This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft File: UgGonTDEgplFBBjJVrh3JJcG6Vc.mft (raw, json) Hash identifier: OKfOjfnYAWLexBJq2C1hI9dXyNf77MkE3Aqu3Rvw2vQ= Subject key identifier: 3A:9C:25:C1:45:CB:E2:13:FD:12:39:EC:0C:90:CB:46:06:B0:3C:CB Authority key identifier: 52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57 Certificate issuer: /CN=A91E7E94/serialNumber=5201A89D30C48299450418C956B877249706E957 Certificate serial: 059B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft Manifest number: 0596 Signing time: Mon 22 Dec 2025 22:19:52 +0000 Manifest this update: Mon 22 Dec 2025 22:19:52 +0000 Manifest next update: Mon 29 Dec 2025 22:19:52 +0000 Files and hashes: 1: UgGonTDEgplFBBjJVrh3JJcG6Vc.crl (hash: wRhkJoh41vfUFYWotuM6YwmJI2GfdekBsV77Z3W1FXM=) 2: FAF4A0E0FB3211EB967B1759C4F9AE02.roa (hash: AT0FYlyWfj+1bO0S/edzqRk8wR14Cvm5X0J48iKWZlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.crl rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1435 (0x59b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E94, serialNumber=5201A89D30C48299450418C956B877249706E957 Validity Not Before: Dec 22 22:19:52 2025 GMT Not After : Dec 29 22:19:52 2025 GMT Subject: CN=6949c408-84df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7e:d0:a5:b2:cb:6f:00:d2:97:0a:1c:d1:cf: 70:3f:65:9d:d6:04:ed:b6:ad:65:e0:0a:2f:34:1c: 40:18:d9:10:82:d1:99:c8:8d:57:b1:91:af:7f:32: da:3b:1d:6c:0f:6b:78:1c:64:dd:5f:f6:f4:39:2f: a9:80:e7:60:f4:99:cc:d7:0d:7d:34:84:45:7d:e3: ff:0d:82:ee:8e:72:5a:ee:f0:c8:3d:08:95:d9:30: 7f:2d:ec:fc:a4:3e:90:29:a9:55:aa:62:c3:d3:12: cc:9e:a9:10:5f:5b:4d:16:7f:63:e0:35:1b:18:72: c4:58:9f:0a:34:78:e2:7c:1f:7b:cc:9e:6d:50:f5: c8:bb:41:d0:5b:13:d4:d3:41:d8:13:74:41:2b:d7: 1a:36:ef:60:a0:37:cd:a9:20:af:ac:bc:16:e1:27: d1:cd:1d:57:a4:56:7b:60:60:3d:6e:b5:76:26:06: 77:12:89:e1:6f:97:fb:fd:08:73:99:f2:50:24:de: 95:dd:f3:b3:0a:a8:3f:0a:c6:76:91:4b:ae:3a:5f: 65:7d:84:a0:7d:9f:0f:55:b1:27:c0:47:3c:e5:fb: 6c:09:68:8e:d6:9d:39:9a:2a:08:a5:f0:e0:b5:4e: a5:cf:74:6f:76:fe:38:22:d5:5b:e8:c1:0f:58:71: c4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9C:25:C1:45:CB:E2:13:FD:12:39:EC:0C:90:CB:46:06:B0:3C:CB X509v3 Authority Key Identifier: keyid:52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:e7:f8:cf:0a:35:5a:de:dd:bb:d7:b4:e4:ef:ed:d8:81:9e: 18:7c:6b:20:88:55:80:13:c2:d5:ea:e7:14:7b:48:46:9f:50: b8:76:db:54:9a:90:c4:39:7c:b1:b3:10:27:92:44:77:eb:e2: 72:ad:f7:2b:e8:05:dc:23:71:6f:f3:49:89:10:74:b4:df:c5: c8:64:cc:61:f2:8e:a8:f6:c2:96:44:95:d1:ae:7e:ae:ee:b1: fe:c0:ab:5f:fe:d0:b3:4d:16:17:06:0d:c3:47:1d:db:0c:2d: f3:5d:99:e1:5d:38:a2:29:9b:c7:a7:3d:f4:71:76:34:d9:43: 2f:46:a1:a0:a6:5b:cf:8d:2f:a3:0f:d1:f2:71:83:d7:3d:ef: 84:5c:2e:02:f6:cf:a7:01:57:4f:da:4f:2a:b3:a8:d5:cf:d7: a4:8b:6c:99:26:e1:ae:88:c2:3a:3e:60:aa:6b:9e:a0:34:f4: b6:b2:20:bc:53:71:64:9f:4e:69:16:96:d5:87:a1:e0:c6:00: 2b:a2:50:20:a9:25:a1:6a:75:f1:42:f6:12:30:8c:0a:4a:93: 5a:93:a5:a5:cc:4c:8c:bf:44:b1:b6:4e:04:21:47:46:e5:be: b0:54:1c:c6:b0:2a:be:ec:d2:9d:8a:c8:05:d0:7b:89:42:1a: 46:46:7e:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFOTQxMTAvBgNVBAUTKDUyMDFBODlEMzBDNDgyOTk0NTA0MThDOTU2Qjg3NzI0 OTcwNkU5NTcwHhcNMjUxMjIyMjIxOTUyWhcNMjUxMjI5MjIxOTUyWjAYMRYwFAYD VQQDDA02OTQ5YzQwOC04NGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw37QpbLLbwDSlwoc0c9wP2Wd1gTttq1l4AovNBxAGNkQgtGZyI1XsZGvfzLa Ox1sD2t4HGTdX/b0OS+pgOdg9JnM1w19NIRFfeP/DYLujnJa7vDIPQiV2TB/Lez8 pD6QKalVqmLD0xLMnqkQX1tNFn9j4DUbGHLEWJ8KNHjifB97zJ5tUPXIu0HQWxPU 00HYE3RBK9caNu9goDfNqSCvrLwW4SfRzR1XpFZ7YGA9brV2JgZ3Eonhb5f7/Qhz mfJQJN6V3fOzCqg/CsZ2kUuuOl9lfYSgfZ8PVbEnwEc85ftsCWiO1p05mioIpfDg tU6lz3Rvdv44ItVb6MEPWHHEhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqcJcFF y+IT/RI57AyQy0YGsDzLMB8GA1UdIwQYMBaAFFIBqJ0wxIKZRQQYyVa4dySXBulX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U5NC9BMkE3MEM1QUZC MkYxMUVCQTg0MDlFNTRDNEY5QUUwMi9VZ0dvblRERWdwbEZCQmpKVnJoM0pKY0c2 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VnR29uVERFZ3BsRkJCakpWcmgzSkpjRzZWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U5NC9BMkE3MEM1QUZCMkYxMUVCQTg0MDlFNTRDNEY5QUUwMi9VZ0dvblRERWdw bEZCQmpKVnJoM0pKY0c2VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA5/jPCjVa3t2717Tk7+3YgZ4YfGsgiFWAE8LV6ucUe0hGn1C4dttU mpDEOXyxsxAnkkR36+Jyrfcr6AXcI3Fv80mJEHS038XIZMxh8o6o9sKWRJXRrn6u 7rH+wKtf/tCzTRYXBg3DRx3bDC3zXZnhXTiiKZvHpz30cXY02UMvRqGgplvPjS+j D9HycYPXPe+EXC4C9s+nAVdP2k8qs6jVz9eki2yZJuGuiMI6PmCqa56gNPS2siC8 U3Fkn05pFpbVh6HgxgArolAgqSWhanXxQvYSMIwKSpNak6WlzEyMv0Sxtk4EIUdG 5b6wVBzGsCq+7NKdisgF0HuJQhpGRn6m -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:26 2025 by rpki-client