This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft File: 25LUPJBhJQWzr0bpZKaMyfXzsq8.mft (raw, json) Hash identifier: pvffMGlzf6fSiTLlAM6buXTp0+OgHAGpTrIFhiD+z+Y= Subject key identifier: 90:F1:04:97:79:10:42:21:35:D8:DB:94:0F:26:20:52:4A:0F:E5:42 Authority key identifier: DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF Certificate issuer: /CN=A918213B/serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Certificate serial: 03A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft Manifest number: 0386 Signing time: Fri 19 Dec 2025 00:10:17 +0000 Manifest this update: Fri 19 Dec 2025 00:10:16 +0000 Manifest next update: Fri 26 Dec 2025 00:10:16 +0000 Files and hashes: 1: 25LUPJBhJQWzr0bpZKaMyfXzsq8.crl (hash: 7liJa4FPXXwjvozv9a0Cm+82qLx1f7RjEWS/cxHTFgg=) 2: B2FCF1C07FF911F08FAAC57FC4F9AE02.roa (hash: MnpTevKrhY7L4cqXUyU9PXlqHjDSUZYAGeApiPXwlBI=) 3: 9ABE08C606F311F08407D351C4F9AE02.roa (hash: Oo/z3Tl848fDTqTqN7CA+y187n0AUvuUe1PsbRy+loY=) 4: 299F07F2E15611EFA15DF23DC4F9AE02.roa (hash: fuFQR3XBNeUBp3GuT5Rq8XdFNfctvFuOXUDcjAZyCQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918213B, serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Validity Not Before: Dec 19 00:10:16 2025 GMT Not After : Dec 26 00:10:16 2025 GMT Subject: CN=694497e9-e755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:50:56:e8:3d:6e:61:ab:a2:44:99:69:31:03: 35:42:83:0c:d1:6c:30:13:67:25:f9:54:a5:34:4d: a4:33:1c:b3:13:90:04:96:62:75:5d:fd:ad:86:bf: df:da:6b:1b:31:5d:7e:12:bc:b2:9b:f4:f8:31:14: ec:51:05:00:9a:92:b3:3f:98:a3:c2:90:db:a2:63: 89:c7:af:64:55:0c:b7:d3:13:6c:d0:91:9f:b2:a4: 3c:10:e1:6b:f9:b9:e1:ad:d8:d3:e9:0e:ee:bc:ae: 20:09:36:70:ac:d8:3f:9a:17:35:bf:45:d4:5c:f5: d5:ba:97:e6:1a:f5:5d:de:ff:95:ac:eb:0b:34:06: fa:1f:22:fa:44:e3:24:f5:91:a2:1f:4e:5e:eb:e5: 8b:6d:f2:c5:36:ea:6d:1d:bc:e2:14:21:0e:21:19: 54:90:c7:9b:55:6a:c1:cc:87:53:b7:2a:94:44:de: 2f:50:01:4d:57:19:65:da:d7:fe:a0:c8:9b:d4:e4: 63:32:b2:43:97:23:3a:da:65:b8:95:03:e6:25:fb: 91:e6:74:1a:14:f1:14:e6:be:5c:6c:05:3d:a1:b8: c3:8b:d6:19:72:9b:23:0f:67:db:6f:7c:62:88:2f: 58:23:8d:55:ed:98:7b:50:13:93:86:2f:4b:b2:75: 76:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F1:04:97:79:10:42:21:35:D8:DB:94:0F:26:20:52:4A:0F:E5:42 X509v3 Authority Key Identifier: keyid:DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:bf:1d:2a:64:d6:e4:23:e2:4b:fd:cb:ca:b3:96:63:69:2f: f5:25:3a:02:f9:3e:25:f9:03:97:a7:ca:ef:6b:5d:49:10:14: bb:98:0f:a7:74:20:04:25:aa:50:bf:e8:2f:09:27:a2:a7:ae: 6d:b0:f1:ec:21:64:c5:f7:ba:ed:fd:3c:0d:0d:7d:dd:e1:c9: df:1d:7e:0f:90:b1:15:08:58:d8:b1:8c:20:5e:4a:5a:b5:08: da:32:9f:10:76:5d:32:5c:be:df:dd:ac:0c:28:6f:53:f5:f1: 53:77:aa:9c:bf:15:6a:c4:29:b5:b8:fc:be:3b:05:5a:26:25: 1d:97:69:87:5e:49:c6:d1:4a:b9:df:28:50:ae:88:43:4b:a8: 38:13:dd:87:0a:43:95:41:9a:65:30:f8:40:b1:96:b2:a4:50: bc:4e:4d:7e:66:38:3c:fa:49:7a:fd:09:b7:2c:b1:96:ba:f0: aa:4c:95:ae:6a:6f:76:49:fe:da:2a:55:e0:6e:9f:0b:1b:77: 94:c7:39:f0:28:0b:fb:23:19:5c:0d:3d:70:74:5c:66:d0:30: c3:50:15:f4:17:38:0c:71:4a:1e:e1:63:cb:d3:04:d8:a2:a0: 45:1e:51:34:9b:c0:c5:94:63:49:67:4e:e2:a7:29:56:90:85: 29:50:90:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIxM0IxMTAvBgNVBAUTKERCOTJENDNDOTA2MTI1MDVCM0FGNDZFOTY0QTY4Q0M5 RjVGM0IyQUYwHhcNMjUxMjE5MDAxMDE2WhcNMjUxMjI2MDAxMDE2WjAYMRYwFAYD VQQDDA02OTQ0OTdlOS1lNzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVBW6D1uYauiRJlpMQM1QoMM0WwwE2cl+VSlNE2kMxyzE5AElmJ1Xf2thr/f 2msbMV1+Eryym/T4MRTsUQUAmpKzP5ijwpDbomOJx69kVQy30xNs0JGfsqQ8EOFr +bnhrdjT6Q7uvK4gCTZwrNg/mhc1v0XUXPXVupfmGvVd3v+VrOsLNAb6HyL6ROMk 9ZGiH05e6+WLbfLFNuptHbziFCEOIRlUkMebVWrBzIdTtyqURN4vUAFNVxll2tf+ oMib1ORjMrJDlyM62mW4lQPmJfuR5nQaFPEU5r5cbAU9objDi9YZcpsjD2fbb3xi iC9YI41V7Zh7UBOThi9LsnV28wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDxBJd5 EEIhNdjblA8mIFJKD+VCMB8GA1UdIwQYMBaAFNuS1DyQYSUFs69G6WSmjMn187Kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjEzQi8wNzA3NkZBMEQ5 QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpRV3pyMGJwWkthTXlmWHpz cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1TFVQSkJoSlFXenIwYnBaS2FNeWZYenNxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjEzQi8wNzA3NkZBMEQ5QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpR V3pyMGJwWkthTXlmWHpzcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHvx0qZNbkI+JL/cvKs5ZjaS/1JToC+T4l+QOXp8rva11JEBS7mA+n dCAEJapQv+gvCSeip65tsPHsIWTF97rt/TwNDX3d4cnfHX4PkLEVCFjYsYwgXkpa tQjaMp8Qdl0yXL7f3awMKG9T9fFTd6qcvxVqxCm1uPy+OwVaJiUdl2mHXknG0Uq5 3yhQrohDS6g4E92HCkOVQZplMPhAsZaypFC8Tk1+Zjg8+kl6/Qm3LLGWuvCqTJWu am92Sf7aKlXgbp8LG3eUxznwKAv7IxlcDT1wdFxm0DDDUBX0FzgMcUoe4WPL0wTY oqBFHlE0m8DFlGNJZ07ipylWkIUpUJAZ -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:36 2025 by rpki-client