This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft File: R_UMlYv5z1RcYBresE-KBeEB2aU.mft (raw, json) Hash identifier: 80FElTvDQhMEQfxwnZPWjuFQfL02Vn2bsTcLv0gAfMs= Subject key identifier: 1C:FB:70:43:AA:D8:A7:0F:79:D6:99:DD:E8:CE:6E:93:18:76:4F:DB Authority key identifier: 47:F5:0C:95:8B:F9:CF:54:5C:60:1A:DE:B0:4F:8A:05:E1:01:D9:A5 Certificate issuer: /CN=A9153490/serialNumber=47F50C958BF9CF545C601ADEB04F8A05E101D9A5 Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft Manifest number: 0157 Signing time: Sun 21 Dec 2025 03:21:43 +0000 Manifest this update: Sun 21 Dec 2025 03:21:42 +0000 Manifest next update: Sun 28 Dec 2025 03:21:42 +0000 Files and hashes: 1: R_UMlYv5z1RcYBresE-KBeEB2aU.crl (hash: DxL3xKDpA8s/7P2pNAKOSO+y2gdt8zQvNUcryHPtPSM=) 2: 0F0A0C72EBB411EE9D86095BC4F9AE02.roa (hash: g+h2X039YfWFdq3nneNF8fX2UZhaS8/1cDtSjJwB84Q=) 3: 0F778EDCEBB411EE9D86095BC4F9AE02.roa (hash: GLQc94rusVtQbATmFzKX5DyXm0E80+RpBsTaqBZ5TIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.crl rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153490, serialNumber=47F50C958BF9CF545C601ADEB04F8A05E101D9A5 Validity Not Before: Dec 21 03:21:42 2025 GMT Not After : Dec 28 03:21:42 2025 GMT Subject: CN=694767c7-a3c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:37:95:5b:5c:ad:b6:6f:e5:f6:e8:4b:f1:fc: 77:a9:b3:17:7d:49:cd:9d:21:1c:49:b4:5c:89:ed: 3d:38:da:ac:6f:68:b9:cd:4b:d0:a2:7f:0f:da:24: c5:d0:2d:9b:0a:66:52:6c:78:5c:03:ae:db:77:75: 23:d9:79:c3:69:0d:14:20:94:0a:24:42:d4:2e:6f: d0:a8:b2:99:7e:6d:27:97:fe:06:ac:63:be:37:9b: ab:b2:79:96:c1:79:2f:46:b5:e4:af:ba:e4:49:39: 57:c1:d4:dd:6f:54:ca:a5:fa:6a:62:4d:16:62:05: 61:1c:19:15:b9:ba:3c:b8:26:43:14:e6:1c:8c:d2: ae:8e:54:e1:c3:a5:43:2f:a8:cb:f6:07:66:a5:24: 29:d5:4e:ee:ef:37:dd:47:9f:5c:8b:c6:c4:c1:05: ca:9b:2f:2f:63:89:57:9d:88:ec:ca:13:3f:e9:b4: 58:3c:10:22:3b:c7:c0:be:2d:29:30:be:2d:a6:ed: 7e:34:1e:9c:fa:53:f3:c1:80:96:fd:1b:16:b4:d4: cb:5e:9e:06:2b:bd:dd:b8:14:80:a1:e4:47:74:5a: 7a:0e:ec:e6:1a:d0:e3:cb:a1:a8:4d:85:49:2e:16: c4:18:ed:d1:29:dd:d9:73:11:fb:15:90:7b:cd:4d: 5e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:FB:70:43:AA:D8:A7:0F:79:D6:99:DD:E8:CE:6E:93:18:76:4F:DB X509v3 Authority Key Identifier: keyid:47:F5:0C:95:8B:F9:CF:54:5C:60:1A:DE:B0:4F:8A:05:E1:01:D9:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:d6:fa:75:72:8f:74:38:4d:6f:ab:d1:85:6f:b0:ad:6f:14: d3:d0:21:d1:6f:b8:98:df:05:c2:ab:48:ff:5e:05:94:ea:65: 85:38:98:5d:5a:0b:53:2d:8b:c1:b7:55:ca:43:d8:1a:c7:b9: 32:9c:b0:c4:b5:f6:66:23:c0:74:c7:d4:40:d9:da:e5:fb:e9: 53:4e:89:ce:2b:0c:97:38:e6:83:05:c8:07:2a:1c:06:1a:81: 30:ce:49:0c:39:8b:71:f0:39:e3:9b:f8:14:c2:15:45:f4:2f: ab:28:df:c3:69:17:45:08:ed:9a:9d:dd:fe:a9:a0:10:c0:05: 5a:66:0f:2d:26:7b:56:f3:fb:00:9d:c4:9d:91:81:10:5d:bf: a6:c0:4a:8e:05:7b:b1:e5:68:8a:be:04:cd:20:6d:0c:ce:7a: c5:be:83:33:5a:16:ea:f2:21:a9:9a:76:f4:2c:9c:64:c4:93: ec:5c:14:3a:24:2e:e5:0e:b7:0f:a7:89:f4:f4:c9:06:53:56: 57:0d:cd:06:75:6b:d4:fb:14:e6:6a:af:3d:ce:66:44:d8:51: c7:21:41:fd:37:f7:9f:f4:4f:34:d6:b3:40:e7:15:79:64:82: 51:9b:00:a5:0c:b6:39:38:f8:fc:a1:75:df:5e:bf:79:ef:fb: 30:21:7f:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0OTAxMTAvBgNVBAUTKDQ3RjUwQzk1OEJGOUNGNTQ1QzYwMUFERUIwNEY4QTA1 RTEwMUQ5QTUwHhcNMjUxMjIxMDMyMTQyWhcNMjUxMjI4MDMyMTQyWjAYMRYwFAYD VQQDDA02OTQ3NjdjNy1hM2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjeVW1yttm/l9uhL8fx3qbMXfUnNnSEcSbRcie09ONqsb2i5zUvQon8P2iTF 0C2bCmZSbHhcA67bd3Uj2XnDaQ0UIJQKJELULm/QqLKZfm0nl/4GrGO+N5ursnmW wXkvRrXkr7rkSTlXwdTdb1TKpfpqYk0WYgVhHBkVubo8uCZDFOYcjNKujlThw6VD L6jL9gdmpSQp1U7u7zfdR59ci8bEwQXKmy8vY4lXnYjsyhM/6bRYPBAiO8fAvi0p ML4tpu1+NB6c+lPzwYCW/RsWtNTLXp4GK73duBSAoeRHdFp6DuzmGtDjy6GoTYVJ LhbEGO3RKd3ZcxH7FZB7zU1eqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBz7cEOq 2KcPedaZ3ejObpMYdk/bMB8GA1UdIwQYMBaAFEf1DJWL+c9UXGAa3rBPigXhAdml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQ5MC84RjUyNDg4RUQw NTQxMUVFQUY3OTlGMTZDNEY5QUUwMi9SX1VNbFl2NXoxUmNZQnJlc0UtS0JlRUIy YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JfVU1sWXY1ejFSY1lCcmVzRS1LQmVFQjJhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQ5MC84RjUyNDg4RUQwNTQxMUVFQUY3OTlGMTZDNEY5QUUwMi9SX1VNbFl2NXox UmNZQnJlc0UtS0JlRUIyYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDH1vp1co90OE1vq9GFb7CtbxTT0CHRb7iY3wXCq0j/XgWU6mWFOJhd WgtTLYvBt1XKQ9gax7kynLDEtfZmI8B0x9RA2drl++lTTonOKwyXOOaDBcgHKhwG GoEwzkkMOYtx8Dnjm/gUwhVF9C+rKN/DaRdFCO2and3+qaAQwAVaZg8tJntW8/sA ncSdkYEQXb+mwEqOBXux5WiKvgTNIG0MznrFvoMzWhbq8iGpmnb0LJxkxJPsXBQ6 JC7lDrcPp4n09MkGU1ZXDc0GdWvU+xTmaq89zmZE2FHHIUH9N/ef9E801rNA5xV5 ZIJRmwClDLY5OPj8oXXfXr957/swIX9B -----END CERTIFICATE-----Generated at Sun Dec 21 13:42:59 2025 by rpki-client