This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft File: 1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft (raw, json) Hash identifier: JILVhBV5BuzHN+v9iiBGRHG8ksDPabT/KxlK9lMIujw= Subject key identifier: 51:68:76:2F:84:5C:96:05:98:D1:6F:00:38:79:81:5C:9C:68:8E:09 Authority key identifier: D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A Certificate issuer: /CN=A9123E38/serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A Certificate serial: 1737 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft Manifest number: 170E Signing time: Sat 06 Dec 2025 16:14:44 +0000 Manifest this update: Sat 06 Dec 2025 16:14:43 +0000 Manifest next update: Sat 13 Dec 2025 16:14:43 +0000 Files and hashes: 1: 1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl (hash: dqhM2bYGwKzpC0x1hxRA9lo8pRc264cZ/YxiMrd7AO0=) 2: 24CFDABE00EC11E8AAC4DD6EC4F9AE02.roa (hash: ecERzKe4aH7s8rjg9Kt6Wo+1pU9CBduLgX3EVStj1rs=) 3: 0F2AF0F0AFDA11EAAED1C066C4F9AE02.roa (hash: FZkT4Kxe1dq9738R7EN3qc8IS8Q1dJKnESpThw2bzlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:14:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5943 (0x1737) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A Validity Not Before: Dec 6 16:14:43 2025 GMT Not After : Dec 13 16:14:43 2025 GMT Subject: CN=69345673-8957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b2:52:5b:82:83:a9:ed:92:d6:1f:dc:18:34: ef:5f:84:83:d1:4a:2a:aa:3a:27:22:04:43:8f:af: e3:41:b1:34:03:46:d4:ef:db:87:ff:4e:51:42:c9: 06:ec:33:c0:0c:58:2f:55:6c:22:ef:08:0d:b3:27: e7:7b:01:c2:92:87:1e:7b:83:bd:a7:80:f6:37:79: 37:0c:b8:81:37:3c:f3:83:4d:e7:54:e9:4b:2c:74: 92:8d:d8:88:2e:9d:9a:53:17:ba:08:bf:d8:0d:c1: a1:25:da:1b:37:e1:5a:bc:a3:da:de:57:02:77:59: 9b:14:a4:95:12:49:43:ae:ff:2f:f9:a7:3a:bf:36: a0:45:58:55:b0:42:1e:7d:b5:38:ff:da:7b:2a:4a: 2a:69:cd:1e:ff:0f:eb:d9:8e:d5:3e:1a:dd:2d:a8: a2:2c:07:87:47:b4:41:89:1e:90:68:49:d8:e7:a2: e0:af:47:82:40:9c:b9:2f:c4:bb:f7:08:fe:0f:7e: 79:2b:29:18:1b:a5:1f:52:a7:c3:76:e0:c6:3e:1c: fb:50:73:17:3f:fc:4b:5c:0e:f5:f9:f3:26:93:ba: 94:95:6f:bf:6c:fc:46:dd:17:18:dd:e4:e1:a9:6f: 71:f1:44:80:51:af:ce:df:01:cc:68:05:99:21:c3: 1e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:68:76:2F:84:5C:96:05:98:D1:6F:00:38:79:81:5C:9C:68:8E:09 X509v3 Authority Key Identifier: keyid:D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:1e:8c:a3:f2:a1:1c:7f:e8:00:92:4b:a9:99:0e:ef:a7:1c: 42:b3:94:48:92:b8:19:ce:35:26:f3:1a:8e:1b:09:c8:16:ff: a8:0a:75:1f:0b:ec:83:77:43:01:56:bf:fc:e7:b8:42:94:0e: 86:f7:43:62:3b:bc:bf:5f:91:31:08:ea:0f:e9:e5:e4:1d:94: aa:24:cd:a1:aa:30:2f:fe:eb:a1:53:9f:82:81:bc:46:1f:aa: 85:da:ea:98:19:9c:78:e1:d1:87:58:d0:09:9a:d0:e9:bf:b1: b9:1a:59:0e:af:66:c4:be:3f:19:e5:58:b7:a4:ed:12:e7:86: ed:1b:fb:aa:04:1d:55:b7:b1:04:eb:49:1d:b9:19:89:ef:c0: f5:3c:1a:b1:b5:6d:ee:19:2c:bd:37:c5:7a:05:4a:59:90:1c: 15:9c:1b:b1:0a:35:7e:74:49:29:9f:ac:37:b4:21:00:15:1a: ce:03:9a:0b:12:05:d1:f9:fc:c9:79:9d:b2:85:19:90:84:04: 0f:55:6a:bc:ef:3d:45:a1:98:21:eb:91:18:5e:29:22:0c:49: 8a:c0:df:92:79:40:23:1b:f9:50:ae:54:1c:95:1b:c7:3a:c5: f4:39:4b:49:04:10:8c:f4:a9:b3:52:5d:8a:80:40:dd:14:b4: d9:6a:e8:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQ1NEJGMzk5QkUxQjY1OUIxMzIzMTRCODIxOTMzQTIw QkEzOEI5NkEwHhcNMjUxMjA2MTYxNDQzWhcNMjUxMjEzMTYxNDQzWjAYMRYwFAYD VQQDEw02OTM0NTY3My04OTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLJSW4KDqe2S1h/cGDTvX4SD0UoqqjonIgRDj6/jQbE0A0bU79uH/05RQskG 7DPADFgvVWwi7wgNsyfnewHCkocee4O9p4D2N3k3DLiBNzzzg03nVOlLLHSSjdiI Lp2aUxe6CL/YDcGhJdobN+FavKPa3lcCd1mbFKSVEklDrv8v+ac6vzagRVhVsEIe fbU4/9p7Kkoqac0e/w/r2Y7VPhrdLaiiLAeHR7RBiR6QaEnY56Lgr0eCQJy5L8S7 9wj+D355KykYG6UfUqfDduDGPhz7UHMXP/xLXA71+fMmk7qUlW+/bPxG3RcY3eTh qW9x8USAUa/O3wHMaAWZIcMeLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFodi+E XJYFmNFvADh5gVycaI4JMB8GA1UdIwQYMBaAFNVL85m+G2WbEyMUuCGTOiC6OLlq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC9BMTA4N0QzNjAw RUExMUU4QkM5M0IxNkJDNEY5QUUwMi8xVXZ6bWI0Ylpac1RJeFM0SVpNNklMbzR1 V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFVdnptYjRiWlpzVEl4UzRJWk02SUxvNHVXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0UzOC9BMTA4N0QzNjAwRUExMUU4QkM5M0IxNkJDNEY5QUUwMi8xVXZ6bWI0Ylpa c1RJeFM0SVpNNklMbzR1V28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxHoyj8qEcf+gAkkupmQ7vpxxCs5RIkrgZzjUm8xqOGwnIFv+oCnUf C+yDd0MBVr/857hClA6G90NiO7y/X5ExCOoP6eXkHZSqJM2hqjAv/uuhU5+CgbxG H6qF2uqYGZx44dGHWNAJmtDpv7G5GlkOr2bEvj8Z5Vi3pO0S54btG/uqBB1Vt7EE 60kduRmJ78D1PBqxtW3uGSy9N8V6BUpZkBwVnBuxCjV+dEkpn6w3tCEAFRrOA5oL EgXR+fzJeZ2yhRmQhAQPVWq87z1FoZgh65EYXikiDEmKwN+SeUAjG/lQrlQclRvH OsX0OUtJBBCM9KmzUl2KgEDdFLTZauhk -----END CERTIFICATE-----Generated at Sun Dec 7 01:37:13 2025 by rpki-client