This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft File: UzfctqkbQdUhGkTCFqljq6zH4rA.mft (raw, json) Hash identifier: ZkKIRkecf3TPYlXzfBlk9HCCiqqeQK695XFm6HNS/hU= Subject key identifier: 82:A5:7B:16:15:98:97:21:1D:B8:62:E2:36:F2:3F:A8:A1:AE:15:E0 Authority key identifier: 53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 Certificate issuer: /CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Certificate serial: 3508 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft Manifest number: 34FD Signing time: Mon 22 Dec 2025 14:42:11 +0000 Manifest this update: Mon 22 Dec 2025 14:42:11 +0000 Manifest next update: Mon 29 Dec 2025 14:42:11 +0000 Files and hashes: 1: UzfctqkbQdUhGkTCFqljq6zH4rA.crl (hash: i19xFxOf4qfjOba9WQ11JLoEDsuiH3gxUyhRJe8JfoM=) 2: 8DFE2984EAD811ECA1ED8915C4F9AE02.roa (hash: bVOSER1nz+Nqxke0I5JF7QpaXaB+v1ZvyVVn2hKZsmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:42:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13576 (0x3508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FBC, serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Validity Not Before: Dec 22 14:42:11 2025 GMT Not After : Dec 29 14:42:11 2025 GMT Subject: CN=694958c3-a955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:62:7d:ec:db:fc:6e:fd:46:99:3f:db:55:d0: d3:f9:ff:98:8e:70:0a:8a:d8:26:d4:59:7b:46:12: de:c3:6e:83:88:cb:7e:7a:a8:ab:fc:dd:78:11:fa: 23:27:ea:ae:ec:a4:96:e0:f1:77:25:d9:4f:19:da: 1b:c6:0c:8c:b3:9b:ac:2f:b8:b1:1a:d0:35:c6:ee: 2d:10:1f:67:56:11:ac:3a:2f:96:a1:dc:40:13:6e: a5:8d:51:bc:c7:88:41:2d:93:d8:b1:28:9b:e0:7a: 30:a1:5b:4d:95:62:87:0e:1d:0d:92:c0:bd:44:af: ff:95:51:df:f4:19:da:f0:59:de:92:4d:60:c5:87: eb:bd:5a:2a:11:83:33:8d:e8:d4:96:98:83:a3:a4: e4:94:b9:62:56:26:df:c5:7a:88:b7:31:a6:a3:43: 02:43:12:c5:e1:a3:e8:3f:e2:c3:79:c7:ee:50:e9: 77:a7:0b:99:45:cd:56:c3:ed:3c:ef:60:e2:4d:b0: 89:2f:f8:5d:80:03:57:7a:41:78:ac:fc:41:b1:11: f8:1d:c9:e5:0c:8a:9b:01:bc:e6:01:30:77:0c:f5: 7b:0e:1e:90:91:16:6d:2a:08:7a:0e:92:ff:81:f0: 30:d9:a7:1e:f1:b4:90:c0:89:db:2d:61:19:4a:37: 5c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A5:7B:16:15:98:97:21:1D:B8:62:E2:36:F2:3F:A8:A1:AE:15:E0 X509v3 Authority Key Identifier: keyid:53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:d8:c3:a0:8b:3e:03:bb:15:89:9b:5c:ff:33:70:a7:ce:49: 47:8c:d1:30:4d:43:4a:c6:cb:93:d7:ef:cd:be:a0:20:68:c4: 17:51:6b:c8:96:65:d7:e4:77:1d:fb:6c:a1:e5:03:24:9f:7b: 9d:c0:58:bc:83:3d:8e:d6:21:d7:5b:df:59:41:e2:b0:ac:c6: a8:90:7b:49:b8:6b:24:3e:4b:ad:df:5f:1c:19:4a:2b:bd:f5: ab:72:5b:35:4f:ed:ec:1a:d5:1f:17:d0:3c:0c:3a:8e:d8:e6: fb:ee:ef:7a:90:2f:79:79:3c:fc:02:22:b2:50:35:fc:ab:db: bc:34:83:25:32:aa:23:95:ef:ed:57:47:da:e8:0b:2e:f2:92: cd:06:fb:58:49:60:64:fa:6f:5d:01:b3:f9:bb:94:7a:ad:a0: b3:c3:ca:d8:4a:15:fc:5c:a5:39:d8:f4:f9:1a:10:82:fd:3e: 3b:04:5e:ae:e4:00:c2:b4:9c:0d:eb:b9:80:58:96:d7:d7:3d: 4c:ca:04:cb:c9:97:e4:a4:46:23:c2:7a:8f:7e:36:1c:1b:58: 1a:c8:77:76:49:f8:93:41:30:de:ac:3d:aa:65:bd:fe:e1:b1: 5f:4d:c3:95:4e:c2:39:8b:d2:d5:49:a0:fc:0f:04:a4:35:e0: 13:82:63:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGQkMxMTAvBgNVBAUTKDUzMzdEQ0I2QTkxQjQxRDUyMTFBNDRDMjE2QTk2M0FC QUNDN0UyQjAwHhcNMjUxMjIyMTQ0MjExWhcNMjUxMjI5MTQ0MjExWjAYMRYwFAYD VQQDDA02OTQ5NThjMy1hOTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32J97Nv8bv1GmT/bVdDT+f+YjnAKitgm1Fl7RhLew26DiMt+eqir/N14Efoj J+qu7KSW4PF3JdlPGdobxgyMs5usL7ixGtA1xu4tEB9nVhGsOi+WodxAE26ljVG8 x4hBLZPYsSib4HowoVtNlWKHDh0NksC9RK//lVHf9Bna8Fnekk1gxYfrvVoqEYMz jejUlpiDo6TklLliVibfxXqItzGmo0MCQxLF4aPoP+LDecfuUOl3pwuZRc1Ww+08 72DiTbCJL/hdgANXekF4rPxBsRH4HcnlDIqbAbzmATB3DPV7Dh6QkRZtKgh6DpL/ gfAw2ace8bSQwInbLWEZSjdc5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKlexYV mJchHbhi4jbyP6ihrhXgMB8GA1UdIwQYMBaAFFM33LapG0HVIRpEwhapY6usx+Kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZCQy8zNzMwODM4MDFE OTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFkVWhHa1RDRnFsanE2ekg0 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6ZmN0cWtiUWRVaEdrVENGcWxqcTZ6SDRyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZCQy8zNzMwODM4MDFEOTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFk VWhHa1RDRnFsanE2ekg0ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj2MOgiz4DuxWJm1z/M3CnzklHjNEwTUNKxsuT1+/NvqAgaMQXUWvI lmXX5Hcd+2yh5QMkn3udwFi8gz2O1iHXW99ZQeKwrMaokHtJuGskPkut318cGUor vfWrcls1T+3sGtUfF9A8DDqO2Ob77u96kC95eTz8AiKyUDX8q9u8NIMlMqojle/t V0fa6Asu8pLNBvtYSWBk+m9dAbP5u5R6raCzw8rYShX8XKU52PT5GhCC/T47BF6u 5ADCtJwN67mAWJbX1z1MygTLyZfkpEYjwnqPfjYcG1gayHd2SfiTQTDerD2qZb3+ 4bFfTcOVTsI5i9LVSaD8DwSkNeATgmNx -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:31 2025 by rpki-client