This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: wKk6Ii5N1wFwQSxkkiU0XByTF5Nq/1b7H+IlbHMc8H4= Subject key identifier: E3:67:26:77:37:6A:CE:FC:28:75:EA:B2:9A:9B:3B:4E:2B:B1:82:8A Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: C9 Signing time: Thu 25 Dec 2025 04:48:47 +0000 Manifest this update: Thu 25 Dec 2025 04:48:47 +0000 Manifest next update: Thu 01 Jan 2026 04:48:47 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: HutU98WDL810ntBLbXyx7fLwSFW8llpJ00WDokemfMU=) 2: 30BF0192D5B411F0BA49041CC4F9AE02.roa (hash: PAU9LaWLshO4UTOKurVFETgWtkJ7qYvGsm0cTyvrIbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 04:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Dec 25 04:48:47 2025 GMT Not After : Jan 1 04:48:47 2026 GMT Subject: CN=694cc22f-650d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4b:fc:31:ab:6d:7f:f4:17:80:bf:66:d0:ce: 9b:71:15:aa:bc:56:33:c0:7e:58:48:43:c8:e5:26: 18:77:3f:aa:a0:89:7e:ed:2a:33:fd:36:66:d0:11: 77:5e:ec:b1:35:d5:f8:6a:e2:fd:c2:0f:87:95:64: c5:6f:5b:38:6f:54:d8:2d:f2:a1:73:0c:31:fe:de: aa:26:71:5a:0a:5e:a7:78:00:1f:53:b6:37:16:2d: d3:f5:83:5b:6a:50:33:23:1d:42:0f:19:25:07:ca: 4b:81:c0:fc:b7:d1:f3:bf:ce:fe:4e:6a:fd:57:df: 30:8b:33:74:bb:0f:88:41:33:d8:93:b6:bc:38:11: 38:bc:6f:e7:5f:6e:fb:ce:bc:58:a0:22:ed:b1:d5: 3c:ce:2e:93:8c:9e:36:c1:af:99:5a:91:35:1d:14: e3:4b:b9:ed:60:e8:07:2f:6f:a2:48:5a:39:1b:32: 02:16:11:0b:18:d7:fe:51:3e:31:d2:30:af:ce:a2: 90:56:56:cc:f2:50:9a:9a:2d:5e:09:e1:9e:9f:c4: 14:00:25:9d:14:b6:72:36:33:b2:34:9d:ba:1d:38: e4:9a:bb:9e:ef:d1:dd:89:e4:3b:45:81:be:ba:a6: c1:c6:f5:cc:f2:e4:fb:ce:25:2b:4d:66:9f:c0:30: 2f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:67:26:77:37:6A:CE:FC:28:75:EA:B2:9A:9B:3B:4E:2B:B1:82:8A X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:6e:ee:aa:1e:2b:b2:f4:4a:c0:6f:a2:83:d6:cc:00:0f:c6: 2e:f3:f1:10:90:1e:a7:94:d3:bc:35:16:30:36:1b:d6:9a:1f: 42:ea:8c:e9:f9:8d:a5:af:59:59:26:12:a5:e1:59:1b:63:b7: 08:2f:d6:e8:a4:b0:f7:65:dc:2a:43:8c:03:f8:af:d2:5b:94: 61:3d:90:4a:17:df:72:ea:02:16:3e:df:64:f4:a4:f4:c0:0a: 44:c2:30:a3:2f:80:41:f0:0e:a3:83:13:6e:57:0c:eb:60:a8: d9:13:ea:6a:8e:8a:77:45:96:9e:99:02:80:7f:94:1a:a7:a5: 6b:db:f2:50:4d:e9:24:84:6b:04:fa:3f:95:3e:4e:3a:de:f3: 3a:8c:0b:4a:dd:28:75:61:ad:3c:46:dd:e2:8e:5b:ff:e6:fc: 4c:b3:2f:58:f0:47:ca:a2:6b:53:2d:22:d4:5b:0d:cb:70:04: 70:cf:0f:16:18:36:bc:64:08:3f:16:48:32:52:70:5d:62:b4: 31:67:9d:2c:63:f9:6a:8f:a6:78:b7:f5:3f:6b:10:a4:f6:cd: af:8b:6c:0f:97:b1:c6:21:20:e6:7e:47:b5:82:ba:aa:05:cb: 4c:64:94:e0:69:81:c2:23:49:63:28:64:cb:48:e7:d7:9e:1c: a9:5d:29:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKDUzQzA4QkRBMDRCQzA1MzIyMUVCMjczQUEyMTVDQ0Q5 NUMwMEMzOTIwHhcNMjUxMjI1MDQ0ODQ3WhcNMjYwMTAxMDQ0ODQ3WjAYMRYwFAYD VQQDDA02OTRjYzIyZi02NTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0v8Mattf/QXgL9m0M6bcRWqvFYzwH5YSEPI5SYYdz+qoIl+7Soz/TZm0BF3 XuyxNdX4auL9wg+HlWTFb1s4b1TYLfKhcwwx/t6qJnFaCl6neAAfU7Y3Fi3T9YNb alAzIx1CDxklB8pLgcD8t9Hzv87+Tmr9V98wizN0uw+IQTPYk7a8OBE4vG/nX277 zrxYoCLtsdU8zi6TjJ42wa+ZWpE1HRTjS7ntYOgHL2+iSFo5GzICFhELGNf+UT4x 0jCvzqKQVlbM8lCami1eCeGen8QUACWdFLZyNjOyNJ26HTjkmrue79HdieQ7RYG+ uqbBxvXM8uT7ziUrTWafwDAvswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONnJnc3 as78KHXqspqbO04rsYKKMB8GA1UdIwQYMBaAFFPAi9oEvAUyIesnOqIVzNlcAMOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS84MzM4QzRENkFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJUSWg2eWM2b2hYTTJWd0F3 NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS84MzM4QzRENkFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJU SWg2eWM2b2hYTTJWd0F3NUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0bu6qHiuy9ErAb6KD1swAD8Yu8/EQkB6nlNO8NRYwNhvWmh9C6ozp +Y2lr1lZJhKl4VkbY7cIL9bopLD3ZdwqQ4wD+K/SW5RhPZBKF99y6gIWPt9k9KT0 wApEwjCjL4BB8A6jgxNuVwzrYKjZE+pqjop3RZaemQKAf5Qap6Vr2/JQTekkhGsE +j+VPk463vM6jAtK3Sh1Ya08Rt3ijlv/5vxMsy9Y8EfKomtTLSLUWw3LcARwzw8W GDa8ZAg/FkgyUnBdYrQxZ50sY/lqj6Z4t/U/axCk9s2vi2wPl7HGISDmfke1grqq BctMZJTgaYHCI0ljKGTLSOfXnhypXSnU -----END CERTIFICATE-----Generated at Thu Dec 25 19:54:06 2025 by rpki-client