This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: tutwrQhw5oTwSZaUKtZLeK0gwcJuo0fLVVX2KwS92Yk= Subject key identifier: 78:DE:37:46:E3:0B:81:A8:D6:6C:1B:96:88:23:9B:9F:41:14:9D:02 Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0C98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0C8C Signing time: Sat 20 Dec 2025 18:07:07 +0000 Manifest this update: Sat 20 Dec 2025 18:07:06 +0000 Manifest next update: Sat 27 Dec 2025 18:07:06 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: uLt+ERNGLnUB4B9oE1IOTAe70YU30xrDBUXBGmG+6rs=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: sMJ9ABTkBjJpmsGpVTgN6KS8wLvV90Yar62yGx5iotI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:07:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151, serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Dec 20 18:07:06 2025 GMT Not After : Dec 27 18:07:06 2025 GMT Subject: CN=6946e5ca-3ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e0:cd:ec:9c:b2:5d:f1:b3:f7:52:b0:7e:a9: a8:fc:9b:22:06:5f:fb:e0:4f:61:69:7e:24:b3:76: 9e:8e:54:e9:60:18:ac:f1:71:1b:7e:97:45:dd:4f: c6:30:2a:9e:c7:1b:eb:e4:0c:ae:f8:04:a1:f8:b0: 16:7d:5f:8b:55:46:d7:33:50:11:53:4d:37:eb:63: 39:86:cc:fd:6c:94:55:5a:41:ab:e6:87:e5:7f:75: 77:5a:d6:bd:67:f2:99:56:50:f2:17:09:24:bc:01: 9b:b7:1f:ff:b3:39:d6:cd:97:a2:ad:d2:47:49:14: 91:09:e4:e0:03:ef:99:e8:5f:d6:f6:61:23:d4:36: 4d:d2:b0:f5:65:54:7c:16:81:7f:c6:58:14:ad:40: ee:a9:cb:ba:57:07:20:ea:3f:99:18:ab:ad:05:2c: 4f:f9:b4:50:60:38:7a:d1:06:c3:64:1e:a9:7d:65: 9d:ed:bb:19:be:1f:9e:9e:8b:ba:65:91:51:2a:d4: c5:9b:31:8b:96:8f:b1:da:c0:f5:b2:62:2f:a5:84: de:3b:d8:55:a5:f6:d9:d4:40:51:64:51:a4:a1:31: b7:45:1c:09:ce:4d:6e:e3:bb:a3:1c:5f:90:98:75: d6:df:e2:07:8a:e1:98:0c:e7:5f:33:85:f1:10:cf: 4e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:DE:37:46:E3:0B:81:A8:D6:6C:1B:96:88:23:9B:9F:41:14:9D:02 X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:1c:d4:74:16:16:b4:f4:0f:e2:e5:9e:ac:f8:8d:e5:97:92: 3f:f2:cd:ad:b7:a1:bc:fa:28:e3:c7:b5:41:57:14:46:42:14: 39:64:d4:fa:af:5a:02:87:92:b2:33:22:50:f4:86:b0:a0:5a: de:fa:7b:8c:c1:de:5a:8c:fe:ba:d9:94:88:7d:11:48:9f:2f: 3f:b0:99:ce:43:66:e8:47:bb:1f:8d:6c:16:c9:3d:6c:b2:ab: 12:93:ce:f7:a2:86:c7:8e:3a:ea:c3:36:d7:f8:6f:90:42:5d: 6c:d8:7c:3d:7a:56:d5:e6:41:e0:65:d8:be:eb:5d:39:77:77: 60:15:9c:ae:fa:57:64:88:ed:3a:59:90:03:2c:55:c6:1b:34: e5:19:f7:bf:b5:8d:91:ac:f3:a1:20:7b:c5:05:bb:a7:fa:c4: 80:eb:a5:bb:97:78:e7:0e:5f:65:d2:e4:27:2b:9f:e5:c8:82: 4c:13:1a:50:9a:6a:db:2f:59:15:0e:b7:63:b8:e4:24:ba:54: 78:36:19:a6:6f:13:61:d2:e4:e0:4c:6c:f9:a4:76:5f:ab:39: 21:d5:4d:65:9d:8a:53:7c:1f:00:5b:28:57:f5:d3:58:40:a7: e6:c6:95:30:5c:0a:e0:78:07:fb:23:e4:ea:96:27:5d:7f:86: ad:98:af:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjUxMjIwMTgwNzA2WhcNMjUxMjI3MTgwNzA2WjAYMRYwFAYD VQQDDA02OTQ2ZTVjYS0zY2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+DN7JyyXfGz91Kwfqmo/JsiBl/74E9haX4ks3aejlTpYBis8XEbfpdF3U/G MCqexxvr5Ayu+ASh+LAWfV+LVUbXM1ARU00362M5hsz9bJRVWkGr5oflf3V3Wta9 Z/KZVlDyFwkkvAGbtx//sznWzZeirdJHSRSRCeTgA++Z6F/W9mEj1DZN0rD1ZVR8 FoF/xlgUrUDuqcu6Vwcg6j+ZGKutBSxP+bRQYDh60QbDZB6pfWWd7bsZvh+enou6 ZZFRKtTFmzGLlo+x2sD1smIvpYTeO9hVpfbZ1EBRZFGkoTG3RRwJzk1u47ujHF+Q mHXW3+IHiuGYDOdfM4XxEM9OeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjeN0bj C4Go1mwblogjm59BFJ0CMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiHNR0Fha09A/i5Z6s+I3ll5I/8s2tt6G8+ijjx7VBVxRGQhQ5ZNT6 r1oCh5KyMyJQ9IawoFre+nuMwd5ajP662ZSIfRFIny8/sJnOQ2boR7sfjWwWyT1s sqsSk873oobHjjrqwzbX+G+QQl1s2Hw9elbV5kHgZdi+6105d3dgFZyu+ldkiO06 WZADLFXGGzTlGfe/tY2RrPOhIHvFBbun+sSA66W7l3jnDl9l0uQnK5/lyIJMExpQ mmrbL1kVDrdjuOQkulR4NhmmbxNh0uTgTGz5pHZfqzkh1U1lnYpTfB8AWyhX9dNY QKfmxpUwXArgeAf7I+Tqliddf4atmK9p -----END CERTIFICATE-----Generated at Mon Dec 22 01:05:07 2025 by rpki-client