This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: EZJTDcflp6NplQeO2EMY8HetaBk0USxjSszs/PtvPaU= Subject key identifier: 5B:65:C1:2E:F8:AB:D1:A1:E6:F2:8A:B1:3E:78:EB:4E:23:07:00:79 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 01CA Signing time: Fri 05 Dec 2025 00:51:44 +0000 Manifest this update: Fri 05 Dec 2025 00:51:44 +0000 Manifest next update: Fri 12 Dec 2025 00:51:44 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: 4Qf1R7FnbKPy9jcALJFPlx7b2M4erxhv58MDX/vdVro=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:51:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Dec 5 00:51:44 2025 GMT Not After : Dec 12 00:51:44 2025 GMT Subject: CN=69322ca0-7790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e9:2d:a0:81:57:83:17:46:14:5f:28:83:9f: 0c:93:12:86:6c:36:08:79:6d:ec:1a:da:d0:62:d9: db:9c:fe:48:d6:80:e7:7a:a6:21:03:5a:a1:b9:cf: eb:f2:0b:89:2c:27:52:99:7a:90:4c:21:e4:96:e7: 50:5b:63:3f:44:ea:4e:64:42:3f:12:9b:29:dd:92: 39:b9:24:8a:d6:70:2a:93:c1:91:4e:86:26:cb:2f: 5d:cf:15:0c:15:7a:65:a6:eb:42:11:5c:f1:00:be: b4:c5:98:44:4a:68:c9:ec:50:e4:3d:8a:4e:bd:86: 93:ee:75:7a:aa:a9:92:90:d3:6f:19:98:9d:5f:59: 06:10:b5:57:51:2f:08:8d:7c:75:02:16:08:55:8c: 09:26:96:9a:66:4b:4b:b8:bd:a6:f9:c7:14:be:ad: e2:28:ed:78:d0:cb:83:1b:75:a2:ab:d4:bb:80:2e: 65:fd:b2:67:e5:f0:3d:9f:76:65:e8:cf:67:1f:50: aa:98:3e:87:4a:2a:83:be:27:b5:1b:1d:73:05:37: 9a:36:cf:05:e8:2b:64:cb:83:e1:40:d9:7e:4e:05: b7:b4:97:c4:e1:1f:d1:20:4e:ed:de:5d:82:50:75: e0:b2:8c:7c:c3:58:a5:c6:b7:a9:71:e6:7a:fd:cb: 28:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:65:C1:2E:F8:AB:D1:A1:E6:F2:8A:B1:3E:78:EB:4E:23:07:00:79 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:d3:83:fa:1d:21:01:fc:e7:c4:19:b0:e7:f4:f9:41:96:cb: 61:e8:b3:0d:c3:b4:52:4b:93:6c:21:b1:4a:45:d1:9c:63:43: 33:3c:7d:12:3d:ee:41:d7:c3:74:65:d2:13:6f:37:7f:01:ed: 38:d3:25:57:3e:a2:11:7f:20:57:5d:27:ec:1b:dc:b7:97:58: 3f:63:5a:59:66:90:3e:89:41:7e:60:99:41:3c:78:84:13:7a: c0:6d:8f:73:46:c0:82:a0:12:26:8b:01:10:18:ed:ea:62:0d: 04:dc:10:86:e2:2f:b2:c5:85:72:01:eb:3a:38:07:b3:05:95: 1a:3f:1c:f5:68:5a:62:e6:54:b3:d0:7c:5f:36:ab:7c:d3:47: 61:38:58:cb:a7:ca:1d:de:dc:28:be:67:77:b4:74:93:45:73: 2a:98:67:86:03:ea:65:52:31:5b:9d:2c:93:5d:c5:59:8f:6b: cc:2f:87:ee:b5:b9:82:26:13:4a:ec:46:4b:9b:b2:91:88:85: 92:d9:cb:c7:5c:c9:eb:b9:55:93:63:01:66:bb:61:e9:be:13: 0d:be:8b:4f:58:30:96:eb:b4:65:d7:53:e5:ef:76:a6:7e:8f: 67:91:24:23:86:eb:7b:49:ff:a4:a8:bb:3c:ff:f0:2e:47:05: ab:a4:e5:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUxMjA1MDA1MTQ0WhcNMjUxMjEyMDA1MTQ0WjAYMRYwFAYD VQQDEw02OTMyMmNhMC03NzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+ktoIFXgxdGFF8og58MkxKGbDYIeW3sGtrQYtnbnP5I1oDneqYhA1qhuc/r 8guJLCdSmXqQTCHkludQW2M/ROpOZEI/Epsp3ZI5uSSK1nAqk8GRToYmyy9dzxUM FXplputCEVzxAL60xZhESmjJ7FDkPYpOvYaT7nV6qqmSkNNvGZidX1kGELVXUS8I jXx1AhYIVYwJJpaaZktLuL2m+ccUvq3iKO140MuDG3Wiq9S7gC5l/bJn5fA9n3Zl 6M9nH1CqmD6HSiqDvie1Gx1zBTeaNs8F6Ctky4PhQNl+TgW3tJfE4R/RIE7t3l2C UHXgsox8w1ilxrepceZ6/cso4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtlwS74 q9Gh5vKKsT54604jBwB5MB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX04P6HSEB/OfEGbDn9PlBlsth6LMNw7RSS5NsIbFKRdGcY0MzPH0S Pe5B18N0ZdITbzd/Ae040yVXPqIRfyBXXSfsG9y3l1g/Y1pZZpA+iUF+YJlBPHiE E3rAbY9zRsCCoBImiwEQGO3qYg0E3BCG4i+yxYVyAes6OAezBZUaPxz1aFpi5lSz 0HxfNqt800dhOFjLp8od3twovmd3tHSTRXMqmGeGA+plUjFbnSyTXcVZj2vML4fu tbmCJhNK7EZLm7KRiIWS2cvHXMnruVWTYwFmu2HpvhMNvotPWDCW67Rl11Pl73am fo9nkSQjhut7Sf+kqLs8//AuRwWrpOXr -----END CERTIFICATE-----Generated at Sat Dec 6 19:33:41 2025 by rpki-client