This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: JdjEzVOEVjUUvo1fkuMHtdnkkH+ntziD/ohoYnt36UM= Subject key identifier: BF:0D:6B:E5:A0:DA:27:6F:E8:EE:3A:AE:F9:83:D4:F2:6C:5A:F9:71 Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 08B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 2070 Signing time: Wed 31 Dec 2025 16:21:34 +0000 Manifest this update: Wed 31 Dec 2025 16:21:33 +0000 Manifest next update: Wed 07 Jan 2026 16:21:33 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: vTzpNI9aH9RClKH6vX/OkZiWUi9RFMNb/Rk6Q9L6qmw=) 2: 172C2B96197711F0A993397AC4F9AE02.roa (hash: 8Qo70bxIag9X+h+p9rkvEiGVmiiK66r021Qwo1g6tkk=) 3: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: XzzXA6m5Sfbs0sLhTPVckgYHL3ZiipFrwRLSzgKZ33U=) 4: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: hgO4m8NBFvCWTk/xZ7lTPgH3uo1aBC3KP8OdcPsjkbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 16:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2233 (0x8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Dec 31 16:21:33 2025 GMT Not After : Jan 7 16:21:33 2026 GMT Subject: CN=69554d8d-b1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d8:09:61:8d:fd:cd:12:68:fd:85:ed:10:71: d4:39:cc:64:44:8c:54:af:b3:13:90:a0:29:88:dc: d5:10:86:9b:34:82:4b:8d:d5:30:5e:ce:76:c8:df: 6c:a6:39:61:b2:e8:51:ba:61:ad:47:9f:ee:63:bb: a7:14:79:9b:87:15:92:f8:cd:75:96:d2:ca:53:16: 1d:f0:75:ec:5b:85:50:83:a9:eb:e3:2c:8c:de:f2: 2c:80:82:5e:12:9c:f8:2d:3c:ef:78:19:81:46:b8: d5:00:69:fe:3d:af:c2:10:1e:31:e3:b1:a7:53:ba: 3c:90:e9:0e:56:fd:70:09:09:0c:4e:88:f8:7f:73: 34:b5:0b:21:1f:bd:aa:78:c6:84:09:4a:6b:2d:2f: 4c:ee:d7:97:bb:be:66:f1:1d:05:1e:78:ca:3d:33: d5:a5:e0:b3:14:e0:54:2d:d3:0a:64:ca:fd:6f:6a: 1d:62:33:27:38:d9:4d:d1:71:78:3a:73:13:ec:9b: 9b:f6:4c:21:db:d4:55:6e:08:54:1a:f0:5e:b7:be: a4:5a:e7:01:e3:5d:27:f0:44:09:13:4e:d9:fd:8a: 38:fa:df:97:b7:39:6c:95:08:29:96:70:0c:80:e9: 2d:91:9b:0a:0d:fa:7e:80:e4:12:51:d2:90:e4:e3: 4f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0D:6B:E5:A0:DA:27:6F:E8:EE:3A:AE:F9:83:D4:F2:6C:5A:F9:71 X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:43:27:f4:c6:08:aa:d8:26:25:2c:2d:d0:50:a7:c6:2c:07: 93:3b:9e:a1:c6:3a:73:31:f5:53:3b:c1:7e:6f:10:9b:bc:40: e7:17:16:88:8c:50:ed:57:9d:f4:7f:d1:07:af:fc:5e:56:fd: 05:00:d7:eb:c6:98:52:53:fe:e4:83:e7:7e:28:4c:3b:f0:44: 6d:5d:2b:a7:c8:12:12:15:0f:88:30:e7:6e:27:d0:e6:93:16: d6:b9:79:23:7f:bf:b7:be:96:82:8a:f7:bc:af:0f:68:a8:42: aa:30:db:25:06:62:fa:80:b8:19:a3:e8:3b:36:64:94:9c:0e: 45:6e:d7:63:39:3b:21:4b:36:ab:72:10:08:ea:91:64:b4:61: ad:fd:48:c7:bd:e9:60:7b:7c:10:1a:e6:ae:ee:c3:0d:f3:1f: c0:59:e6:65:b9:4d:d0:cd:15:bd:79:4a:2e:ac:8b:ae:77:d0: 49:cb:37:0a:cc:81:36:a0:43:2d:a3:06:e8:a1:32:2c:b7:96: 72:c5:d4:c6:d0:4a:0b:e5:4c:ca:c4:97:a0:2c:4c:41:8a:fd: c6:c0:a0:bf:39:73:21:94:ab:71:e6:42:4b:4c:ab:89:01:34: 72:9d:90:46:45:ae:30:f6:d4:a7:27:76:ab:49:44:09:8a:00: 0f:36:9f:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjUxMjMxMTYyMTMzWhcNMjYwMTA3MTYyMTMzWjAYMRYwFAYD VQQDDA02OTU1NGQ4ZC1iMWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAptgJYY39zRJo/YXtEHHUOcxkRIxUr7MTkKApiNzVEIabNIJLjdUwXs52yN9s pjlhsuhRumGtR5/uY7unFHmbhxWS+M11ltLKUxYd8HXsW4VQg6nr4yyM3vIsgIJe Epz4LTzveBmBRrjVAGn+Pa/CEB4x47GnU7o8kOkOVv1wCQkMToj4f3M0tQshH72q eMaECUprLS9M7teXu75m8R0FHnjKPTPVpeCzFOBULdMKZMr9b2odYjMnONlN0XF4 OnMT7Jub9kwh29RVbghUGvBet76kWucB410n8EQJE07Z/Yo4+t+XtzlslQgplnAM gOktkZsKDfp+gOQSUdKQ5ONPLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8Na+Wg 2idv6O46rvmD1PJsWvlxMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuQyf0xgiq2CYlLC3QUKfGLAeTO56hxjpzMfVTO8F+bxCbvEDnFxaI jFDtV530f9EHr/xeVv0FANfrxphSU/7kg+d+KEw78ERtXSunyBISFQ+IMOduJ9Dm kxbWuXkjf7+3vpaCive8rw9oqEKqMNslBmL6gLgZo+g7NmSUnA5FbtdjOTshSzar chAI6pFktGGt/UjHvelge3wQGuau7sMN8x/AWeZluU3QzRW9eUourIuud9BJyzcK zIE2oEMtowbooTIst5ZyxdTG0EoL5UzKxJegLExBiv3GwKC/OXMhlKtx5kJLTKuJ ATRynZBGRa4w9tSnJ3arSUQJigAPNp/y -----END CERTIFICATE-----Generated at Wed Dec 31 19:37:14 2025 by rpki-client