This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: 58cPU+MyY9XEC0bRM+tMaG37GWkZvZI36i98FKvlzUw= Subject key identifier: E7:93:34:B8:59:83:79:A3:00:9F:28:FC:12:CF:C7:73:24:C4:37:9F Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 0473 Signing time: Thu 18 Dec 2025 23:28:30 +0000 Manifest this update: Thu 18 Dec 2025 23:28:29 +0000 Manifest next update: Thu 25 Dec 2025 23:28:29 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: OIBvRJAChu84Srac8M6tX2JZwuL685sw0svOTklRxXI=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: Tec1GQXrCvVOwblaXBeRPQBIHEsrifUiDT/fZJx0nLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Dec 18 23:28:29 2025 GMT Not After : Dec 25 23:28:29 2025 GMT Subject: CN=69448e1e-a420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3e:b7:26:95:a1:64:bc:a4:2f:67:09:7b:85: 23:43:64:ec:3f:c9:37:19:7f:ee:42:f1:78:79:ff: 2b:d1:67:e4:fd:39:d0:97:ed:a3:c7:41:21:5e:2d: 4a:a0:44:d2:ee:2c:ee:44:61:f8:35:93:d4:2f:c6: 0a:db:fd:23:73:e4:bb:94:94:4f:46:41:9b:5c:11: 03:33:10:ad:13:c9:d5:e5:62:66:76:97:f7:98:49: 93:28:ac:8d:22:1a:a6:43:76:71:5a:5a:0b:51:fd: 08:3a:21:8b:df:26:a5:c4:ab:c8:55:1d:59:6a:f5: 9f:cc:ee:22:8f:bb:98:0a:26:cc:b6:28:23:83:36: 12:e9:16:6c:ac:1f:99:19:73:85:7f:a3:98:62:3d: 8a:52:71:90:4c:a8:73:50:6b:be:7e:50:f4:59:62: 40:f4:fc:97:29:ef:f3:fe:37:07:d1:ae:d9:98:05: 8b:ca:d0:8d:12:85:e1:8e:d6:72:dd:69:33:53:74: 8d:5b:3e:52:95:f6:a7:ee:a7:7a:95:79:51:c5:a3: 65:02:2d:28:c6:ab:35:11:5d:11:61:95:b1:a8:d5: ca:c2:d8:92:e6:7e:56:c5:e6:e9:34:fb:d4:61:db: 5a:e5:77:51:dd:f5:30:51:91:99:ba:b5:c0:e4:eb: f5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:93:34:B8:59:83:79:A3:00:9F:28:FC:12:CF:C7:73:24:C4:37:9F X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:24:ce:cb:8f:2b:57:b0:05:52:63:0e:27:e5:a7:62:da:0e: c2:85:9f:77:1a:1e:5a:60:3e:13:97:99:28:e8:61:74:2a:1e: 7c:8e:60:41:9f:5d:24:80:6f:5a:28:55:5b:20:dd:36:55:c1: b5:bb:8a:aa:f7:dd:1d:7c:d1:28:69:c2:7a:a6:0c:9a:06:be: 88:5f:d7:7a:28:e3:5e:e4:76:2e:44:a0:08:66:ed:62:01:94: 54:7c:a6:d0:2a:02:3e:a2:a8:7b:e5:b5:74:b7:b5:22:1d:63: ab:bb:39:66:1d:06:06:7d:f4:cd:54:c0:c1:ae:5f:0a:b9:aa: 63:a4:17:32:bb:28:25:09:1b:d5:7e:b4:30:e0:6a:88:fc:e1: ce:1e:7c:15:1b:ef:2b:8c:db:37:40:8c:53:b3:8f:94:5b:7e: 63:8d:15:d9:94:7f:c4:00:a9:65:b1:6d:49:c8:e1:76:62:97: d8:e2:a7:8a:53:f3:23:4a:b8:67:df:60:4d:8c:55:c9:84:57: 2e:5e:1e:7a:6a:57:45:85:6a:9b:c4:f5:db:72:92:c8:9f:ac: 27:96:47:52:9e:b1:aa:1b:0a:c0:c6:10:54:4b:ef:9a:5f:01: e1:c5:67:9c:88:c4:c8:ca:85:c6:b1:04:90:5f:a1:26:f2:f7: 7d:ab:57:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUxMjE4MjMyODI5WhcNMjUxMjI1MjMyODI5WjAYMRYwFAYD VQQDDA02OTQ0OGUxZS1hNDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwz63JpWhZLykL2cJe4UjQ2TsP8k3GX/uQvF4ef8r0Wfk/TnQl+2jx0EhXi1K oETS7izuRGH4NZPUL8YK2/0jc+S7lJRPRkGbXBEDMxCtE8nV5WJmdpf3mEmTKKyN IhqmQ3ZxWloLUf0IOiGL3yalxKvIVR1ZavWfzO4ij7uYCibMtigjgzYS6RZsrB+Z GXOFf6OYYj2KUnGQTKhzUGu+flD0WWJA9PyXKe/z/jcH0a7ZmAWLytCNEoXhjtZy 3WkzU3SNWz5Slfan7qd6lXlRxaNlAi0oxqs1EV0RYZWxqNXKwtiS5n5WxebpNPvU Ydta5XdR3fUwUZGZurXA5Ov1DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeTNLhZ g3mjAJ8o/BLPx3MkxDefMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaJM7LjytXsAVSYw4n5adi2g7ChZ93Gh5aYD4Tl5ko6GF0Kh58jmBB n10kgG9aKFVbIN02VcG1u4qq990dfNEoacJ6pgyaBr6IX9d6KONe5HYuRKAIZu1i AZRUfKbQKgI+oqh75bV0t7UiHWOruzlmHQYGffTNVMDBrl8KuapjpBcyuyglCRvV frQw4GqI/OHOHnwVG+8rjNs3QIxTs4+UW35jjRXZlH/EAKllsW1JyOF2YpfY4qeK U/MjSrhn32BNjFXJhFcuXh56aldFhWqbxPXbcpLIn6wnlkdSnrGqGwrAxhBUS++a XwHhxWeciMTIyoXGsQSQX6Em8vd9q1eB -----END CERTIFICATE-----Generated at Fri Dec 19 12:38:13 2025 by rpki-client