This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: c+ETqIDy5plMCI/im8oRIFXoTfZa4jobh60ZbZysDaY= Subject key identifier: 93:CC:6C:06:1A:B5:6D:86:17:D6:5F:14:3C:97:90:7D:91:02:CC:D7 Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 01DD Signing time: Thu 04 Dec 2025 23:01:52 +0000 Manifest this update: Thu 04 Dec 2025 23:01:52 +0000 Manifest next update: Thu 11 Dec 2025 23:01:52 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: KZo7r7CivX9Abj7Q+7gm+Q4FHnOM1fv7hRp7tMClez4=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: QkSv3Gc4gFnkTdv0FIFvYm4Nr0fb1nmO7PWxNtFWscE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Dec 4 23:01:52 2025 GMT Not After : Dec 11 23:01:52 2025 GMT Subject: CN=693212e0-bce5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c7:92:ed:0e:52:88:a7:c1:57:77:99:37:98: 79:12:29:87:65:6f:b0:e7:59:3d:b5:68:a4:41:5e: d7:38:9f:3b:20:a7:a0:61:ee:24:c2:99:a7:a3:13: bb:27:71:80:97:6e:22:3c:3b:a1:87:a2:eb:13:f5: e5:e7:3b:f5:50:63:1b:e0:33:d1:95:6a:46:73:c0: 47:ae:6a:fd:99:e9:95:4f:66:ae:ce:91:be:73:39: 4c:2f:d2:e5:f8:f5:cf:a4:28:eb:5d:fd:d9:a3:7e: c6:eb:03:e5:40:c2:1a:63:07:1b:99:a9:77:a9:77: 21:c2:6d:ae:a9:f0:d7:d7:53:55:ab:53:7e:b2:d4: f3:90:73:bc:39:8b:16:cb:59:e9:72:a5:ad:2e:dc: 0c:ca:20:5e:80:e5:4f:31:cf:e2:21:4a:1b:91:a2: a9:cb:1a:6f:54:4b:88:77:4f:43:d0:bb:6c:0e:67: 08:a7:3c:fd:6f:34:ca:a7:5e:af:c7:17:b9:e0:e9: 81:04:93:95:c0:97:49:ec:51:08:c2:2a:81:2e:d7: 57:ea:47:25:4c:2f:e6:bc:2d:b8:56:03:7f:c4:93: 28:86:66:e7:38:78:19:93:3f:72:4b:ed:da:f1:38: cd:84:5a:12:4d:0f:c3:20:bc:ff:05:70:2d:40:6d: ce:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CC:6C:06:1A:B5:6D:86:17:D6:5F:14:3C:97:90:7D:91:02:CC:D7 X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:af:c7:61:21:51:6e:38:2b:a9:f0:a7:6d:3f:37:ef:d5:5e: 1a:4d:de:ce:8b:01:14:f5:26:ca:e8:12:98:23:bb:9d:09:a6: 3c:b3:94:cd:cd:d2:13:d9:a0:d5:1b:73:9a:fc:7c:a7:18:f7: d6:0b:fe:28:3b:1f:54:7e:b6:af:1f:e2:15:b9:ff:ee:15:4c: 8b:a0:8e:b5:d8:85:9b:30:3e:69:2d:4e:1b:80:53:79:bc:db: 7a:b5:3c:89:5c:b8:81:28:4c:38:1e:e7:60:c9:ef:e0:52:cf: ba:61:31:8f:bf:84:70:a9:ec:7e:3c:0d:12:13:d6:fd:57:67: 97:8f:7e:09:69:c3:d7:ab:f1:1b:be:9b:84:0d:a7:c7:67:7a: f7:71:65:7e:bd:52:d6:c2:17:5e:f4:90:d3:74:5c:94:6e:6c: b8:45:11:45:98:62:35:a1:14:63:f1:cf:59:32:50:a0:02:53: 1f:a8:6b:f2:ba:6b:d2:d6:58:ca:c0:72:36:1a:6c:60:49:6b: 1b:44:5d:e4:03:36:29:21:45:58:f6:86:5a:1a:1f:48:3f:66: f0:23:4f:64:b3:07:f2:4f:6a:80:38:67:1a:99:47:a1:a7:1d: e7:d2:8e:71:4a:ef:7a:0a:ec:f0:a8:19:b0:a0:d0:9e:52:a6: e0:49:11:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjUxMjA0MjMwMTUyWhcNMjUxMjExMjMwMTUyWjAYMRYwFAYD VQQDEw02OTMyMTJlMC1iY2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArseS7Q5SiKfBV3eZN5h5EimHZW+w51k9tWikQV7XOJ87IKegYe4kwpmnoxO7 J3GAl24iPDuhh6LrE/Xl5zv1UGMb4DPRlWpGc8BHrmr9memVT2auzpG+czlML9Ll +PXPpCjrXf3Zo37G6wPlQMIaYwcbmal3qXchwm2uqfDX11NVq1N+stTzkHO8OYsW y1npcqWtLtwMyiBegOVPMc/iIUobkaKpyxpvVEuId09D0LtsDmcIpzz9bzTKp16v xxe54OmBBJOVwJdJ7FEIwiqBLtdX6kclTC/mvC24VgN/xJMohmbnOHgZkz9yS+3a 8TjNhFoSTQ/DILz/BXAtQG3OkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPMbAYa tW2GF9ZfFDyXkH2RAszXMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBar8dhIVFuOCup8KdtPzfv1V4aTd7OiwEU9SbK6BKYI7udCaY8s5TN zdIT2aDVG3Oa/HynGPfWC/4oOx9UfravH+IVuf/uFUyLoI612IWbMD5pLU4bgFN5 vNt6tTyJXLiBKEw4Hudgye/gUs+6YTGPv4Rwqex+PA0SE9b9V2eXj34JacPXq/Eb vpuEDafHZ3r3cWV+vVLWwhde9JDTdFyUbmy4RRFFmGI1oRRj8c9ZMlCgAlMfqGvy umvS1ljKwHI2GmxgSWsbRF3kAzYpIUVY9oZaGh9IP2bwI09kswfyT2qAOGcamUeh px3n0o5xSu96CuzwqBmwoNCeUqbgSRGA -----END CERTIFICATE-----Generated at Sat Dec 6 17:27:41 2025 by rpki-client