This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: uvh1G1OIRQU+5lSdf6zur5KbS2gLvUXxlyFgm+6Gg8Q= Subject key identifier: A2:E0:28:A3:C1:E1:FE:9A:BA:BB:72:40:80:EC:3B:A0:47:E5:C6:57 Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 3517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 3506 Signing time: Sun 28 Dec 2025 15:00:05 +0000 Manifest this update: Sun 28 Dec 2025 15:00:04 +0000 Manifest next update: Sun 04 Jan 2026 15:00:04 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: +L1EOUCoKG8JGlHbsuJVz88ffUBbzzs4edJ84idcEqs=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: l+r465/YNbsSePCYzOqNrThMuqt7t44YKkUIR4UnTJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 15:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13591 (0x3517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Dec 28 15:00:04 2025 GMT Not After : Jan 4 15:00:04 2026 GMT Subject: CN=695145f5-c3d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:74:d1:55:3e:2f:3d:ff:b8:35:6b:84:4b:ed: 32:31:fa:12:0f:06:e0:d1:84:ca:c1:16:ec:ac:58: 8b:bb:46:d6:e4:14:96:25:1e:8b:2f:0b:65:94:be: b3:47:24:c8:eb:15:d9:ff:a8:f5:f0:91:5e:2f:c6: 26:8e:2d:d3:1c:a4:2e:ae:10:24:d8:1c:ca:de:b1: b7:11:9a:b3:a9:b6:c7:e6:e0:02:e2:91:1a:10:1c: 29:da:c9:d7:52:0c:12:88:4d:b0:a5:92:49:c6:4d: c3:61:19:8c:1d:9c:f3:f1:e4:a1:19:63:5a:28:cd: 4f:27:12:85:33:de:cf:4f:b7:60:11:8f:07:bd:aa: 98:ed:43:f2:27:31:13:c5:57:2b:45:22:fd:85:63: d3:b2:f8:91:48:6a:fa:04:23:91:c0:6e:39:ee:d6: ff:be:7f:68:f0:0a:0c:6a:7a:fb:92:87:39:90:a8: 03:d2:44:57:e2:17:11:8d:06:f7:44:31:15:b7:74: e4:75:ca:40:11:3c:45:75:ba:53:21:3b:f7:19:c7: c1:aa:74:aa:f6:f3:4e:f4:cf:40:12:65:b9:62:e4: d3:2c:16:15:46:ca:ab:b3:e6:02:ec:04:3f:2f:57: b4:11:04:5e:fb:12:cc:0a:ab:d1:62:2e:95:c0:ae: 07:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E0:28:A3:C1:E1:FE:9A:BA:BB:72:40:80:EC:3B:A0:47:E5:C6:57 X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:e7:b6:b5:14:73:cb:7d:67:e3:57:8a:8a:67:58:fe:71:25: c6:e8:aa:d1:18:0a:1f:24:35:87:e2:4f:82:1f:f1:f3:57:60: eb:d6:94:64:89:a7:7d:1f:f7:89:2d:52:4d:bd:04:6a:f0:19: 4b:e9:34:6e:a1:e0:ec:da:78:67:4f:90:63:6f:3b:b7:10:d0: 9c:4f:25:10:84:dd:7d:35:51:01:a4:a9:d3:64:a8:ac:59:b0: 54:a7:a5:6b:b9:3e:d1:7e:54:93:7d:40:76:93:b7:35:c4:ec: ad:d4:3f:10:f7:35:10:c7:c9:0f:e0:f4:ba:93:b9:1d:c7:0e: 7f:bf:b3:29:8f:c5:0e:76:73:5a:8e:89:3d:f3:16:af:2e:c9: 47:63:ee:db:9f:9f:1a:d9:a4:9f:c9:65:60:61:33:1f:26:a9: 89:ad:57:1e:5d:9c:23:9b:21:de:99:4c:93:79:9d:ae:27:af: 43:48:a9:fb:5b:97:c4:9d:90:f4:06:22:31:ce:98:46:fd:6b: f6:55:bb:41:88:aa:3e:e0:a8:c2:59:84:5b:fc:dc:2f:52:42: e0:65:47:a2:94:ca:f6:7f:46:6e:d4:b8:16:1c:b8:9f:80:92: df:dd:a8:ec:eb:e7:07:a7:68:5e:8a:5e:9c:49:f2:4e:d9:f6: aa:49:1d:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjUxMjI4MTUwMDA0WhcNMjYwMTA0MTUwMDA0WjAYMRYwFAYD VQQDDA02OTUxNDVmNS1jM2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXTRVT4vPf+4NWuES+0yMfoSDwbg0YTKwRbsrFiLu0bW5BSWJR6LLwtllL6z RyTI6xXZ/6j18JFeL8Ymji3THKQurhAk2BzK3rG3EZqzqbbH5uAC4pEaEBwp2snX UgwSiE2wpZJJxk3DYRmMHZzz8eShGWNaKM1PJxKFM97PT7dgEY8HvaqY7UPyJzET xVcrRSL9hWPTsviRSGr6BCORwG457tb/vn9o8AoManr7koc5kKgD0kRX4hcRjQb3 RDEVt3TkdcpAETxFdbpTITv3GcfBqnSq9vNO9M9AEmW5YuTTLBYVRsqrs+YC7AQ/ L1e0EQRe+xLMCqvRYi6VwK4HFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLgKKPB 4f6aurtyQIDsO6BH5cZXMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC557a1FHPLfWfjV4qKZ1j+cSXG6KrRGAofJDWH4k+CH/HzV2Dr1pRk iad9H/eJLVJNvQRq8BlL6TRuoeDs2nhnT5Bjbzu3ENCcTyUQhN19NVEBpKnTZKis WbBUp6VruT7RflSTfUB2k7c1xOyt1D8Q9zUQx8kP4PS6k7kdxw5/v7Mpj8UOdnNa jok98xavLslHY+7bn58a2aSfyWVgYTMfJqmJrVceXZwjmyHemUyTeZ2uJ69DSKn7 W5fEnZD0BiIxzphG/Wv2VbtBiKo+4KjCWYRb/NwvUkLgZUeilMr2f0Zu1LgWHLif gJLf3ajs6+cHp2heil6cSfJO2faqSR07 -----END CERTIFICATE-----Generated at Sun Dec 28 18:55:26 2025 by rpki-client