This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: Vt4Nd9QIYTahABUpzAFUFFAgEHPCiW7S9viGSpx6z5I= Subject key identifier: B1:37:A5:0E:E7:AC:B1:35:DB:72:CF:2E:C1:21:E0:5E:90:8B:4A:4D Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0471 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 046C Signing time: Thu 04 Dec 2025 22:38:03 +0000 Manifest this update: Thu 04 Dec 2025 22:38:02 +0000 Manifest next update: Thu 11 Dec 2025 22:38:02 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: Tlk6GgfxEs1j4iKm89bA4tSNUTZX/mAQKUjQF9os3/c=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: Tec1GQXrCvVOwblaXBeRPQBIHEsrifUiDT/fZJx0nLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1137 (0x471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Dec 4 22:38:02 2025 GMT Not After : Dec 11 22:38:02 2025 GMT Subject: CN=69320d4b-552e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4c:25:6a:3a:f1:5c:c4:38:a0:27:31:31:66: e3:c5:de:90:7a:96:be:19:9b:98:a2:76:f6:53:6c: 84:1d:89:1c:8f:92:0a:f5:01:15:be:37:35:af:48: 52:fa:ce:5e:e9:02:45:06:a6:b4:5a:ed:59:74:28: c8:1e:a6:46:b6:2d:90:14:9e:72:e0:33:39:ee:66: f6:0a:7c:e1:0b:48:40:70:d3:b6:ac:4d:fd:f9:9c: 00:c1:f1:6a:7e:90:ff:46:2b:51:85:45:ae:46:67: a7:bd:51:93:38:e1:b5:3a:0f:dc:e7:06:cf:0b:51: 94:85:b0:10:12:2f:30:94:bc:3e:69:31:10:43:5e: c9:e5:5a:8f:cf:ac:9f:81:17:eb:2c:d1:08:02:56: f3:97:66:50:38:22:e8:77:f3:60:f6:0c:d6:24:76: ba:93:43:dd:af:eb:7a:b5:d5:f5:86:27:ee:54:f9: 48:d3:28:34:e6:8f:18:ae:1a:4b:3e:8f:ba:45:f7: 7b:86:41:9e:97:b4:58:1b:62:5f:c8:a3:99:12:4f: ff:b7:dd:0d:2e:71:65:fd:ce:b0:82:ff:a8:b8:5f: 05:77:18:56:e3:66:c8:64:5d:5f:45:98:b4:f8:04: a7:90:33:be:d9:3f:0c:03:7c:b5:51:c5:87:19:9d: 63:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:37:A5:0E:E7:AC:B1:35:DB:72:CF:2E:C1:21:E0:5E:90:8B:4A:4D X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:41:70:00:26:bc:08:c7:33:a1:c5:72:24:5b:b7:4b:18:59: aa:10:17:7b:32:2a:f6:6f:0c:97:b9:ac:20:12:68:3f:46:e2: 09:8b:d6:1e:70:27:d4:bd:47:c4:86:6c:cb:ef:d6:0b:84:6e: 28:89:24:11:48:d6:34:19:33:6e:7e:d8:b9:e2:ea:8d:cf:0f: a4:7d:a7:f5:91:12:44:50:5d:b0:1a:6b:46:22:8a:70:45:25: e4:70:c9:ff:4e:8e:0a:f1:93:54:47:1d:55:5e:18:83:6e:c7: 87:65:16:46:3a:25:7f:76:95:0f:a0:1b:dc:31:9d:4b:81:81: 67:5a:5b:a8:79:ac:92:60:33:a3:09:11:9f:65:3a:a4:98:66: a3:e7:65:59:bd:0e:df:46:1e:50:58:30:cf:1f:10:5d:8d:46: 36:2a:16:a5:87:f4:23:b3:81:fe:df:bc:dd:f2:d7:ab:16:f4: 3b:4d:da:92:dd:6c:7c:74:9c:69:3f:ac:6a:ba:67:fe:02:1f: 17:b1:fb:34:53:a3:22:c5:89:39:29:42:17:8a:8b:27:15:fe: 29:fb:39:56:3a:cc:41:9d:58:7f:11:06:63:af:1e:14:23:17: 94:15:ea:a5:e3:7c:cb:5e:3a:86:f0:ff:33:fa:5e:c6:6c:08: 1b:95:61:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUxMjA0MjIzODAyWhcNMjUxMjExMjIzODAyWjAYMRYwFAYD VQQDEw02OTMyMGQ0Yi01NTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUwlajrxXMQ4oCcxMWbjxd6Qepa+GZuYonb2U2yEHYkcj5IK9QEVvjc1r0hS +s5e6QJFBqa0Wu1ZdCjIHqZGti2QFJ5y4DM57mb2CnzhC0hAcNO2rE39+ZwAwfFq fpD/RitRhUWuRmenvVGTOOG1Og/c5wbPC1GUhbAQEi8wlLw+aTEQQ17J5VqPz6yf gRfrLNEIAlbzl2ZQOCLod/Ng9gzWJHa6k0Pdr+t6tdX1hifuVPlI0yg05o8YrhpL Po+6Rfd7hkGel7RYG2JfyKOZEk//t90NLnFl/c6wgv+ouF8FdxhW42bIZF1fRZi0 +ASnkDO+2T8MA3y1UcWHGZ1j3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLE3pQ7n rLE123LPLsEh4F6Qi0pNMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzQXAAJrwIxzOhxXIkW7dLGFmqEBd7Mir2bwyXuawgEmg/RuIJi9Ye cCfUvUfEhmzL79YLhG4oiSQRSNY0GTNufti54uqNzw+kfaf1kRJEUF2wGmtGIopw RSXkcMn/To4K8ZNURx1VXhiDbseHZRZGOiV/dpUPoBvcMZ1LgYFnWluoeaySYDOj CRGfZTqkmGaj52VZvQ7fRh5QWDDPHxBdjUY2Khalh/Qjs4H+37zd8terFvQ7TdqS 3Wx8dJxpP6xqumf+Ah8Xsfs0U6MixYk5KUIXiosnFf4p+zlWOsxBnVh/EQZjrx4U IxeUFeql43zLXjqG8P8z+l7GbAgblWGn -----END CERTIFICATE-----Generated at Sat Dec 6 22:30:49 2025 by rpki-client