This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: Uqfq0yFhdw4lR/yXckljhbUhlhWpFe5OtudjTx6edVQ= Subject key identifier: 5E:3E:D2:24:84:83:10:73:98:5C:CE:E7:BB:3F:A9:E2:96:1F:E9:CA Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 056C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 0561 Signing time: Mon 22 Dec 2025 22:30:53 +0000 Manifest this update: Mon 22 Dec 2025 22:30:52 +0000 Manifest next update: Mon 29 Dec 2025 22:30:52 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: pvD3+/wGNj6ieVlhvDsxabcigBDSTKkLGh06zUK0ofI=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: 4gKis+++tXEeHG38EwpejzSM+kE6A6gIMsrjZpkNJeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1388 (0x56c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490, serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Dec 22 22:30:52 2025 GMT Not After : Dec 29 22:30:52 2025 GMT Subject: CN=6949c69c-1d96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5c:b9:e9:ea:8d:88:5e:bf:12:f0:c1:28:a6: c0:e5:ef:62:48:2a:6f:e1:05:87:a3:a8:fe:c9:7e: 1f:e1:6d:55:9b:b0:9c:c5:c6:be:0c:71:70:85:5f: 0b:27:98:1e:a2:f2:22:d1:63:fa:ee:e7:88:3f:ea: fa:3f:bb:c4:df:70:01:b5:e5:72:76:86:1a:58:c6: fb:ba:58:4a:bf:73:00:d9:64:bf:c6:5a:a4:03:78: 50:fc:d3:7d:a5:77:f1:1c:54:b6:70:ea:ce:61:a2: 83:64:e7:3a:44:59:e7:ee:b6:ed:0f:f8:2b:58:5c: b5:7b:95:92:87:3b:22:23:3f:15:ac:72:4e:a2:8e: 0b:b1:f4:d6:81:8e:ae:17:43:88:6e:57:b1:fe:74: 87:1c:c9:b7:5a:c7:31:c3:3d:28:fe:1b:10:29:d2: de:1f:07:ca:dc:05:45:00:ad:bc:21:ed:01:86:f6: 16:b0:36:ff:c3:48:81:df:05:f1:c8:8a:ec:c0:94: a2:86:93:dd:9e:0d:1d:27:5e:59:2a:99:bc:b8:ec: e5:5f:fd:97:3f:af:f3:d8:0c:0d:ae:33:b8:2a:94: 7d:a5:f0:81:3d:42:f2:35:b5:23:c9:08:f5:8b:90: 20:8c:05:e6:ea:76:47:ee:c1:e6:41:53:21:cc:26: ae:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:3E:D2:24:84:83:10:73:98:5C:CE:E7:BB:3F:A9:E2:96:1F:E9:CA X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:0f:f9:1d:7c:6d:57:d6:be:08:38:09:2b:e8:d9:6c:a3:0e: 5c:db:3a:4f:af:e7:8a:ad:c6:50:c7:84:6b:3f:8b:8c:45:ef: e5:17:2f:be:74:84:03:48:d5:18:d3:12:8e:66:68:2d:ad:81: 29:06:ac:7d:74:70:2a:8b:86:04:a9:92:5f:0f:a3:2f:63:7c: 90:78:66:e7:cf:b6:2a:81:f0:8c:da:e6:5c:bc:28:8a:56:82: 78:38:d5:80:7d:3d:6c:8b:53:d3:d2:10:83:1a:1b:61:a4:cd: a1:45:4e:1f:28:8f:21:3a:10:8d:35:1f:49:69:b8:68:f9:bf: b2:1f:f7:f6:52:b7:6b:0b:34:1a:5e:02:ae:bb:5c:a9:8a:ce: a3:63:d0:90:be:07:9e:61:f7:a4:0c:2e:82:34:87:8d:36:28: de:3b:22:cc:70:66:bc:88:43:06:25:96:13:40:79:fd:94:9b: af:05:ba:4e:04:c3:62:14:5e:1a:3e:ca:ba:e7:bc:1d:e3:b6: 41:7b:1a:8c:37:0b:50:30:08:46:0e:5a:ec:18:c0:ff:83:56: fd:19:f1:28:2c:ba:83:1b:8d:1d:87:ce:f6:7a:0b:4a:ed:e6: 8f:19:de:20:fe:f0:32:c6:e9:a5:44:d0:10:ab:72:12:aa:1a: 5d:1f:5e:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjUxMjIyMjIzMDUyWhcNMjUxMjI5MjIzMDUyWjAYMRYwFAYD VQQDDA02OTQ5YzY5Yy0xZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1y56eqNiF6/EvDBKKbA5e9iSCpv4QWHo6j+yX4f4W1Vm7Ccxca+DHFwhV8L J5geovIi0WP67ueIP+r6P7vE33ABteVydoYaWMb7ulhKv3MA2WS/xlqkA3hQ/NN9 pXfxHFS2cOrOYaKDZOc6RFnn7rbtD/grWFy1e5WShzsiIz8VrHJOoo4LsfTWgY6u F0OIblex/nSHHMm3Wscxwz0o/hsQKdLeHwfK3AVFAK28Ie0BhvYWsDb/w0iB3wXx yIrswJSihpPdng0dJ15ZKpm8uOzlX/2XP6/z2AwNrjO4KpR9pfCBPULyNbUjyQj1 i5AgjAXm6nZH7sHmQVMhzCauFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4+0iSE gxBzmFzO57s/qeKWH+nKMB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAD/kdfG1X1r4IOAkr6Nlsow5c2zpPr+eKrcZQx4RrP4uMRe/lFy++ dIQDSNUY0xKOZmgtrYEpBqx9dHAqi4YEqZJfD6MvY3yQeGbnz7YqgfCM2uZcvCiK VoJ4ONWAfT1si1PT0hCDGhthpM2hRU4fKI8hOhCNNR9Jabho+b+yH/f2UrdrCzQa XgKuu1ypis6jY9CQvgeeYfekDC6CNIeNNijeOyLMcGa8iEMGJZYTQHn9lJuvBbpO BMNiFF4aPsq657wd47ZBexqMNwtQMAhGDlrsGMD/g1b9GfEoLLqDG40dh872egtK 7eaPGd4g/vAyxumlRNAQq3ISqhpdH15D -----END CERTIFICATE-----Generated at Tue Dec 23 10:54:55 2025 by rpki-client