This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft File: UMP9EvajMVgZtSurzBmPsNv9QTo.mft (raw, json) Hash identifier: EyrXS335On/6y/R6+a4cB6gwytPOV34ktpCDJFzcrDQ= Subject key identifier: D2:72:9A:83:CC:E3:8B:6C:0E:21:BB:86:5F:68:98:CF:40:0B:B6:7B Authority key identifier: 50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A Certificate issuer: /CN=A91CE616/serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Certificate serial: 043A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft Manifest number: 0435 Signing time: Thu 04 Dec 2025 22:46:41 +0000 Manifest this update: Thu 04 Dec 2025 22:46:40 +0000 Manifest next update: Thu 11 Dec 2025 22:46:40 +0000 Files and hashes: 1: UMP9EvajMVgZtSurzBmPsNv9QTo.crl (hash: w+vDRxkj6fy/wKko3WMhpkoKNy6UcA7xR2NAmiUERIw=) 2: 296C190484AD11EC9C3F837CC4F9AE02.roa (hash: /RxOlV3ierU9U8XUpOrcDZ1BfZBiiZXrWx/RXW8pGyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1082 (0x43a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE616, serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Validity Not Before: Dec 4 22:46:40 2025 GMT Not After : Dec 11 22:46:40 2025 GMT Subject: CN=69320f50-c1d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:db:c2:31:9b:f4:e3:a9:74:a8:d0:4f:93:c2: 0e:03:6d:fc:bf:2e:c0:7a:fa:33:cf:ba:5f:12:12: 96:05:6b:3a:34:dc:cf:e5:21:19:d0:c4:60:41:7b: 70:62:e5:28:0c:c1:69:24:ae:6a:e4:6d:ed:ec:6b: a7:c9:64:dc:7d:33:f2:8f:00:c8:e9:b9:b1:fb:81: 17:7b:ea:e6:4a:3f:b1:e6:7a:76:49:77:0f:36:c9: 0f:f4:1e:94:8f:8a:d2:07:ee:4b:da:a8:56:14:c3: 6b:74:d3:89:f6:8f:c9:43:7b:1a:1d:c3:32:df:f5: 7a:47:0f:ad:9a:8a:35:56:bb:06:8e:2d:57:39:2e: 3d:d4:c5:dd:68:bf:50:3b:df:d9:c2:96:12:7c:de: 8c:0d:bc:74:ac:3b:2c:4d:ab:ba:ec:e5:04:61:ca: 4a:32:2c:6d:cf:90:86:f7:d6:7d:a8:b5:a3:1e:fa: 5a:5f:a2:4c:17:eb:83:6e:c5:bc:a7:38:75:4a:05: 0a:50:62:b4:be:41:8b:ab:d3:eb:1e:19:d8:fc:13: 7d:d4:1b:6c:fb:83:d4:82:38:9e:32:c5:65:75:25: 80:69:95:d8:dd:ec:e5:49:a2:b2:5f:42:2b:22:c1: 1b:a7:10:50:14:44:41:03:c7:09:48:07:21:5b:19: 2c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:72:9A:83:CC:E3:8B:6C:0E:21:BB:86:5F:68:98:CF:40:0B:B6:7B X509v3 Authority Key Identifier: keyid:50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:2a:bf:43:d0:e2:c7:eb:1a:b8:f7:b0:55:7c:59:d1:f3:d8: 44:fc:44:7f:83:3a:e6:1e:63:e6:14:63:99:2b:6d:0e:47:b4: 1d:62:97:5e:c0:9d:3f:22:1b:65:c4:e5:3b:e2:24:89:4d:14: 2f:eb:80:5e:5a:96:42:59:d0:4d:c1:0c:9b:7e:12:ca:d9:e6: b7:54:c1:7c:e6:b3:df:89:f5:7e:67:4d:2a:46:0b:0f:14:bd: ea:d9:78:c0:78:13:6a:dc:32:52:a8:20:ca:96:6a:56:da:04: f4:a2:be:54:49:83:2e:83:81:4d:42:eb:50:aa:4e:62:62:fc: 45:db:8e:f3:45:5f:5c:17:19:19:81:e3:d7:c2:7c:49:42:86: 0c:da:ea:51:85:59:22:df:5a:22:fe:c5:48:6b:ef:64:4c:80: 38:50:d9:68:78:20:2d:aa:bf:c2:90:bb:16:df:1b:a0:25:47: 2b:f2:54:78:4f:49:66:2c:2a:70:ee:bd:64:2f:70:9e:5f:f6: ab:8a:97:2b:18:a8:ae:f8:de:5d:36:08:c3:e4:0c:ea:0f:e9: a0:4f:5c:60:02:01:b4:64:8a:17:1f:08:ab:ec:08:a2:d8:1e: 8c:24:be:54:7e:c7:0f:5b:90:59:61:9f:e2:81:fd:d3:8d:88: f9:e2:2e:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MTYxMTAvBgNVBAUTKDUwQzNGRDEyRjZBMzMxNTgxOUI1MkJBQkNDMTk4RkIw REJGRDQxM0EwHhcNMjUxMjA0MjI0NjQwWhcNMjUxMjExMjI0NjQwWjAYMRYwFAYD VQQDEw02OTMyMGY1MC1jMWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutvCMZv046l0qNBPk8IOA238vy7Aevozz7pfEhKWBWs6NNzP5SEZ0MRgQXtw YuUoDMFpJK5q5G3t7GunyWTcfTPyjwDI6bmx+4EXe+rmSj+x5np2SXcPNskP9B6U j4rSB+5L2qhWFMNrdNOJ9o/JQ3saHcMy3/V6Rw+tmoo1VrsGji1XOS491MXdaL9Q O9/ZwpYSfN6MDbx0rDssTau67OUEYcpKMixtz5CG99Z9qLWjHvpaX6JMF+uDbsW8 pzh1SgUKUGK0vkGLq9PrHhnY/BN91Bts+4PUgjieMsVldSWAaZXY3ezlSaKyX0Ir IsEbpxBQFERBA8cJSAchWxks8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJymoPM 44tsDiG7hl9omM9AC7Z7MB8GA1UdIwQYMBaAFFDD/RL2ozFYGbUrq8wZj7Db/UE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYxNi9BN0U0MjkxNjg0 QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1WZ1p0U3VyekJtUHNOdjlR VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNUDlFdmFqTVZnWnRTdXJ6Qm1Qc052OVFUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYxNi9BN0U0MjkxNjg0QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1W Z1p0U3VyekJtUHNOdjlRVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwKr9D0OLH6xq497BVfFnR89hE/ER/gzrmHmPmFGOZK20OR7QdYpde wJ0/IhtlxOU74iSJTRQv64BeWpZCWdBNwQybfhLK2ea3VMF85rPfifV+Z00qRgsP FL3q2XjAeBNq3DJSqCDKlmpW2gT0or5USYMug4FNQutQqk5iYvxF247zRV9cFxkZ gePXwnxJQoYM2upRhVki31oi/sVIa+9kTIA4UNloeCAtqr/CkLsW3xugJUcr8lR4 T0lmLCpw7r1kL3CeX/aripcrGKiu+N5dNgjD5AzqD+mgT1xgAgG0ZIoXHwir7Aii 2B6MJL5UfscPW5BZYZ/igf3TjYj54i64 -----END CERTIFICATE-----Generated at Sat Dec 6 22:42:25 2025 by rpki-client