This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: tYfKRU6wAtGVmHH7QPBBZ4h9u821BjMbxPsRq4PQr4g= Subject key identifier: 0F:7D:62:06:81:04:06:09:06:AC:75:55:B8:F8:87:EF:E1:6E:76:C7 Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 01EB Signing time: Thu 01 Jan 2026 00:00:57 +0000 Manifest this update: Thu 01 Jan 2026 00:00:57 +0000 Manifest next update: Thu 08 Jan 2026 00:00:57 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: 21pWiRY2Iszf8T04ajiaF22X6lRMk/ig0pIrG5skDQ4=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: QkSv3Gc4gFnkTdv0FIFvYm4Nr0fb1nmO7PWxNtFWscE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 00:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Jan 1 00:00:57 2026 GMT Not After : Jan 8 00:00:57 2026 GMT Subject: CN=6955b939-de01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:03:17:82:d1:ce:c9:8a:20:83:86:e3:1d:f1: be:33:5f:89:37:6f:68:91:e1:21:9a:62:98:e0:03: e6:51:db:69:9b:6c:fa:14:ca:20:65:17:9b:37:65: 18:9a:47:39:a9:0b:93:63:3e:ac:b6:85:78:c7:c4: 38:5d:1c:18:0f:0f:fe:8f:36:29:bb:2e:bd:43:34: fd:39:02:b6:45:4c:88:c7:ae:af:bf:bc:93:fe:fa: 72:6e:62:02:e7:74:e2:06:5c:77:39:7d:30:6e:de: 5a:b6:52:fb:d8:3b:98:dc:40:af:26:95:31:b7:30: 30:66:3b:41:5b:ad:d4:e2:ba:e1:b8:ff:7f:9f:01: a9:fe:e2:c1:c0:4c:4f:e0:89:c9:51:1c:f7:74:1a: d6:e2:fb:0d:f0:36:14:19:19:be:d1:3d:cc:6b:17: 1f:fc:46:bf:ed:e9:8e:88:84:9a:80:e8:83:5f:54: 3d:25:cb:68:9f:75:65:27:a9:a0:32:96:6c:c1:5b: 2e:fd:10:d0:32:fd:56:6c:49:4c:6f:5f:60:08:45: 96:9f:ee:5c:67:f2:a3:02:cd:85:1e:c2:ee:4b:f7: be:91:93:35:9e:28:b1:55:f8:71:35:67:cf:e6:2d: 0c:ee:a2:e5:b3:c2:56:db:96:3c:52:bf:85:8f:ba: 57:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:7D:62:06:81:04:06:09:06:AC:75:55:B8:F8:87:EF:E1:6E:76:C7 X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:1b:9e:38:fa:5b:57:2a:d0:56:08:91:8c:8e:75:4a:6e:ed: 5b:bd:7f:99:7d:5d:eb:6c:8d:95:95:d1:39:03:48:d6:dc:6d: 5b:5e:6e:3c:82:ae:ff:24:f5:23:5e:4c:fe:c2:82:36:6b:72: 8d:bf:c1:06:fb:86:0d:74:1f:28:e7:23:58:35:28:18:ff:f8: a1:bd:5d:3b:15:30:76:7d:a2:74:67:74:33:fb:d8:6c:4a:37: 07:c2:5e:ee:cc:a3:35:25:f4:36:ef:c7:3e:ab:cb:49:7c:05: 2e:2c:52:ea:97:29:39:f5:f9:9a:b3:f9:76:84:2c:6c:7e:3d: b3:c4:45:e7:66:c2:1f:ed:16:eb:cb:19:fc:a6:a8:07:78:08: 47:d0:72:a4:fa:c8:f6:a8:00:c2:0a:68:14:00:f8:91:59:b4: ae:75:a6:1b:ea:14:11:2b:0b:34:f7:24:4b:3e:5e:69:73:48: a3:b9:80:dd:96:77:8f:bc:11:3c:40:e9:b9:2d:ec:d1:6c:8c: 4a:b1:dc:a0:30:15:85:87:9b:f7:2d:e6:30:4a:ad:d0:e2:f1: f5:b5:a5:35:1c:e1:86:bd:0b:e8:0b:6f:a9:3d:d5:8f:c6:f8: 98:4d:3f:9d:7a:c1:b7:6d:34:af:45:68:c8:3f:03:0a:5a:49: 9a:5c:c5:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjYwMTAxMDAwMDU3WhcNMjYwMTA4MDAwMDU3WjAYMRYwFAYD VQQDDA02OTU1YjkzOS1kZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gMXgtHOyYogg4bjHfG+M1+JN29okeEhmmKY4APmUdtpm2z6FMogZRebN2UY mkc5qQuTYz6stoV4x8Q4XRwYDw/+jzYpuy69QzT9OQK2RUyIx66vv7yT/vpybmIC 53TiBlx3OX0wbt5atlL72DuY3ECvJpUxtzAwZjtBW63U4rrhuP9/nwGp/uLBwExP 4InJURz3dBrW4vsN8DYUGRm+0T3Maxcf/Ea/7emOiISagOiDX1Q9Jcton3VlJ6mg MpZswVsu/RDQMv1WbElMb19gCEWWn+5cZ/KjAs2FHsLuS/e+kZM1niixVfhxNWfP 5i0M7qLls8JW25Y8Ur+Fj7pXwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA99YgaB BAYJBqx1Vbj4h+/hbnbHMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASG544+ltXKtBWCJGMjnVKbu1bvX+ZfV3rbI2VldE5A0jW3G1bXm48 gq7/JPUjXkz+woI2a3KNv8EG+4YNdB8o5yNYNSgY//ihvV07FTB2faJ0Z3Qz+9hs SjcHwl7uzKM1JfQ278c+q8tJfAUuLFLqlyk59fmas/l2hCxsfj2zxEXnZsIf7Rbr yxn8pqgHeAhH0HKk+sj2qADCCmgUAPiRWbSudaYb6hQRKws09yRLPl5pc0ijuYDd lnePvBE8QOm5LezRbIxKsdygMBWFh5v3LeYwSq3Q4vH1taU1HOGGvQvoC2+pPdWP xviYTT+desG3bTSvRWjIPwMKWkmaXMVO -----END CERTIFICATE-----Generated at Thu Jan 1 05:45:25 2026 by rpki-client