This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft File: uDIFubLHQGPjdvNxFYOXBe277Ng.mft (raw, json) Hash identifier: XchKxUZaPfEy8KdVnCBGdATVEuId1XPHZiUHvWDHnlU= Subject key identifier: D0:4B:9A:A8:4D:C1:67:26:39:A9:D5:F5:CF:5A:46:33:B7:0E:8D:8E Authority key identifier: B8:32:05:B9:B2:C7:40:63:E3:76:F3:71:15:83:97:05:ED:BB:EC:D8 Certificate issuer: /CN=A9130138/serialNumber=B83205B9B2C74063E376F37115839705EDBBECD8 Certificate serial: 0399 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft Manifest number: 0394 Signing time: Sat 06 Dec 2025 23:22:42 +0000 Manifest this update: Sat 06 Dec 2025 23:22:42 +0000 Manifest next update: Sat 13 Dec 2025 23:22:42 +0000 Files and hashes: 1: uDIFubLHQGPjdvNxFYOXBe277Ng.crl (hash: jUYZ1ls37HcFQigvv6VyEi+Kt9XK9YVk5DCeLk8Rrfw=) 2: A7DEA0DAC47D11ECB544A26DC4F9AE02.roa (hash: f9p5nsZx4jMNkGPcJOkOhsmegpIzdL9T3kUEUM+NbsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.crl rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 921 (0x399) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138, serialNumber=B83205B9B2C74063E376F37115839705EDBBECD8 Validity Not Before: Dec 6 23:22:42 2025 GMT Not After : Dec 13 23:22:42 2025 GMT Subject: CN=6934bac2-c32e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3d:8a:33:db:3b:63:e7:97:2e:24:ea:2f:2d: 9a:a1:7b:65:a6:6b:b8:50:5d:65:62:e1:a4:38:f4: 52:82:16:cc:bc:61:2e:5c:ce:92:cc:ba:a4:ea:49: 17:ba:e4:bd:c5:1d:c2:c1:40:4d:82:4f:9d:4f:e4: de:3e:9b:7d:c4:67:99:30:1a:82:f6:b2:ed:76:a8: b0:66:aa:be:14:f5:8e:2f:46:2b:8b:96:bf:b8:64: d2:24:dc:2d:95:61:aa:78:b4:7f:83:45:78:74:4c: 76:98:61:9c:35:e9:21:db:ca:f5:56:bb:41:c5:91: 9f:5b:46:3a:53:6a:9a:0d:32:56:26:ab:e5:84:7e: 83:8d:51:ee:b2:86:21:5b:c9:67:2f:7d:c6:b3:db: f7:db:96:27:3a:1a:7d:83:fe:cc:df:97:ab:31:d0: c3:ba:f0:d3:0d:cd:0d:94:f9:73:5f:9e:f7:83:e9: 70:90:9a:58:14:ed:26:0c:df:b4:0b:07:66:eb:b9: ed:c9:7c:07:ec:99:7e:64:e6:bb:9b:51:08:5d:86: 79:09:bd:89:38:9c:3d:3d:8c:4e:6b:f0:31:05:b3: 18:81:96:c0:5e:5b:16:4c:4e:8a:92:c9:b6:28:b9: b4:75:bd:d9:e4:90:77:ae:90:77:2a:e5:57:50:83: 7a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4B:9A:A8:4D:C1:67:26:39:A9:D5:F5:CF:5A:46:33:B7:0E:8D:8E X509v3 Authority Key Identifier: keyid:B8:32:05:B9:B2:C7:40:63:E3:76:F3:71:15:83:97:05:ED:BB:EC:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:45:52:32:dd:0c:61:19:14:d0:e9:88:66:55:3a:7f:06:c3: 26:09:cd:f9:72:c1:af:43:16:b9:80:e6:1b:0f:22:1d:17:b7: 55:05:06:93:74:cd:64:42:c6:b3:9b:62:a5:a1:18:37:f6:65: 59:a0:e9:61:c2:66:f5:30:6c:97:05:41:b2:d8:52:bf:1a:8d: 5d:21:60:43:db:ac:7b:fa:7c:a0:67:e8:d8:52:07:4d:28:b1: 81:c9:29:bf:19:f5:1b:f1:3f:69:d1:71:ef:d3:0d:e7:03:0b: 08:97:05:e0:e4:91:d9:51:b1:8c:52:7d:36:52:4c:4b:35:7e: b9:82:1c:a0:be:88:5b:9c:62:a8:83:7f:81:ce:d2:6d:c4:ba: 53:cb:21:ca:b4:46:02:96:78:26:65:08:87:3e:97:10:65:bd: 46:d2:cb:42:c6:f0:c6:bd:26:b1:8f:74:ef:53:79:4d:18:3d: 4d:62:b7:99:2a:1a:05:24:3f:44:9f:6a:31:cf:1a:cb:0d:e0: 22:8b:99:fe:f3:12:75:00:8b:1f:34:f7:81:63:d4:3c:90:8a: 5e:3d:73:31:90:6f:af:c0:92:f8:c4:53:45:db:e1:05:f4:2c: 2b:e4:02:02:0c:cd:dd:45:d3:a9:10:5d:49:90:5a:b9:a5:62: 23:f5:35:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKEI4MzIwNUI5QjJDNzQwNjNFMzc2RjM3MTE1ODM5NzA1 RURCQkVDRDgwHhcNMjUxMjA2MjMyMjQyWhcNMjUxMjEzMjMyMjQyWjAYMRYwFAYD VQQDEw02OTM0YmFjMi1jMzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4z2KM9s7Y+eXLiTqLy2aoXtlpmu4UF1lYuGkOPRSghbMvGEuXM6SzLqk6kkX uuS9xR3CwUBNgk+dT+TePpt9xGeZMBqC9rLtdqiwZqq+FPWOL0Yri5a/uGTSJNwt lWGqeLR/g0V4dEx2mGGcNekh28r1VrtBxZGfW0Y6U2qaDTJWJqvlhH6DjVHusoYh W8lnL33Gs9v325YnOhp9g/7M35erMdDDuvDTDc0NlPlzX573g+lwkJpYFO0mDN+0 Cwdm67ntyXwH7Jl+ZOa7m1EIXYZ5Cb2JOJw9PYxOa/AxBbMYgZbAXlsWTE6Kksm2 KLm0db3Z5JB3rpB3KuVXUIN6TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBLmqhN wWcmOanV9c9aRjO3Do2OMB8GA1UdIwQYMBaAFLgyBbmyx0Bj43bzcRWDlwXtu+zY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC81OUZCQTJCMkM0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi91RElGdWJMSFFHUGpkdk54RllPWEJlMjc3 TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VESUZ1YkxIUUdQamR2TnhGWU9YQmUyNzdOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC81OUZCQTJCMkM0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi91RElGdWJMSFFH UGpkdk54RllPWEJlMjc3TmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1RVIy3QxhGRTQ6YhmVTp/BsMmCc35csGvQxa5gOYbDyIdF7dVBQaT dM1kQsazm2KloRg39mVZoOlhwmb1MGyXBUGy2FK/Go1dIWBD26x7+nygZ+jYUgdN KLGBySm/GfUb8T9p0XHv0w3nAwsIlwXg5JHZUbGMUn02UkxLNX65ghygvohbnGKo g3+BztJtxLpTyyHKtEYClngmZQiHPpcQZb1G0stCxvDGvSaxj3TvU3lNGD1NYreZ KhoFJD9En2oxzxrLDeAii5n+8xJ1AIsfNPeBY9Q8kIpePXMxkG+vwJL4xFNF2+EF 9Cwr5AICDM3dRdOpEF1JkFq5pWIj9TU/ -----END CERTIFICATE-----Generated at Mon Dec 8 14:28:11 2025 by rpki-client