This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: EYdxlIEWrrqVYdbCz35Q9srXtmzI040CuoZPYvhee4A= Subject key identifier: AE:D0:23:50:3B:C8:17:9B:D7:DD:F5:2E:D8:89:41:C7:6F:ED:B0:04 Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 351A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 3506 Signing time: Wed 24 Dec 2025 14:43:34 +0000 Manifest this update: Wed 24 Dec 2025 14:43:33 +0000 Manifest next update: Wed 31 Dec 2025 14:43:33 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: f0BNKOp1YfIMYXAJWIFwTrodXSzhrY9osarW0mQVxCc=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: 87V6SXUvvAIKhZA2XnoavxG9s7I/eBbv0ebUc09ej5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 14:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13594 (0x351a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Dec 24 14:43:33 2025 GMT Not After : Dec 31 14:43:33 2025 GMT Subject: CN=694bfc16-7586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:de:fd:e4:fa:08:a0:f1:d3:81:8a:80:e4:b4: b3:cd:8b:fa:d4:27:19:f4:27:ea:e1:e1:b6:1b:79: 17:c6:c2:fa:91:f6:09:9c:96:cb:25:64:70:7e:49: ba:df:e3:c8:ae:85:20:2e:de:a8:b0:d2:44:b5:8f: b8:f3:59:b9:6e:f8:c6:1e:54:1a:8c:74:b5:51:8e: bc:89:93:81:68:20:0f:b0:89:7e:0b:56:5d:0b:34: 63:c7:78:3f:8b:c8:ff:67:87:c3:0a:cd:2f:05:17: 7f:7b:ce:9e:31:61:6e:d4:8a:07:08:e6:13:96:99: 8f:02:bd:25:64:5c:6a:a7:5e:d0:cf:19:b5:77:c6: 6a:e1:11:e1:a6:14:a1:3e:2f:d3:7a:82:2a:c8:ea: 2f:ca:fe:96:15:18:a7:17:f1:bd:14:22:d4:08:f5: 14:5b:bc:63:fe:5a:f5:95:75:cd:0c:2a:26:1b:b9: 3d:75:7f:64:80:7b:b4:76:20:11:ed:d5:d0:13:b3: 83:34:a9:92:d4:8b:3b:b8:ad:69:82:22:08:75:f9: 69:10:76:41:d5:32:1c:bb:fe:b5:3a:e3:d6:71:bc: 2c:b2:b0:57:62:29:ce:0a:83:97:cf:ff:31:be:0e: b8:78:71:e8:41:ff:49:09:71:d9:19:cc:ac:dc:99: ac:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D0:23:50:3B:C8:17:9B:D7:DD:F5:2E:D8:89:41:C7:6F:ED:B0:04 X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:8c:85:6d:1b:11:9c:f7:6e:77:d8:b1:8d:3b:89:71:9c:9b: bc:5c:9d:c7:e9:dd:3b:d9:0c:fe:1c:f0:4b:b4:dc:66:03:69: 5d:8a:a0:a7:04:a2:0f:1d:e4:2a:d9:26:c4:f4:a4:1e:fa:0a: 57:3a:f4:e1:8a:f9:3e:fc:bf:4b:1d:e0:2b:d9:0a:a2:49:4f: e5:27:c9:12:58:05:bd:c4:ca:b0:a5:68:a6:7f:ea:26:a2:93: b5:07:8a:90:5a:5e:73:06:db:a3:b3:52:45:36:e5:91:66:1e: 5a:92:e5:1f:0c:2d:f9:97:39:05:a1:3d:b0:ec:6b:df:52:7a: f0:58:dc:99:ac:19:52:e1:e1:a5:66:df:d6:97:01:df:d9:5f: 6a:d2:68:b7:21:7d:df:68:a1:43:0f:be:9e:aa:67:7c:f6:16: 16:9b:d5:9a:5f:41:76:aa:ee:59:10:dc:ad:76:db:a6:b3:ea: 79:47:0a:4d:61:ff:30:17:fa:da:45:c9:58:8a:31:a6:1f:02: e0:3b:46:62:bf:93:22:c0:8f:0e:97:a3:bc:d6:41:77:fb:f4: 34:e1:e3:31:ad:5e:4f:0c:ac:b3:12:f7:5c:dc:33:bb:3d:ca: 05:df:f6:8a:f5:7f:ea:cd:15:bf:d4:46:c2:c0:ee:fa:81:9a: 6b:e9:e8:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjUxMjI0MTQ0MzMzWhcNMjUxMjMxMTQ0MzMzWjAYMRYwFAYD VQQDDA02OTRiZmMxNi03NTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4N795PoIoPHTgYqA5LSzzYv61CcZ9Cfq4eG2G3kXxsL6kfYJnJbLJWRwfkm6 3+PIroUgLt6osNJEtY+481m5bvjGHlQajHS1UY68iZOBaCAPsIl+C1ZdCzRjx3g/ i8j/Z4fDCs0vBRd/e86eMWFu1IoHCOYTlpmPAr0lZFxqp17Qzxm1d8Zq4RHhphSh Pi/TeoIqyOovyv6WFRinF/G9FCLUCPUUW7xj/lr1lXXNDComG7k9dX9kgHu0diAR 7dXQE7ODNKmS1Is7uK1pgiIIdflpEHZB1TIcu/61OuPWcbwssrBXYinOCoOXz/8x vg64eHHoQf9JCXHZGcys3Jms2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7QI1A7 yBeb1931LtiJQcdv7bAEMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVjIVtGxGc92532LGNO4lxnJu8XJ3H6d072Qz+HPBLtNxmA2ldiqCn BKIPHeQq2SbE9KQe+gpXOvThivk+/L9LHeAr2QqiSU/lJ8kSWAW9xMqwpWimf+om opO1B4qQWl5zBtujs1JFNuWRZh5akuUfDC35lzkFoT2w7GvfUnrwWNyZrBlS4eGl Zt/WlwHf2V9q0mi3IX3faKFDD76eqmd89hYWm9WaX0F2qu5ZENytdtums+p5RwpN Yf8wF/raRclYijGmHwLgO0Ziv5MiwI8Ol6O81kF3+/Q04eMxrV5PDKyzEvdc3DO7 PcoF3/aK9X/qzRW/1EbCwO76gZpr6eiF -----END CERTIFICATE-----Generated at Thu Dec 25 21:13:32 2025 by rpki-client