This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft File: Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json) Hash identifier: Cjf5Q6araUIS5hSqAl1cz3a51yP625Rce8mUjTvHZcg= Subject key identifier: FE:2C:67:B0:F3:53:7A:1F:A3:C2:09:5A:0C:03:C4:01:E6:56:9E:29 Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Certificate serial: 032F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft Manifest number: 032D Signing time: Tue 23 Dec 2025 00:03:34 +0000 Manifest this update: Tue 23 Dec 2025 00:03:34 +0000 Manifest next update: Tue 30 Dec 2025 00:03:34 +0000 Files and hashes: 1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: YBef+ISsf1aZ++fkYJkTri1uymbWgdFGHbo4/yKL0Yw=) 2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: 90iQ52pzi3F+reOCS+hcjY5A8xSUULeYkZXVo6UNIXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 815 (0x32f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Validity Not Before: Dec 23 00:03:34 2025 GMT Not After : Dec 30 00:03:34 2025 GMT Subject: CN=6949dc56-4c4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:35:42:76:fb:d8:c9:a1:60:7d:5b:43:5f:56: cb:f3:a4:59:64:56:26:b2:b2:03:95:37:8d:c0:53: fa:69:c0:40:67:05:cc:46:7e:9e:12:07:75:bd:0c: 43:98:16:72:3a:d3:61:1b:3a:d3:65:2b:b2:33:d1: 84:4b:f5:a2:b3:b6:78:fc:f4:da:56:d8:14:cd:8d: 79:fc:82:99:3d:0a:17:2e:37:24:fb:9f:fd:e6:46: 50:6c:eb:c8:c2:22:25:05:d5:b9:93:fb:1f:7b:3e: 01:d6:21:c6:0e:4f:7f:53:1d:30:d0:e7:58:9f:01: 27:4d:f3:f8:c4:d0:47:1f:cf:df:17:55:e2:35:62: ef:e5:b6:ce:f4:33:0b:fc:68:09:c5:98:57:00:18: 15:dd:9b:90:43:96:d8:33:be:6c:1b:ad:b9:1c:b7: a9:54:90:f2:27:cd:87:8f:0c:03:69:ac:13:d1:24: 00:1c:f7:4d:ab:d4:68:b5:50:9c:02:fb:ff:cb:4f: c9:82:e4:ea:a1:ed:b8:40:8a:40:87:47:2a:e4:e8: 36:dd:2b:27:84:aa:17:2f:07:81:cc:b8:fa:37:cd: 66:23:5f:6d:3d:fb:5b:5d:75:4f:24:b5:ad:be:9b: 2c:7e:e7:a9:22:84:c8:b6:48:96:97:9d:93:f1:5d: 0b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:2C:67:B0:F3:53:7A:1F:A3:C2:09:5A:0C:03:C4:01:E6:56:9E:29 X509v3 Authority Key Identifier: keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:49:2b:61:60:33:cc:dc:ee:1f:c6:77:23:a4:6b:f0:1a:4f: d3:a6:96:53:c9:f7:a0:ed:8d:d7:35:a3:1a:39:8c:9e:f9:dc: ec:45:86:7e:f6:51:7b:a0:3b:ae:64:39:c3:c0:8d:e1:3a:37: ad:f3:a9:55:8b:1f:ec:6a:d0:bc:be:86:6e:9e:2f:8d:35:32: c1:f4:5e:49:67:09:a8:68:3e:87:9a:81:fe:26:ae:f4:9f:4d: 58:ff:96:02:33:78:29:93:49:0d:6b:3e:a9:1c:b5:bb:e9:77: 2e:c5:de:44:40:89:ad:d6:f9:f9:3a:b3:fc:2f:43:2b:7f:a6: be:b8:95:35:19:fd:71:1b:34:44:74:61:82:15:fe:78:a5:93: 8d:1e:a5:70:01:e4:7a:b9:dd:e7:5e:e1:26:64:c9:de:29:98: 69:61:3e:7e:4c:d1:97:49:28:02:9a:b8:c2:e5:58:6d:70:d6: 8c:e5:51:28:f2:14:7e:0d:1a:49:db:63:e9:f1:3c:5e:9d:93: c0:f9:fd:6d:6b:f4:6a:fc:2f:d2:e8:40:3b:68:66:27:3a:2f: 53:a2:01:22:0e:f2:ae:da:a3:d0:09:65:13:1d:ac:f1:b9:2b: c0:f4:72:6f:c0:5f:3a:af:93:04:85:22:fd:e5:aa:bf:f7:b8: e1:1f:c6:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF MTlFQzU4NDcwHhcNMjUxMjIzMDAwMzM0WhcNMjUxMjMwMDAwMzM0WjAYMRYwFAYD VQQDDA02OTQ5ZGM1Ni00YzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTVCdvvYyaFgfVtDX1bL86RZZFYmsrIDlTeNwFP6acBAZwXMRn6eEgd1vQxD mBZyOtNhGzrTZSuyM9GES/Wis7Z4/PTaVtgUzY15/IKZPQoXLjck+5/95kZQbOvI wiIlBdW5k/sfez4B1iHGDk9/Ux0w0OdYnwEnTfP4xNBHH8/fF1XiNWLv5bbO9DML /GgJxZhXABgV3ZuQQ5bYM75sG625HLepVJDyJ82HjwwDaawT0SQAHPdNq9RotVCc Avv/y0/JguTqoe24QIpAh0cq5Og23SsnhKoXLweBzLj6N81mI19tPftbXXVPJLWt vpssfuepIoTItkiWl52T8V0LdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4sZ7Dz U3ofo8IJWgwDxAHmVp4pMB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZs cXZ3RlFqek9XSTNobnNXRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjSSthYDPM3O4fxncjpGvwGk/TppZTyfeg7Y3XNaMaOYye+dzsRYZ+ 9lF7oDuuZDnDwI3hOjet86lVix/satC8voZuni+NNTLB9F5JZwmoaD6HmoH+Jq70 n01Y/5YCM3gpk0kNaz6pHLW76Xcuxd5EQImt1vn5OrP8L0Mrf6a+uJU1Gf1xGzRE dGGCFf54pZONHqVwAeR6ud3nXuEmZMneKZhpYT5+TNGXSSgCmrjC5VhtcNaM5VEo 8hR+DRpJ22Pp8TxenZPA+f1ta/Rq/C/S6EA7aGYnOi9TogEiDvKu2qPQCWUTHazx uSvA9HJvwF86r5MEhSL95aq/97jhH8aO -----END CERTIFICATE-----Generated at Wed Dec 24 17:34:57 2025 by rpki-client