This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft File: UnWd41wCZ5226TLqiGidwQ1czK4.mft (raw, json) Hash identifier: N9yMO+7fpBbG+7PrM45q7KaxoFQExfCZU0RfmaLVVBo= Subject key identifier: 60:F2:DC:88:6C:F8:12:33:3A:CD:53:E6:1A:DF:DD:00:B9:6E:E4:00 Authority key identifier: 52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE Certificate issuer: /CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft Manifest number: 01AA Signing time: Tue 23 Dec 2025 02:15:06 +0000 Manifest this update: Tue 23 Dec 2025 02:15:05 +0000 Manifest next update: Tue 30 Dec 2025 02:15:05 +0000 Files and hashes: 1: UnWd41wCZ5226TLqiGidwQ1czK4.crl (hash: onWc7n8daZWsUa+deaNm0Mb+ANAxyLO2PM6yEWNvDoc=) 2: 503DC7FA547F11EE9512EE75C4F9AE02.roa (hash: prpO02sdaGxa9omiI4KP6Jj37m9PViRORA2hf2czA64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:15:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919014C, serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Validity Not Before: Dec 23 02:15:05 2025 GMT Not After : Dec 30 02:15:05 2025 GMT Subject: CN=6949fb2a-4f67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:97:1c:19:98:a9:35:69:af:90:19:da:0f:b8: c1:e1:0b:2e:4f:3b:b1:35:6a:c8:89:7e:82:7f:22: 06:60:91:ad:0d:2d:85:bf:23:f7:07:50:f2:32:a6: 94:cd:bb:84:6f:69:22:29:11:c9:05:c9:f4:d7:2d: 7e:85:68:e9:c1:22:b4:53:09:fa:8f:4c:76:64:10: da:24:d2:8e:46:40:c5:38:2e:c6:e8:cc:e3:b1:ff: c1:f5:80:a0:62:07:76:e5:e3:71:62:04:63:cf:9b: 40:34:f8:1c:f4:a9:5b:db:03:26:a0:98:ec:50:1e: 81:7e:1b:02:a1:aa:c6:46:4b:96:78:32:cf:32:fa: 23:34:d4:4a:0e:47:a6:e4:5b:21:41:e5:e1:64:39: 2d:36:78:0b:ef:fe:a5:bc:b2:3a:08:f5:82:15:be: 51:95:11:2a:90:83:e9:0c:b4:c2:47:4b:7c:53:2e: 00:c2:25:2f:fc:10:b2:17:9d:09:7d:92:04:02:69: 64:dc:62:f2:4a:80:c0:7f:55:27:1f:b5:a4:33:81: a8:63:74:68:a5:07:d5:96:cc:fe:4b:d9:bf:35:23: ce:e8:ee:7a:1e:fb:f6:37:bb:34:a7:35:81:87:fc: 99:20:c9:bc:47:3d:37:79:8b:a8:6c:72:65:02:75: 4e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F2:DC:88:6C:F8:12:33:3A:CD:53:E6:1A:DF:DD:00:B9:6E:E4:00 X509v3 Authority Key Identifier: keyid:52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:2f:cb:de:bc:d3:fa:57:24:f6:1f:fc:92:e7:84:05:e6:b8: ae:a5:ca:7d:72:d0:94:4a:a7:1b:cb:2a:de:d8:dd:0d:56:a3: ab:a1:bd:c6:09:eb:e0:6f:f3:c2:c7:e0:96:f7:c8:7a:c5:ce: f0:38:1e:50:46:39:02:b8:c6:7c:6a:f3:3e:4d:88:33:8c:34: 69:70:64:17:be:95:9a:c1:9a:d9:92:5b:4d:b0:a0:2c:c9:47: c8:f1:14:03:20:29:b3:4d:ed:80:ba:38:71:ea:36:4d:6d:12: c5:26:2d:3d:41:49:e4:9f:2c:3e:78:66:5b:2b:f5:ea:b7:9b: c8:e5:f9:b4:a1:8a:c8:a9:ef:f0:e8:aa:1a:71:71:38:0c:c0: 0d:84:d3:e9:ea:88:9f:73:e2:f6:b7:f3:2a:ed:87:0a:91:23: f0:a4:5e:43:40:62:94:fa:54:6f:9f:78:7e:2d:81:c4:f0:f6: ae:e7:c5:75:31:45:16:3b:72:de:73:73:4b:5e:39:e9:91:af: 1c:c3:69:88:fa:cf:71:a0:dc:f2:57:34:61:a8:c8:c2:9b:44: 36:e8:ec:0e:fe:a4:34:74:20:e7:da:ba:59:bc:18:f1:64:bb: 1b:7e:3c:d5:85:4f:79:32:4d:12:17:f1:1c:d6:21:c3:d1:c7: 5c:a4:29:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAxNEMxMTAvBgNVBAUTKDUyNzU5REUzNUMwMjY3OURCNkU5MzJFQTg4Njg5REMx MEQ1Q0NDQUUwHhcNMjUxMjIzMDIxNTA1WhcNMjUxMjMwMDIxNTA1WjAYMRYwFAYD VQQDDA02OTQ5ZmIyYS00ZjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5ccGZipNWmvkBnaD7jB4QsuTzuxNWrIiX6CfyIGYJGtDS2FvyP3B1DyMqaU zbuEb2kiKRHJBcn01y1+hWjpwSK0Uwn6j0x2ZBDaJNKORkDFOC7G6Mzjsf/B9YCg Ygd25eNxYgRjz5tANPgc9Klb2wMmoJjsUB6BfhsCoarGRkuWeDLPMvojNNRKDkem 5FshQeXhZDktNngL7/6lvLI6CPWCFb5RlREqkIPpDLTCR0t8Uy4AwiUv/BCyF50J fZIEAmlk3GLySoDAf1UnH7WkM4GoY3RopQfVlsz+S9m/NSPO6O56Hvv2N7s0pzWB h/yZIMm8Rz03eYuobHJlAnVOZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDy3Ihs +BIzOs1T5hrf3QC5buQAMB8GA1UdIwQYMBaAFFJ1neNcAmedtuky6ohoncENXMyu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDE0Qy8xNTRGQUMyQzU0 N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1MjI2VExxaUdpZHdRMWN6 SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VuV2Q0MXdDWjUyMjZUTHFpR2lkd1ExY3pLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDE0Qy8xNTRGQUMyQzU0N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1 MjI2VExxaUdpZHdRMWN6SzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAL8vevNP6VyT2H/yS54QF5riupcp9ctCUSqcbyyre2N0NVqOrob3G Cevgb/PCx+CW98h6xc7wOB5QRjkCuMZ8avM+TYgzjDRpcGQXvpWawZrZkltNsKAs yUfI8RQDICmzTe2Aujhx6jZNbRLFJi09QUnknyw+eGZbK/Xqt5vI5fm0oYrIqe/w 6KoacXE4DMANhNPp6oifc+L2t/Mq7YcKkSPwpF5DQGKU+lRvn3h+LYHE8Pau58V1 MUUWO3Lec3NLXjnpka8cw2mI+s9xoNzyVzRhqMjCm0Q26OwO/qQ0dCDn2rpZvBjx ZLsbfjzVhU95Mk0SF/Ec1iHD0cdcpCk4 -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:19 2025 by rpki-client