This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: i7bwIOGijGHLK/yA8g3ipBu9NvsnhIuS5EW4OpmyCp8= Subject key identifier: 9A:73:5C:7F:52:8B:1A:CD:7A:9D:C5:3C:32:53:C8:56:E8:BC:BE:A6 Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 0219 Signing time: Fri 05 Dec 2025 00:37:36 +0000 Manifest this update: Fri 05 Dec 2025 00:37:36 +0000 Manifest next update: Fri 12 Dec 2025 00:37:35 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: rrnxyCWfR/SxoNsF7d0hME9j/L2+ZGRAZmr2acyd1bI=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:37:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: Dec 5 00:37:36 2025 GMT Not After : Dec 12 00:37:35 2025 GMT Subject: CN=69322950-67dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:83:68:57:3a:8d:d1:17:da:6f:a3:cc:ef:d1: 27:3d:83:f8:ec:15:84:0d:49:8c:64:54:e3:c9:6d: db:31:60:0c:95:4d:8a:13:7f:f1:b7:e9:ea:7f:2e: 25:f6:47:3e:87:f5:a0:c3:81:4f:97:3c:a0:94:b1: a2:59:79:b9:60:5b:da:28:6a:30:9e:9f:a6:00:e7: 67:82:3e:7a:c3:23:1b:9b:fb:e6:48:bc:1d:4b:db: b0:32:c5:d3:ef:b3:6b:9c:a6:7c:4f:98:e6:da:91: 2f:e3:8b:79:64:a0:03:57:6e:32:36:b7:11:cc:8c: 28:85:42:4e:96:1d:85:0e:2d:d7:a0:78:bd:ec:5d: 3f:a9:55:7f:79:f1:c7:31:21:da:0b:66:6e:4c:8f: cf:db:74:12:9c:af:df:a1:e7:cb:47:9b:5b:49:08: 8c:7f:e5:9d:7a:e8:b2:7c:3b:36:cb:df:b9:b3:20: 2a:7d:05:00:d5:dc:d6:d7:43:8a:af:be:62:66:67: ca:48:3e:9f:cf:52:e4:b2:d8:67:dd:db:62:a2:72: 9c:f6:37:73:fe:c4:a9:7a:54:bd:71:34:b0:72:b3: a7:c3:26:b4:74:61:e1:db:3f:0c:f8:21:dd:6a:76: ec:be:84:6d:d6:ad:8a:02:ad:da:c6:a4:6a:a2:d8: 86:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:73:5C:7F:52:8B:1A:CD:7A:9D:C5:3C:32:53:C8:56:E8:BC:BE:A6 X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ef:1c:46:40:ad:9d:de:d7:fb:9c:c3:f9:97:b5:ad:e4:c7: 7a:4d:f4:53:3a:95:c9:3e:f5:5a:73:de:43:90:09:6d:f7:72: 2a:bb:fe:b5:75:65:93:b8:12:e2:65:60:5f:55:24:0f:0f:c2: 2e:76:5a:b2:2c:e8:62:8c:34:ac:2a:21:24:67:44:94:ed:11: 50:61:40:4f:73:ed:de:bf:2e:97:19:af:66:47:18:04:2f:61: 64:09:13:60:de:8a:46:b3:01:2e:88:5f:13:b0:fe:6b:31:d3: 69:4f:1d:c6:4d:bd:87:e0:a3:0f:f3:94:1a:4e:03:25:15:c6: 59:eb:b4:a6:e4:1f:87:90:e4:3c:71:9e:bf:86:b0:fb:4d:56: 9f:24:34:41:90:69:13:33:c5:48:f1:15:21:3f:d0:7c:86:b2: 31:88:5d:ec:78:10:cd:ae:a4:f5:d5:11:f1:b2:de:01:e6:15: a2:ce:55:be:82:36:5b:e2:2a:07:2b:3d:a8:6b:da:dd:53:e9: bc:05:d2:9b:11:93:51:91:0b:df:eb:6f:62:fa:b8:76:a9:f1: b2:68:db:db:48:40:71:d5:72:d9:d9:c6:34:42:38:4f:33:12: a8:14:eb:9b:1a:14:24:ea:a6:c5:7d:0b:ad:d8:03:b0:1a:97: f5:58:78:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUxMjA1MDAzNzM2WhcNMjUxMjEyMDAzNzM1WjAYMRYwFAYD VQQDEw02OTMyMjk1MC02N2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9YNoVzqN0Rfab6PM79EnPYP47BWEDUmMZFTjyW3bMWAMlU2KE3/xt+nqfy4l 9kc+h/Wgw4FPlzyglLGiWXm5YFvaKGownp+mAOdngj56wyMbm/vmSLwdS9uwMsXT 77NrnKZ8T5jm2pEv44t5ZKADV24yNrcRzIwohUJOlh2FDi3XoHi97F0/qVV/efHH MSHaC2ZuTI/P23QSnK/foefLR5tbSQiMf+WdeuiyfDs2y9+5syAqfQUA1dzW10OK r75iZmfKSD6fz1Lksthn3dtionKc9jdz/sSpelS9cTSwcrOnwya0dGHh2z8M+CHd anbsvoRt1q2KAq3axqRqotiGmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpzXH9S ixrNep3FPDJTyFbovL6mMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb7xxGQK2d3tf7nMP5l7Wt5Md6TfRTOpXJPvVac95DkAlt93Iqu/61 dWWTuBLiZWBfVSQPD8IudlqyLOhijDSsKiEkZ0SU7RFQYUBPc+3evy6XGa9mRxgE L2FkCRNg3opGswEuiF8TsP5rMdNpTx3GTb2H4KMP85QaTgMlFcZZ67Sm5B+HkOQ8 cZ6/hrD7TVafJDRBkGkTM8VI8RUhP9B8hrIxiF3seBDNrqT11RHxst4B5hWizlW+ gjZb4ioHKz2oa9rdU+m8BdKbEZNRkQvf629i+rh2qfGyaNvbSEBx1XLZ2cY0QjhP MxKoFOubGhQk6qbFfQut2AOwGpf1WHhU -----END CERTIFICATE-----Generated at Sat Dec 6 18:52:45 2025 by rpki-client