This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft File: uftCI-sDug7mzge0ZgIXr69xbV0.mft (raw, json) Hash identifier: O4sOepVDUih0yxI7PMJ2oQD97Wo35RN1FR4QDKAHUlc= Subject key identifier: 2D:85:AF:50:53:5D:05:F7:66:AC:67:0A:88:94:E7:62:44:C1:E5:26 Authority key identifier: B9:FB:42:23:EB:03:BA:0E:E6:CE:07:B4:66:02:17:AF:AF:71:6D:5D Certificate issuer: /CN=A916D5A2/serialNumber=B9FB4223EB03BA0EE6CE07B4660217AFAF716D5D Certificate serial: 06D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft Manifest number: 06CD Signing time: Thu 18 Dec 2025 21:32:19 +0000 Manifest this update: Thu 18 Dec 2025 21:32:19 +0000 Manifest next update: Thu 25 Dec 2025 21:32:19 +0000 Files and hashes: 1: uftCI-sDug7mzge0ZgIXr69xbV0.crl (hash: CldFmBejZFysEQONtx1qdzafsgIWoVsjjkTLAGgOFpU=) 2: F5250AEAB57011F0A97B9E77C4F9AE02.roa (hash: 7MZHUJH95TcyRd7ME/hVxnITTbrFzvEBCqxuhjcdwaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.crl rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1748 (0x6d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D5A2, serialNumber=B9FB4223EB03BA0EE6CE07B4660217AFAF716D5D Validity Not Before: Dec 18 21:32:19 2025 GMT Not After : Dec 25 21:32:19 2025 GMT Subject: CN=694472e3-a4fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7b:4b:b3:13:19:e6:e2:fb:0c:13:3d:f8:78: 73:5d:fa:3f:0b:06:2b:de:19:52:4f:3f:9b:19:8e: 21:98:21:0b:2e:1e:91:83:22:09:d5:29:05:7b:a8: 69:e8:0e:63:fa:90:17:c3:ea:f9:4f:d5:47:9c:1a: cc:41:81:d6:5e:49:c2:60:b5:fd:51:ff:03:ec:4a: b4:84:f5:1f:d3:97:56:ea:18:a4:e6:40:78:27:bf: 91:60:07:c1:9d:75:b8:8b:08:87:ef:c2:a1:1a:bd: bd:1b:99:87:95:df:1b:e3:fe:14:26:2f:51:22:19: 71:04:68:73:30:31:23:41:15:e3:3d:42:c5:42:10: a5:0d:90:29:24:ec:75:24:b9:ec:02:73:a0:2f:8f: 6a:26:c1:7a:62:5c:d2:35:2c:e3:e2:cb:6f:3f:29: 4e:08:35:a0:04:c9:58:62:2a:7d:5e:a6:7b:5f:fd: df:f4:fc:62:f7:9f:01:cb:47:48:1f:8d:de:1e:57: 22:96:5f:85:d4:99:77:4e:ed:30:8b:a6:84:53:70: 6c:67:ed:0e:1a:02:75:d9:0b:0a:e7:ad:e9:6f:c6: d2:cb:d5:dd:f1:92:8d:ec:52:b9:c5:96:ca:de:cc: e0:40:12:2b:83:4d:df:e2:dd:d7:2f:15:19:e9:5a: bc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:85:AF:50:53:5D:05:F7:66:AC:67:0A:88:94:E7:62:44:C1:E5:26 X509v3 Authority Key Identifier: keyid:B9:FB:42:23:EB:03:BA:0E:E6:CE:07:B4:66:02:17:AF:AF:71:6D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:6f:35:87:af:9e:15:56:a5:c7:8e:5d:dd:9b:da:dc:24:77: 30:a6:aa:e1:70:57:77:b9:38:be:23:7b:af:27:0e:b4:00:28: 3e:2d:92:72:7e:4e:16:17:4a:f9:e1:dc:4e:47:c1:80:5f:a9: fc:20:74:c7:6a:89:73:6e:92:ba:8f:fe:bf:ff:bc:eb:85:1c: 41:72:3a:f3:18:3f:63:2f:3e:1d:88:b5:3f:aa:2b:fb:65:69: 58:f5:2f:e1:92:4e:51:93:eb:e3:d5:6a:48:53:a8:34:8b:74: f9:e5:70:42:39:48:25:2e:d7:e1:e3:87:e7:c4:0a:5c:83:e5: 65:2f:29:7e:7e:be:fb:7d:8a:a5:84:34:c1:49:01:79:a4:e6: 14:45:2b:82:d9:9d:20:e7:79:36:39:f9:14:e4:50:af:10:bb: 5a:ee:ae:08:48:79:f6:c8:b1:53:a3:83:d1:8f:0d:8f:83:27: be:38:84:8c:58:b2:5b:8b:e0:06:8f:e5:62:7f:c6:8d:80:4d: 20:e7:1d:a4:7f:6d:dd:ca:ad:04:fd:78:48:25:fb:0b:b5:8d: e1:bd:9a:cc:97:c2:12:49:28:fc:bf:de:3f:24:8f:d7:a6:0b: 35:fe:d4:42:12:b8:10:72:39:d5:47:bd:f0:b1:7b:6f:99:db: d6:42:46:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ1QTIxMTAvBgNVBAUTKEI5RkI0MjIzRUIwM0JBMEVFNkNFMDdCNDY2MDIxN0FG QUY3MTZENUQwHhcNMjUxMjE4MjEzMjE5WhcNMjUxMjI1MjEzMjE5WjAYMRYwFAYD VQQDDA02OTQ0NzJlMy1hNGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXtLsxMZ5uL7DBM9+HhzXfo/CwYr3hlSTz+bGY4hmCELLh6RgyIJ1SkFe6hp 6A5j+pAXw+r5T9VHnBrMQYHWXknCYLX9Uf8D7Eq0hPUf05dW6hik5kB4J7+RYAfB nXW4iwiH78KhGr29G5mHld8b4/4UJi9RIhlxBGhzMDEjQRXjPULFQhClDZApJOx1 JLnsAnOgL49qJsF6YlzSNSzj4stvPylOCDWgBMlYYip9XqZ7X/3f9Pxi958By0dI H43eHlcill+F1Jl3Tu0wi6aEU3BsZ+0OGgJ12QsK563pb8bSy9Xd8ZKN7FK5xZbK 3szgQBIrg03f4t3XLxUZ6Vq8mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2Fr1BT XQX3ZqxnCoiU52JEweUmMB8GA1UdIwQYMBaAFLn7QiPrA7oO5s4HtGYCF6+vcW1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDVBMi9DMjFBNTM4Njgw QjgxMUVCQkVCMTlFODNDNEY5QUUwMi91ZnRDSS1zRHVnN216Z2UwWmdJWHI2OXhi VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VmdENJLXNEdWc3bXpnZTBaZ0lYcjY5eGJWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDVBMi9DMjFBNTM4NjgwQjgxMUVCQkVCMTlFODNDNEY5QUUwMi91ZnRDSS1zRHVn N216Z2UwWmdJWHI2OXhiVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGbzWHr54VVqXHjl3dm9rcJHcwpqrhcFd3uTi+I3uvJw60ACg+LZJy fk4WF0r54dxOR8GAX6n8IHTHaolzbpK6j/6//7zrhRxBcjrzGD9jLz4diLU/qiv7 ZWlY9S/hkk5Rk+vj1WpIU6g0i3T55XBCOUglLtfh44fnxApcg+VlLyl+fr77fYql hDTBSQF5pOYURSuC2Z0g53k2OfkU5FCvELta7q4ISHn2yLFTo4PRjw2Pgye+OISM WLJbi+AGj+Vif8aNgE0g5x2kf23dyq0E/XhIJfsLtY3hvZrMl8ISSSj8v94/JI/X pgs1/tRCErgQcjnVR73wsXtvmdvWQkYh -----END CERTIFICATE-----Generated at Fri Dec 19 17:58:19 2025 by rpki-client