This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft File: PHUP1suMdwFoHlNr3WtxXxkrivk.mft (raw, json) Hash identifier: e59BTRX4gRY41tvC0bAqXysjdtLgNgQBhFKqMGYRyNI= Subject key identifier: 18:97:0D:75:F8:96:0A:77:25:94:57:80:B0:11:77:E9:E3:F0:84:75 Authority key identifier: 3C:75:0F:D6:CB:8C:77:01:68:1E:53:6B:DD:6B:71:5F:19:2B:8A:F9 Certificate issuer: /CN=A914233F/serialNumber=3C750FD6CB8C7701681E536BDD6B715F192B8AF9 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft Manifest number: 01B9 Signing time: Fri 19 Dec 2025 02:20:15 +0000 Manifest this update: Fri 19 Dec 2025 02:20:14 +0000 Manifest next update: Fri 26 Dec 2025 02:20:14 +0000 Files and hashes: 1: PHUP1suMdwFoHlNr3WtxXxkrivk.crl (hash: 7UgpWVKiYrtpqYpBKixkeEskw5wuGyw8mBlufQSImrU=) 2: D1DA657E4AE411EE95B72651C4F9AE02.roa (hash: rYuzAQ2V3DCYFm8hLaFsEVJnKAGKcFikbLAjBKDZ9TQ=) 3: D2AD84364AE411EE95B72651C4F9AE02.roa (hash: PXugVBDjMMSZngC/IAk1O9uisIYx3s5Ti9BVaDUEHRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.crl rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914233F, serialNumber=3C750FD6CB8C7701681E536BDD6B715F192B8AF9 Validity Not Before: Dec 19 02:20:14 2025 GMT Not After : Dec 26 02:20:14 2025 GMT Subject: CN=6944b65e-ce89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f7:66:d5:38:c9:2b:8d:43:5b:de:7f:98:ee: b4:15:1d:b1:eb:46:59:ef:5f:3b:fe:6e:e3:2c:c8: 4b:d5:2e:a4:32:01:9a:b9:09:1a:60:5c:1b:55:83: a1:0b:94:44:76:21:fc:40:14:38:23:de:be:54:03: a4:91:4a:83:2f:75:bf:0c:11:fa:b7:5f:5c:7b:1c: ff:3a:98:87:f1:c2:eb:1e:db:9f:7a:10:13:78:ab: 97:5b:e6:75:0d:54:d1:ce:59:30:52:d2:24:f1:1d: 7e:df:7e:96:c8:a0:df:8d:e3:d3:25:45:69:1f:fd: 94:e3:0c:92:40:34:44:7e:df:15:17:74:9b:3c:8a: 90:48:b6:4e:1e:07:ea:9a:db:64:3e:36:31:8c:72: 53:ca:e8:8b:29:ba:81:4f:d2:6f:0d:38:67:32:55: f1:ce:04:0b:70:66:85:8f:93:26:8b:f8:01:47:3f: db:a9:3c:47:ab:64:3c:ad:91:52:25:c5:0e:6d:1d: b1:56:8d:4c:47:ce:44:b9:82:64:52:a3:03:3d:e3: 0b:ad:a0:f8:5f:c1:71:1e:0e:4f:21:d7:6a:b0:59: cd:6e:4d:58:d7:35:b3:1e:cd:5c:c5:9b:fe:b6:dc: 17:0f:e8:f5:e4:ea:0f:e2:67:e4:bf:ea:2c:8c:51: cd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:97:0D:75:F8:96:0A:77:25:94:57:80:B0:11:77:E9:E3:F0:84:75 X509v3 Authority Key Identifier: keyid:3C:75:0F:D6:CB:8C:77:01:68:1E:53:6B:DD:6B:71:5F:19:2B:8A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:6b:b1:33:ed:ce:73:bd:aa:56:10:17:7f:21:4a:9b:53:3b: 82:68:63:5b:2d:61:ce:4a:65:62:24:58:e2:0e:b6:86:11:dd: ad:2c:28:01:57:7f:c5:88:a8:67:21:0e:45:c8:49:85:1f:05: a9:7b:a7:69:b2:85:6f:9d:b9:b2:19:d0:5b:93:97:4b:1c:9d: 85:da:f9:af:75:02:9b:3f:19:75:20:4a:c1:80:68:d5:8d:81: bb:5b:77:cc:1f:75:f0:da:1b:dc:84:3a:fe:08:80:c2:b6:fd: 9a:ec:fc:ad:d7:cd:f1:a0:85:8b:b8:6d:8a:7e:43:61:06:be: 5b:1a:f7:26:70:01:47:a9:40:49:65:8e:9c:fd:16:77:ac:db: c3:91:22:b9:bd:a1:e9:b0:14:15:44:23:a7:84:ed:25:69:63: d9:f0:9d:8d:f1:de:14:8a:0c:49:ca:e9:18:1c:6c:23:3c:17: fb:c9:50:e0:2a:ba:e3:e3:e9:14:56:4e:6a:67:a5:8e:47:50: 4d:9a:57:f0:3d:a4:75:7e:a4:04:ea:34:93:80:a3:e4:e4:05: 90:6e:94:cd:af:f1:8b:32:2a:6f:c4:22:7e:c4:22:10:f7:d3: ca:a1:a6:11:eb:4d:b7:7a:2b:9f:83:48:4b:a2:60:91:f2:39: 4a:19:44:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzM0YxMTAvBgNVBAUTKDNDNzUwRkQ2Q0I4Qzc3MDE2ODFFNTM2QkRENkI3MTVG MTkyQjhBRjkwHhcNMjUxMjE5MDIyMDE0WhcNMjUxMjI2MDIyMDE0WjAYMRYwFAYD VQQDDA02OTQ0YjY1ZS1jZTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvdm1TjJK41DW95/mO60FR2x60ZZ7187/m7jLMhL1S6kMgGauQkaYFwbVYOh C5REdiH8QBQ4I96+VAOkkUqDL3W/DBH6t19cexz/OpiH8cLrHtufehATeKuXW+Z1 DVTRzlkwUtIk8R1+336WyKDfjePTJUVpH/2U4wySQDREft8VF3SbPIqQSLZOHgfq mttkPjYxjHJTyuiLKbqBT9JvDThnMlXxzgQLcGaFj5Mmi/gBRz/bqTxHq2Q8rZFS JcUObR2xVo1MR85EuYJkUqMDPeMLraD4X8FxHg5PIddqsFnNbk1Y1zWzHs1cxZv+ ttwXD+j15OoP4mfkv+osjFHNpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiXDXX4 lgp3JZRXgLARd+nj8IR1MB8GA1UdIwQYMBaAFDx1D9bLjHcBaB5Ta91rcV8ZK4r5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjMzRi84NUMyMEJEQTQ2 M0MxMUVFOUI3ODkxMzlDNEY5QUUwMi9QSFVQMXN1TWR3Rm9IbE5yM1d0eFh4a3Jp dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BIVVAxc3VNZHdGb0hsTnIzV3R4WHhrcml2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjMzRi84NUMyMEJEQTQ2M0MxMUVFOUI3ODkxMzlDNEY5QUUwMi9QSFVQMXN1TWR3 Rm9IbE5yM1d0eFh4a3JpdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATa7Ez7c5zvapWEBd/IUqbUzuCaGNbLWHOSmViJFjiDraGEd2tLCgB V3/FiKhnIQ5FyEmFHwWpe6dpsoVvnbmyGdBbk5dLHJ2F2vmvdQKbPxl1IErBgGjV jYG7W3fMH3Xw2hvchDr+CIDCtv2a7Pyt183xoIWLuG2KfkNhBr5bGvcmcAFHqUBJ ZY6c/RZ3rNvDkSK5vaHpsBQVRCOnhO0laWPZ8J2N8d4UigxJyukYHGwjPBf7yVDg Krrj4+kUVk5qZ6WOR1BNmlfwPaR1fqQE6jSTgKPk5AWQbpTNr/GLMipvxCJ+xCIQ 99PKoaYR6023eiufg0hLomCR8jlKGUTT -----END CERTIFICATE-----Generated at Fri Dec 19 23:58:54 2025 by rpki-client