This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: j3Onw6JPJwfuEwS7W+7Ra8qQmBWMngR/LmFFrUBsnuA= Subject key identifier: 4C:B7:58:87:EF:D8:9B:A4:9E:BB:EA:C4:9A:02:49:EA:8C:5E:D7:04 Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 0201 Signing time: Fri 05 Dec 2025 00:47:44 +0000 Manifest this update: Fri 05 Dec 2025 00:47:44 +0000 Manifest next update: Fri 12 Dec 2025 00:47:44 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: bVLDN4VYvGwXoPyPWPfDJNOOqt7LCsmDOrFhRwzwrb8=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: 8oKi9g3FW28uCT296akypss1lnTC3S8VPwt27zeBIKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:47:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Dec 5 00:47:44 2025 GMT Not After : Dec 12 00:47:44 2025 GMT Subject: CN=69322bb0-5036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4a:60:70:ec:c8:c9:12:fa:32:65:95:a7:26: 06:d2:3c:a4:a4:b1:a1:db:9f:4c:e6:12:dc:b0:e5: a6:d5:e7:0a:7a:ce:5b:72:13:23:c4:63:3c:77:1e: 25:ae:7d:9b:97:85:27:66:00:d2:34:66:91:70:45: 6a:8e:a6:2d:2b:17:d8:77:92:5b:43:a2:ee:3e:d5: 95:70:83:04:85:2d:fd:40:5e:42:76:ce:55:46:60: 48:a9:67:4f:ad:91:de:e9:1c:c0:ed:0a:82:c2:68: 3c:06:5c:b2:b2:06:bf:45:16:66:db:0b:e6:96:38: de:cb:67:c0:85:fa:fb:12:54:55:ea:09:00:1c:31: 8e:00:a9:0d:9f:bd:ad:bc:d8:98:d9:7f:ac:6d:0e: 18:fb:99:7f:c0:4a:71:b1:6e:d6:bb:d4:4b:c8:78: 3a:c3:34:cb:90:2b:75:27:3d:c1:ec:58:d8:b2:a1: 90:5a:d7:26:c8:82:3d:db:39:13:b2:d3:fa:ba:03: b3:dc:bd:ce:93:fe:a1:c5:40:17:2c:15:3a:f8:76: 90:7a:24:64:d3:9c:f2:30:73:cc:65:1e:12:69:28: 1a:b9:b2:78:35:0f:5a:c5:85:4f:62:32:cb:e5:40: ef:1d:5e:e0:58:c8:ec:51:51:c5:a2:2b:87:f7:cf: db:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B7:58:87:EF:D8:9B:A4:9E:BB:EA:C4:9A:02:49:EA:8C:5E:D7:04 X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:3d:a8:6e:4b:64:53:c8:57:12:a9:0a:6d:f2:f5:28:86:12: b2:cf:46:8b:a3:d4:36:f7:bd:a8:11:66:54:50:29:bf:63:4d: 32:48:f6:d2:bc:c9:9d:02:c3:a9:b2:74:2e:f8:16:86:6c:47: ee:7e:f0:8e:71:3d:f3:ea:1b:08:05:05:7c:34:d6:ab:fe:a9: af:63:e4:a3:38:65:c7:d5:ff:22:c3:2d:27:11:6b:b1:47:20: bd:97:8b:ef:f8:3c:45:e7:22:ad:07:96:5a:11:99:6e:3b:1b: d3:ad:6d:bc:15:97:1e:1d:39:bc:65:86:28:59:46:f5:e4:95: 7b:90:44:1d:a6:ec:a4:10:7f:26:ef:80:d1:6e:4d:93:18:bd: cb:ed:21:9f:2e:5c:8b:84:5b:ca:32:73:15:17:1d:d9:a9:73: a3:69:fa:7a:f3:25:92:22:e0:7c:1e:96:d2:e5:3c:c4:84:84: 57:54:fa:15:1a:5a:8c:a3:a7:fb:51:e5:41:3d:5c:7c:85:77: 78:6d:3c:19:45:15:cc:31:46:be:7c:54:59:29:db:05:8d:bc: aa:4e:aa:16:5c:fd:65:0d:57:86:f4:af:07:be:25:33:a6:f6: 3c:24:ee:a2:34:76:94:56:f3:3c:3f:15:81:d1:66:98:55:ea: 16:8f:14:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUxMjA1MDA0NzQ0WhcNMjUxMjEyMDA0NzQ0WjAYMRYwFAYD VQQDEw02OTMyMmJiMC01MDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmEpgcOzIyRL6MmWVpyYG0jykpLGh259M5hLcsOWm1ecKes5bchMjxGM8dx4l rn2bl4UnZgDSNGaRcEVqjqYtKxfYd5JbQ6LuPtWVcIMEhS39QF5Cds5VRmBIqWdP rZHe6RzA7QqCwmg8Blyysga/RRZm2wvmljjey2fAhfr7ElRV6gkAHDGOAKkNn72t vNiY2X+sbQ4Y+5l/wEpxsW7Wu9RLyHg6wzTLkCt1Jz3B7FjYsqGQWtcmyII92zkT stP6ugOz3L3Ok/6hxUAXLBU6+HaQeiRk05zyMHPMZR4SaSgaubJ4NQ9axYVPYjLL 5UDvHV7gWMjsUVHFoiuH98/bsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEy3WIfv 2JuknrvqxJoCSeqMXtcEMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkPahuS2RTyFcSqQpt8vUohhKyz0aLo9Q2972oEWZUUCm/Y00ySPbS vMmdAsOpsnQu+BaGbEfufvCOcT3z6hsIBQV8NNar/qmvY+SjOGXH1f8iwy0nEWux RyC9l4vv+DxF5yKtB5ZaEZluOxvTrW28FZceHTm8ZYYoWUb15JV7kEQdpuykEH8m 74DRbk2TGL3L7SGfLlyLhFvKMnMVFx3ZqXOjafp68yWSIuB8HpbS5TzEhIRXVPoV GlqMo6f7UeVBPVx8hXd4bTwZRRXMMUa+fFRZKdsFjbyqTqoWXP1lDVeG9K8HviUz pvY8JO6iNHaUVvM8PxWB0WaYVeoWjxTF -----END CERTIFICATE-----Generated at Sun Dec 7 01:51:47 2025 by rpki-client