This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft File: UEMacUvIutzoUZ5LmRR-FR7fd5c.mft (raw, json) Hash identifier: RNjd5E6dMClN2/XaI24+U2sSa7C2QU4f7iQvSPtExOI= Subject key identifier: 92:0A:0B:78:93:9A:F0:56:9A:7E:98:99:77:02:04:C4:BC:47:B0:39 Authority key identifier: 50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 Certificate issuer: /CN=A91DA289/serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft Manifest number: 0681 Signing time: Thu 04 Dec 2025 21:17:10 +0000 Manifest this update: Thu 04 Dec 2025 21:17:09 +0000 Manifest next update: Thu 11 Dec 2025 21:17:09 +0000 Files and hashes: 1: UEMacUvIutzoUZ5LmRR-FR7fd5c.crl (hash: p5fLIhEmlQjF5uNjZ1otRQo+zvBvdLqK2GvVx+KWw4U=) 2: 0BE0F63C9CBB11EBA4731E19C4F9AE02.roa (hash: ln0lvafoMsf2mDlhqtsb54uvMwde1qgk9VtDAAnL3YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA289, serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Validity Not Before: Dec 4 21:17:09 2025 GMT Not After : Dec 11 21:17:09 2025 GMT Subject: CN=6931fa56-73c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:82:c2:2d:f4:42:91:7e:b7:12:ed:88:15:c3: 0d:dd:ea:91:79:b5:4e:ad:27:05:ab:7a:41:c7:e2: cd:5c:b2:d7:9a:c8:b3:3f:3f:8b:f4:1f:23:3e:c9: 97:60:7b:cd:6a:fd:1e:2f:10:40:db:29:88:c4:1f: 88:d0:37:fa:36:6a:e3:ba:7f:13:16:6c:2d:b1:cc: ae:6c:ff:7d:30:da:6f:6d:f8:74:d6:9d:69:cf:63: 36:68:ff:da:c4:e4:2b:7c:29:82:67:6e:f6:09:ca: cf:09:d6:a4:3d:d7:28:4f:db:e5:8d:31:6a:77:38: dc:98:63:d8:7f:c3:51:7a:b8:0c:3d:f4:fc:0d:e8: a8:9b:75:fa:1c:4b:c6:f6:2c:75:f8:60:ee:b1:96: 54:65:a1:e0:b7:b0:0d:99:59:f9:27:f4:2a:42:cb: 25:2c:d7:e9:a1:63:d6:ea:28:94:b4:35:c8:75:35: c3:6b:ff:d9:40:41:d3:98:00:6e:78:00:d8:d4:08: 04:18:3e:50:4d:ce:d9:8f:71:8a:f9:42:81:a0:c8: 2a:ac:27:5f:78:85:39:e4:3a:98:71:7c:24:e0:b6: 73:7f:de:a3:ef:a9:63:90:d8:55:50:c6:9b:82:b6: 02:ad:22:27:79:ee:68:18:94:0b:fd:bc:61:2e:8a: 75:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:0A:0B:78:93:9A:F0:56:9A:7E:98:99:77:02:04:C4:BC:47:B0:39 X509v3 Authority Key Identifier: keyid:50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c5:c0:d6:28:ba:46:1d:07:f8:66:88:5b:66:7a:b9:66:5c: a4:20:b0:86:a3:d4:8b:a1:ec:1c:4d:96:6b:cb:77:b5:e8:a3: 01:39:a0:a0:d7:ed:3b:01:95:1e:56:f6:25:22:14:fd:38:2a: a7:54:1d:20:85:28:63:c7:b3:c8:1d:f2:67:fa:28:6d:5a:79: dd:9d:6d:27:9a:9c:fd:e2:21:f1:91:7a:4a:b4:21:ba:b5:f0: 23:b6:fe:74:2e:ae:f6:22:f0:fa:68:ae:67:cd:7b:88:4b:84: 1f:92:5b:2f:08:a4:ef:24:88:73:6c:f4:df:48:0c:51:e5:a9: 90:20:e7:af:d3:8a:aa:bb:66:8d:a1:70:de:03:53:e7:24:24: 5e:1b:a2:61:85:21:c6:e5:21:3f:23:ee:b9:51:23:8d:74:b0: 13:b0:c3:3e:a2:f9:cc:41:95:0b:52:a2:5e:85:64:a4:ed:04: 19:d2:a7:f5:8a:f2:71:47:7e:51:be:61:c9:59:aa:30:d6:37: 67:e0:59:21:ba:e5:d6:50:5f:1e:99:b9:80:f1:2b:6a:1e:ef: 4f:35:16:70:4c:92:e2:2e:1a:b2:7d:0b:7c:b3:4e:ba:de:96: c2:b4:48:f1:0b:82:4b:21:6b:69:0f:69:62:71:4a:ef:b7:7f: 86:0f:d2:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyODkxMTAvBgNVBAUTKDUwNDMxQTcxNEJDOEJBRENFODUxOUU0Qjk5MTQ3RTE1 MUVERjc3OTcwHhcNMjUxMjA0MjExNzA5WhcNMjUxMjExMjExNzA5WjAYMRYwFAYD VQQDEw02OTMxZmE1Ni03M2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14LCLfRCkX63Eu2IFcMN3eqRebVOrScFq3pBx+LNXLLXmsizPz+L9B8jPsmX YHvNav0eLxBA2ymIxB+I0Df6Nmrjun8TFmwtscyubP99MNpvbfh01p1pz2M2aP/a xOQrfCmCZ272CcrPCdakPdcoT9vljTFqdzjcmGPYf8NRergMPfT8Deiom3X6HEvG 9ix1+GDusZZUZaHgt7ANmVn5J/QqQsslLNfpoWPW6iiUtDXIdTXDa//ZQEHTmABu eADY1AgEGD5QTc7Zj3GK+UKBoMgqrCdfeIU55DqYcXwk4LZzf96j76ljkNhVUMab grYCrSInee5oGJQL/bxhLop1eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIKC3iT mvBWmn6YmXcCBMS8R7A5MB8GA1UdIwQYMBaAFFBDGnFLyLrc6FGeS5kUfhUe33eX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI4OS9FMDFCMDU0NDlD QjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0em9VWjVMbVJSLUZSN2Zk NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VFTWFjVXZJdXR6b1VaNUxtUlItRlI3ZmQ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI4OS9FMDFCMDU0NDlDQjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0 em9VWjVMbVJSLUZSN2ZkNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArxcDWKLpGHQf4ZohbZnq5ZlykILCGo9SLoewcTZZry3e16KMBOaCg 1+07AZUeVvYlIhT9OCqnVB0ghShjx7PIHfJn+ihtWnndnW0nmpz94iHxkXpKtCG6 tfAjtv50Lq72IvD6aK5nzXuIS4QfklsvCKTvJIhzbPTfSAxR5amQIOev04qqu2aN oXDeA1PnJCReG6JhhSHG5SE/I+65USONdLATsMM+ovnMQZULUqJehWSk7QQZ0qf1 ivJxR35RvmHJWaow1jdn4FkhuuXWUF8embmA8StqHu9PNRZwTJLiLhqyfQt8s066 3pbCtEjxC4JLIWtpD2licUrvt3+GD9I9 -----END CERTIFICATE-----Generated at Sat Dec 6 16:45:22 2025 by rpki-client