This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: IuGj7mQ5Z4NOWSw/wHyWnzE4nGC1NTYFcG337aIB7XQ= Subject key identifier: 7E:48:2C:30:0B:18:7E:F3:2E:EC:B5:10:97:E1:2D:B2:24:87:FB:FB Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 3512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 3501 Signing time: Thu 18 Dec 2025 15:01:52 +0000 Manifest this update: Thu 18 Dec 2025 15:01:52 +0000 Manifest next update: Thu 25 Dec 2025 15:01:52 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: wbpgsNXvkZ0JH1kmWzh+ol01xWU0TUcnFLrALjTh0+Q=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: l+r465/YNbsSePCYzOqNrThMuqt7t44YKkUIR4UnTJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13586 (0x3512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Dec 18 15:01:52 2025 GMT Not After : Dec 25 15:01:52 2025 GMT Subject: CN=69441760-3dc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b2:04:42:3a:12:7c:f7:d8:68:f4:6d:76:45: e3:19:7a:7c:98:b2:0b:e5:84:99:b1:72:75:4d:bb: 65:2f:5c:5d:d7:d3:d1:a2:51:3a:7e:78:d2:69:47: 0a:4b:f5:fd:cc:04:19:ed:de:81:21:47:ea:d3:65: 3b:d3:ff:db:ba:00:a5:a0:9c:4c:1c:cf:96:14:d7: 55:81:03:2d:22:cf:ad:f0:ae:f2:7d:c4:1a:64:22: f5:7c:55:2e:70:db:2c:d9:77:e6:9e:5f:f3:88:3e: ac:6f:9d:2a:c5:6c:17:c7:46:95:f8:e5:dd:3c:7f: 7a:01:b1:bb:9a:1d:75:7b:32:61:9f:57:09:69:47: c7:b3:ff:92:af:16:2b:24:bd:20:00:2e:34:3b:23: 6c:97:2c:06:ca:a4:79:4a:2f:31:b3:07:ac:cb:51: 57:78:3c:31:e3:c8:8d:cb:34:f6:7d:d6:7a:82:57: 94:d2:22:46:94:e7:81:1c:e0:ab:f8:1f:0c:00:cb: d1:15:83:03:c2:58:68:ac:86:7f:cd:2a:ef:2e:d3: f7:a4:b2:94:af:4d:34:f6:c1:c5:6c:66:47:b7:90: d1:fb:c9:40:9f:99:cf:86:cf:33:40:0f:46:c1:a9: 36:72:fd:d0:2f:96:b8:88:34:5e:ee:5d:86:86:38: 6c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:48:2C:30:0B:18:7E:F3:2E:EC:B5:10:97:E1:2D:B2:24:87:FB:FB X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:80:71:a6:60:e7:97:7c:de:8b:42:61:3d:13:1b:e1:13:c5: eb:de:e7:ef:6f:7f:ad:90:31:10:e6:30:eb:f4:85:85:70:03: 37:4c:68:3d:d6:44:b0:e8:41:18:f7:34:9a:45:d7:f1:3f:e2: c4:c8:32:c3:f2:2e:3a:5e:6b:3c:a3:95:43:79:61:50:84:82: c5:80:88:d0:c2:3d:bf:04:f9:15:78:4b:9d:bc:80:a4:d6:c1: 51:2b:95:fe:69:9c:4b:fc:15:5e:4e:41:1c:ca:55:57:df:e8: b9:b5:84:d9:54:65:1b:8e:e4:ee:f1:04:35:40:31:21:f9:18: 21:88:aa:76:a1:52:85:f7:8e:b6:e7:a2:fc:71:d7:85:3c:7a: 70:b1:4c:85:88:3a:95:39:ef:78:f1:86:ee:a8:b4:b2:5e:08: ac:ea:d7:d5:2f:52:5b:4e:d9:e3:3e:99:30:18:25:73:d6:81: 76:fd:50:71:ab:fe:97:e6:5f:0c:db:05:8c:5a:c3:07:4b:a4: 74:95:17:8b:cb:18:d6:85:e2:86:be:cf:df:3d:f6:a6:d6:e3: 62:82:14:a4:89:b4:8b:e2:6a:0c:3b:fb:fb:22:87:30:c4:ce: 46:1f:e2:ea:f4:43:71:f7:b7:91:55:31:76:43:7e:cf:0d:96: 94:7f:0c:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjUxMjE4MTUwMTUyWhcNMjUxMjI1MTUwMTUyWjAYMRYwFAYD VQQDDA02OTQ0MTc2MC0zZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rIEQjoSfPfYaPRtdkXjGXp8mLIL5YSZsXJ1TbtlL1xd19PRolE6fnjSaUcK S/X9zAQZ7d6BIUfq02U70//bugCloJxMHM+WFNdVgQMtIs+t8K7yfcQaZCL1fFUu cNss2Xfmnl/ziD6sb50qxWwXx0aV+OXdPH96AbG7mh11ezJhn1cJaUfHs/+SrxYr JL0gAC40OyNslywGyqR5Si8xswesy1FXeDwx48iNyzT2fdZ6gleU0iJGlOeBHOCr +B8MAMvRFYMDwlhorIZ/zSrvLtP3pLKUr0009sHFbGZHt5DR+8lAn5nPhs8zQA9G wak2cv3QL5a4iDRe7l2GhjhsowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5ILDAL GH7zLuy1EJfhLbIkh/v7MB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBngHGmYOeXfN6LQmE9ExvhE8Xr3ufvb3+tkDEQ5jDr9IWFcAM3TGg9 1kSw6EEY9zSaRdfxP+LEyDLD8i46Xms8o5VDeWFQhILFgIjQwj2/BPkVeEudvICk 1sFRK5X+aZxL/BVeTkEcylVX3+i5tYTZVGUbjuTu8QQ1QDEh+RghiKp2oVKF9462 56L8cdeFPHpwsUyFiDqVOe948YbuqLSyXgis6tfVL1JbTtnjPpkwGCVz1oF2/VBx q/6X5l8M2wWMWsMHS6R0lReLyxjWheKGvs/fPfam1uNighSkibSL4moMO/v7Iocw xM5GH+Lq9ENx97eRVTF2Q37PDZaUfwwk -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:42 2025 by rpki-client