This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft File: umn8tA4zSXV_ok-OM1eRxfAEXVg.mft (raw, json) Hash identifier: sFMLYGWlZeny18Y2w/wPu21k3V7ErMoSiuxja9EHmKc= Subject key identifier: 7B:BE:42:75:3D:8B:B5:1D:1F:75:CD:F1:E5:1D:89:F7:67:EF:E8:C0 Authority key identifier: BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 Certificate issuer: /CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Certificate serial: 0479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft Manifest number: 046E Signing time: Thu 04 Dec 2025 22:39:51 +0000 Manifest this update: Thu 04 Dec 2025 22:39:51 +0000 Manifest next update: Thu 11 Dec 2025 22:39:51 +0000 Files and hashes: 1: umn8tA4zSXV_ok-OM1eRxfAEXVg.crl (hash: /CHf1LVMMqZyGaK2mpoHFSJgBPU0dMTPnJKAjZqwdGw=) 2: 159DA092E9B711EFB8454123C4F9AE02.roa (hash: tjoX2rKURmmp0SIpilUWla3AD/nRXhfocceVz0iL1og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1145 (0x479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA81, serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Validity Not Before: Dec 4 22:39:51 2025 GMT Not After : Dec 11 22:39:51 2025 GMT Subject: CN=69320db7-299c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:18:5e:c4:38:f8:a4:7f:d1:93:05:e7:c6:4b: 95:75:80:a7:78:84:53:94:87:87:21:22:68:9a:e0: 5c:af:c5:1b:ea:ea:5f:30:df:97:62:43:7b:d4:0f: 1e:b9:82:3f:22:4d:6d:4b:ad:12:1a:be:f7:21:3b: eb:f2:df:69:d3:e9:3b:a0:20:7b:06:86:b8:07:57: fc:f4:51:77:41:8a:05:6c:c4:ab:f3:2e:e2:4f:b9: e5:a7:91:0a:be:06:fe:2e:20:15:80:0a:22:07:b5: 8d:43:d8:4f:31:30:bf:6e:17:9d:42:20:66:2f:e7: 10:cf:9a:c9:74:c3:98:e2:55:b7:37:53:e6:d3:38: a5:c6:95:9e:94:32:a9:61:c2:b2:7b:f4:86:32:ab: 9a:e8:7e:f6:18:e5:26:31:dc:0b:9f:f4:a9:19:c7: ed:70:c7:1e:dd:94:5c:5a:0c:24:99:73:b4:9c:23: f0:b9:e6:51:d0:d7:0a:d2:a7:5d:af:0a:b8:1f:d4: b2:af:c3:6b:67:24:7a:43:ff:9b:b0:5a:6f:28:e4: 0b:b8:58:c3:c9:ca:34:a7:65:6b:6e:22:79:37:a8: ec:48:15:a1:8d:e0:81:8a:56:97:f3:55:92:32:77: 8a:75:6e:27:22:9d:8d:f9:ac:84:4e:e5:0f:ba:67: 01:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BE:42:75:3D:8B:B5:1D:1F:75:CD:F1:E5:1D:89:F7:67:EF:E8:C0 X509v3 Authority Key Identifier: keyid:BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:46:d4:08:56:54:2d:25:8d:09:d7:9c:dd:14:7b:71:6c:28: d8:a2:a5:6c:a2:2b:e4:70:72:2d:d3:4a:59:9a:45:69:21:6c: 78:dd:c0:e7:18:54:b8:62:48:f4:8a:ea:50:85:02:8a:20:e6: 67:18:59:cb:15:a4:3d:e1:36:75:68:99:ab:20:d5:f9:2f:6a: a8:5b:2d:d3:22:5f:fd:0d:73:7d:e6:54:3c:73:88:fc:a6:4b: 90:95:c6:75:6b:5f:a6:49:de:56:06:b4:2c:f5:17:97:94:ca: 1f:bf:d6:bb:63:95:d0:9c:c0:7a:4f:a0:a6:0a:02:f1:ed:67: e8:98:d6:94:4b:22:d5:3a:35:04:0d:15:01:0c:20:56:43:81: 4d:6d:3c:76:5a:28:b3:ee:e7:49:62:6a:55:0d:8a:48:98:75: a2:c3:33:4e:78:7e:a8:5f:2a:ab:35:69:77:c1:1d:dc:51:c0: f0:79:e9:8c:bc:3d:e8:48:84:a4:09:4c:82:1c:11:9b:4b:69: 11:3c:6c:d8:c0:1a:93:f0:fa:3d:b0:de:e4:03:34:55:40:25: 7c:cc:f3:91:7b:9e:f5:bc:9b:21:58:8a:85:7f:45:ec:17:b0: f9:65:39:39:29:7c:c2:4c:2e:b8:ce:a0:a3:fc:da:2b:a2:29: 7e:ad:06:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBODExMTAvBgNVBAUTKEJBNjlGQ0I0MEUzMzQ5NzU3RkEyNEY4RTMzNTc5MUM1 RjAwNDVENTgwHhcNMjUxMjA0MjIzOTUxWhcNMjUxMjExMjIzOTUxWjAYMRYwFAYD VQQDEw02OTMyMGRiNy0yOTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhhexDj4pH/RkwXnxkuVdYCneIRTlIeHISJomuBcr8Ub6upfMN+XYkN71A8e uYI/Ik1tS60SGr73ITvr8t9p0+k7oCB7Boa4B1f89FF3QYoFbMSr8y7iT7nlp5EK vgb+LiAVgAoiB7WNQ9hPMTC/bhedQiBmL+cQz5rJdMOY4lW3N1Pm0zilxpWelDKp YcKye/SGMqua6H72GOUmMdwLn/SpGcftcMce3ZRcWgwkmXO0nCPwueZR0NcK0qdd rwq4H9Syr8NrZyR6Q/+bsFpvKOQLuFjDyco0p2VrbiJ5N6jsSBWhjeCBilaX81WS MneKdW4nIp2N+ayETuUPumcBBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHu+QnU9 i7UdH3XN8eUdifdn7+jAMB8GA1UdIwQYMBaAFLpp/LQOM0l1f6JPjjNXkcXwBF1Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE4MS9DRTEzNkJEMDc0 NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNYVl9vay1PTTFlUnhmQUVY VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vtbjh0QTR6U1hWX29rLU9NMWVSeGZBRVhWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkE4MS9DRTEzNkJEMDc0NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNY Vl9vay1PTTFlUnhmQUVYVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaRtQIVlQtJY0J15zdFHtxbCjYoqVsoivkcHIt00pZmkVpIWx43cDn GFS4Ykj0iupQhQKKIOZnGFnLFaQ94TZ1aJmrINX5L2qoWy3TIl/9DXN95lQ8c4j8 pkuQlcZ1a1+mSd5WBrQs9ReXlMofv9a7Y5XQnMB6T6CmCgLx7WfomNaUSyLVOjUE DRUBDCBWQ4FNbTx2Wiiz7udJYmpVDYpImHWiwzNOeH6oXyqrNWl3wR3cUcDweemM vD3oSISkCUyCHBGbS2kRPGzYwBqT8Po9sN7kAzRVQCV8zPORe571vJshWIqFf0Xs F7D5ZTk5KXzCTC64zqCj/Noroil+rQaw -----END CERTIFICATE-----Generated at Sat Dec 6 18:53:04 2025 by rpki-client