This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft File: uko-NN2arQAtSR0TxciM5c3Jk6o.mft (raw, json) Hash identifier: LkRON8RMuu9whdZ8tFYkn464oA6HPqMG2SBZH1LET38= Subject key identifier: 11:26:2D:B4:EF:1C:94:8B:6B:5C:9E:90:19:51:7A:70:A2:58:7A:08 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0B14 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft Manifest number: 0B0E Signing time: Sat 06 Dec 2025 18:36:34 +0000 Manifest this update: Sat 06 Dec 2025 18:36:34 +0000 Manifest next update: Sat 13 Dec 2025 18:36:34 +0000 Files and hashes: 1: uko-NN2arQAtSR0TxciM5c3Jk6o.crl (hash: mpNaFto31/sJvJPTl8tDAVfxCdjmmkhd3z1D4hgbByw=) 2: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (hash: 1RC1hvOn8M5X9ccmY3hdnJuLljVCrrYvq7AQQg0ulGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2836 (0xb14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Dec 6 18:36:34 2025 GMT Not After : Dec 13 18:36:34 2025 GMT Subject: CN=693477b2-6dd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cd:fb:07:18:0d:9f:f0:30:b3:dd:73:eb:1a: e0:7e:e7:11:47:f6:b2:c2:ba:0c:fe:33:b3:00:9f: 16:bf:a8:b4:78:54:43:e1:00:be:f6:ea:0b:26:e5: 86:68:c7:7a:9d:0a:a1:94:32:11:51:d0:1d:e3:e1: 9b:bc:57:eb:44:e8:0f:08:bc:31:71:83:5d:47:88: ad:94:fb:58:fd:12:56:35:9d:8e:7c:74:ea:ff:ec: 34:b9:42:d5:1b:e9:ea:6e:14:44:18:14:ea:b6:b4: 17:c3:0a:12:cd:5b:fc:d4:1a:ac:39:a2:dc:16:5c: a4:6a:c6:b4:ec:26:24:77:86:e2:b0:23:15:90:b3: 7d:5b:3a:11:6f:65:60:ba:1e:b7:09:02:ae:7f:8b: 0e:b4:de:b2:50:54:0f:e6:25:b7:01:16:80:53:3c: fa:23:ed:60:42:fb:16:0f:c1:7e:03:70:47:a5:2b: 3d:4f:67:f2:fd:9b:d9:87:3a:73:03:4f:cf:61:de: f7:91:85:50:e5:bb:c5:5e:ea:22:a9:3a:7c:61:8d: a9:31:63:f1:d4:d3:09:40:07:94:e7:f6:fd:e8:e7: 64:94:ad:c4:fe:3d:d5:04:d0:8e:82:4a:3b:74:24: cd:8a:46:ba:d9:c3:84:81:f5:5f:ba:9f:2e:7e:f5: 50:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:26:2D:B4:EF:1C:94:8B:6B:5C:9E:90:19:51:7A:70:A2:58:7A:08 X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:36:62:c7:53:b4:ab:a0:a5:b2:4a:a8:f8:7d:a4:bb:18:93: e7:d4:c8:be:2a:c9:64:b7:23:9e:55:68:e6:5a:fa:ac:72:15: 29:c4:1d:4c:2a:8d:78:b6:99:f3:8f:f2:39:e5:7c:d4:74:8d: 5c:7e:64:22:10:bb:63:e3:65:0b:c4:b9:e0:70:62:06:be:93: eb:45:6b:36:ff:d0:40:22:08:d3:52:18:bf:b5:07:96:69:3f: ba:b7:04:2a:5e:f5:e0:68:5b:7c:16:ac:c9:f2:90:35:25:3b: 56:f9:7a:2f:69:79:ae:45:56:c4:94:14:7f:df:63:0b:f6:a4: ec:fe:11:83:b6:cc:ce:17:25:7d:5e:10:da:ef:ad:b8:72:79: d9:be:27:85:86:60:44:9a:79:ab:66:58:29:bc:ad:c9:b9:91: d4:d2:c1:3f:99:cb:6d:05:7b:5c:2d:0a:38:e0:ca:ab:a1:11: 34:6f:03:73:ca:8c:ad:64:79:8c:82:a2:7d:34:b8:34:15:3b: 39:6d:7e:45:c5:24:8e:3a:de:ce:f4:64:32:09:78:39:1a:e4: 81:3c:ba:8e:5a:9c:51:81:bc:4d:47:4f:ee:d0:cd:cb:83:13: 99:94:65:e5:0d:a5:9a:6b:ef:0e:6d:c3:cc:5c:0d:cd:9f:6f: dd:32:2f:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjUxMjA2MTgzNjM0WhcNMjUxMjEzMTgzNjM0WjAYMRYwFAYD VQQDEw02OTM0NzdiMi02ZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuc37BxgNn/Aws91z6xrgfucRR/aywroM/jOzAJ8Wv6i0eFRD4QC+9uoLJuWG aMd6nQqhlDIRUdAd4+GbvFfrROgPCLwxcYNdR4itlPtY/RJWNZ2OfHTq/+w0uULV G+nqbhREGBTqtrQXwwoSzVv81BqsOaLcFlykasa07CYkd4bisCMVkLN9WzoRb2Vg uh63CQKuf4sOtN6yUFQP5iW3ARaAUzz6I+1gQvsWD8F+A3BHpSs9T2fy/ZvZhzpz A0/PYd73kYVQ5bvFXuoiqTp8YY2pMWPx1NMJQAeU5/b96OdklK3E/j3VBNCOgko7 dCTNika62cOEgfVfup8ufvVQJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEmLbTv HJSLa1yekBlRenCiWHoIMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjEyNy8zMzdGQkE0NDU0NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJR QXRTUjBUeGNpTTVjM0prNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZNmLHU7SroKWySqj4faS7GJPn1Mi+KslktyOeVWjmWvqschUpxB1M Ko14tpnzj/I55XzUdI1cfmQiELtj42ULxLngcGIGvpPrRWs2/9BAIgjTUhi/tQeW aT+6twQqXvXgaFt8FqzJ8pA1JTtW+XovaXmuRVbElBR/32ML9qTs/hGDtszOFyV9 XhDa7624cnnZvieFhmBEmnmrZlgpvK3JuZHU0sE/mcttBXtcLQo44MqroRE0bwNz yoytZHmMgqJ9NLg0FTs5bX5FxSSOOt7O9GQyCXg5GuSBPLqOWpxRgbxNR0/u0M3L gxOZlGXlDaWaa+8ObcPMXA3Nn2/dMi8D -----END CERTIFICATE-----Generated at Sun Dec 7 03:02:15 2025 by rpki-client