This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: 0O6MMeT7Id2Aie6jlPWBn8p09Ci9T7tWq05CnD0Hb3A= Subject key identifier: 31:02:4D:A9:8F:BD:DB:57:B8:0C:32:C5:F5:48:6B:48:08:90:50:B0 Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1C45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1C37 Signing time: Thu 18 Dec 2025 16:06:36 +0000 Manifest this update: Thu 18 Dec 2025 16:06:35 +0000 Manifest next update: Thu 25 Dec 2025 16:06:35 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: bYP9sc0FKFH354pusJ1nOfQZtzl38GJQ8EUyJRbAbgA=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: iw8R7e0/cuiLe2UpbocEUV4DYRPW2H32JZcJjyrYF2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7237 (0x1c45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Dec 18 16:06:35 2025 GMT Not After : Dec 25 16:06:35 2025 GMT Subject: CN=6944268b-a5d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:97:51:f4:8e:a0:7d:b1:3b:1e:ac:95:19: e1:ba:ad:b5:75:ee:52:58:e6:3a:8c:04:43:d1:86: 79:07:1e:62:2a:d5:15:39:1e:20:16:11:ed:7b:fb: 1e:3d:16:e5:69:68:57:9b:47:d4:ce:c6:14:50:35: c8:69:38:d3:af:e4:07:3a:21:04:22:8f:46:fa:f8: 74:29:83:9b:6f:06:36:32:b6:62:fe:97:d2:13:aa: 8f:1d:2e:7f:04:55:da:41:2d:ea:97:55:e9:21:03: e8:f1:1f:6a:d9:dc:91:73:27:e1:da:7a:5e:2f:a6: fc:7c:22:07:26:f6:d6:b0:bd:7e:d5:52:20:9e:15: 3f:d9:8e:4b:57:f9:7f:d0:a7:0a:0f:c2:da:9c:0a: f3:43:41:e5:05:39:77:3f:24:34:10:61:83:6a:ff: ed:5c:34:a8:2d:21:90:b2:7b:c8:69:b5:22:85:18: 10:85:5a:7a:3b:e4:f4:8a:5d:29:e5:f4:e0:c1:dc: 17:97:c8:6d:c0:84:4d:cb:5f:7c:a6:7b:90:1d:82: 34:71:ac:b6:12:b9:e0:1b:0f:f3:c0:ee:28:4d:1d: b5:c1:f1:64:5d:05:64:2d:78:ae:d0:f8:6c:a5:24: a9:41:28:cf:27:d5:9f:bc:7b:73:03:f5:82:bc:4c: 5b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:02:4D:A9:8F:BD:DB:57:B8:0C:32:C5:F5:48:6B:48:08:90:50:B0 X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:94:f6:92:aa:e7:d3:be:e8:11:86:ce:07:4d:37:59:76:1b: 82:10:c1:bf:f9:72:9e:5f:34:cb:75:32:f4:df:74:8a:2d:5b: 54:d6:7c:91:2d:38:0d:3c:0c:35:f0:79:ee:91:0d:a4:aa:61: ca:48:97:43:b0:26:7c:44:b0:fe:3a:c8:21:d3:1c:32:70:3d: 24:d2:41:44:2e:08:36:59:6a:bf:de:c4:96:79:a2:50:56:2c: 07:e0:d6:50:c9:40:40:84:82:1e:fd:d5:ce:f1:22:e3:db:2b: 8e:68:c3:21:ec:17:cd:43:c3:0e:67:94:a7:93:4e:1e:6f:9c: 8f:30:c4:44:2f:0b:78:01:5b:79:0b:a3:c2:fa:93:64:f8:38: c3:a8:21:3c:61:80:e3:ab:ba:7f:92:a8:fe:93:e5:29:d6:90: 4c:49:66:6c:e2:23:1a:a7:00:80:b2:5f:6e:ee:92:88:07:ad: cb:56:a4:e2:0f:64:a1:c0:a3:6c:33:f2:39:3a:51:92:43:06: fd:4e:54:9e:7b:76:2a:5a:5a:9e:fe:1b:38:53:bf:ed:52:3a: 1f:46:16:bd:da:e6:df:ba:62:7c:e3:e3:eb:11:36:ce:8e:67: 09:e6:41:15:5b:6a:77:f7:12:99:c2:96:15:e7:7c:49:95:ac: 73:03:60:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUxMjE4MTYwNjM1WhcNMjUxMjI1MTYwNjM1WjAYMRYwFAYD VQQDDA02OTQ0MjY4Yi1hNWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4uXUfSOoH2xOx6slRnhuq21de5SWOY6jARD0YZ5Bx5iKtUVOR4gFhHte/se PRblaWhXm0fUzsYUUDXIaTjTr+QHOiEEIo9G+vh0KYObbwY2MrZi/pfSE6qPHS5/ BFXaQS3ql1XpIQPo8R9q2dyRcyfh2npeL6b8fCIHJvbWsL1+1VIgnhU/2Y5LV/l/ 0KcKD8LanArzQ0HlBTl3PyQ0EGGDav/tXDSoLSGQsnvIabUihRgQhVp6O+T0il0p 5fTgwdwXl8htwIRNy198pnuQHYI0cay2ErngGw/zwO4oTR21wfFkXQVkLXiu0Phs pSSpQSjPJ9WfvHtzA/WCvExbcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDECTamP vdtXuAwyxfVIa0gIkFCwMB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOlPaSqufTvugRhs4HTTdZdhuCEMG/+XKeXzTLdTL033SKLVtU1nyR LTgNPAw18HnukQ2kqmHKSJdDsCZ8RLD+Osgh0xwycD0k0kFELgg2WWq/3sSWeaJQ ViwH4NZQyUBAhIIe/dXO8SLj2yuOaMMh7BfNQ8MOZ5Snk04eb5yPMMRELwt4AVt5 C6PC+pNk+DjDqCE8YYDjq7p/kqj+k+Up1pBMSWZs4iMapwCAsl9u7pKIB63LVqTi D2ShwKNsM/I5OlGSQwb9TlSee3YqWlqe/hs4U7/tUjofRha92ubfumJ84+PrETbO jmcJ5kEVW2p39xKZwpYV53xJlaxzA2Ck -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:20 2025 by rpki-client