This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft File: UZQtJe28pR36Vs4J7TYet6JtvSU.mft (raw, json) Hash identifier: 1//DEE/8D/yIS+A/yvE6LALrfJ75B2r988MhdFFUwu8= Subject key identifier: 89:23:A0:48:EB:99:8D:3B:75:07:48:43:02:C7:19:92:A8:1D:CD:A8 Authority key identifier: 51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 Certificate issuer: /CN=A912AFA4/serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Certificate serial: 09AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft Manifest number: 098F Signing time: Sat 20 Dec 2025 19:35:08 +0000 Manifest this update: Sat 20 Dec 2025 19:35:08 +0000 Manifest next update: Sat 27 Dec 2025 19:35:08 +0000 Files and hashes: 1: UZQtJe28pR36Vs4J7TYet6JtvSU.crl (hash: sTxUkC8awLf5LilsW4H+cHaWfQG8WAUSoIaOLSU8Bn8=) 2: 11DBC0ACEB3211EFBDFC3E0FC4F9AE02.roa (hash: zYdZV0PmY995jxBgObVxrNeEKm4srCzVt7whFrsxdT8=) 3: 6602AEE2CD7411EFB3DC8110C4F9AE02.roa (hash: nXVtsybD/p0SClRwWP9c2+ZIMGXniljjDK2EFaKpa7A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2476 (0x9ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AFA4, serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Validity Not Before: Dec 20 19:35:08 2025 GMT Not After : Dec 27 19:35:08 2025 GMT Subject: CN=6946fa6c-84fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:02:62:db:5f:99:5c:fc:0c:51:29:1b:27:07: c6:2e:b0:e5:4a:2c:c5:69:a8:34:61:18:8c:a6:89: b5:4a:66:77:04:55:dc:7b:a4:6b:fb:b0:3f:03:a1: c9:03:a4:9c:f5:9a:bb:0b:f0:81:74:f1:b6:df:3b: 46:a7:80:7e:eb:c6:6f:69:ae:e2:57:9b:59:cd:c1: 55:0c:8b:f5:12:c2:08:b8:e2:ec:d2:8b:fc:cc:4c: 75:f8:52:e6:c6:c8:a4:b0:a0:bd:be:c0:ca:78:3d: bb:fc:1a:33:ae:5c:f9:54:b2:96:d7:56:fe:8c:7d: f9:5f:49:6a:53:31:07:44:dc:66:c2:a3:d1:e2:a7: dd:2f:83:e3:e7:cd:8c:fc:49:01:79:11:c8:f5:1f: 91:9c:b7:40:ea:3c:1a:80:40:e9:4b:4b:a5:ce:29: 31:f1:d7:8b:99:ef:1c:3c:c8:39:35:96:a8:16:73: 9b:c1:9c:8e:78:c7:a2:ad:cc:f1:79:df:ac:bb:05: 8c:7a:9b:05:19:69:3d:d9:fc:99:db:f5:1b:49:79: b7:53:51:f1:4d:57:bf:a4:3c:4d:fe:72:ad:87:d6: 02:c7:ce:bd:87:3f:d3:95:48:19:f5:4f:82:d8:4d: 57:06:d8:b4:18:df:cb:a3:42:30:9c:16:ac:e9:f3: 8a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:23:A0:48:EB:99:8D:3B:75:07:48:43:02:C7:19:92:A8:1D:CD:A8 X509v3 Authority Key Identifier: keyid:51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:08:5c:02:c9:57:f4:3a:52:27:a1:bd:cf:6e:30:3a:1e:10: ef:ad:ed:58:cb:d6:e3:a5:bf:4c:92:1b:c9:cd:50:54:f7:29: dc:58:71:52:54:13:b8:7c:43:4c:16:22:13:c6:7e:f9:6b:d5: ac:e7:d0:50:82:76:61:e7:a6:23:a9:e9:42:f7:5f:78:33:33: 7f:a9:53:a9:93:48:74:a1:cf:ec:85:f5:c6:80:33:31:3d:26: e0:2f:60:36:0f:e4:76:aa:09:7d:b4:71:b5:ca:ae:6a:e7:0b: 12:a6:87:c5:9e:a7:8b:e0:a0:87:62:94:3b:f6:93:1e:b4:d2: ff:0e:8d:67:e4:20:ce:8b:59:4d:5f:ff:13:e3:22:7d:31:e2: d0:ed:84:a6:a0:6b:15:58:2a:d4:c8:c9:e8:84:89:4c:c2:07: 75:1d:90:74:c3:98:7e:b3:2c:c5:d2:ef:58:38:b4:c6:5b:1e: 65:90:c4:b6:cc:5f:b0:ff:99:be:fe:47:f0:aa:bd:7c:71:d8: a7:44:63:bd:d4:7e:42:a4:d1:51:5b:16:cc:7e:32:d6:68:56: 69:dc:8d:fa:00:07:e5:cb:4a:95:2b:12:77:66:18:64:bc:19: 65:b8:f7:dc:11:00:64:d5:25:39:fe:8e:e7:26:67:46:3e:67: c0:6c:06:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGQTQxMTAvBgNVBAUTKDUxOTQyRDI1RURCQ0E1MURGQTU2Q0UwOUVEMzYxRUI3 QTI2REJEMjUwHhcNMjUxMjIwMTkzNTA4WhcNMjUxMjI3MTkzNTA4WjAYMRYwFAYD VQQDDA02OTQ2ZmE2Yy04NGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQJi21+ZXPwMUSkbJwfGLrDlSizFaag0YRiMpom1SmZ3BFXce6Rr+7A/A6HJ A6Sc9Zq7C/CBdPG23ztGp4B+68Zvaa7iV5tZzcFVDIv1EsIIuOLs0ov8zEx1+FLm xsiksKC9vsDKeD27/Bozrlz5VLKW11b+jH35X0lqUzEHRNxmwqPR4qfdL4Pj582M /EkBeRHI9R+RnLdA6jwagEDpS0ulzikx8deLme8cPMg5NZaoFnObwZyOeMeirczx ed+suwWMepsFGWk92fyZ2/UbSXm3U1HxTVe/pDxN/nKth9YCx869hz/TlUgZ9U+C 2E1XBti0GN/Lo0IwnBas6fOKgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkjoEjr mY07dQdIQwLHGZKoHc2oMB8GA1UdIwQYMBaAFFGULSXtvKUd+lbOCe02Hreibb0l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUZBNC9CNjc4NjJGQUFC OTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBSMzZWczRKN1RZZXQ2SnR2 U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VaUXRKZTI4cFIzNlZzNEo3VFlldDZKdHZTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUZBNC9CNjc4NjJGQUFCOTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBS MzZWczRKN1RZZXQ2SnR2U1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWCFwCyVf0OlInob3PbjA6HhDvre1Yy9bjpb9MkhvJzVBU9yncWHFS VBO4fENMFiITxn75a9Ws59BQgnZh56YjqelC9194MzN/qVOpk0h0oc/shfXGgDMx PSbgL2A2D+R2qgl9tHG1yq5q5wsSpofFnqeL4KCHYpQ79pMetNL/Do1n5CDOi1lN X/8T4yJ9MeLQ7YSmoGsVWCrUyMnohIlMwgd1HZB0w5h+syzF0u9YOLTGWx5lkMS2 zF+w/5m+/kfwqr18cdinRGO91H5CpNFRWxbMfjLWaFZp3I36AAfly0qVKxJ3Zhhk vBlluPfcEQBk1SU5/o7nJmdGPmfAbAZc -----END CERTIFICATE-----Generated at Mon Dec 22 11:00:24 2025 by rpki-client