This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft File: UzSpQuM2kLKBJhu645cTXb6kE5c.mft (raw, json) Hash identifier: LbHkwiyeVH8GEhnsoSh7hbp7Eid2Ikql5AMX58vWBVk= Subject key identifier: DE:64:93:BE:9F:D8:4C:C3:44:15:59:4F:83:B5:36:24:88:0E:D3:78 Authority key identifier: 53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 Certificate issuer: /CN=A91DA022/serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Certificate serial: 08A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft Manifest number: 0899 Signing time: Tue 16 Dec 2025 20:08:03 +0000 Manifest this update: Tue 16 Dec 2025 20:08:02 +0000 Manifest next update: Tue 23 Dec 2025 20:08:02 +0000 Files and hashes: 1: UzSpQuM2kLKBJhu645cTXb6kE5c.crl (hash: as++QAAiKMOy1Fcl8lI3/Skd1Qpo76W6YWDWFdEH0TU=) 2: DF3136A2CFF011EAB2F1D086C4F9AE02.roa (hash: Us01OaqyY9hkYagplVuFKDaxQc/+mQDnpIsRSuf4AxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 20:08:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2208 (0x8a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA022, serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Validity Not Before: Dec 16 20:08:02 2025 GMT Not After : Dec 23 20:08:02 2025 GMT Subject: CN=6941bc23-72ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:08:d7:9c:45:5e:e5:80:b7:cc:ef:e5:62:e3: f0:f5:0f:8c:5c:3f:be:91:b9:61:e0:6a:35:98:e2: f7:9f:e1:60:3b:1b:82:66:5e:b9:6b:bf:c2:94:02: 71:ee:8c:39:87:0e:d1:88:8e:fc:c0:e9:46:10:3a: 61:c8:e1:32:8f:47:ce:9d:54:83:aa:91:fa:61:35: cb:18:e8:d9:d5:34:3e:60:23:6a:fc:aa:ca:56:89: 39:6a:14:b0:58:d3:64:d4:e6:9e:f9:1d:75:36:b9: 16:e2:d7:65:34:4b:51:2f:c4:e8:56:bc:bd:a8:ef: 96:85:12:d8:c5:12:be:d0:a0:a9:4f:ad:0b:b3:18: 0f:4b:dd:a9:ca:fe:16:dd:4d:8e:41:d1:5c:c5:2c: 04:0d:b5:cb:6a:34:49:5e:3c:30:c0:d1:cd:8b:16: 70:af:e8:6c:aa:90:88:51:26:22:93:29:02:4b:ed: 45:af:db:52:7a:82:a8:32:db:8e:2b:3f:3d:d5:2c: 44:97:bb:fd:e8:10:8b:5c:23:25:39:52:08:1b:1b: 99:dd:84:ad:89:22:ad:77:77:d5:f1:f8:b7:b3:89: b4:4e:8a:d9:1a:b8:1e:6b:22:39:60:e1:e6:d9:fd: e8:5a:4a:aa:02:49:94:de:53:2b:87:18:a2:83:97: e7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:64:93:BE:9F:D8:4C:C3:44:15:59:4F:83:B5:36:24:88:0E:D3:78 X509v3 Authority Key Identifier: keyid:53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:33:7b:04:3c:eb:db:39:a1:cb:f2:a1:8d:5b:c0:e2:98:e7: 67:9f:00:9c:54:cf:50:50:4e:84:45:d0:b7:96:59:37:5a:93: 90:c2:9b:80:f6:b5:c4:a1:f4:f8:6b:84:ff:a1:93:cf:60:bf: 1b:89:cf:1a:2c:fd:48:55:45:18:d7:63:fb:db:18:4b:fd:10: f1:83:a9:48:b6:db:1b:53:c6:89:d3:9a:90:35:6a:d2:e0:62: 0b:aa:fb:37:87:0a:df:66:81:37:74:74:47:9b:e1:20:fd:4a: 8f:35:db:53:a4:69:fa:7c:9a:e3:94:4e:cf:88:99:7f:b3:dd: 4b:de:51:a7:41:a7:f4:0e:4f:35:0f:78:ed:26:e3:82:0c:52: 21:9e:51:fb:2d:1b:c0:38:1a:cb:63:af:a0:12:43:74:c8:b6: 6d:0f:3a:b9:f0:38:fb:34:f1:79:9d:6f:cb:f5:f8:39:79:af: 19:ab:98:20:91:bf:57:74:80:de:73:3c:10:7d:5f:10:d7:ac: 73:e5:71:a6:a3:9c:64:3b:5a:c7:65:2a:ab:13:54:3a:f1:9e: 76:e3:fa:c1:23:3a:94:8e:8f:b9:79:cf:51:e7:81:fc:fb:e0: 9f:e0:fc:38:90:86:bf:21:e1:52:97:ba:e2:bd:b1:2e:5b:ba: 7b:09:54:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjIxMTAvBgNVBAUTKDUzMzRBOTQyRTMzNjkwQjI4MTI2MUJCQUUzOTcxMzVE QkVBNDEzOTcwHhcNMjUxMjE2MjAwODAyWhcNMjUxMjIzMjAwODAyWjAYMRYwFAYD VQQDDA02OTQxYmMyMy03MmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wjXnEVe5YC3zO/lYuPw9Q+MXD++kblh4Go1mOL3n+FgOxuCZl65a7/ClAJx 7ow5hw7RiI78wOlGEDphyOEyj0fOnVSDqpH6YTXLGOjZ1TQ+YCNq/KrKVok5ahSw WNNk1Oae+R11NrkW4tdlNEtRL8ToVry9qO+WhRLYxRK+0KCpT60LsxgPS92pyv4W 3U2OQdFcxSwEDbXLajRJXjwwwNHNixZwr+hsqpCIUSYikykCS+1Fr9tSeoKoMtuO Kz891SxEl7v96BCLXCMlOVIIGxuZ3YStiSKtd3fV8fi3s4m0TorZGrgeayI5YOHm 2f3oWkqqAkmU3lMrhxiig5fn6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5kk76f 2EzDRBVZT4O1NiSIDtN4MB8GA1UdIwQYMBaAFFM0qULjNpCygSYbuuOXE12+pBOX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMi85RDhEOTQ1OENG RUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtMS0JKaHU2NDVjVFhiNmtF NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6U3BRdU0ya0xLQkpodTY0NWNUWGI2a0U1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMi85RDhEOTQ1OENGRUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtM S0JKaHU2NDVjVFhiNmtFNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARM3sEPOvbOaHL8qGNW8DimOdnnwCcVM9QUE6ERdC3llk3WpOQwpuA 9rXEofT4a4T/oZPPYL8bic8aLP1IVUUY12P72xhL/RDxg6lIttsbU8aJ05qQNWrS 4GILqvs3hwrfZoE3dHRHm+Eg/UqPNdtTpGn6fJrjlE7PiJl/s91L3lGnQaf0Dk81 D3jtJuOCDFIhnlH7LRvAOBrLY6+gEkN0yLZtDzq58Dj7NPF5nW/L9fg5ea8Zq5gg kb9XdIDeczwQfV8Q16xz5XGmo5xkO1rHZSqrE1Q68Z524/rBIzqUjo+5ec9R54H8 ++Cf4Pw4kIa/IeFSl7rivbEuW7p7CVQs -----END CERTIFICATE-----Generated at Wed Dec 17 19:21:28 2025 by rpki-client