This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: xxEzt78t1f7h3XnykJEwQy/IYBCb87DnBwlXAdaxvuQ= Subject key identifier: D3:3A:1B:62:90:7E:CC:24:BB:D0:CB:D1:80:65:C5:38:F1:9D:B0:5C Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 0209 Signing time: Sun 21 Dec 2025 01:40:48 +0000 Manifest this update: Sun 21 Dec 2025 01:40:47 +0000 Manifest next update: Sun 28 Dec 2025 01:40:47 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: sYAg1ZjcQnN4JfcSyoF6UW7iwc5hfG1YZGa4Ansn7EI=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: 8oKi9g3FW28uCT296akypss1lnTC3S8VPwt27zeBIKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Dec 21 01:40:47 2025 GMT Not After : Dec 28 01:40:47 2025 GMT Subject: CN=69475020-4577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b1:b9:e2:d0:a3:53:83:06:2b:7c:d0:be:9c: c0:35:9d:91:e3:18:44:42:df:ae:14:28:75:79:25: 50:23:db:10:86:e5:f1:46:00:da:ed:87:36:9f:ee: 61:36:de:8e:f2:dc:96:69:d6:dd:9e:ac:4b:25:7f: 4b:5b:93:f5:73:31:d3:93:3f:e1:9b:4a:30:ec:35: 28:3d:75:95:6c:c4:ee:42:64:30:c4:e2:75:6e:8a: d8:29:3b:a6:1c:32:d8:05:aa:9d:5a:7f:e9:b3:48: de:5a:c1:5a:6c:98:b8:24:32:be:d3:5e:1c:74:d1: b1:e9:b5:8e:a2:39:e3:3d:ef:24:83:b7:1c:52:59: bf:be:0f:4b:9b:d3:04:6b:d6:ae:50:cd:cf:3b:7a: 5d:38:ac:bc:df:e7:56:08:0c:96:d7:07:61:71:7d: e2:8a:50:c1:93:1d:df:3c:34:55:7e:53:be:cc:38: fb:9a:d8:21:2e:b7:52:1f:a2:c6:70:6a:dc:85:23: a8:d5:ff:7f:02:2a:a2:e0:e9:03:e7:71:7f:bf:cd: 81:d1:6d:7a:e6:ae:c2:d6:30:29:a2:f8:6d:ed:05: f3:ad:a6:b3:bd:9e:99:48:07:f6:f0:fe:fd:ca:48: 3d:ba:89:10:aa:e4:de:2b:e0:e8:d2:25:55:9f:35: ca:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3A:1B:62:90:7E:CC:24:BB:D0:CB:D1:80:65:C5:38:F1:9D:B0:5C X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:fb:85:82:3e:c5:b8:98:ce:c3:34:da:1e:58:c6:f9:43:2d: 70:35:d8:dc:74:a2:4b:3f:6d:72:95:4f:81:04:99:a6:d3:11: ce:41:a8:19:04:b3:fe:ab:a7:d3:bc:08:14:e0:03:00:ac:28: ca:8e:bf:e4:4a:7b:e3:68:af:97:06:4c:d8:29:4c:1d:f5:9f: 03:ba:a3:eb:22:84:ff:66:1d:3b:e6:15:8b:94:d9:68:9b:64: cc:a9:ca:38:9e:b6:c7:e7:fe:df:1b:ba:2c:a8:72:e1:a6:c2: 3e:74:4b:16:87:63:ef:aa:79:e7:15:18:dd:9b:93:b1:10:eb: 56:7a:4d:c0:34:30:b4:01:1b:c2:32:c9:83:0d:1c:7f:a8:cd: d7:2a:9c:74:42:01:1a:0a:24:9c:61:07:93:e6:58:57:7b:92: bd:eb:43:8e:1b:ea:94:ab:4c:82:62:7d:0d:d9:72:58:0a:47: 7f:31:0d:b9:ab:ab:66:ac:c7:30:bc:7a:78:16:97:5a:74:71: 56:2e:37:a7:f9:e4:40:53:4a:f0:87:fb:da:26:e1:c3:75:3e: 9f:d0:0a:34:12:c5:62:39:38:83:db:59:36:9a:fd:70:75:2c: 62:bf:88:8f:7f:50:b6:51:c7:a1:29:30:b9:94:5e:74:91:82: 88:48:c7:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUxMjIxMDE0MDQ3WhcNMjUxMjI4MDE0MDQ3WjAYMRYwFAYD VQQDDA02OTQ3NTAyMC00NTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubG54tCjU4MGK3zQvpzANZ2R4xhEQt+uFCh1eSVQI9sQhuXxRgDa7Yc2n+5h Nt6O8tyWadbdnqxLJX9LW5P1czHTkz/hm0ow7DUoPXWVbMTuQmQwxOJ1borYKTum HDLYBaqdWn/ps0jeWsFabJi4JDK+014cdNGx6bWOojnjPe8kg7ccUlm/vg9Lm9ME a9auUM3PO3pdOKy83+dWCAyW1wdhcX3iilDBkx3fPDRVflO+zDj7mtghLrdSH6LG cGrchSOo1f9/Aiqi4OkD53F/v82B0W165q7C1jApovht7QXzraazvZ6ZSAf28P79 ykg9uokQquTeK+Do0iVVnzXKJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNM6G2KQ fswku9DL0YBlxTjxnbBcMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDd+4WCPsW4mM7DNNoeWMb5Qy1wNdjcdKJLP21ylU+BBJmm0xHOQagZ BLP+q6fTvAgU4AMArCjKjr/kSnvjaK+XBkzYKUwd9Z8DuqPrIoT/Zh075hWLlNlo m2TMqco4nrbH5/7fG7osqHLhpsI+dEsWh2PvqnnnFRjdm5OxEOtWek3ANDC0ARvC MsmDDRx/qM3XKpx0QgEaCiScYQeT5lhXe5K960OOG+qUq0yCYn0N2XJYCkd/MQ25 q6tmrMcwvHp4FpdadHFWLjen+eRAU0rwh/vaJuHDdT6f0Ao0EsViOTiD21k2mv1w dSxiv4iPf1C2UcehKTC5lF50kYKISMcg -----END CERTIFICATE-----Generated at Sun Dec 21 16:16:24 2025 by rpki-client