This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft File: -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json) Hash identifier: U2X0Nw+d6ViSbO611xAnD4OEaL5QUKuF5NpICohDvOk= Subject key identifier: F1:13:7D:CB:EE:1A:6B:50:35:FF:93:38:60:AF:63:A7:86:E3:6D:65 Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft Manifest number: 0198 Signing time: Mon 22 Dec 2025 15:21:58 +0000 Manifest this update: Mon 22 Dec 2025 15:21:58 +0000 Manifest next update: Mon 29 Dec 2025 15:21:58 +0000 Files and hashes: 1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: XEJY7a7kP7GkrJcs3Ky4t7G0qn5XPL++tv8phCmPecg=) 2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: v8nxYYW0hF0+DI8v9AY4Ub2lKaqI81YP/TyFzHf/96E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Dec 22 15:21:58 2025 GMT Not After : Dec 29 15:21:58 2025 GMT Subject: CN=69496216-1959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2a:8a:fd:b2:00:fa:7f:41:a5:4f:da:3d:00: e6:67:33:5e:de:86:c7:84:45:2a:aa:91:bd:24:8c: 13:2a:b1:fd:01:2f:b4:db:aa:54:14:c4:d1:83:72: aa:68:d2:de:e0:04:af:d7:f5:8c:22:0e:2a:9b:20: f1:37:86:f5:6b:91:a5:97:ed:02:6b:6f:8a:23:f2: e2:f6:c8:19:25:23:21:ab:01:91:59:42:f6:d8:c4: 67:4a:2a:fe:da:29:fa:46:3b:6b:f7:b0:24:e5:88: 06:ad:f0:5a:01:ee:1b:cb:ee:68:89:3e:51:56:e7: 59:21:14:1d:35:1d:18:3b:40:67:79:97:00:21:74: c0:74:cb:98:5a:a5:68:3e:fa:95:80:ad:90:d6:78: b2:5c:19:21:43:13:e4:84:16:f5:40:f6:02:3e:28: e5:8d:08:29:58:0c:8d:cf:3f:f5:de:e0:f5:7a:f5: 66:30:24:17:a6:90:84:ef:c7:fe:8e:7f:bc:3d:9f: 8c:ea:58:db:74:d9:9b:f6:cb:c4:4a:2f:70:7e:b9: 34:69:c7:aa:a9:4f:67:24:4d:2a:fc:0d:59:04:b1: 46:a6:34:03:70:e5:c4:11:af:f2:05:39:0a:f8:42: cc:31:30:a9:07:08:a9:af:cc:0d:10:f2:7a:15:e5: 38:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:13:7D:CB:EE:1A:6B:50:35:FF:93:38:60:AF:63:A7:86:E3:6D:65 X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:84:93:6a:53:25:dc:a6:fd:e2:4b:73:3d:8a:c7:d6:bb:37: ca:56:95:ad:b9:92:35:08:ec:bb:8f:13:b5:18:ea:5b:c7:79: 16:9c:9d:80:c2:df:c0:8b:55:39:ac:d5:09:d1:c7:5c:bd:51: 2a:00:7a:ae:d1:95:49:a0:3a:3b:1f:fa:36:46:d9:e4:ea:71: cd:56:41:22:bc:cd:0b:98:21:a8:35:d8:ad:4f:f1:a0:dc:db: 0c:47:3a:4e:9f:28:48:a5:46:83:ea:84:f9:b8:b4:10:f2:00: 95:b3:c0:02:60:e3:09:56:33:4f:ec:bf:b0:be:0f:db:e2:82: 4c:4a:9d:e6:c7:ff:7f:80:27:bb:39:1b:46:88:3f:9b:62:05: 18:40:90:0e:72:51:17:69:c1:fa:c9:7a:0b:dd:07:87:0d:92: 84:7e:69:93:b3:47:e8:b9:4d:cc:99:8f:a5:74:88:61:99:86: bf:aa:8f:b1:96:17:54:05:fb:2d:85:4a:59:78:26:f0:b4:f8: b2:76:5c:73:bc:b4:7e:0e:5f:0e:e3:a0:17:81:b7:10:df:df: 50:2e:f6:bc:c3:c7:44:76:7f:47:49:f9:a5:27:c9:b0:41:0f: 75:50:40:11:63:61:69:d2:57:04:f3:de:be:d3:66:b2:48:ba: de:48:88:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjUxMjIyMTUyMTU4WhcNMjUxMjI5MTUyMTU4WjAYMRYwFAYD VQQDDA02OTQ5NjIxNi0xOTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yqK/bIA+n9BpU/aPQDmZzNe3obHhEUqqpG9JIwTKrH9AS+026pUFMTRg3Kq aNLe4ASv1/WMIg4qmyDxN4b1a5Gll+0Ca2+KI/Li9sgZJSMhqwGRWUL22MRnSir+ 2in6Rjtr97Ak5YgGrfBaAe4by+5oiT5RVudZIRQdNR0YO0BneZcAIXTAdMuYWqVo PvqVgK2Q1niyXBkhQxPkhBb1QPYCPijljQgpWAyNzz/13uD1evVmMCQXppCE78f+ jn+8PZ+M6ljbdNmb9svESi9wfrk0aceqqU9nJE0q/A1ZBLFGpjQDcOXEEa/yBTkK +ELMMTCpBwipr8wNEPJ6FeU47QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPETfcvu GmtQNf+TOGCvY6eG421lMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi80RjU2QzAxQzc3OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNS NlNhRHMtdGJla1YwbExKZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuhJNqUyXcpv3iS3M9isfWuzfKVpWtuZI1COy7jxO1GOpbx3kWnJ2A wt/Ai1U5rNUJ0cdcvVEqAHqu0ZVJoDo7H/o2Rtnk6nHNVkEivM0LmCGoNditT/Gg 3NsMRzpOnyhIpUaD6oT5uLQQ8gCVs8ACYOMJVjNP7L+wvg/b4oJMSp3mx/9/gCe7 ORtGiD+bYgUYQJAOclEXacH6yXoL3QeHDZKEfmmTs0fouU3MmY+ldIhhmYa/qo+x lhdUBfsthUpZeCbwtPiydlxzvLR+Dl8O46AXgbcQ399QLva8w8dEdn9HSfmlJ8mw QQ91UEARY2Fp0lcE896+02aySLreSIjk -----END CERTIFICATE-----Generated at Mon Dec 22 18:45:51 2025 by rpki-client