This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.mft File: u9Lp2RPGRcigUZJHTP-olruaTqY.mft (raw, json) Hash identifier: SelTCrKohDWjK/TLE1wuWwU0HTQcYiL/xV/tkjSZR4Y= Subject key identifier: A6:21:1C:83:C5:0B:BB:4C:A2:E8:FF:A8:02:29:7B:FB:DB:CE:66:0E Authority key identifier: BB:D2:E9:D9:13:C6:45:C8:A0:51:92:47:4C:FF:A8:96:BB:9A:4E:A6 Certificate issuer: /CN=A9111B00/serialNumber=BBD2E9D913C645C8A05192474CFFA896BB9A4EA6 Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/u9Lp2RPGRcigUZJHTP-olruaTqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.mft Manifest number: 0238 Signing time: Sun 21 Dec 2025 01:10:50 +0000 Manifest this update: Sun 21 Dec 2025 01:10:50 +0000 Manifest next update: Sun 28 Dec 2025 01:10:50 +0000 Files and hashes: 1: u9Lp2RPGRcigUZJHTP-olruaTqY.crl (hash: gbQqw9OQyuHykYk6MHhZA2ElorZ/n7lNq7Yeqf8f4i4=) 2: 46DE5C7875DD11ED86945E46C4F9AE02.roa (hash: HvJRtP/1M+AejuhqdGaCDBK61eDiFrYobniM96LvHvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.crl rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/u9Lp2RPGRcigUZJHTP-olruaTqY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111B00, serialNumber=BBD2E9D913C645C8A05192474CFFA896BB9A4EA6 Validity Not Before: Dec 21 01:10:50 2025 GMT Not After : Dec 28 01:10:50 2025 GMT Subject: CN=6947491a-5f82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b6:ad:e4:9f:fd:2f:c1:8a:ff:d6:86:f7:93: fd:e0:5c:fb:00:bf:b2:f8:e3:ea:e6:bf:c3:ae:98: 91:e0:2a:70:fc:a4:90:41:16:af:45:01:2c:e4:85: f7:36:7c:cf:89:1b:d4:4c:2c:c3:58:7b:e2:56:af: 2e:75:44:ba:e9:ab:14:e8:2a:22:3d:5c:a5:af:90: cb:94:b9:ae:aa:54:34:0b:94:8b:97:97:fd:33:04: 6e:31:e1:f7:43:f4:75:ea:b2:17:53:fc:23:c5:e7: 97:71:a4:d4:e7:a1:ed:cb:70:e3:30:8a:2e:f8:8d: 07:32:86:c7:ec:d8:a9:90:f1:9d:99:82:74:c9:0d: 36:21:69:36:c1:08:62:35:03:ba:61:6d:85:91:c9: 1c:f2:34:55:73:05:6d:b4:de:06:1a:27:f0:96:10: 1c:84:3f:fd:34:db:cf:49:70:9c:70:68:84:a1:31: 9e:e6:62:9d:b2:6e:5e:4a:fe:3e:ce:ca:23:1a:e0: d7:a3:aa:4f:80:c1:a0:0b:50:9c:ae:c3:e1:2f:34: 5d:a2:17:c2:d3:c5:23:2f:d3:f0:e9:7b:b7:34:7b: 1a:78:34:55:83:5d:a4:a6:bf:79:99:14:fe:86:54: 1b:e6:3e:ed:b7:2a:90:97:a7:39:a0:02:48:5d:b9: 38:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:21:1C:83:C5:0B:BB:4C:A2:E8:FF:A8:02:29:7B:FB:DB:CE:66:0E X509v3 Authority Key Identifier: keyid:BB:D2:E9:D9:13:C6:45:C8:A0:51:92:47:4C:FF:A8:96:BB:9A:4E:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/u9Lp2RPGRcigUZJHTP-olruaTqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:8d:a1:ee:d3:b3:47:24:a1:26:1e:a4:49:b7:5b:e7:65:05: 79:25:9b:48:9c:88:f6:28:58:1d:75:12:8b:dc:67:c7:31:06: bd:3c:4f:a8:3b:0c:11:7a:54:e7:a3:b5:76:6d:73:4f:1c:12: 69:34:62:36:61:10:01:99:28:86:a1:aa:65:12:0a:d8:d5:cd: 71:7f:70:97:00:54:c6:32:61:fb:a0:09:69:a2:9e:ea:1f:0a: a2:4f:a5:83:ac:1b:3f:6a:dd:f7:94:24:b3:fd:55:67:3a:42: 98:f8:7a:7c:42:64:ff:6b:e5:7b:82:d6:a5:eb:35:f7:5e:ce: 29:3b:51:8b:90:f6:f0:ac:2b:e8:a8:87:d1:3f:48:aa:15:2d: 78:9e:2b:20:d2:42:af:4e:f1:6b:b7:24:3c:b6:14:85:38:0f: 7b:07:37:b4:8d:28:87:56:b4:bd:61:94:a5:85:e7:24:42:0e: 44:7d:72:01:ff:5d:ef:73:77:b6:77:3d:3b:36:44:bd:ab:d7: 7c:4d:ad:59:c3:e6:a8:8a:76:3c:56:a4:62:14:12:c2:ca:22: 69:48:00:7c:b0:56:f2:92:e3:31:a3:4c:dc:8a:a2:20:6b:8d: e2:26:96:2f:69:7c:1f:77:74:fc:d3:13:f9:a4:23:5b:ef:1b: 27:81:b3:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFCMDAxMTAvBgNVBAUTKEJCRDJFOUQ5MTNDNjQ1QzhBMDUxOTI0NzRDRkZBODk2 QkI5QTRFQTYwHhcNMjUxMjIxMDExMDUwWhcNMjUxMjI4MDExMDUwWjAYMRYwFAYD VQQDDA02OTQ3NDkxYS01ZjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLat5J/9L8GK/9aG95P94Fz7AL+y+OPq5r/DrpiR4Cpw/KSQQRavRQEs5IX3 NnzPiRvUTCzDWHviVq8udUS66asU6CoiPVylr5DLlLmuqlQ0C5SLl5f9MwRuMeH3 Q/R16rIXU/wjxeeXcaTU56Hty3DjMIou+I0HMobH7NipkPGdmYJ0yQ02IWk2wQhi NQO6YW2Fkckc8jRVcwVttN4GGifwlhAchD/9NNvPSXCccGiEoTGe5mKdsm5eSv4+ zsojGuDXo6pPgMGgC1CcrsPhLzRdohfC08UjL9Pw6Xu3NHsaeDRVg12kpr95mRT+ hlQb5j7ttyqQl6c5oAJIXbk4WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYhHIPF C7tMouj/qAIpe/vbzmYOMB8GA1UdIwQYMBaAFLvS6dkTxkXIoFGSR0z/qJa7mk6m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUIwMC8xM0NBNTE5Mjc1 RDkxMUVEQUI1OUM0NDJDNEY5QUUwMi91OUxwMlJQR1JjaWdVWkpIVFAtb2xydWFU cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3U5THAyUlBHUmNpZ1VaSkhUUC1vbHJ1YVRxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUIwMC8xM0NBNTE5Mjc1RDkxMUVEQUI1OUM0NDJDNEY5QUUwMi91OUxwMlJQR1Jj aWdVWkpIVFAtb2xydWFUcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7jaHu07NHJKEmHqRJt1vnZQV5JZtInIj2KFgddRKL3GfHMQa9PE+o OwwRelTno7V2bXNPHBJpNGI2YRABmSiGoaplEgrY1c1xf3CXAFTGMmH7oAlpop7q HwqiT6WDrBs/at33lCSz/VVnOkKY+Hp8QmT/a+V7gtal6zX3Xs4pO1GLkPbwrCvo qIfRP0iqFS14nisg0kKvTvFrtyQ8thSFOA97Bze0jSiHVrS9YZSlheckQg5EfXIB /13vc3e2dz07NkS9q9d8Ta1Zw+aoinY8VqRiFBLCyiJpSAB8sFbykuMxo0zciqIg a43iJpYvaXwfd3T80xP5pCNb7xsngbOb -----END CERTIFICATE-----Generated at Mon Dec 22 14:15:07 2025 by rpki-client