This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft File: UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft (raw, json) Hash identifier: E0H6ovjuVEgp8os+jbOQ1nLufJlQKEJmBzW4MrCrHAg= Subject key identifier: 1D:DB:51:C2:0A:88:F1:48:D5:AC:DD:61:CD:75:87:67:99:53:62:F2 Authority key identifier: 50:AA:FC:6A:3E:F7:5B:22:B7:68:3C:AB:63:D8:4B:E4:29:19:54:B4 Certificate issuer: /CN=A915DE6C/serialNumber=50AAFC6A3EF75B22B7683CAB63D84BE4291954B4 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft Manifest number: 5F Signing time: Fri 05 Dec 2025 04:58:54 +0000 Manifest this update: Fri 05 Dec 2025 04:58:54 +0000 Manifest next update: Fri 12 Dec 2025 04:58:54 +0000 Files and hashes: 1: UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl (hash: 0iK+jFLez1Odm25NZrgLXrBIviA7VXx2Tn0d4ItLNZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE6C, serialNumber=50AAFC6A3EF75B22B7683CAB63D84BE4291954B4 Validity Not Before: Dec 5 04:58:54 2025 GMT Not After : Dec 12 04:58:54 2025 GMT Subject: CN=6932668e-c65e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:69:15:07:7c:29:7c:79:da:8e:98:05:30:15: a0:40:22:89:25:5d:8a:4f:f9:56:b3:00:79:90:6e: 21:09:ba:1a:f7:98:1f:54:1b:1c:46:68:90:4d:5f: 89:d0:91:ad:d6:48:35:22:ea:82:d1:d1:93:f6:93: 99:23:7e:20:74:30:82:d8:c1:cc:6f:a5:43:0f:8f: 36:e8:1e:45:21:e0:64:52:1f:26:3c:34:58:bd:fb: 33:5f:a0:70:38:4e:47:bb:80:63:1b:e6:ee:2c:01: 6f:5c:a6:ea:48:15:4d:f8:cb:d1:dd:6b:63:c0:2a: da:e2:39:23:18:cf:64:c0:8a:54:6e:de:6f:bf:85: 22:dd:a5:7e:61:bd:5d:69:8e:4e:36:a9:81:84:79: ef:a4:35:8c:af:a8:d7:d9:41:fb:96:ca:99:ab:f2: 5e:fc:76:f4:41:3b:fa:58:43:2e:68:76:51:b4:05: 0e:e3:af:95:63:4f:41:69:3a:7a:ae:87:9a:7f:8a: bd:56:44:9f:30:c2:1e:07:1d:b7:9e:8b:f0:7f:ee: 80:b6:0a:d6:ae:1b:34:13:97:7c:e9:c5:43:17:3c: fb:3d:bb:21:ca:db:8d:60:97:5a:80:e0:85:f4:7c: 4d:a2:a9:23:8d:0b:15:a7:84:e3:3d:89:d9:7d:0b: 58:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:DB:51:C2:0A:88:F1:48:D5:AC:DD:61:CD:75:87:67:99:53:62:F2 X509v3 Authority Key Identifier: keyid:50:AA:FC:6A:3E:F7:5B:22:B7:68:3C:AB:63:D8:4B:E4:29:19:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:d8:d4:d5:c9:85:0d:8c:80:f8:1b:cb:09:80:79:15:f3:e8: 62:38:41:8b:1b:93:48:42:1f:3c:2c:87:00:c6:fa:69:62:a4: cc:4d:d2:56:be:f1:f9:c6:72:12:ce:c6:1c:22:70:23:24:a3: 67:92:06:9d:41:03:b3:83:53:09:a4:4d:2a:da:4f:d6:c4:6d: 27:06:49:e6:b7:4c:f2:35:f5:28:44:73:d6:69:c6:c5:12:47: b3:85:ee:ef:cc:d5:82:42:4c:a0:91:41:ce:62:c7:90:c0:e5: 34:5e:29:88:cb:da:d2:69:c4:d8:ab:f1:cb:72:68:1a:8c:3d: 52:3d:44:36:e5:a0:6a:07:43:03:06:5b:d8:46:70:0d:22:db: 1a:fb:f3:64:fc:38:9c:fc:3d:05:9d:fd:e5:1e:90:ca:db:a5: 19:8c:4b:18:77:08:0b:6b:5f:c1:5b:f2:2f:99:10:33:e9:55: 34:f8:8a:bf:08:8d:83:d0:96:a5:2d:37:08:8c:9d:6c:4e:8f: 09:2b:4a:7f:5e:75:80:c4:66:a3:43:d0:20:85:c4:b2:d7:22: 28:b7:a2:c9:eb:04:68:52:cd:6a:41:58:8a:f5:1e:6b:8e:bf: 7b:41:2f:e6:6b:b3:b3:69:d2:b7:19:eb:c5:0a:c6:ab:32:ae: 8b:c9:e3:4c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU2QzExMC8GA1UEBRMoNTBBQUZDNkEzRUY3NUIyMkI3NjgzQ0FCNjNEODRCRTQy OTE5NTRCNDAeFw0yNTEyMDUwNDU4NTRaFw0yNTEyMTIwNDU4NTRaMBgxFjAUBgNV BAMTDTY5MzI2NjhlLWM2NWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCraRUHfCl8edqOmAUwFaBAIoklXYpP+VazAHmQbiEJuhr3mB9UGxxGaJBNX4nQ ka3WSDUi6oLR0ZP2k5kjfiB0MILYwcxvpUMPjzboHkUh4GRSHyY8NFi9+zNfoHA4 Tke7gGMb5u4sAW9cpupIFU34y9Hda2PAKtriOSMYz2TAilRu3m+/hSLdpX5hvV1p jk42qYGEee+kNYyvqNfZQfuWypmr8l78dvRBO/pYQy5odlG0BQ7jr5VjT0FpOnqu h5p/ir1WRJ8wwh4HHbeei/B/7oC2CtauGzQTl3zpxUMXPPs9uyHK241gl1qA4IX0 fE2iqSONCxWnhOM9idl9C1gZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHdtRwgqI 8UjVrN1hzXWHZ5lTYvIwHwYDVR0jBBgwFoAUUKr8aj73WyK3aDyrY9hL5CkZVLQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERTZDLzZCQzM3NUIwNDNE NDExRjA5MEI0NzY2OEM0RjlBRTAyL1VLcjhhajczV3lLM2FEeXJZOWhMNUNrWlZM US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVUtyOGFqNzNXeUszYUR5clk5aEw1Q2taVkxRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RTZDLzZCQzM3NUIwNDNENDExRjA5MEI0NzY2OEM0RjlBRTAyL1VLcjhhajczV3lL M2FEeXJZOWhMNUNrWlZMUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABvY1NXJhQ2MgPgbywmAeRXz6GI4QYsbk0hCHzwshwDG+mlipMxN0la+ 8fnGchLOxhwicCMko2eSBp1BA7ODUwmkTSraT9bEbScGSea3TPI19ShEc9ZpxsUS R7OF7u/M1YJCTKCRQc5ix5DA5TReKYjL2tJpxNir8ctyaBqMPVI9RDbloGoHQwMG W9hGcA0i2xr782T8OJz8PQWd/eUekMrbpRmMSxh3CAtrX8Fb8i+ZEDPpVTT4ir8I jYPQlqUtNwiMnWxOjwkrSn9edYDEZqND0CCFxLLXIii3osnrBGhSzWpBWIr1HmuO v3tBL+Zrs7Np0rcZ68UKxqsyrovJ40w= -----END CERTIFICATE-----Generated at Sat Dec 6 22:46:22 2025 by rpki-client