This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft File: UzSpQuM2kLKBJhu645cTXb6kE5c.mft (raw, json) Hash identifier: /4yTJ3WYhy7AG8yElDdJjycaHV1Kehd1itdpvDHzSPk= Subject key identifier: B8:B9:D5:68:21:E3:9D:8D:DF:7E:99:EC:E4:0E:A9:BF:B1:2A:70:85 Authority key identifier: 53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 Certificate issuer: /CN=A91DA022/serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Certificate serial: 089A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft Manifest number: 0893 Signing time: Thu 04 Dec 2025 19:41:18 +0000 Manifest this update: Thu 04 Dec 2025 19:41:18 +0000 Manifest next update: Thu 11 Dec 2025 19:41:18 +0000 Files and hashes: 1: UzSpQuM2kLKBJhu645cTXb6kE5c.crl (hash: q5mwmFqsgL1GogWF15SZ578BOPzswK06U//JEKVJw5A=) 2: DF3136A2CFF011EAB2F1D086C4F9AE02.roa (hash: Us01OaqyY9hkYagplVuFKDaxQc/+mQDnpIsRSuf4AxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2202 (0x89a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA022, serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Validity Not Before: Dec 4 19:41:18 2025 GMT Not After : Dec 11 19:41:18 2025 GMT Subject: CN=6931e3de-afeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d1:fb:f5:74:bf:a7:7f:2c:5c:e7:1d:52:22: 0d:b4:06:12:5b:51:32:92:8c:d9:fe:89:29:28:c9: 5c:77:fa:6e:cb:cf:1b:9c:a0:ee:99:a2:e9:84:a7: 03:64:06:b2:56:83:f9:64:c6:86:b0:19:e5:56:da: a1:a6:8f:0e:57:a7:e6:aa:a4:36:ae:63:6a:ff:85: 1d:cb:03:37:ed:84:90:e4:0c:54:b8:45:8f:73:73: fe:f5:e5:01:9c:57:1c:4d:5b:2a:bc:c4:55:92:54: f5:49:f0:e7:01:c4:8f:78:07:64:fb:23:33:d9:8a: 1f:c6:cf:3b:12:a0:2d:5b:fd:fc:9f:97:5b:4a:be: 50:a4:b2:56:48:16:68:cf:0b:05:5f:f5:14:3a:11: c4:93:aa:0a:b2:55:89:20:67:40:20:36:9c:98:5e: 64:16:0c:02:cb:8e:66:f4:2e:54:54:4b:01:e1:91: 49:e3:ae:82:03:99:80:2d:67:8b:7d:0f:02:85:00: d8:a4:f4:2e:23:ee:66:0c:57:e0:69:cc:29:57:18: e4:71:73:bf:89:a6:5f:7b:bb:1b:e6:b0:0c:b8:99: 0d:ae:ba:83:f0:17:6f:b8:2e:58:2e:34:f0:57:82: 8f:d0:38:78:93:9a:af:de:dd:6d:c5:4e:d1:0c:61: 38:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B9:D5:68:21:E3:9D:8D:DF:7E:99:EC:E4:0E:A9:BF:B1:2A:70:85 X509v3 Authority Key Identifier: keyid:53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:58:f1:7f:2e:ba:a0:0b:8a:06:aa:04:82:69:0c:c1:53:f7: fd:3a:9e:e3:c0:14:00:f4:7e:b3:e9:4c:4f:8f:c0:59:71:54: 7e:0f:3a:10:78:41:71:1e:6d:71:17:20:c0:8d:cb:ad:84:bf: 78:a8:f8:21:61:88:88:49:d6:a7:ba:a3:5f:cc:d0:40:a0:2b: 92:14:1f:e7:c6:3c:eb:fa:aa:b8:62:32:05:2d:a5:ab:9f:86: 85:e8:8a:88:0b:52:13:92:ac:7c:52:48:0d:ea:45:f0:b7:23: c8:02:c5:e8:08:d2:c3:9a:00:a0:c9:09:c5:19:3a:61:e0:b5: d9:ba:a0:a7:7c:ff:f6:d0:ad:db:1f:5a:e1:c9:df:c2:04:ea: 99:c4:96:41:25:14:ef:78:48:18:32:56:74:2e:2a:17:59:a7: 8f:19:d9:bf:ab:9c:41:c2:43:95:55:f4:10:a5:4f:77:90:d1: c9:7f:ee:40:bd:79:a7:43:bc:8c:37:11:3a:e8:ef:bb:6e:09: 51:5d:69:07:ef:39:cc:2c:f2:c3:2a:ee:21:92:b0:db:e8:6d: c9:fa:10:ce:71:c1:8b:2d:6d:ca:3f:9b:b3:ab:9a:e0:36:c5: 85:cf:1b:c4:a7:46:ea:bd:e1:44:6d:b9:82:e7:b4:61:e7:42: 7b:bb:27:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjIxMTAvBgNVBAUTKDUzMzRBOTQyRTMzNjkwQjI4MTI2MUJCQUUzOTcxMzVE QkVBNDEzOTcwHhcNMjUxMjA0MTk0MTE4WhcNMjUxMjExMTk0MTE4WjAYMRYwFAYD VQQDEw02OTMxZTNkZS1hZmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAptH79XS/p38sXOcdUiINtAYSW1EykozZ/okpKMlcd/puy88bnKDumaLphKcD ZAayVoP5ZMaGsBnlVtqhpo8OV6fmqqQ2rmNq/4UdywM37YSQ5AxUuEWPc3P+9eUB nFccTVsqvMRVklT1SfDnAcSPeAdk+yMz2Yofxs87EqAtW/38n5dbSr5QpLJWSBZo zwsFX/UUOhHEk6oKslWJIGdAIDacmF5kFgwCy45m9C5UVEsB4ZFJ466CA5mALWeL fQ8ChQDYpPQuI+5mDFfgacwpVxjkcXO/iaZfe7sb5rAMuJkNrrqD8BdvuC5YLjTw V4KP0Dh4k5qv3t1txU7RDGE4TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLi51Wgh 452N336Z7OQOqb+xKnCFMB8GA1UdIwQYMBaAFFM0qULjNpCygSYbuuOXE12+pBOX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMi85RDhEOTQ1OENG RUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtMS0JKaHU2NDVjVFhiNmtF NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6U3BRdU0ya0xLQkpodTY0NWNUWGI2a0U1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMi85RDhEOTQ1OENGRUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtM S0JKaHU2NDVjVFhiNmtFNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNWPF/LrqgC4oGqgSCaQzBU/f9Op7jwBQA9H6z6UxPj8BZcVR+DzoQ eEFxHm1xFyDAjcuthL94qPghYYiISdanuqNfzNBAoCuSFB/nxjzr+qq4YjIFLaWr n4aF6IqIC1ITkqx8UkgN6kXwtyPIAsXoCNLDmgCgyQnFGTph4LXZuqCnfP/20K3b H1rhyd/CBOqZxJZBJRTveEgYMlZ0LioXWaePGdm/q5xBwkOVVfQQpU93kNHJf+5A vXmnQ7yMNxE66O+7bglRXWkH7znMLPLDKu4hkrDb6G3J+hDOccGLLW3KP5uzq5rg NsWFzxvEp0bqveFEbbmC57Rh50J7uyft -----END CERTIFICATE-----Generated at Sat Dec 6 19:52:17 2025 by rpki-client