This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: pMXC3Z8TGxa7qe1JpiFXwtAesKb6AeadkQz6ZFwU6j0= Subject key identifier: 23:34:31:90:0E:8B:95:04:65:50:68:51:23:8D:AD:AE:12:EB:B7:EA Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 01CC Signing time: Tue 09 Dec 2025 00:48:16 +0000 Manifest this update: Tue 09 Dec 2025 00:48:15 +0000 Manifest next update: Tue 16 Dec 2025 00:48:15 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: jB+Tm39JIKJflqnq8OJRQInFF4gha6khTYEoNcP8uNg=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 00:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Dec 9 00:48:15 2025 GMT Not After : Dec 16 00:48:15 2025 GMT Subject: CN=693771d0-d48f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:22:96:29:e8:cb:5b:61:41:78:b0:86:98:1c: a1:42:e7:57:46:d8:5e:4d:2f:10:60:bb:10:d2:65: 0f:31:7e:b6:00:ec:05:8b:1f:2f:ae:0e:05:97:a2: f4:e7:73:69:eb:94:70:e3:50:c9:92:16:6c:a7:3b: b7:1f:55:2d:61:26:8c:40:1b:4e:e5:12:26:ca:eb: d2:3d:d8:dc:fb:1c:6b:7f:6f:95:99:60:c4:39:de: 7f:96:1d:d9:71:c1:ec:d7:02:e2:1f:0c:2f:74:db: 5e:58:04:d3:ac:2a:48:c4:9e:f9:f7:95:78:a0:59: da:38:7a:55:86:d6:2f:70:3b:c4:c1:5a:ae:a8:91: fc:5d:08:13:b9:ee:0f:4d:4a:25:66:90:89:1d:13: 70:31:9e:2e:04:12:a2:32:05:9c:82:18:ad:44:5e: 42:44:d7:dc:64:c3:f6:20:9f:8f:3b:eb:33:0f:1e: 3b:bc:bc:39:f4:e0:1f:99:82:c9:65:da:ae:c0:c0: f3:b3:38:49:88:dc:22:5b:b5:f4:76:a8:1c:17:47: 10:31:2a:a3:16:09:e8:91:e1:17:79:c2:e2:fb:fe: 36:07:fd:6b:de:d4:47:f3:7e:9e:90:9c:ee:25:2d: f0:c0:ab:c5:43:8e:dd:bd:5d:24:15:f5:95:41:02: 74:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:34:31:90:0E:8B:95:04:65:50:68:51:23:8D:AD:AE:12:EB:B7:EA X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:fa:7f:be:8b:c8:87:16:9e:84:11:30:06:cd:ef:a0:f2:34: 51:44:e4:5a:6b:d3:cc:28:8d:63:bb:80:e9:58:f7:e6:81:81: 53:d9:5c:e3:4a:42:fe:e7:8e:f9:e4:aa:99:ec:58:a4:1a:a5: 2f:1f:34:87:ab:24:ef:a9:04:42:92:3c:5c:e4:da:f5:29:02: 0a:42:9a:04:27:93:73:81:06:51:21:67:bc:50:df:94:a1:00: 73:c4:f3:49:46:dd:af:47:0a:2d:81:20:44:f3:32:6c:aa:8d: f1:de:84:66:76:b2:62:fe:f1:32:04:5b:0f:de:6b:36:7f:0b: 18:73:f6:e2:48:5a:a6:ae:9f:7d:1a:ed:9d:c4:da:a1:d4:b7: 69:1a:eb:80:46:ce:1b:79:6c:4e:ec:84:b4:94:55:57:de:2d: b2:18:2b:18:e6:83:0a:cf:ae:c7:c5:f7:ff:51:50:48:b8:e6: 10:2a:43:0b:a7:84:eb:fa:88:30:a4:67:2b:2e:bc:fa:09:9c: 12:5b:2d:3b:3e:a8:38:4c:61:15:0f:1a:10:98:45:00:d1:8e: 56:a1:d3:71:0d:f9:cf:59:4a:70:ff:aa:e0:e3:47:c6:0a:70: 42:a4:bb:f9:7c:e6:a4:d8:8d:d8:f5:e1:b5:c2:6a:80:9d:ed: 28:d7:df:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUxMjA5MDA0ODE1WhcNMjUxMjE2MDA0ODE1WjAYMRYwFAYD VQQDEw02OTM3NzFkMC1kNDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyKWKejLW2FBeLCGmByhQudXRtheTS8QYLsQ0mUPMX62AOwFix8vrg4Fl6L0 53Np65Rw41DJkhZspzu3H1UtYSaMQBtO5RImyuvSPdjc+xxrf2+VmWDEOd5/lh3Z ccHs1wLiHwwvdNteWATTrCpIxJ7595V4oFnaOHpVhtYvcDvEwVquqJH8XQgTue4P TUolZpCJHRNwMZ4uBBKiMgWcghitRF5CRNfcZMP2IJ+PO+szDx47vLw59OAfmYLJ ZdquwMDzszhJiNwiW7X0dqgcF0cQMSqjFgnokeEXecLi+/42B/1r3tRH836ekJzu JS3wwKvFQ47dvV0kFfWVQQJ0rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCM0MZAO i5UEZVBoUSONra4S67fqMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2+n++i8iHFp6EETAGze+g8jRRRORaa9PMKI1ju4DpWPfmgYFT2Vzj SkL+54755KqZ7FikGqUvHzSHqyTvqQRCkjxc5Nr1KQIKQpoEJ5NzgQZRIWe8UN+U oQBzxPNJRt2vRwotgSBE8zJsqo3x3oRmdrJi/vEyBFsP3ms2fwsYc/biSFqmrp99 Gu2dxNqh1LdpGuuARs4beWxO7IS0lFVX3i2yGCsY5oMKz67Hxff/UVBIuOYQKkML p4Tr+ogwpGcrLrz6CZwSWy07Pqg4TGEVDxoQmEUA0Y5WodNxDfnPWUpw/6rg40fG CnBCpLv5fOak2I3Y9eG1wmqAne0o198N -----END CERTIFICATE-----Generated at Wed Dec 10 05:33:35 2025 by rpki-client