This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft File: UqHEINgnwWzqoEKD3Si2QKMVY00.mft (raw, json) Hash identifier: Pmbhl3WVUQJZ1zqFdF7QBGltBTlIfmDXnv4K3n09/WE= Subject key identifier: 81:B7:E0:3D:CE:B4:57:AE:C1:46:F8:35:31:9B:68:50:05:DF:C8:E6 Authority key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D Certificate issuer: /CN=A91B13FE/serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft Manifest number: 5F Signing time: Fri 05 Dec 2025 05:05:31 +0000 Manifest this update: Fri 05 Dec 2025 05:05:30 +0000 Manifest next update: Fri 12 Dec 2025 05:05:30 +0000 Files and hashes: 1: UqHEINgnwWzqoEKD3Si2QKMVY00.crl (hash: zA8GbGeclsKRCNgN2fj+vHrwhGyK5rS7RUVRG+1jBU4=) 2: C577E392D0F711F0BC02385AC4F9AE02.roa (hash: A/1e58q+MdxskPknGiwVRXPIcLRGBTcwWKriVPbQ9n4=) 3: E5E9F8B8D0F711F0ACA5A85AC4F9AE02.roa (hash: L+R5MmpKGufoqG5JJ77d6wpZuVDjwC3CDe/wMrgik6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:05:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Validity Not Before: Dec 5 05:05:30 2025 GMT Not After : Dec 12 05:05:30 2025 GMT Subject: CN=6932681a-0986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fe:5f:d0:0c:5a:a7:9f:81:7b:9d:1e:48:ff: 1f:00:ac:8c:91:94:05:46:86:53:8d:51:15:2a:45: 67:c4:e2:63:34:0b:d6:a7:1a:5a:6f:04:20:bf:6a: 20:f5:20:cc:f3:87:60:66:9f:3c:a6:7b:b9:68:89: f9:97:65:76:2c:f9:73:bc:de:e0:b9:91:69:6d:5c: a3:5a:bf:35:5a:c5:36:0c:7a:c4:97:19:a1:31:0a: 33:ee:a9:43:fa:54:81:5b:9a:06:2f:08:3d:da:a2: 21:41:38:25:ae:a0:46:ab:0c:27:64:08:ea:76:12: df:9b:de:d6:be:8e:95:73:75:45:5c:d0:ef:6d:e7: 46:7a:94:6a:00:78:fb:40:45:e5:d6:ee:e9:6e:2f: 90:62:28:ff:ad:03:2a:49:48:cc:7c:4b:d1:1d:ab: 1e:a4:65:bb:24:58:9e:b9:cb:e2:e7:cd:98:14:92: 68:5d:ab:82:1e:a4:31:7c:b8:74:9d:f9:0e:35:48: 7a:88:3d:76:b8:e4:67:ff:c8:e7:a1:e0:ec:c5:82: df:ab:d6:06:77:bf:aa:0d:54:e6:47:75:59:62:f7: e7:0a:8b:fa:c5:69:aa:21:82:5d:0d:2f:b0:44:2c: 8a:b7:5c:05:ee:a7:1e:2f:c1:6f:85:3b:6f:63:f5: d9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B7:E0:3D:CE:B4:57:AE:C1:46:F8:35:31:9B:68:50:05:DF:C8:E6 X509v3 Authority Key Identifier: keyid:52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:11:78:9e:54:30:15:26:19:08:a6:c5:4a:68:b4:43:49:36: 28:21:25:54:8d:ba:e1:d6:4b:fa:60:a2:8c:2f:71:e9:f3:1b: 86:25:0d:30:f3:24:f5:37:87:89:79:19:57:93:ab:fb:3c:1f: 93:b0:93:8e:a8:80:4a:b2:d7:a2:fa:c1:c1:1e:cd:ad:96:0d: db:78:77:5d:dc:ca:5c:ed:79:e3:96:f7:0f:f5:e8:86:ac:35: e1:b0:21:f7:bd:66:74:5a:6a:89:db:a1:21:17:e7:97:19:aa: e8:c9:ef:d5:2f:e3:ed:ab:46:08:5f:11:0a:aa:94:54:9f:af: 6e:ec:7e:1c:2e:0f:e8:fb:41:d8:ec:c6:2a:dd:13:d0:fc:2d: a1:ee:72:10:a2:80:6d:ef:d6:0e:73:49:9a:60:cf:aa:50:86: b6:bf:4b:14:19:38:29:f9:50:cd:a5:25:46:89:ad:26:e9:cb: 08:89:7d:43:ae:60:da:77:64:1e:44:01:75:a6:a7:b4:c2:44: 9c:64:6c:d7:65:06:01:c8:b0:62:93:e9:02:00:e5:bb:bb:5b: d2:91:73:b1:a5:63:d2:41:65:53:49:00:27:0a:66:09:00:53: 68:31:11:56:ea:13:45:67:c9:b3:48:c7:11:f2:6d:3d:34:7f: 21:0f:3b:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTNGRTExMC8GA1UEBRMoNTJBMUM0MjBEODI3QzE2Q0VBQTA0MjgzREQyOEI2NDBB MzE1NjM0RDAeFw0yNTEyMDUwNTA1MzBaFw0yNTEyMTIwNTA1MzBaMBgxFjAUBgNV BAMTDTY5MzI2ODFhLTA5ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1/l/QDFqnn4F7nR5I/x8ArIyRlAVGhlONURUqRWfE4mM0C9anGlpvBCC/aiD1 IMzzh2Bmnzyme7loifmXZXYs+XO83uC5kWltXKNavzVaxTYMesSXGaExCjPuqUP6 VIFbmgYvCD3aoiFBOCWuoEarDCdkCOp2Et+b3ta+jpVzdUVc0O9t50Z6lGoAePtA ReXW7uluL5BiKP+tAypJSMx8S9Edqx6kZbskWJ65y+LnzZgUkmhdq4IepDF8uHSd +Q41SHqIPXa45Gf/yOeh4OzFgt+r1gZ3v6oNVOZHdVli9+cKi/rFaaohgl0NL7BE LIq3XAXupx4vwW+FO29j9dktAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgbfgPc60 V67BRvg1MZtoUAXfyOYwHwYDVR0jBBgwFoAUUqHEINgnwWzqoEKD3Si2QKMVY00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxM0ZFLzhEOEUyMkMyNTY0 MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6cW9FS0QzU2kyUUtNVlkw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVXFIRUlOZ253V3pxb0VLRDNTaTJRS01WWTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx M0ZFLzhEOEUyMkMyNTY0MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6 cW9FS0QzU2kyUUtNVlkwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACgReJ5UMBUmGQimxUpotENJNighJVSNuuHWS/pgoowvcenzG4YlDTDz JPU3h4l5GVeTq/s8H5Owk46ogEqy16L6wcEeza2WDdt4d13cylzteeOW9w/16Ias NeGwIfe9ZnRaaonboSEX55cZqujJ79Uv4+2rRghfEQqqlFSfr27sfhwuD+j7Qdjs xirdE9D8LaHuchCigG3v1g5zSZpgz6pQhra/SxQZOCn5UM2lJUaJrSbpywiJfUOu YNp3ZB5EAXWmp7TCRJxkbNdlBgHIsGKT6QIA5bu7W9KRc7GlY9JBZVNJACcKZgkA U2gxEVbqE0VnybNIxxHybT00fyEPO3c= -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:51 2025 by rpki-client