This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: TcA86eXW3kT8gzXLnJl11dOrSo4Qcz7nhYG46hVyHvs= Subject key identifier: 68:64:75:4C:D1:6F:29:02:B0:4E:11:A3:97:97:EA:95:69:6F:35:02 Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1E7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1E67 Signing time: Mon 22 Dec 2025 15:52:52 +0000 Manifest this update: Mon 22 Dec 2025 15:52:51 +0000 Manifest next update: Mon 29 Dec 2025 15:52:51 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: IYmqmzEDOYBCS4lf6DIsai6gG2mmihHsuFtDZq0NMoY=) 2: 03D29A521AD611F0BC67FC1CC4F9AE02.roa (hash: 1U6J+6Id+mf2w4NcxMra67o7UyeEGu3wuhpl6ihE5eM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7805 (0x1e7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Dec 22 15:52:51 2025 GMT Not After : Dec 29 15:52:51 2025 GMT Subject: CN=69496954-e876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a8:7b:64:9f:4b:ca:7b:25:ce:56:e1:93:14: f8:ef:1a:3a:c4:6f:ca:6f:c2:25:9d:5c:d0:a7:8c: 10:52:46:19:30:cd:c9:00:58:35:71:33:15:53:42: d3:fc:fd:db:a5:a8:e3:16:56:14:3f:24:10:b4:7f: 38:86:ef:08:aa:1b:63:1e:59:57:db:ed:b8:d3:02: d1:1f:85:64:bc:e2:3d:43:77:d9:03:b1:db:e9:76: f4:98:ed:5b:7b:aa:4e:14:8a:5d:a0:63:fd:da:23: 7d:d9:71:5a:f2:95:6e:3b:74:3e:5c:8f:98:b8:c2: 1c:14:0c:e7:3d:b9:1e:83:2f:19:4e:11:72:d0:54: 24:9c:78:67:88:b7:7f:24:92:e4:f8:e5:3d:64:5c: 80:3d:5a:18:fe:98:fe:2c:5d:ba:64:94:86:ac:84: 8d:9f:75:33:c6:b1:40:22:ee:45:cc:de:41:1e:ed: 00:43:c0:32:eb:bd:d8:dd:9d:d3:d0:64:78:34:a2: 87:2d:01:bf:a4:49:26:8d:4e:9b:c3:d1:b6:d2:2d: 3a:ab:9f:d3:c4:25:1e:47:5d:7a:a0:df:3f:7e:a1: c8:91:8b:45:1a:79:86:8c:03:af:24:69:7b:98:08: ff:59:ac:d9:41:1d:f5:c0:ed:41:34:82:15:14:1b: af:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:64:75:4C:D1:6F:29:02:B0:4E:11:A3:97:97:EA:95:69:6F:35:02 X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:3c:14:93:e6:bb:fe:67:ee:4f:66:66:f5:5c:d6:e3:ff:77: 09:f8:ae:06:30:a1:19:32:5f:ad:99:0d:92:82:1e:04:c5:6e: 1f:8f:eb:8f:76:4c:f1:d4:5e:56:a0:dc:a2:71:6d:63:94:1d: c1:78:8b:fd:1f:89:5f:aa:a4:fc:1d:35:70:1b:d6:44:7a:cc: 38:6c:04:8b:06:44:ac:2c:5e:1d:9e:fb:80:cf:b1:aa:98:79: fb:fd:6a:83:79:cd:00:a7:92:ab:ec:9c:c9:4d:26:bc:60:a5: 81:c6:ca:a3:86:9c:7e:6c:48:e6:e2:d7:88:d3:09:85:7e:40: 0c:84:e7:5f:e7:0b:0d:a4:c0:23:42:7c:ee:6f:75:8e:51:1c: 83:5c:92:92:99:4f:34:14:16:4d:fe:b0:2a:fb:ea:00:d5:8a: 18:c1:23:cc:6d:ce:e4:4f:85:3f:91:13:42:61:a6:1c:5e:d9: 44:e9:2a:e2:6f:d0:ec:6b:ec:80:7e:e9:74:d5:c8:e0:22:31: 94:79:84:82:10:2c:6f:b2:ea:b9:a8:a5:b8:79:67:bc:8c:f4: 7c:1c:f8:ae:28:42:e6:23:3e:c2:59:59:0f:74:eb:0b:56:48: f0:27:eb:ef:c2:52:f2:d6:3d:02:28:28:d5:e9:df:7f:6b:4e: 0f:03:9f:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjUxMjIyMTU1MjUxWhcNMjUxMjI5MTU1MjUxWjAYMRYwFAYD VQQDDA02OTQ5Njk1NC1lODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6h7ZJ9LynslzlbhkxT47xo6xG/Kb8IlnVzQp4wQUkYZMM3JAFg1cTMVU0LT /P3bpajjFlYUPyQQtH84hu8IqhtjHllX2+240wLRH4VkvOI9Q3fZA7Hb6Xb0mO1b e6pOFIpdoGP92iN92XFa8pVuO3Q+XI+YuMIcFAznPbkegy8ZThFy0FQknHhniLd/ JJLk+OU9ZFyAPVoY/pj+LF26ZJSGrISNn3UzxrFAIu5FzN5BHu0AQ8Ay673Y3Z3T 0GR4NKKHLQG/pEkmjU6bw9G20i06q5/TxCUeR116oN8/fqHIkYtFGnmGjAOvJGl7 mAj/WazZQR31wO1BNIIVFBuvOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhkdUzR bykCsE4Ro5eX6pVpbzUCMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhPBST5rv+Z+5PZmb1XNbj/3cJ+K4GMKEZMl+tmQ2Sgh4ExW4fj+uP dkzx1F5WoNyicW1jlB3BeIv9H4lfqqT8HTVwG9ZEesw4bASLBkSsLF4dnvuAz7Gq mHn7/WqDec0Ap5Kr7JzJTSa8YKWBxsqjhpx+bEjm4teI0wmFfkAMhOdf5wsNpMAj Qnzub3WOURyDXJKSmU80FBZN/rAq++oA1YoYwSPMbc7kT4U/kRNCYaYcXtlE6Sri b9Dsa+yAful01cjgIjGUeYSCECxvsuq5qKW4eWe8jPR8HPiuKELmIz7CWVkPdOsL VkjwJ+vvwlLy1j0CKCjV6d9/a04PA5/b -----END CERTIFICATE-----Generated at Tue Dec 23 11:45:46 2025 by rpki-client