This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: KcK6pQPw5ffaWKPGbgBEJQ4rsgLQlPzAf0sHyDhlw30= Subject key identifier: CC:B1:63:8A:E2:35:70:57:76:EA:4A:0A:3D:DD:84:BF:87:2B:E6:65 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 01D3 Signing time: Tue 23 Dec 2025 01:31:17 +0000 Manifest this update: Tue 23 Dec 2025 01:31:16 +0000 Manifest next update: Tue 30 Dec 2025 01:31:16 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: Zk1KKaeDW8CUxrfdftsAfMCPMWCBa1W2HobcDuEbHjs=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Dec 23 01:31:16 2025 GMT Not After : Dec 30 01:31:16 2025 GMT Subject: CN=6949f0e5-988c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:87:cc:dc:d4:4a:b3:eb:43:c0:53:73:38:1c: 56:8a:fb:df:07:77:53:7a:eb:1b:8d:1b:a9:b2:f4: 6f:47:04:84:e8:2f:23:c4:7f:e8:4b:48:08:8b:09: 32:47:12:f7:82:14:9b:c3:24:35:ef:47:4f:f0:ec: 4d:9d:f0:69:44:de:73:30:8a:9f:50:53:6d:4a:3a: fd:fe:2d:40:c3:65:d2:18:d1:b7:db:3b:c5:1f:a7: b9:8b:65:ab:f9:b1:a8:69:46:de:71:61:e6:df:06: 00:10:d7:e7:3f:a8:bb:ad:78:72:0c:1d:f5:91:2c: f4:7e:b4:84:ab:d5:bb:fc:2f:16:bb:5b:f6:10:3e: 7c:16:42:68:77:38:ce:3b:be:d0:9d:49:3d:84:86: a3:01:60:65:1a:48:be:5d:42:6c:70:42:14:58:fc: f1:cf:4b:53:70:42:13:19:13:91:cd:bf:a1:1f:4c: 6e:8e:1d:b1:b1:fa:da:89:08:c1:c4:f2:8b:e6:41: 9f:19:33:25:ab:e2:4e:8a:fc:4a:a6:f4:19:6c:9e: bf:d7:ef:b9:f9:fd:55:3c:a1:22:d4:34:94:d9:f4: 01:34:0c:da:4f:51:f0:34:fc:af:5e:1f:97:9a:d9: 3c:a7:85:ab:99:3e:0a:68:3f:ac:9d:54:c5:30:7e: 90:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B1:63:8A:E2:35:70:57:76:EA:4A:0A:3D:DD:84:BF:87:2B:E6:65 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:de:2f:10:80:1c:a9:b8:dd:9b:d3:d4:fc:36:1e:57:15:20: 14:f4:37:52:c8:22:ab:95:85:af:30:25:15:18:58:e8:6d:32: a8:b7:a8:57:3e:64:0f:6d:f5:28:21:93:47:25:7a:b1:af:7e: 4a:0a:2a:24:c6:12:c3:03:e2:c8:37:0b:a8:e5:d6:ab:72:81: de:55:6e:2c:7d:9c:3a:a6:20:ed:31:80:aa:8c:89:40:74:a7: 7b:17:59:fc:ff:0b:07:ae:ee:4a:f8:53:a1:9e:38:5c:9a:64: f8:44:41:80:bd:da:f6:fc:4e:0f:a9:c5:03:bd:cf:01:47:99: 9b:d4:05:d6:f9:38:24:b9:ae:1f:78:5c:20:14:a5:8f:d9:91: 30:2c:5f:5c:10:c0:c5:b7:5a:34:e1:09:6c:15:0a:ef:70:d1: fa:52:c1:c6:0d:f2:ce:ba:ef:7e:bc:c5:c6:87:cb:8e:33:8c: 93:1a:bc:0e:4d:b5:d6:c9:7a:21:1b:16:dc:2e:28:3b:8d:ac: 6b:28:3e:b5:4a:12:e1:9f:48:f9:be:d2:28:3b:c8:76:df:e0: 94:6d:3e:13:5b:2d:b7:9f:91:5b:68:16:fc:3e:9d:85:af:72: ab:5f:12:36:7b:96:e9:2f:26:8f:d2:36:48:91:0a:56:10:26: 40:b4:7f:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUxMjIzMDEzMTE2WhcNMjUxMjMwMDEzMTE2WjAYMRYwFAYD VQQDDA02OTQ5ZjBlNS05ODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYfM3NRKs+tDwFNzOBxWivvfB3dTeusbjRupsvRvRwSE6C8jxH/oS0gIiwky RxL3ghSbwyQ170dP8OxNnfBpRN5zMIqfUFNtSjr9/i1Aw2XSGNG32zvFH6e5i2Wr +bGoaUbecWHm3wYAENfnP6i7rXhyDB31kSz0frSEq9W7/C8Wu1v2ED58FkJodzjO O77QnUk9hIajAWBlGki+XUJscEIUWPzxz0tTcEITGRORzb+hH0xujh2xsfraiQjB xPKL5kGfGTMlq+JOivxKpvQZbJ6/1++5+f1VPKEi1DSU2fQBNAzaT1HwNPyvXh+X mtk8p4WrmT4KaD+snVTFMH6QRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyxY4ri NXBXdupKCj3dhL+HK+ZlMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG3i8QgBypuN2b09T8Nh5XFSAU9DdSyCKrlYWvMCUVGFjobTKot6hX PmQPbfUoIZNHJXqxr35KCiokxhLDA+LINwuo5darcoHeVW4sfZw6piDtMYCqjIlA dKd7F1n8/wsHru5K+FOhnjhcmmT4REGAvdr2/E4PqcUDvc8BR5mb1AXW+Tgkua4f eFwgFKWP2ZEwLF9cEMDFt1o04QlsFQrvcNH6UsHGDfLOuu9+vMXGh8uOM4yTGrwO TbXWyXohGxbcLig7jaxrKD61ShLhn0j5vtIoO8h23+CUbT4TWy23n5FbaBb8Pp2F r3KrXxI2e5bpLyaP0jZIkQpWECZAtH9x -----END CERTIFICATE-----Generated at Tue Dec 23 06:49:06 2025 by rpki-client