This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft File: -S21ujUS5Gp82_tLNRS9b_hcjz0.mft (raw, json) Hash identifier: 9+yJF/ORd6S8QvdA/Z2VucEF4/z8RJDBbPLYrGZwb68= Subject key identifier: 3D:8C:05:7B:DB:50:87:BE:19:CA:F5:B2:C4:2D:DB:66:C5:BC:3A:19 Authority key identifier: F9:2D:B5:BA:35:12:E4:6A:7C:DB:FB:4B:35:14:BD:6F:F8:5C:8F:3D Certificate issuer: /CN=A9131A30/serialNumber=F92DB5BA3512E46A7CDBFB4B3514BD6FF85C8F3D Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft Manifest number: 015D Signing time: Tue 23 Dec 2025 03:07:05 +0000 Manifest this update: Tue 23 Dec 2025 03:07:05 +0000 Manifest next update: Tue 30 Dec 2025 03:07:05 +0000 Files and hashes: 1: -S21ujUS5Gp82_tLNRS9b_hcjz0.crl (hash: SoPG5f5bICVXBHzhFYrKD2v51V229Bed8R8BJ4XILlY=) 2: C3CCADD2CAF211EEBA58E81EC4F9AE02.roa (hash: 78U/w57PvT+FVEdRzkbgRL49bNVYISozUZOyQlDFcE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.crl rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A30, serialNumber=F92DB5BA3512E46A7CDBFB4B3514BD6FF85C8F3D Validity Not Before: Dec 23 03:07:05 2025 GMT Not After : Dec 30 03:07:05 2025 GMT Subject: CN=694a0759-419b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0a:d5:1b:ad:1d:19:0a:c8:a1:4d:df:5e:b8: 66:72:ea:3f:b3:e0:86:e1:18:da:a8:7c:a7:e5:38: 5e:37:cc:60:30:3d:79:f2:1e:f3:0d:08:17:2f:a8: 3d:12:04:c8:40:8e:d0:32:3b:0d:cd:dc:51:a4:a1: 46:9a:ba:e5:bd:ca:3a:ef:8b:e8:7f:b5:7d:27:2b: 75:46:f2:b6:5d:e0:3b:78:54:10:49:c6:d3:35:b3: ae:2f:09:27:8f:f6:85:8b:31:4d:82:81:6d:c1:47: d0:ef:14:01:c1:92:8f:3f:ca:fa:3e:a8:d0:86:51: 94:50:18:49:14:08:d2:6d:5a:bd:37:e6:12:23:e6: 2d:11:a7:cb:87:7c:1f:2c:82:b4:e9:b1:84:cd:b2: 93:6b:fb:23:42:d8:90:f3:33:9b:31:95:22:c1:89: 6b:e3:8f:82:b0:94:ce:ad:2d:a6:26:ff:23:49:34: 0a:41:fe:2f:37:b9:8e:18:50:ae:ff:fe:59:f8:df: 22:10:5b:49:61:be:c7:d2:bd:d5:3e:95:13:f0:23: ec:8e:ad:ea:4f:99:0f:06:b5:3e:d3:c8:dc:0c:d2: 6c:81:58:fc:73:e7:40:17:67:fa:2c:88:14:61:1c: 82:bc:9a:75:ed:24:92:14:37:f9:bf:16:e2:fe:86: 55:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:8C:05:7B:DB:50:87:BE:19:CA:F5:B2:C4:2D:DB:66:C5:BC:3A:19 X509v3 Authority Key Identifier: keyid:F9:2D:B5:BA:35:12:E4:6A:7C:DB:FB:4B:35:14:BD:6F:F8:5C:8F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:c4:14:5c:83:08:37:37:cb:cc:a7:0e:65:66:5d:cd:71:86: e0:7e:58:48:40:33:c2:d5:f9:21:f6:21:cf:c0:df:ce:1d:79: 28:14:d1:29:5d:ce:5c:a3:63:23:2a:6b:71:76:51:c2:e7:e1: e1:09:10:50:d9:f3:aa:1e:55:03:2c:e1:3d:6b:b8:31:58:bb: 56:6f:50:0c:61:81:e1:4d:d9:e5:2d:bc:3e:74:fc:9e:be:70: 81:ba:0b:a0:d7:0c:1a:3a:67:6a:6b:2a:79:de:70:7a:26:0e: 8f:19:3b:bc:83:f3:1c:7a:fa:8f:ec:cd:da:4e:99:d0:58:ca: 47:4a:fa:96:7e:96:93:a8:d4:c1:d0:81:c2:d9:9a:e4:05:e0: fe:79:80:f6:1e:61:4f:80:0f:8a:1b:6a:50:48:e1:47:f1:87: 07:31:5c:e3:10:40:80:59:a0:f7:df:be:0d:8b:9a:94:1b:be: 7b:4e:52:38:ce:d1:b5:c8:85:19:5d:5b:6a:8c:ff:63:70:82: c8:31:9a:0d:20:e4:77:8b:fc:7f:d2:51:57:2e:1e:81:50:81: 69:b6:07:06:9c:71:1d:a2:11:43:29:a3:8d:1f:a9:95:17:b6: 35:4b:f7:24:e2:75:75:4b:67:17:f8:f4:bc:67:29:5b:a7:00: c1:4b:57:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMzAxMTAvBgNVBAUTKEY5MkRCNUJBMzUxMkU0NkE3Q0RCRkI0QjM1MTRCRDZG Rjg1QzhGM0QwHhcNMjUxMjIzMDMwNzA1WhcNMjUxMjMwMDMwNzA1WjAYMRYwFAYD VQQDDA02OTRhMDc1OS00MTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxArVG60dGQrIoU3fXrhmcuo/s+CG4RjaqHyn5TheN8xgMD158h7zDQgXL6g9 EgTIQI7QMjsNzdxRpKFGmrrlvco674vof7V9Jyt1RvK2XeA7eFQQScbTNbOuLwkn j/aFizFNgoFtwUfQ7xQBwZKPP8r6PqjQhlGUUBhJFAjSbVq9N+YSI+YtEafLh3wf LIK06bGEzbKTa/sjQtiQ8zObMZUiwYlr44+CsJTOrS2mJv8jSTQKQf4vN7mOGFCu //5Z+N8iEFtJYb7H0r3VPpUT8CPsjq3qT5kPBrU+08jcDNJsgVj8c+dAF2f6LIgU YRyCvJp17SSSFDf5vxbi/oZV6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2MBXvb UIe+Gcr1ssQt22bFvDoZMB8GA1UdIwQYMBaAFPkttbo1EuRqfNv7SzUUvW/4XI89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEzMC80QjdBMTg2QUNB RjIxMUVFQUNEQjJFMUVDNEY5QUUwMi8tUzIxdWpVUzVHcDgyX3RMTlJTOWJfaGNq ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1TMjF1alVTNUdwODJfdExOUlM5Yl9oY2p6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEzMC80QjdBMTg2QUNBRjIxMUVFQUNEQjJFMUVDNEY5QUUwMi8tUzIxdWpVUzVH cDgyX3RMTlJTOWJfaGNqejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoxBRcgwg3N8vMpw5lZl3NcYbgflhIQDPC1fkh9iHPwN/OHXkoFNEp Xc5co2MjKmtxdlHC5+HhCRBQ2fOqHlUDLOE9a7gxWLtWb1AMYYHhTdnlLbw+dPye vnCBugug1wwaOmdqayp53nB6Jg6PGTu8g/McevqP7M3aTpnQWMpHSvqWfpaTqNTB 0IHC2ZrkBeD+eYD2HmFPgA+KG2pQSOFH8YcHMVzjEECAWaD3374Ni5qUG757TlI4 ztG1yIUZXVtqjP9jcILIMZoNIOR3i/x/0lFXLh6BUIFptgcGnHEdohFDKaONH6mV F7Y1S/ck4nV1S2cX+PS8ZylbpwDBS1ck -----END CERTIFICATE-----Generated at Tue Dec 23 16:55:40 2025 by rpki-client