This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft File: UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft (raw, json) Hash identifier: LD2ewjHvlk2UxeBkG3Ahj1ZVoGQbkkBL/qRDwyPZQwI= Subject key identifier: 86:61:6F:07:29:E2:5B:E2:5D:97:86:48:03:8E:2F:72:97:3E:6D:DA Authority key identifier: 53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF Certificate issuer: /CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Certificate serial: 20F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft Manifest number: 20D8 Signing time: Mon 22 Dec 2025 15:46:13 +0000 Manifest this update: Mon 22 Dec 2025 15:46:13 +0000 Manifest next update: Mon 29 Dec 2025 15:46:13 +0000 Files and hashes: 1: UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl (hash: pmgiI3fOt/19H2dR/rF5yMIc7Ri3MQ45ogGZ8Pf7+mQ=) 2: F79267D61E4011E6945BEB0DC4F9AE02.roa (hash: ebbHAc3H1xs8yb83KOxdepldMzKZEG2KB/oj0PgrPl0=) 3: 2991FB703EBC11F0B4390D6CC4F9AE02.roa (hash: ISWHnAnupcgdEe8p2mboULpSfRcbxX3lISCXNa8ynQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8440 (0x20f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159967, serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Validity Not Before: Dec 22 15:46:13 2025 GMT Not After : Dec 29 15:46:13 2025 GMT Subject: CN=694967c5-ac04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c6:af:df:9d:50:3a:47:3d:5d:ec:23:23:40: 5e:82:01:5c:11:02:24:0f:d8:a2:e6:88:88:82:cf: 0c:26:ae:58:fd:cc:47:33:68:cb:4f:a6:bf:3e:40: fe:20:33:01:ca:ed:26:1b:6b:68:9d:69:7e:13:8d: 7a:2b:2f:d8:5e:ee:f0:4a:18:dd:8d:6b:94:6a:96: 8e:85:d7:4f:68:2b:6a:96:dd:6b:24:87:ff:8c:92: 38:9a:90:2e:61:01:8d:ad:94:2b:fc:60:ce:1b:24: 24:d5:37:b9:38:61:42:bf:56:d5:ce:ec:27:a8:f9: 34:3b:59:00:0d:4c:2c:06:11:82:1d:c0:ed:f3:a9: 88:aa:5d:3e:02:d6:d4:6d:b5:63:f8:ed:9f:eb:df: 1e:81:ea:5b:82:67:89:53:de:5f:5e:7a:67:b2:b4: ff:ff:91:d8:14:65:3b:91:f5:e4:e7:ff:a8:b0:5d: b4:67:55:44:04:17:0a:a7:b3:88:9e:51:36:06:ae: 08:25:c4:aa:76:36:1b:da:f3:23:f4:2a:01:b8:46: e6:7a:9a:f6:89:79:7a:4c:e1:6a:ea:fb:60:c8:bd: 79:5a:c2:98:69:52:f7:99:0e:92:f3:95:9f:98:e1: 67:71:d9:47:90:63:ec:49:98:08:e7:48:3e:4b:ec: 17:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:61:6F:07:29:E2:5B:E2:5D:97:86:48:03:8E:2F:72:97:3E:6D:DA X509v3 Authority Key Identifier: keyid:53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:87:65:f5:61:ab:f8:09:31:04:5c:b3:9f:8c:79:08:6f:47: 62:69:d1:6f:d4:09:53:05:d8:65:f8:73:16:28:21:a2:f6:f6: 80:fa:61:ea:cb:bc:8f:99:d1:a9:c2:9d:81:37:fc:e5:b1:3e: 81:cb:6f:c9:c8:19:6f:36:35:78:cd:a8:d6:3c:97:c5:5a:ae: 5d:a5:b8:f3:3c:cd:a7:7f:aa:fd:65:55:6f:5e:c1:c7:d7:13: eb:83:cf:83:b7:f0:33:e3:3d:4d:cf:6d:ac:fe:f4:b2:33:80: 72:36:04:27:8e:e7:e0:36:ed:d6:65:a7:45:ab:22:3f:23:5b: c8:46:77:3a:e5:a9:98:5d:f8:cf:d6:63:d4:0f:40:56:21:f1: 8e:1f:7a:fd:c1:ef:3b:d2:dc:cd:40:63:93:10:46:e3:ad:a2: 22:39:6a:aa:8d:17:35:e6:46:17:27:a4:6c:fe:bd:10:48:ce: e4:9b:0b:8e:a8:03:ee:84:b1:47:98:8c:99:ae:0f:a1:5a:ae: 80:51:d9:34:bf:2c:24:c4:e7:3f:6d:ba:2d:02:f4:94:82:bb: 41:9d:65:9b:05:46:e6:ad:16:0c:ec:69:28:be:38:11:73:25: 60:a5:70:fc:a5:65:ca:02:79:46:62:0c:fe:d9:7b:ae:50:92: 47:a4:6b:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk5NjcxMTAvBgNVBAUTKDUzMzBFRUVFQjBEMEE5NTM1RkFDODUwNUU3MzU4NDNB RjZDRTYwQUYwHhcNMjUxMjIyMTU0NjEzWhcNMjUxMjI5MTU0NjEzWjAYMRYwFAYD VQQDDA02OTQ5NjdjNS1hYzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmsav351QOkc9XewjI0BeggFcEQIkD9ii5oiIgs8MJq5Y/cxHM2jLT6a/PkD+ IDMByu0mG2tonWl+E416Ky/YXu7wShjdjWuUapaOhddPaCtqlt1rJIf/jJI4mpAu YQGNrZQr/GDOGyQk1Te5OGFCv1bVzuwnqPk0O1kADUwsBhGCHcDt86mIql0+AtbU bbVj+O2f698egepbgmeJU95fXnpnsrT//5HYFGU7kfXk5/+osF20Z1VEBBcKp7OI nlE2Bq4IJcSqdjYb2vMj9CoBuEbmepr2iXl6TOFq6vtgyL15WsKYaVL3mQ6S85Wf mOFncdlHkGPsSZgI50g+S+wXtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZhbwcp 4lviXZeGSAOOL3KXPm3aMB8GA1UdIwQYMBaAFFMw7u6w0KlTX6yFBec1hDr2zmCv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTk2Ny8wQkJGMjU3ODE1 QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFWTmZySVVGNXpXRU92Yk9Z SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6RHU3ckRRcVZOZnJJVUY1eldFT3ZiT1lLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTk2Ny8wQkJGMjU3ODE1QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFW TmZySVVGNXpXRU92Yk9ZSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6h2X1Yav4CTEEXLOfjHkIb0diadFv1AlTBdhl+HMWKCGi9vaA+mHq y7yPmdGpwp2BN/zlsT6By2/JyBlvNjV4zajWPJfFWq5dpbjzPM2nf6r9ZVVvXsHH 1xPrg8+Dt/Az4z1Nz22s/vSyM4ByNgQnjufgNu3WZadFqyI/I1vIRnc65amYXfjP 1mPUD0BWIfGOH3r9we870tzNQGOTEEbjraIiOWqqjRc15kYXJ6Rs/r0QSM7kmwuO qAPuhLFHmIyZrg+hWq6AUdk0vywkxOc/bbotAvSUgrtBnWWbBUbmrRYM7GkovjgR cyVgpXD8pWXKAnlGYgz+2XuuUJJHpGvz -----END CERTIFICATE-----Generated at Tue Dec 23 21:38:51 2025 by rpki-client