This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: fIy7DoU25QbdOcHovaQEXtjTomwIjacp3ZbEgkvx77o= Subject key identifier: D2:F5:54:7F:27:50:6E:A5:20:20:69:1F:4B:10:71:7B:02:67:9B:DC Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0C61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0C5A Signing time: Mon 22 Dec 2025 18:11:05 +0000 Manifest this update: Mon 22 Dec 2025 18:11:04 +0000 Manifest next update: Mon 29 Dec 2025 18:11:04 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: pG1VO+rUr9tKbrPRxSCKXwJxZiZPti32fnNoA+/GetY=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: cmHL+jcXVZxk1ExKQVL6FlfnXQXFN7c8jdKbgylZ/70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:11:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3169 (0xc61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778, serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: Dec 22 18:11:04 2025 GMT Not After : Dec 29 18:11:04 2025 GMT Subject: CN=694989b8-e750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:81:19:bd:38:d2:da:35:bd:65:03:63:6a: d3:e9:86:47:31:96:41:11:59:2d:29:89:a2:b5:a2: 65:d3:f6:dd:b2:7e:36:4c:52:d2:c2:3f:ae:28:dd: ec:76:2a:0d:b8:2d:c1:a3:1f:5f:35:39:ae:62:cd: 08:de:79:10:da:ab:f4:9a:3d:d6:bf:45:fe:b9:bb: e6:32:d5:33:12:f8:34:2f:65:8b:15:34:a3:7b:f3: d2:4d:99:74:97:ff:00:b3:2f:98:b3:88:1e:dc:b4: 4a:cf:ce:3f:80:3c:0a:63:79:32:c3:a6:f3:7f:b2: 1d:11:91:19:1c:28:7b:be:8f:48:e2:f9:d3:92:a5: 74:ed:14:be:ee:56:ad:01:9d:5a:eb:d2:38:df:32: 94:97:c5:17:95:9d:0e:ec:20:09:fc:95:00:ae:26: 53:c7:42:01:80:5c:c2:25:ba:fe:1c:b4:3e:3b:ae: fb:2f:51:b5:5e:d4:06:07:b6:43:48:e8:e4:1d:7c: b6:1e:f3:a3:38:7f:7f:4f:7d:a8:d5:1e:df:48:1c: 0c:fd:5e:8a:43:b9:59:87:64:a7:09:b0:07:3d:c8: 13:67:11:b2:09:fe:b3:3e:0e:6b:22:09:5e:97:ee: 36:f5:c7:dd:4c:70:fb:26:a8:9a:ae:4d:4f:b1:88: 53:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F5:54:7F:27:50:6E:A5:20:20:69:1F:4B:10:71:7B:02:67:9B:DC X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:fc:09:c4:b7:95:0c:27:b2:ca:c6:27:63:9e:9b:0e:95:7a: 6f:c8:c8:7f:e7:f7:66:c6:84:56:36:27:42:90:df:ef:9e:a7: ea:ef:51:71:a9:72:12:57:77:50:61:18:9b:e8:50:45:80:fd: 78:06:44:e6:8c:80:a0:9c:09:dc:1e:17:11:a4:af:76:45:f9: ef:42:63:1b:b3:f2:5e:ad:fd:e0:71:5a:60:23:f0:bf:f8:5a: db:c7:e4:66:af:63:3b:c1:c2:85:c1:ad:82:72:5c:71:0b:4b: a1:0e:69:f4:66:b2:89:8b:6b:98:8e:e0:6d:17:b4:ec:52:6f: c8:0b:8f:f6:c3:76:43:cc:70:0e:ea:3e:d8:ac:f5:6e:9a:1d: 90:2c:22:8c:66:6a:de:17:9d:3f:b8:72:a1:09:30:21:7c:0a: df:3a:cf:f4:fb:fe:09:77:8a:d2:65:a3:e2:69:e7:0a:ca:63: d2:ac:ea:95:ed:8d:04:c2:88:2b:55:97:6d:12:67:09:b5:cb: 46:71:a1:30:86:b5:ad:a3:d8:3c:ff:e1:cd:0e:1e:b6:f7:be: ca:28:f4:a8:b2:4c:40:2c:8a:70:1e:90:8b:29:e9:6f:a0:54: 2f:46:c7:f2:44:e8:a1:b3:8d:69:80:54:5f:e3:f5:6b:19:91: 32:20:a5:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjUxMjIyMTgxMTA0WhcNMjUxMjI5MTgxMTA0WjAYMRYwFAYD VQQDDA02OTQ5ODliOC1lNzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq2BGb040to1vWUDY2rT6YZHMZZBEVktKYmitaJl0/bdsn42TFLSwj+uKN3s dioNuC3Box9fNTmuYs0I3nkQ2qv0mj3Wv0X+ubvmMtUzEvg0L2WLFTSje/PSTZl0 l/8Asy+Ys4ge3LRKz84/gDwKY3kyw6bzf7IdEZEZHCh7vo9I4vnTkqV07RS+7lat AZ1a69I43zKUl8UXlZ0O7CAJ/JUAriZTx0IBgFzCJbr+HLQ+O677L1G1XtQGB7ZD SOjkHXy2HvOjOH9/T32o1R7fSBwM/V6KQ7lZh2SnCbAHPcgTZxGyCf6zPg5rIgle l+429cfdTHD7Jqiark1PsYhTDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNL1VH8n UG6lICBpH0sQcXsCZ5vcMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk/AnEt5UMJ7LKxidjnpsOlXpvyMh/5/dmxoRWNidCkN/vnqfq71Fx qXISV3dQYRib6FBFgP14BkTmjICgnAncHhcRpK92RfnvQmMbs/Jerf3gcVpgI/C/ +Frbx+Rmr2M7wcKFwa2CclxxC0uhDmn0ZrKJi2uYjuBtF7TsUm/IC4/2w3ZDzHAO 6j7YrPVumh2QLCKMZmreF50/uHKhCTAhfArfOs/0+/4Jd4rSZaPiaecKymPSrOqV 7Y0EwogrVZdtEmcJtctGcaEwhrWto9g8/+HNDh62977KKPSoskxALIpwHpCLKelv oFQvRsfyROihs41pgFRf4/VrGZEyIKUV -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:28 2025 by rpki-client