This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft File: UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft (raw, json) Hash identifier: 0KhE4eqh01mbXMlI0oQnnDSTsAEa6eoQPM1p5Aqpgmg= Subject key identifier: FB:0B:20:3E:76:31:13:82:93:2B:23:77:C4:40:77:BF:C6:5C:E3:C9 Authority key identifier: 50:3D:1B:F5:6B:22:29:B5:2A:A3:FF:68:53:46:99:F0:6F:D2:50:23 Certificate issuer: /CN=A91FBDDF/serialNumber=503D1BF56B2229B52AA3FF68534699F06FD25023 Certificate serial: 0192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft Manifest number: 0192 Signing time: Sun 21 Dec 2025 02:42:20 +0000 Manifest this update: Sun 21 Dec 2025 02:42:20 +0000 Manifest next update: Sun 28 Dec 2025 02:42:20 +0000 Files and hashes: 1: UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl (hash: VoaJ3CENX+Lgd0Mdv6FZXMJ5g+PjBiPeP9D+w7aL1xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBDDF, serialNumber=503D1BF56B2229B52AA3FF68534699F06FD25023 Validity Not Before: Dec 21 02:42:20 2025 GMT Not After : Dec 28 02:42:20 2025 GMT Subject: CN=69475e8c-ed1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d9:79:f2:bd:be:09:72:c8:7f:8f:6b:0f:c4: 51:17:2e:7d:2d:b3:94:b2:7a:aa:08:37:c9:87:6c: c6:66:68:a2:89:13:2d:55:1e:5e:1d:9c:19:99:af: 18:32:c1:2d:7e:ef:44:63:a3:22:a5:7c:b0:52:d3: c1:de:c0:fd:b8:aa:02:b2:35:15:49:dd:c8:6d:18: 5f:1f:f7:89:b8:3e:40:87:30:2e:27:80:9e:4c:c4: 86:c3:d6:8f:74:3e:f2:dc:21:7f:0f:e6:43:7d:54: 1e:21:b1:83:76:c7:6a:fe:4f:1b:fb:fa:91:bd:37: f8:e1:5c:2e:4f:2c:a3:fe:c0:56:98:59:6c:92:37: 4c:b0:64:44:11:5c:e6:10:7c:4f:b4:5a:af:d5:e9: f6:0b:f7:10:95:fa:cf:7a:2b:a1:a1:b3:86:2e:3d: 50:af:19:68:e9:47:01:e4:ad:73:7b:fd:f0:b0:dd: 97:f6:d8:d6:80:ff:d7:9f:73:34:bd:cf:04:d5:a6: f8:8a:30:d0:24:d0:19:0e:d0:a7:de:0e:2f:81:b2: f6:e0:fa:d9:8a:6f:c5:22:ee:e8:e4:a2:b3:61:f9: 60:2a:65:40:c7:4b:6c:a1:c7:28:13:4e:0b:7e:b2: 9f:3c:4b:8a:50:38:44:4a:c4:0a:59:df:85:95:92: 13:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:0B:20:3E:76:31:13:82:93:2B:23:77:C4:40:77:BF:C6:5C:E3:C9 X509v3 Authority Key Identifier: keyid:50:3D:1B:F5:6B:22:29:B5:2A:A3:FF:68:53:46:99:F0:6F:D2:50:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBDDF/475C64BE724511EEAA29EC74C4F9AE02/UD0b9WsiKbUqo_9oU0aZ8G_SUCM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:f5:fa:4e:82:31:59:5a:3f:7f:30:ef:e7:c6:cc:7d:3e:d4: 37:4e:ca:92:e4:be:fc:b8:0b:8d:a5:42:14:2e:0c:4a:42:a4: 2a:0e:3e:4d:f2:95:11:07:55:d0:88:51:11:30:9e:11:ce:5a: 63:a1:90:6c:c9:a6:91:25:f7:d4:46:94:de:25:df:7f:3f:ba: 1f:01:9c:55:a9:4c:cf:35:94:88:cd:fc:d7:29:67:74:59:98: 76:51:a8:be:1e:7b:79:60:fc:99:be:cb:2b:8d:bc:d1:c6:c8: 7d:2c:18:6d:bf:d7:07:55:85:43:b0:07:c4:15:b0:32:06:11: 4e:e3:cd:4a:fe:16:68:cb:8a:af:d4:d3:cb:a9:95:e0:14:5c: 42:22:f7:89:e4:e5:92:7c:fc:b8:75:82:17:fa:61:1c:cf:35: 48:98:e2:ae:bb:cb:8d:b4:9b:76:f3:0d:49:46:a0:50:a4:69: 41:5f:36:9e:5c:03:90:f4:a7:fc:5b:3a:11:3d:c8:dc:ce:be: a0:a3:6e:f9:f7:54:a7:9f:5d:f9:a5:80:b7:cf:6e:05:9d:2c: a0:d4:ef:c7:ab:19:63:c7:a2:46:cf:a5:d0:8f:b7:1d:f2:72: 69:99:34:98:0c:44:07:bc:f6:3d:63:f4:20:a2:15:ca:c0:b3: af:bd:28:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEREYxMTAvBgNVBAUTKDUwM0QxQkY1NkIyMjI5QjUyQUEzRkY2ODUzNDY5OUYw NkZEMjUwMjMwHhcNMjUxMjIxMDI0MjIwWhcNMjUxMjI4MDI0MjIwWjAYMRYwFAYD VQQDDA02OTQ3NWU4Yy1lZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutl58r2+CXLIf49rD8RRFy59LbOUsnqqCDfJh2zGZmiiiRMtVR5eHZwZma8Y MsEtfu9EY6MipXywUtPB3sD9uKoCsjUVSd3IbRhfH/eJuD5AhzAuJ4CeTMSGw9aP dD7y3CF/D+ZDfVQeIbGDdsdq/k8b+/qRvTf44VwuTyyj/sBWmFlskjdMsGREEVzm EHxPtFqv1en2C/cQlfrPeiuhobOGLj1Qrxlo6UcB5K1ze/3wsN2X9tjWgP/Xn3M0 vc8E1ab4ijDQJNAZDtCn3g4vgbL24PrZim/FIu7o5KKzYflgKmVAx0tsoccoE04L frKfPEuKUDhESsQKWd+FlZITSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsLID52 MROCkysjd8RAd7/GXOPJMB8GA1UdIwQYMBaAFFA9G/VrIim1KqP/aFNGmfBv0lAj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkRERi80NzVDNjRCRTcy NDUxMUVFQUEyOUVDNzRDNEY5QUUwMi9VRDBiOVdzaUtiVXFvXzlvVTBhWjhHX1NV Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VEMGI5V3NpS2JVcW9fOW9VMGFaOEdfU1VDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkRERi80NzVDNjRCRTcyNDUxMUVFQUEyOUVDNzRDNEY5QUUwMi9VRDBiOVdzaUti VXFvXzlvVTBhWjhHX1NVQ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh9fpOgjFZWj9/MO/nxsx9PtQ3TsqS5L78uAuNpUIULgxKQqQqDj5N 8pURB1XQiFERMJ4RzlpjoZBsyaaRJffURpTeJd9/P7ofAZxVqUzPNZSIzfzXKWd0 WZh2Uai+Hnt5YPyZvssrjbzRxsh9LBhtv9cHVYVDsAfEFbAyBhFO481K/hZoy4qv 1NPLqZXgFFxCIveJ5OWSfPy4dYIX+mEczzVImOKuu8uNtJt28w1JRqBQpGlBXzae XAOQ9Kf8WzoRPcjczr6go27591Snn135pYC3z24FnSyg1O/Hqxljx6JGz6XQj7cd 8nJpmTSYDEQHvPY9Y/QgohXKwLOvvShY -----END CERTIFICATE-----Generated at Sun Dec 21 19:22:31 2025 by rpki-client