This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft File: uH-tZU7EIXxlANDwaxm-MZ09rfc.mft (raw, json) Hash identifier: 0NIrCtkYteS8KaALreS9gVfMxjlp+vrPgKYPJci0ER8= Subject key identifier: 99:A2:2E:24:CB:A2:12:C8:39:42:1B:F2:9D:64:48:CF:BE:F8:9C:AB Authority key identifier: B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 Certificate issuer: /CN=A9155725/serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft Manifest number: 92 Signing time: Thu 01 Jan 2026 06:01:42 +0000 Manifest this update: Thu 01 Jan 2026 06:01:41 +0000 Manifest next update: Thu 08 Jan 2026 06:01:41 +0000 Files and hashes: 1: uH-tZU7EIXxlANDwaxm-MZ09rfc.crl (hash: kOntqXAmWzgQ2lDs0lOgcgB9aXxU8QkWJ1FpP7mA/C4=) 2: 7621BEA0084611F08BEB2E2DC4F9AE02.roa (hash: aySEvRngppKs/Lyekhtc0uzM27zK/l0cRA6UmOeIzlU=) 3: 753F0588084611F08BEB2E2DC4F9AE02.roa (hash: v1ibDjxmzIv2LQG97YVedEX5wevRpNJDRuNHyDfGpBg=) 4: 75A4B2D4084611F08BEB2E2DC4F9AE02.roa (hash: JronbENc2C4chw8Lr5GoQXHOGuejfoIjiKRSNDdiR4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 06:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Validity Not Before: Jan 1 06:01:41 2026 GMT Not After : Jan 8 06:01:41 2026 GMT Subject: CN=69560dc5-99f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c1:fd:72:a5:a6:ad:f8:92:18:9f:f3:50:1c: 5e:6e:f8:08:25:41:aa:41:56:02:00:e3:08:c4:1f: 25:c2:a3:af:05:de:c8:1d:ef:bf:98:df:0c:3f:48: 7f:4b:50:d8:ae:62:d4:03:3d:b2:5c:3d:b0:3d:13: 45:bb:d9:66:74:83:25:b1:1a:00:12:0f:ab:88:e1: 6e:b5:b3:13:41:e1:03:1a:5d:a2:87:ca:57:5a:27: 92:91:52:35:13:07:fe:e7:b4:fd:45:1b:b8:d0:75: a6:e5:6f:80:6d:f5:36:82:95:dd:9a:12:db:a8:92: 6d:67:38:1b:61:d6:94:24:be:0b:60:e4:da:07:db: 76:2b:44:b3:58:ea:92:92:a7:2e:4e:8e:92:fa:d2: 15:1c:8c:11:cd:80:89:29:dd:0f:b7:ad:64:fe:c5: 3c:44:ac:6d:90:6e:cb:9d:2c:73:6b:e1:1a:93:c0: db:e2:3c:f5:a7:f3:f1:12:7e:18:2f:6f:85:76:9e: 2e:01:63:f1:c2:42:2e:f1:87:96:38:81:44:03:d0: d5:64:3e:ee:e0:38:2b:42:7c:92:ae:5b:54:df:b6: 29:d5:55:33:1f:52:81:39:a0:02:89:83:70:ae:4a: 12:d0:dd:ac:a4:65:af:41:f1:67:82:b6:2b:f8:ce: 6a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A2:2E:24:CB:A2:12:C8:39:42:1B:F2:9D:64:48:CF:BE:F8:9C:AB X509v3 Authority Key Identifier: keyid:B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:5b:10:21:01:77:b2:16:c8:7a:e0:83:a6:78:b6:97:46:4f: fc:f7:f2:9e:5a:d2:c1:d3:37:e2:cd:a0:30:91:52:4d:c0:a1: 6a:73:a5:ec:b3:64:d5:09:3f:1f:5d:e7:4b:4e:92:d3:3c:58: ca:09:56:66:ed:7f:ea:90:db:ff:d2:6f:3d:c8:80:01:dd:3d: e6:3f:7a:57:43:dd:9a:75:f7:79:f7:00:55:e0:2b:d3:fe:7e: c0:1b:29:b2:bc:be:d8:b5:3d:d5:e4:90:b7:61:35:b6:21:ad: 41:20:dc:2e:c7:ae:e6:91:76:40:f5:97:06:b7:ca:04:4a:8b: fc:92:41:dd:d4:ad:67:56:0d:18:15:44:62:ec:f5:f3:b3:dd: 2b:3d:ff:b3:27:ba:9d:03:9f:2f:2b:c0:2e:3d:5b:ff:57:9c: 7c:7b:de:8d:1b:8b:a2:37:96:f9:f1:1f:de:b6:bf:fd:ba:04: 0e:3b:e7:2b:98:35:5b:ad:b3:28:9c:b4:d0:ec:6f:87:13:87: da:d1:4f:99:3b:4e:99:8f:73:fd:aa:d5:fb:c7:52:f2:10:c1: c0:4f:52:67:8d:91:05:6b:3a:00:1c:4e:03:42:95:8f:c4:a4: 8b:29:33:9e:bd:e9:d8:60:f6:be:f5:a1:99:4b:95:af:5f:22: 01:cd:e8:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3MjUxMTAvBgNVBAUTKEI4N0ZBRDY1NEVDNDIxN0M2NTAwRDBGMDZCMTlCRTMx OUQzREFERjcwHhcNMjYwMTAxMDYwMTQxWhcNMjYwMTA4MDYwMTQxWjAYMRYwFAYD VQQDDA02OTU2MGRjNS05OWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3cH9cqWmrfiSGJ/zUBxebvgIJUGqQVYCAOMIxB8lwqOvBd7IHe+/mN8MP0h/ S1DYrmLUAz2yXD2wPRNFu9lmdIMlsRoAEg+riOFutbMTQeEDGl2ih8pXWieSkVI1 Ewf+57T9RRu40HWm5W+AbfU2gpXdmhLbqJJtZzgbYdaUJL4LYOTaB9t2K0SzWOqS kqcuTo6S+tIVHIwRzYCJKd0Pt61k/sU8RKxtkG7LnSxza+Eak8Db4jz1p/PxEn4Y L2+Fdp4uAWPxwkIu8YeWOIFEA9DVZD7u4DgrQnySrltU37Yp1VUzH1KBOaACiYNw rkoS0N2spGWvQfFngrYr+M5qQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmiLiTL ohLIOUIb8p1kSM+++JyrMB8GA1UdIwQYMBaAFLh/rWVOxCF8ZQDQ8GsZvjGdPa33 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTcyNS84MDFCQ0FBNjA4 M0ExMUYwOUZGMUQwNzRDNEY5QUUwMi91SC10WlU3RUlYeGxBTkR3YXhtLU1aMDly ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VILXRaVTdFSVh4bEFORHdheG0tTVowOXJmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTcyNS84MDFCQ0FBNjA4M0ExMUYwOUZGMUQwNzRDNEY5QUUwMi91SC10WlU3RUlY eGxBTkR3YXhtLU1aMDlyZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTWxAhAXeyFsh64IOmeLaXRk/89/KeWtLB0zfizaAwkVJNwKFqc6Xs s2TVCT8fXedLTpLTPFjKCVZm7X/qkNv/0m89yIAB3T3mP3pXQ92adfd59wBV4CvT /n7AGymyvL7YtT3V5JC3YTW2Ia1BINwux67mkXZA9ZcGt8oESov8kkHd1K1nVg0Y FURi7PXzs90rPf+zJ7qdA58vK8AuPVv/V5x8e96NG4uiN5b58R/etr/9ugQOO+cr mDVbrbMonLTQ7G+HE4fa0U+ZO06Zj3P9qtX7x1LyEMHAT1JnjZEFazoAHE4DQpWP xKSLKTOevenYYPa+9aGZS5WvXyIBzejq -----END CERTIFICATE-----Generated at Fri Jan 2 14:26:20 2026 by rpki-client