This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft File: UT3TCM11FCJ69R2AXlVApqn10zk.mft (raw, json) Hash identifier: W4A5Nng1FKuOZo0f3OGoS3kVLnL8WKgB6lQkyn7Bd5A= Subject key identifier: A9:5B:74:9A:25:36:A5:DE:0C:9E:C6:F7:4B:44:72:F9:26:94:00:57 Authority key identifier: 51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 Certificate issuer: /CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Certificate serial: 104C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft Manifest number: 1044 Signing time: Thu 18 Dec 2025 15:39:07 +0000 Manifest this update: Thu 18 Dec 2025 15:39:07 +0000 Manifest next update: Thu 25 Dec 2025 15:39:07 +0000 Files and hashes: 1: UT3TCM11FCJ69R2AXlVApqn10zk.crl (hash: ehzP5vCUyQH5c9K18XiNm9qwdN1ymLHpthLUg/kECPo=) 2: 8BCB105015EA11EC86834E2FC4F9AE02.roa (hash: IX9d9TIKewpWNDigl1ZdHd+4/uZo37EA6gD3nX3eWyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4172 (0x104c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Validity Not Before: Dec 18 15:39:07 2025 GMT Not After : Dec 25 15:39:07 2025 GMT Subject: CN=6944201b-dc64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:6c:fd:47:c0:b0:fd:3f:32:81:e6:9c:b6:93: cc:d2:07:c3:30:e4:23:41:15:39:fc:de:24:d1:f9: d0:4b:3f:c3:e8:5a:fa:c3:46:ad:a2:20:3a:66:1d: 8b:40:8b:3b:0b:5f:4e:45:f1:be:58:54:54:81:9d: 14:bf:ae:cb:85:c6:07:f0:7a:e2:49:af:e1:51:c7: cd:0b:87:08:f3:7c:a8:ac:c9:12:d2:fb:a1:0c:56: 8a:8c:40:cd:fc:8d:86:6e:63:77:21:59:66:cc:37: 34:57:94:ce:14:a6:21:a0:40:e8:09:cf:23:e5:80: b7:12:3d:00:63:85:af:fb:18:6f:96:d5:af:78:9a: 76:81:3b:01:f4:53:09:fc:25:83:87:9f:d0:c3:bf: fc:d6:55:37:16:19:bc:18:26:63:94:df:f2:e2:d2: 36:fe:8a:bc:d6:0d:92:f3:fe:79:51:8a:5d:5f:39: 87:09:9e:0e:5e:0e:65:de:93:07:36:91:1c:a5:69: f6:d1:af:4b:70:62:90:82:96:e2:d1:0f:85:a6:50: 76:ef:33:db:83:8d:61:1c:a5:6b:10:14:0b:aa:d9: ba:7b:cc:8e:5f:8f:be:7c:57:d1:c4:ac:98:c5:5e: 7e:f6:4d:29:d8:7c:45:49:3b:08:07:97:92:8a:3c: c7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:5B:74:9A:25:36:A5:DE:0C:9E:C6:F7:4B:44:72:F9:26:94:00:57 X509v3 Authority Key Identifier: keyid:51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:f6:92:32:c3:d3:ee:a7:ae:e5:2f:6c:57:13:c2:4d:40:ee: aa:e8:10:cf:6e:59:f8:4f:a4:42:5a:9b:c2:e5:f1:fb:54:7a: a3:a0:ef:01:67:b3:2e:3a:34:90:03:0b:b1:6d:32:20:d0:a2: 38:3c:eb:b1:e8:56:96:c5:0d:62:82:cd:79:28:fc:4d:c0:73: f3:11:b1:3d:18:c4:bb:a4:c0:34:66:df:b2:16:f0:3b:00:dc: 4b:ef:9b:f4:a6:8c:b4:fe:1f:18:a8:d6:54:1f:99:4c:4b:77: 4f:c2:c6:6b:c8:26:63:c2:0a:20:da:ac:95:90:48:46:ed:d6: ff:0c:6b:8f:77:46:a7:eb:2a:a0:af:32:a1:36:35:45:8a:93: d6:96:1c:b5:b0:0c:48:91:1d:68:3b:c1:b3:b5:b8:c6:c3:70: e1:fb:71:8d:7e:d2:1b:c7:50:b0:c5:f0:89:13:c3:8e:8c:d8: ab:14:32:8b:39:ff:52:71:a8:6c:14:8d:87:17:25:4c:d8:b4: 82:cc:c9:72:fe:41:be:17:65:9d:e7:4e:7d:87:84:eb:53:e2: 07:87:7f:74:14:5b:05:76:51:65:9e:df:aa:71:cf:d8:58:26: 8f:4c:14:73:39:b6:be:04:f5:cb:a8:a2:99:2d:6e:19:3d:14: d1:21:1a:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDUxM0REMzA4Q0Q3NTE0MjI3QUY1MUQ4MDVFNTU0MEE2 QTlGNUQzMzkwHhcNMjUxMjE4MTUzOTA3WhcNMjUxMjI1MTUzOTA3WjAYMRYwFAYD VQQDDA02OTQ0MjAxYi1kYzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkGz9R8Cw/T8ygeactpPM0gfDMOQjQRU5/N4k0fnQSz/D6Fr6w0atoiA6Zh2L QIs7C19ORfG+WFRUgZ0Uv67LhcYH8HriSa/hUcfNC4cI83yorMkS0vuhDFaKjEDN /I2GbmN3IVlmzDc0V5TOFKYhoEDoCc8j5YC3Ej0AY4Wv+xhvltWveJp2gTsB9FMJ /CWDh5/Qw7/81lU3Fhm8GCZjlN/y4tI2/oq81g2S8/55UYpdXzmHCZ4OXg5l3pMH NpEcpWn20a9LcGKQgpbi0Q+FplB27zPbg41hHKVrEBQLqtm6e8yOX4++fFfRxKyY xV5+9k0p2HxFSTsIB5eSijzHcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlbdJol NqXeDJ7G90tEcvkmlABXMB8GA1UdIwQYMBaAFFE90wjNdRQievUdgF5VQKap9dM5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS80RTJEN0EzODUx NDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZDSjY5UjJBWGxWQXBxbjEw emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUM1RDTTExRkNKNjlSMkFYbFZBcHFuMTB6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS80RTJEN0EzODUxNDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZD SjY5UjJBWGxWQXBxbjEwemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh9pIyw9Pup67lL2xXE8JNQO6q6BDPbln4T6RCWpvC5fH7VHqjoO8B Z7MuOjSQAwuxbTIg0KI4POux6FaWxQ1igs15KPxNwHPzEbE9GMS7pMA0Zt+yFvA7 ANxL75v0poy0/h8YqNZUH5lMS3dPwsZryCZjwgog2qyVkEhG7db/DGuPd0an6yqg rzKhNjVFipPWlhy1sAxIkR1oO8GztbjGw3Dh+3GNftIbx1CwxfCJE8OOjNirFDKL Of9ScahsFI2HFyVM2LSCzMly/kG+F2Wd5059h4TrU+IHh390FFsFdlFlnt+qcc/Y WCaPTBRzOba+BPXLqKKZLW4ZPRTRIRqp -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:07 2025 by rpki-client