This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft File: uKIid-zGsQo9ICqjkMyn-7kqRuA.mft (raw, json) Hash identifier: U+/yMdBuKB3eqzpEe2BN38BBnjEDXlMSsOKrM9wuj/4= Subject key identifier: FD:66:8C:A6:CD:93:50:E1:88:50:F2:1F:77:8A:1A:A9:0E:CA:60:97 Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 03DE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft Manifest number: 03DA Signing time: Mon 12 Jan 2026 23:40:00 +0000 Manifest this update: Mon 12 Jan 2026 23:40:00 +0000 Manifest next update: Mon 19 Jan 2026 23:40:00 +0000 Files and hashes: 1: uKIid-zGsQo9ICqjkMyn-7kqRuA.crl (hash: IDgcIHI9j3mMRJIck3YOIrS5k0dHAs6DJ2BwwPeF1oY=) 2: AF08CB4CC77511EC81DCA645C4F9AE02.roa (hash: fCg3LsUh16wFnDfXkxVhThF2ZOUkgckgr+TaTcI9RIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 23:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 990 (0x3de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Jan 12 23:40:00 2026 GMT Not After : Jan 19 23:40:00 2026 GMT Subject: CN=69658650-2471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:62:4d:e3:92:52:f3:c7:43:74:cb:d7:92:6d: 3f:08:b3:31:80:d3:14:60:e0:9e:7c:df:a0:4b:d9: d6:85:00:e8:8a:84:3a:79:fc:3f:de:fe:bd:b2:6e: 56:a3:9b:e5:88:ca:44:47:e4:a0:43:1c:c7:6e:5e: 1b:81:1b:36:7a:c7:82:b7:76:94:5f:0d:fe:a2:92: 4b:f1:7d:f0:11:cd:e8:71:f8:37:4f:90:d1:1a:45: a0:c6:58:75:94:1d:25:d5:e8:0f:d0:31:f8:3e:e0: b0:de:5e:7f:a6:f6:08:06:4e:7a:3e:5c:ad:fc:d0: 4c:14:1b:d7:06:31:59:bf:fe:9a:d5:9b:7b:dc:ff: 95:23:cf:4b:f9:b5:c3:a1:be:ec:c9:21:9c:5b:ce: 78:b1:a5:31:91:9f:b4:2a:8a:61:41:99:3a:69:19: ba:b3:ab:d3:37:5d:5b:80:e5:54:a6:62:8e:c4:45: 5a:7f:41:81:20:b8:ab:e3:5e:dc:95:63:93:48:54: 86:84:c8:84:48:89:2c:a2:96:4d:72:d3:36:46:f3: 6b:e2:3b:44:1d:62:8d:50:bc:d4:ef:21:3b:b6:36: 1e:b2:67:69:e4:44:bc:e5:1c:3a:66:67:9f:1d:ad: dd:67:3b:d5:21:b3:4e:55:74:df:23:46:b2:0b:69: ce:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:66:8C:A6:CD:93:50:E1:88:50:F2:1F:77:8A:1A:A9:0E:CA:60:97 X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:61:e7:2e:64:45:cc:0d:bb:8c:17:a0:08:ca:5d:43:0a:70: 06:64:8e:3c:85:73:e9:d2:fb:cd:61:97:9e:8a:e6:1c:7b:eb: 3e:52:38:16:15:e4:80:96:06:e2:32:8c:bc:b6:bb:3f:0d:4f: 8b:70:37:9d:ea:71:14:bb:17:ba:09:f9:d3:3c:66:97:01:92: be:0f:19:9d:c4:ae:2b:df:e2:a9:5f:2c:26:8e:e8:bc:42:fe: ac:95:46:02:a7:11:81:8f:92:84:f8:e7:e8:87:bb:f8:84:81: 7d:1c:f2:74:5d:4c:9f:d9:1c:f0:d3:49:03:b6:08:a2:c6:2e: 4b:f7:df:5e:c9:f1:ce:6f:51:1b:cd:0c:7f:22:b3:5d:c7:6b: 3f:db:1f:ed:4e:df:cd:d4:b1:d0:f3:fb:66:2e:03:14:43:14: a7:d9:15:8f:3a:27:da:db:66:7e:e9:1c:d2:ca:23:8d:fa:f5: ad:ba:e3:01:58:b7:e5:c9:bb:68:0c:be:ea:44:a6:ee:bb:35: b1:e2:cb:72:fe:35:5e:bf:a2:7c:e3:a8:59:54:6f:97:19:42: 6e:87:f8:75:21:26:64:af:9e:8a:83:7c:35:14:5a:38:9f:00: 21:3c:d4:b5:54:df:1a:63:3f:b6:c1:8a:fb:aa:80:fd:ce:cf: d0:1d:c9:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjYwMTEyMjM0MDAwWhcNMjYwMTE5MjM0MDAwWjAYMRYwFAYD VQQDDA02OTY1ODY1MC0yNDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGJN45JS88dDdMvXkm0/CLMxgNMUYOCefN+gS9nWhQDoioQ6efw/3v69sm5W o5vliMpER+SgQxzHbl4bgRs2eseCt3aUXw3+opJL8X3wEc3ocfg3T5DRGkWgxlh1 lB0l1egP0DH4PuCw3l5/pvYIBk56Plyt/NBMFBvXBjFZv/6a1Zt73P+VI89L+bXD ob7sySGcW854saUxkZ+0KophQZk6aRm6s6vTN11bgOVUpmKOxEVaf0GBILir417c lWOTSFSGhMiESIksopZNctM2RvNr4jtEHWKNULzU7yE7tjYesmdp5ES85Rw6Zmef Ha3dZzvVIbNOVXTfI0ayC2nOSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1mjKbN k1DhiFDyH3eKGqkOymCXMB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVDQy8xM0U3RDcyRUFGRTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NR bzlJQ3Fqa015bi03a3FSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYYecuZEXMDbuMF6AIyl1DCnAGZI48hXPp0vvNYZeeiuYce+s+UjgW FeSAlgbiMoy8trs/DU+LcDed6nEUuxe6CfnTPGaXAZK+DxmdxK4r3+KpXywmjui8 Qv6slUYCpxGBj5KE+Ofoh7v4hIF9HPJ0XUyf2Rzw00kDtgiixi5L999eyfHOb1Eb zQx/IrNdx2s/2x/tTt/N1LHQ8/tmLgMUQxSn2RWPOifa22Z+6RzSyiON+vWtuuMB WLflybtoDL7qRKbuuzWx4sty/jVev6J846hZVG+XGUJuh/h1ISZkr56Kg3w1FFo4 nwAhPNS1VN8aYz+2wYr7qoD9zs/QHclZ -----END CERTIFICATE-----Generated at Tue Jan 13 07:02:40 2026 by rpki-client