This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft File: UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft (raw, json) Hash identifier: v3GQn8Jg8bhHnzgSRfR31ZTHRdkWSHRjV3T2Sw6CTUE= Subject key identifier: 78:0A:AF:B4:89:5E:C8:5E:D5:7D:73:42:68:CC:2B:BB:3C:96:07:EA Authority key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B Certificate issuer: /CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Certificate serial: 0A39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft Manifest number: 0A32 Signing time: Thu 04 Dec 2025 19:00:30 +0000 Manifest this update: Thu 04 Dec 2025 19:00:29 +0000 Manifest next update: Thu 11 Dec 2025 19:00:29 +0000 Files and hashes: 1: UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl (hash: qMhi7jP8DiScq2qxfqRJw28YFb+uQIDv60pPaVhnaaM=) 2: 21028CF67EF811EAAD47CD30C4F9AE02.roa (hash: +gB8ZHO5MMKVGP2yT3GNNhFPo53EwfTpImIrJ+ySljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2617 (0xa39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A459D, serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Validity Not Before: Dec 4 19:00:29 2025 GMT Not After : Dec 11 19:00:29 2025 GMT Subject: CN=6931da4d-4b98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e8:e1:74:71:4e:b3:8c:b1:61:4e:99:2d:bb: a8:16:df:49:73:f3:45:89:bc:e5:da:1c:28:58:3d: 59:5b:c5:aa:0c:21:97:59:a1:ff:7b:06:9a:a8:e1: f9:3e:bc:70:c9:a0:53:f0:1e:69:f4:69:e4:36:92: a7:a7:dd:23:a7:ea:3d:9e:20:71:a6:94:d1:48:51: c7:cd:b7:cc:da:97:ca:70:24:e0:5b:59:34:79:27: 9d:99:2d:49:0a:ad:70:1a:39:a2:f6:0c:12:08:f8: 99:42:7d:bb:a0:b6:79:b4:49:8e:4c:d0:14:b9:16: f3:6d:f3:8b:86:69:2c:7b:9b:35:2d:a9:5d:30:0c: 74:5d:84:d7:43:a6:2b:c5:66:88:e5:6a:bf:dc:4c: aa:6c:2e:b5:83:06:42:cb:e7:85:14:76:68:3e:ac: 26:b7:af:97:c7:8d:86:34:8a:fb:49:34:17:27:3d: 0c:8c:b0:b6:c9:0f:14:64:e1:b6:29:70:79:0a:7f: ed:2c:bd:b5:a1:06:14:a1:c8:7c:a9:a9:c5:4b:08: 7d:c4:37:4e:d4:d3:e5:58:e9:44:ac:8d:c7:e0:66: 1f:5f:05:e6:28:cb:41:38:4e:60:e7:e5:73:e4:5e: 29:99:a1:65:cb:3c:8f:72:d2:c5:7c:73:fc:19:75: a2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0A:AF:B4:89:5E:C8:5E:D5:7D:73:42:68:CC:2B:BB:3C:96:07:EA X509v3 Authority Key Identifier: keyid:52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:af:fe:82:0b:46:ec:1b:16:11:f6:4b:f2:7a:db:6c:f9:18: 54:d4:9f:30:65:30:b8:6a:d2:af:ed:0b:39:73:72:98:ee:7c: 58:1c:09:05:0b:b0:c6:96:c0:e7:70:74:c6:65:9c:31:d5:96: ff:ad:00:b1:9b:de:03:a9:f8:2a:d4:dd:73:57:96:cc:04:47: cb:46:25:9f:b8:72:8b:52:97:19:1a:d2:02:e4:36:44:33:ec: 61:99:4b:d3:5a:c9:e4:1c:30:d5:26:08:5c:d9:88:87:9c:a8: 1a:a5:43:0e:24:8d:0e:d0:75:8a:40:e7:34:46:2e:80:a7:4a: b3:4c:fc:cd:06:37:df:c5:fe:ca:ac:c9:c6:a3:bd:40:22:e1: bd:59:60:c2:42:ff:33:70:52:fe:de:aa:cc:81:99:19:a3:56: 0a:6a:b1:d8:69:3c:d3:c0:ca:4c:03:3c:4a:c8:b5:5e:f7:9e: 0c:c1:9d:cd:a8:31:f8:df:90:7e:6c:f8:4c:b5:81:1e:5f:94: 2b:cb:8d:8e:1c:32:0a:87:c4:75:63:8b:3e:a7:8e:bc:7f:eb: b6:d6:39:99:31:14:57:16:45:f9:dc:70:cf:9b:26:81:d1:3b: a2:0a:03:67:9b:68:84:80:6d:7e:fc:d9:75:cc:cc:d4:15:6d: 8e:e3:40:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5OUU1MzA0MDg3 MEQ2RDM4NUIwHhcNMjUxMjA0MTkwMDI5WhcNMjUxMjExMTkwMDI5WjAYMRYwFAYD VQQDEw02OTMxZGE0ZC00Yjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OjhdHFOs4yxYU6ZLbuoFt9Jc/NFibzl2hwoWD1ZW8WqDCGXWaH/ewaaqOH5 PrxwyaBT8B5p9GnkNpKnp90jp+o9niBxppTRSFHHzbfM2pfKcCTgW1k0eSedmS1J Cq1wGjmi9gwSCPiZQn27oLZ5tEmOTNAUuRbzbfOLhmkse5s1LaldMAx0XYTXQ6Yr xWaI5Wq/3EyqbC61gwZCy+eFFHZoPqwmt6+Xx42GNIr7STQXJz0MjLC2yQ8UZOG2 KXB5Cn/tLL21oQYUoch8qanFSwh9xDdO1NPlWOlErI3H4GYfXwXmKMtBOE5g5+Vz 5F4pmaFlyzyPctLFfHP8GXWicQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgKr7SJ Xshe1X1zQmjMK7s8lgfqMB8GA1UdIwQYMBaAFFKyGZVCnET4p/TsmeUwQIcNbThb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU5RC81RkFCOTcyRTdF RjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQaW45T3laNVRCQWh3MXRP RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VySVpsVUtjUlBpbjlPeVo1VEJBaHcxdE9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDU5RC81RkFCOTcyRTdFRjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQ aW45T3laNVRCQWh3MXRPRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwr/6CC0bsGxYR9kvyetts+RhU1J8wZTC4atKv7Qs5c3KY7nxYHAkF C7DGlsDncHTGZZwx1Zb/rQCxm94Dqfgq1N1zV5bMBEfLRiWfuHKLUpcZGtIC5DZE M+xhmUvTWsnkHDDVJghc2YiHnKgapUMOJI0O0HWKQOc0Ri6Ap0qzTPzNBjffxf7K rMnGo71AIuG9WWDCQv8zcFL+3qrMgZkZo1YKarHYaTzTwMpMAzxKyLVe954MwZ3N qDH435B+bPhMtYEeX5Qry42OHDIKh8R1Y4s+p468f+u21jmZMRRXFkX53HDPmyaB 0TuiCgNnm2iEgG1+/Nl1zMzUFW2O40Cw -----END CERTIFICATE-----Generated at Sat Dec 6 18:52:50 2025 by rpki-client