This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: IXlZOp1wjKCkrclHybuAv+evpGetpRug4yQequRyCWQ= Subject key identifier: 2F:04:42:98:34:B6:2A:96:98:95:34:BF:95:0F:91:72:B3:0C:14:57 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 0240 Signing time: Tue 23 Dec 2025 00:55:38 +0000 Manifest this update: Tue 23 Dec 2025 00:55:38 +0000 Manifest next update: Tue 30 Dec 2025 00:55:38 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: 7XynbMdEvyq78MVf1qDE+JVNLfKDfKpiJ6R9FocN37c=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: 5f74h8n3N2lPubEJTNiK66D1BQc1WtrIYebG81I+9UM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A, serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: Dec 23 00:55:38 2025 GMT Not After : Dec 30 00:55:38 2025 GMT Subject: CN=6949e88a-51ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:30:35:4c:4e:3a:ad:16:3b:ee:fb:24:92:5e: 34:75:96:ff:fb:16:cd:d3:ab:71:3b:67:f3:74:77: 10:2a:fc:a2:22:66:52:b0:e5:1e:8e:32:99:e8:9e: 33:d1:99:dd:ea:e4:30:31:31:6a:37:3a:a2:4d:78: 2a:ba:4f:76:76:0b:35:75:63:cd:17:ea:7e:bf:fd: 03:c5:97:7b:41:47:04:f3:4a:2f:b1:61:4d:7e:41: 9a:f1:3f:03:cc:7d:b0:11:92:1b:04:ef:61:fe:ef: 69:cd:4c:5f:dd:cf:7e:d1:19:db:69:34:e0:14:72: c4:1d:c4:66:78:1f:ce:20:cf:61:79:68:8e:27:76: 0f:74:c9:47:e3:7d:83:48:8b:88:e5:f1:8e:c9:cc: 03:5d:0b:ec:20:da:37:90:b5:63:1a:0d:f3:92:85: 3d:f7:4c:2b:32:0d:e8:97:48:a1:51:eb:84:57:44: b7:92:0a:db:5e:3c:3f:10:39:40:5b:e8:d6:d6:72: 08:bb:18:b9:67:e0:b1:20:46:6a:ae:e1:96:64:bc: ae:36:ad:dd:da:01:83:42:b7:c5:30:1d:8d:08:2a: 78:bf:01:3f:f1:7d:b6:83:32:79:ae:3f:cf:20:ce: 55:77:4c:fd:fd:fd:75:eb:04:47:b0:20:2a:ea:e5: 65:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:04:42:98:34:B6:2A:96:98:95:34:BF:95:0F:91:72:B3:0C:14:57 X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:19:6f:55:c9:39:79:7b:5f:7e:d7:c0:ef:df:f1:0c:b2:d2: f7:66:ed:e6:46:54:15:4d:ed:80:22:9b:de:97:e8:d1:ef:d4: c2:c4:5e:57:1a:18:43:92:85:24:94:d4:12:96:97:65:ea:89: fd:07:4c:06:cb:9e:c9:32:1a:41:88:8e:a7:46:c0:37:21:73: 5e:49:2a:74:0b:b2:6d:ea:54:70:3a:1b:3f:84:01:55:9f:93: 06:9e:64:db:80:9b:f4:c5:41:42:b3:55:8e:05:e9:18:79:f2: d3:3e:aa:52:54:41:7a:29:7e:58:10:58:20:18:bf:d1:dd:3c: e6:27:1f:3c:52:85:74:4e:8b:da:77:29:13:9c:09:2e:34:5a: 2b:15:d2:c8:53:11:e7:a8:db:90:5c:8b:d4:c5:23:68:bc:c2: 91:80:cf:f8:b4:cf:8a:36:da:13:79:54:e3:af:ef:0b:dc:48: f6:64:d0:56:a9:5c:71:f4:76:09:fb:54:4f:2d:1a:02:a4:99: 84:3b:50:23:31:ba:2d:e0:23:ee:3f:75:1e:f0:d9:0e:3b:1d: 4d:e2:ff:e3:7b:69:8f:3e:66:7b:6b:96:eb:fa:8c:b6:4d:ba: 2a:f8:1d:5e:c9:2c:26:7c:3e:ed:c6:9f:8b:81:b9:aa:6f:e5: 5f:f5:b6:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjUxMjIzMDA1NTM4WhcNMjUxMjMwMDA1NTM4WjAYMRYwFAYD VQQDDA02OTQ5ZTg4YS01MWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTA1TE46rRY77vskkl40dZb/+xbN06txO2fzdHcQKvyiImZSsOUejjKZ6J4z 0Znd6uQwMTFqNzqiTXgquk92dgs1dWPNF+p+v/0DxZd7QUcE80ovsWFNfkGa8T8D zH2wEZIbBO9h/u9pzUxf3c9+0RnbaTTgFHLEHcRmeB/OIM9heWiOJ3YPdMlH432D SIuI5fGOycwDXQvsINo3kLVjGg3zkoU990wrMg3ol0ihUeuEV0S3kgrbXjw/EDlA W+jW1nIIuxi5Z+CxIEZqruGWZLyuNq3d2gGDQrfFMB2NCCp4vwE/8X22gzJ5rj/P IM5Vd0z9/f116wRHsCAq6uVlKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8EQpg0 tiqWmJU0v5UPkXKzDBRXMB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsGW9VyTl5e19+18Dv3/EMstL3Zu3mRlQVTe2AIpvel+jR79TCxF5X GhhDkoUklNQSlpdl6on9B0wGy57JMhpBiI6nRsA3IXNeSSp0C7Jt6lRwOhs/hAFV n5MGnmTbgJv0xUFCs1WOBekYefLTPqpSVEF6KX5YEFggGL/R3TzmJx88UoV0Tova dykTnAkuNForFdLIUxHnqNuQXIvUxSNovMKRgM/4tM+KNtoTeVTjr+8L3Ej2ZNBW qVxx9HYJ+1RPLRoCpJmEO1AjMbot4CPuP3Ue8NkOOx1N4v/je2mPPmZ7a5br+oy2 Tboq+B1eySwmfD7txp+Lgbmqb+Vf9bbX -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:13 2025 by rpki-client