This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: hxIffePMazfoEd0/yIEbSJrNGUwk1/BY6Y3IRELZ0a8= Subject key identifier: D6:67:BB:B9:60:E0:33:64:41:20:22:5C:89:87:8D:7D:B6:C1:05:4E Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 35CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 3528 Signing time: Thu 18 Dec 2025 15:15:28 +0000 Manifest this update: Thu 18 Dec 2025 15:15:27 +0000 Manifest next update: Thu 25 Dec 2025 15:15:27 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: aUWQGOqmvx3C9jyDhYG6lcYMgf9fXWXeEPzNHirUlR8=) 2: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: 9WFhbxgW1k8KC+Pm/htl49PyfwqFC/Q/qBICa75Yy/U=) 3: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: 9fLp3FpzRgG8gTpa9Wdwux4sENLbjSpORh9XzAGvous=) 4: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: Yrlzkw+xW7vzxjAA+gYjWPy3w6+ulnZPM2vfj4PRtL4=) 5: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: psLOpD8C8pfqh2g1Ejy2VgUijKrebCOnSdSbyi1VBeo=) 6: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: bbr75VePBSQhbmm3KlmHsLYo/ATNizzMszRI6/9uPZ8=) 7: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: lSnudi0sxwHRV/vi9lzYm6RYJUroM2G+k2V6NDU8F9s=) 8: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: mblhIH5WhCJxyS9xk8iobqAI3hQpbzIkn//NqWLOlIU=) 9: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: RcPbYS2Mm16Dad2keSZ4cdbUI7gVUL7UCpOgtTmht7o=) 10: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: nDdtc4fqfOTSbb5iCoB70ze8NVonJMIYgxedc+2CDmI=) 11: 2F20ECAE554211EF82D40732C4F9AE02.roa (hash: r+ewS8jRefW6/Fs2vkW+LCfFdXLDWM6NtEIDinEYIFQ=) 12: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: SDoyG5rsMeQ6bXhagfaHksn0k7FTFIvh2Jsa/kFvAUY=) 13: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: 96SYU6m7SGiOTx98szkfXwpjHUBpGQY+sEJUou+Xksk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13770 (0x35ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Dec 18 15:15:27 2025 GMT Not After : Dec 25 15:15:27 2025 GMT Subject: CN=69441a90-b4ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:06:42:e7:c3:f1:87:d8:8c:29:21:43:31:7a: a8:a0:c4:49:dc:89:64:94:3f:1b:2b:40:3e:fe:fe: c8:c6:f0:fb:83:8e:16:e3:97:9d:de:67:a4:0b:66: 67:ff:a2:27:4d:e9:a6:04:83:03:85:dc:74:27:d0: 91:5b:0c:7c:a8:36:4d:66:0c:3a:20:73:11:dc:eb: ca:43:5f:db:a3:19:41:56:29:d1:9c:20:e3:51:9d: bc:a0:b8:e0:53:e2:6c:46:92:05:e6:b7:78:d5:c2: 28:47:f3:69:03:97:99:1b:f8:c8:8f:f7:ea:ca:fc: 14:5f:b8:d3:90:b6:0a:9a:dd:d2:96:ae:31:76:06: 3b:ed:d4:c3:0f:b9:0e:bc:1b:0f:e7:c1:93:fd:81: d8:90:4e:6d:a8:7e:bb:b0:fc:97:58:50:fc:93:6f: 77:3f:b4:1b:ca:0d:23:98:4e:3e:26:28:32:8e:07: 5c:e4:23:7f:23:58:e5:6d:ab:d0:b9:1e:ca:cc:e8: d9:c0:dd:bb:d0:ef:8c:5e:7d:69:54:93:ec:5d:fd: 9d:7e:08:7b:42:fc:bc:1b:47:23:40:17:9f:0b:e8: ce:cd:7d:ce:68:b8:56:45:56:55:a3:50:42:88:01: fc:cf:dc:df:97:6d:bd:0f:9e:64:f7:19:fa:57:4e: cb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:67:BB:B9:60:E0:33:64:41:20:22:5C:89:87:8D:7D:B6:C1:05:4E X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:11:43:7c:0f:28:df:9a:cb:3c:16:e6:be:e5:87:f5:68:c4: 8b:8b:2e:1a:cf:c6:2e:c0:f9:3e:8c:78:a0:da:b7:11:0b:5a: db:59:19:c5:b1:35:69:3f:53:19:fe:3a:d4:75:c2:08:2f:56: be:80:5e:ba:82:fb:45:88:f4:65:30:42:59:ea:c9:c9:8a:6b: 04:63:07:b5:55:ed:21:42:db:c6:7b:9e:e4:be:c8:93:f7:82: 8a:c2:9b:3a:43:90:cf:3a:6e:a6:87:5a:a8:66:2c:94:f5:2d: 5d:0d:94:79:58:4a:bd:9f:0a:43:97:ab:04:31:7d:59:9c:81: 42:a4:a4:0e:e2:56:ce:9d:9b:82:5c:54:4c:35:6e:8d:db:03: 50:c7:e3:f8:8f:f4:ef:6a:cb:5b:d9:cf:8e:00:a6:05:30:fc: 95:48:ca:f5:ad:49:30:e2:4a:b8:13:54:91:29:96:78:65:b7: 02:d3:fb:2f:57:e3:d3:4a:27:61:8c:b8:0c:f7:4c:68:5e:1f: 35:28:44:04:44:cf:a3:cf:7c:b0:63:50:62:a9:08:9d:3b:01: 05:2b:e5:df:e3:66:94:b4:3e:20:6f:98:56:d7:e5:d2:4f:5d: 29:08:81:98:63:a9:6c:96:25:9e:cb:ef:d6:d6:71:ca:59:f6: 24:4c:20:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUxMjE4MTUxNTI3WhcNMjUxMjI1MTUxNTI3WjAYMRYwFAYD VQQDDA02OTQ0MWE5MC1iNGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwZC58Pxh9iMKSFDMXqooMRJ3IlklD8bK0A+/v7IxvD7g44W45ed3mekC2Zn /6InTemmBIMDhdx0J9CRWwx8qDZNZgw6IHMR3OvKQ1/boxlBVinRnCDjUZ28oLjg U+JsRpIF5rd41cIoR/NpA5eZG/jIj/fqyvwUX7jTkLYKmt3Slq4xdgY77dTDD7kO vBsP58GT/YHYkE5tqH67sPyXWFD8k293P7Qbyg0jmE4+Jigyjgdc5CN/I1jlbavQ uR7KzOjZwN270O+MXn1pVJPsXf2dfgh7Qvy8G0cjQBefC+jOzX3OaLhWRVZVo1BC iAH8z9zfl229D55k9xn6V07LNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZnu7lg 4DNkQSAiXImHjX22wQVOMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLEUN8Dyjfmss8Fua+5Yf1aMSLiy4az8YuwPk+jHig2rcRC1rbWRnF sTVpP1MZ/jrUdcIIL1a+gF66gvtFiPRlMEJZ6snJimsEYwe1Ve0hQtvGe57kvsiT 94KKwps6Q5DPOm6mh1qoZiyU9S1dDZR5WEq9nwpDl6sEMX1ZnIFCpKQO4lbOnZuC XFRMNW6N2wNQx+P4j/Tvastb2c+OAKYFMPyVSMr1rUkw4kq4E1SRKZZ4ZbcC0/sv V+PTSidhjLgM90xoXh81KEQERM+jz3ywY1BiqQidOwEFK+Xf42aUtD4gb5hW1+XS T10pCIGYY6lsliWey+/W1nHKWfYkTCC7 -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:34 2025 by rpki-client