dec 31 20:12:52 2025 GMT Subject: CN=694c4944-eb78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:a6:5d:ec:9c:78:2c:b1:8e:d2:c4:2e:67:a3: 76:4c:eb:f6:54:84:0a:29:c5:1b:c3:98:94:7c:c2: 33:3b:c2:50:79:79:61:83:8f:4f:75:b8:1e:c4:e0: a1:16:d7:bd:57:d5:51:c9:95:98:40:24:e3:cd:26: 46:8a:22:21:b0:d2:7c:2c:96:cf:d9:64:39:c1:8a: 56:2c:ed:03:21:8a:5c:93:22:50:53:e4:ca:62:8a: 07:27:46:24:56:74:ba:5e:7c:12:ef:c4:74:b2:35: 7f:a1:ad:e7:0a:d4:0d:b9:0f:dd:1e:7c:26:03:a2: be:a1:aa:2c:00:c7:ba:51:f0:cb:93:b8:dc:51:4c: 68:19:f1:55:eb:02:12:7d:1d:4d:5a:3a:d4:c4:81: b5:bd:b0:30:6c:88:42:70:f3:a0:0d:23:7a:a3:87: 59:3f:8d:2f:9c:c6:56:5b:93:24:96:14:df:b0:ec: fb:38:a0:8a:ef:f1:37:ca:eb:3d:68:e5:fa:68:fc: a0:50:51:bc:4f:a1:0b:ff:72:2b:e0:a6:6f:ac:da: 85:5e:09:b9:c9:b9:01:92:8d:f5:9d:10:5b:3c:93: 08:a4:e8:d0:b6:c4:c4:e2:33:9a:c2:a4:f0:02:8c: 35:6c:64:75:d0:4e:11:56:de:1b:8f:6b:22:29:49: d5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:EB:72:93:CB:D4:D7:5A:F0:D6:09:A9:7A:3C:95:79:4C:94:C3:6C X509v3 Authority Key Identifier: keyid:52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:a3:1d:d6:85:cf:10:78:a5:44:56:e7:e4:d8:e7:3f:12:53: 89:d1:4d:0a:0f:ea:19:65:eb:7f:6b:bf:fc:78:8b:15:a1:8e: e1:5b:c0:d8:a1:24:d9:6c:7a:98:a6:dc:f5:12:8e:8b:62:0f: 30:af:58:2d:23:ce:17:18:5e:ff:13:d1:91:dd:84:24:6f:b2: 1a:90:d9:e6:3a:fd:3e:7a:1b:d2:52:a4:c3:8a:e2:1d:6c:d5: 51:ae:7c:72:23:e4:36:94:e2:0d:82:4e:c1:67:ca:40:f9:c2: fe:b1:23:48:84:a4:ac:23:f7:41:26:88:96:ca:52:ba:df:3b: e4:82:78:86:69:21:ed:77:d0:77:aa:a5:d6:0b:d4:f1:43:e4: 9d:45:ee:3f:fa:70:90:02:1c:72:0e:07:ce:fa:09:ba:40:f6: 40:c6:35:de:02:c9:e7:dd:75:bf:de:31:db:5d:00:07:bd:0f: 3c:06:ac:30:96:b8:03:f3:76:28:58:a6:2f:aa:36:35:ab:9e: f8:5c:d2:03:2a:e1:76:bb:05:02:bd:5e:5d:0d:7e:7a:65:d0: 17:17:21:4e:34:52:8e:df:a0:f6:bc:b5:b9:6c:9a:60:52:90: 6a:54:d3:d6:5a:ba:5e:d3:dd:7b:c4:28:4a:93:ff:55:55:c8: aa:8b:0a:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3RjYxMTAvBgNVBAUTKDUyRDVENkZGQkRBODhGNTQ1RTUxQkFGOTlGN0RBQ0Ux OTNDMDZFNTcwHhcNMjUxMjI0MjAxMjUyWhcNMjUxMjMxMjAxMjUyWjAYMRYwFAYD VQQDDA02OTRjNDk0NC1lYjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjqZd7Jx4LLGO0sQuZ6N2TOv2VIQKKcUbw5iUfMIzO8JQeXlhg49PdbgexOCh Fte9V9VRyZWYQCTjzSZGiiIhsNJ8LJbP2WQ5wYpWLO0DIYpckyJQU+TKYooHJ0Yk VnS6XnwS78R0sjV/oa3nCtQNuQ/dHnwmA6K+oaosAMe6UfDLk7jcUUxoGfFV6wIS fR1NWjrUxIG1vbAwbIhCcPOgDSN6o4dZP40vnMZWW5MklhTfsOz7OKCK7/E3yus9 aOX6aPygUFG8T6EL/3Ir4KZvrNqFXgm5ybkBko31nRBbPJMIpOjQtsTE4jOawqTw Aow1bGR10E4RVt4bj2siKUnVUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjrcpPL 1Nda8NYJqXo8lXlMlMNsMB8GA1UdIwQYMBaAFFLV1v+9qI9UXlG6+Z99rOGTwG5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdGNi9FRDkzQ0VFOEYy QjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2oxUmVVYnI1bjMyczRaUEFi bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V0WFdfNzJvajFSZVVicjVuMzJzNFpQQWJsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdGNi9FRDkzQ0VFOEYyQjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2ox UmVVYnI1bjMyczRaUEFibGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/ox3Whc8QeKVEVufk2Oc/ElOJ0U0KD+oZZet/a7/8eIsVoY7hW8DY oSTZbHqYptz1Eo6LYg8wr1gtI84XGF7/E9GR3YQkb7IakNnmOv0+ehvSUqTDiuId bNVRrnxyI+Q2lOINgk7BZ8pA+cL+sSNIhKSsI/dBJoiWylK63zvkgniGaSHtd9B3 qqXWC9TxQ+SdRe4/+nCQAhxyDgfO+gm6QPZAxjXeAsnn3XW/3jHbXQAHvQ88Bqww lrgD83YoWKYvqjY1q574XNIDKuF2uwUCvV5dDX56ZdAXFyFONFKO36D2vLW5bJpg UpBqVNPWWrpe0917xChKk/9VVciqiwp8 -----END CERTIFICATE-----Generated at Thu Dec 25 18:01:50 2025 by rpki-client