This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft File: uRokzwRxERfIw7omSjM5Xad_kbQ.mft (raw, json) Hash identifier: /pN0FhWn/seSzdIXfnmDJwSh45amXtR5WxK7ITgTYnU= Subject key identifier: CF:62:42:82:76:72:6D:E7:44:02:9D:90:5A:CE:85:82:E2:07:60:75 Authority key identifier: B9:1A:24:CF:04:71:11:17:C8:C3:BA:26:4A:33:39:5D:A7:7F:91:B4 Certificate issuer: /CN=A9133BB0/serialNumber=B91A24CF04711117C8C3BA264A33395DA77F91B4 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft Manifest number: 0102 Signing time: Thu 25 Dec 2025 04:05:43 +0000 Manifest this update: Thu 25 Dec 2025 04:05:43 +0000 Manifest next update: Thu 01 Jan 2026 04:05:43 +0000 Files and hashes: 1: uRokzwRxERfIw7omSjM5Xad_kbQ.crl (hash: nGqt0AoAKLzgSM3hrvwVaPH0cZgDMneNS5s5J5rvRZw=) 2: 27995372566911EF9D53B517C4F9AE02.roa (hash: a77iAc4lVu+0oRkHBvhrQbh2JlrG7+YjIwHwoF/sfB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.crl rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 04:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133BB0, serialNumber=B91A24CF04711117C8C3BA264A33395DA77F91B4 Validity Not Before: Dec 25 04:05:43 2025 GMT Not After : Jan 1 04:05:43 2026 GMT Subject: CN=694cb817-a951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a3:cc:1e:b4:a0:7c:8d:60:bd:54:58:80:07: 38:1a:5e:bd:d5:6b:82:83:0e:6e:cf:36:7e:7d:f3: ff:74:95:ae:79:2d:3c:fb:02:98:fc:ef:f2:80:2e: 85:7d:90:84:cc:28:ab:bd:ec:1a:37:37:77:58:3f: cf:62:c3:b8:75:6b:15:1e:90:07:0f:7d:fc:97:a7: 65:20:ce:af:1c:6f:f6:7d:d9:ff:95:af:ed:68:96: af:39:a3:13:bb:c2:00:39:96:2f:09:5c:12:5f:68: cb:43:b5:c5:3c:e9:03:af:21:0e:bf:8a:6d:ce:ff: a9:17:ca:56:9f:5e:cc:a9:62:66:44:db:2a:6f:8c: 10:dd:52:07:16:e4:93:ac:9f:21:3c:12:48:16:75: 85:39:88:7d:b9:e3:d4:3f:54:52:e0:a5:a6:d1:e8: a2:a9:82:cd:ac:5a:f9:da:7f:05:57:36:16:ea:86: 24:68:b8:d3:b4:96:c0:32:9f:53:67:2a:07:b9:ad: 6c:b9:b6:a8:6b:d1:4f:4f:8c:89:b3:93:80:10:c8: 5f:7f:42:48:2d:46:ec:88:26:83:45:83:6b:10:89: 70:d3:c3:8c:f2:2e:d2:6e:36:13:0f:65:67:03:0e: 7a:23:1f:06:4c:d8:26:e0:b9:2d:e2:f3:86:7f:de: 2c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:62:42:82:76:72:6D:E7:44:02:9D:90:5A:CE:85:82:E2:07:60:75 X509v3 Authority Key Identifier: keyid:B9:1A:24:CF:04:71:11:17:C8:C3:BA:26:4A:33:39:5D:A7:7F:91:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f1:87:1b:6c:fc:f4:e5:56:ae:19:da:60:be:05:27:3c:2b: 76:62:c1:1f:0d:1b:6b:25:7b:d6:aa:e8:13:1f:b5:ec:1a:26: 1d:e8:5f:6a:a4:88:82:d1:8d:c9:ac:85:da:b7:a2:ca:ad:be: a5:35:27:fb:0f:b1:df:04:7a:5d:7a:6b:11:36:4d:30:22:b3: d4:3b:ce:59:4f:b0:cb:c8:d2:cc:94:b5:c1:99:44:a5:0c:78: b9:76:5f:62:10:80:9c:48:91:7b:68:f9:3a:a8:48:f8:71:72: 1a:d9:ec:67:46:b5:3d:77:43:75:d2:29:e5:1e:ee:55:01:4d: d7:dd:22:71:b1:6a:32:38:28:21:38:15:bf:0d:b2:a8:ee:b9: 9b:02:64:f4:ed:1c:a3:84:be:51:59:82:ed:ed:3c:31:74:65: e8:de:0e:db:28:f9:47:22:d5:9e:7b:cd:5e:65:21:ad:22:37: 7e:79:b6:db:f1:9d:7b:17:53:39:ba:64:c9:c3:5d:ce:86:58: 37:29:9c:cc:44:81:13:19:1f:d3:5e:8b:2a:2f:0f:04:61:50: 8c:7f:1c:a7:8b:2f:fd:c4:95:9c:56:4d:78:7e:42:02:68:35: f3:74:10:81:01:e8:6d:9d:a5:ae:60:df:28:22:46:47:66:5b: 0f:6e:4d:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCQjAxMTAvBgNVBAUTKEI5MUEyNENGMDQ3MTExMTdDOEMzQkEyNjRBMzMzOTVE QTc3RjkxQjQwHhcNMjUxMjI1MDQwNTQzWhcNMjYwMTAxMDQwNTQzWjAYMRYwFAYD VQQDDA02OTRjYjgxNy1hOTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06PMHrSgfI1gvVRYgAc4Gl691WuCgw5uzzZ+ffP/dJWueS08+wKY/O/ygC6F fZCEzCirvewaNzd3WD/PYsO4dWsVHpAHD338l6dlIM6vHG/2fdn/la/taJavOaMT u8IAOZYvCVwSX2jLQ7XFPOkDryEOv4ptzv+pF8pWn17MqWJmRNsqb4wQ3VIHFuST rJ8hPBJIFnWFOYh9uePUP1RS4KWm0eiiqYLNrFr52n8FVzYW6oYkaLjTtJbAMp9T ZyoHua1subaoa9FPT4yJs5OAEMhff0JILUbsiCaDRYNrEIlw08OM8i7SbjYTD2Vn Aw56Ix8GTNgm4Lkt4vOGf94sHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9iQoJ2 cm3nRAKdkFrOhYLiB2B1MB8GA1UdIwQYMBaAFLkaJM8EcREXyMO6JkozOV2nf5G0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0JCMC9CODY1QjM3RTU2 NjgxMUVGOEU2QTc3NURDNEY5QUUwMi91Um9rendSeEVSZkl3N29tU2pNNVhhZF9r YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VSb2t6d1J4RVJmSXc3b21Tak01WGFkX2tiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0JCMC9CODY1QjM3RTU2NjgxMUVGOEU2QTc3NURDNEY5QUUwMi91Um9rendSeEVS Zkl3N29tU2pNNVhhZF9rYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA78YcbbPz05VauGdpgvgUnPCt2YsEfDRtrJXvWqugTH7XsGiYd6F9q pIiC0Y3JrIXat6LKrb6lNSf7D7HfBHpdemsRNk0wIrPUO85ZT7DLyNLMlLXBmUSl DHi5dl9iEICcSJF7aPk6qEj4cXIa2exnRrU9d0N10inlHu5VAU3X3SJxsWoyOCgh OBW/DbKo7rmbAmT07RyjhL5RWYLt7TwxdGXo3g7bKPlHItWee81eZSGtIjd+ebbb 8Z17F1M5umTJw13Ohlg3KZzMRIETGR/TXosqLw8EYVCMfxyniy/9xJWcVk14fkIC aDXzdBCBAehtnaWuYN8oIkZHZlsPbk11 -----END CERTIFICATE-----Generated at Thu Dec 25 16:05:11 2025 by rpki-client