This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft File: U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json) Hash identifier: BiNKafmajjGYKNZWfwbzY9KqXJHDbzr0Qx98XpBn71s= Subject key identifier: 35:7F:69:7C:31:9B:DF:71:0A:6B:F8:3C:56:7B:37:1A:D7:C8:92:14 Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Certificate serial: 050B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft Manifest number: 0503 Signing time: Sat 06 Dec 2025 22:25:33 +0000 Manifest this update: Sat 06 Dec 2025 22:25:33 +0000 Manifest next update: Sat 13 Dec 2025 22:25:33 +0000 Files and hashes: 1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: URSHR4ox3KiemTyjjGtdynXhaA5GV4YhonGLpVKui44=) 2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: zUvIyZQWJmUN/whCAHbha9fHrVDz2p8tvRwoEjb9vCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1291 (0x50b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130837, serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Validity Not Before: Dec 6 22:25:33 2025 GMT Not After : Dec 13 22:25:33 2025 GMT Subject: CN=6934ad5d-8ae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:77:cc:6e:28:67:5f:9e:0e:e0:cb:fb:ab:f4: bb:a8:0f:32:44:24:75:02:78:47:e4:e5:86:87:e5: de:38:dd:ed:8b:eb:0b:7d:63:be:69:46:f8:4d:b0: b3:ca:d9:76:51:13:28:7c:dc:74:de:ad:84:61:73: 78:c0:ba:8e:ae:43:db:52:24:33:be:85:b4:06:a7: 51:ff:6a:e5:22:62:ba:a1:cd:54:47:fc:93:ed:14: 59:66:06:52:a0:a1:9f:52:a9:34:e2:87:48:7c:e8: dd:b8:a4:40:05:20:36:49:43:e3:3e:6c:eb:a9:98: cf:61:5f:64:03:30:a0:c7:d9:03:d6:56:8e:44:04: 26:87:81:0c:a3:6f:92:1b:4d:43:12:51:27:64:4a: e6:17:1c:e5:10:5f:7c:4b:4f:83:02:c2:d4:39:20: 1f:e7:b7:41:9c:85:ca:fb:29:e3:47:05:3f:07:49: 17:31:93:d5:86:ef:1c:23:56:68:90:56:35:ea:4c: 9b:21:f3:d5:df:a9:0b:fc:64:77:b5:76:6c:89:70: 79:6d:c3:5f:cd:7d:6f:31:f0:2b:f1:5d:17:80:86: 19:a3:dc:29:17:3d:db:9e:2b:7e:a7:4b:5d:ce:29: 24:0f:d6:08:0b:8a:dc:63:b6:6c:37:07:0d:6e:72: d4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7F:69:7C:31:9B:DF:71:0A:6B:F8:3C:56:7B:37:1A:D7:C8:92:14 X509v3 Authority Key Identifier: keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:6b:e1:20:32:f4:60:df:6a:67:bd:fa:e8:14:f6:58:4a:ca: c7:e9:67:53:ba:ea:d1:b2:93:35:17:54:72:8b:18:c1:05:6d: 10:a7:e6:a6:08:b5:12:24:c7:d2:45:9b:c1:9f:e0:fb:d0:27: f4:05:f2:d1:fc:f0:19:91:8f:c7:be:1e:cc:fb:31:41:8f:3f: a2:af:d8:6a:11:06:19:11:d3:0a:1d:4a:47:e3:34:ef:cc:f9: 75:c0:b1:12:0d:b0:33:59:1b:02:94:7d:6a:d0:6f:5e:2b:53: 1c:a9:5a:c7:16:b0:5a:a5:22:89:f6:63:9f:f0:cf:99:70:47: ab:1d:a8:50:d0:1c:e1:d1:5e:83:65:43:9a:09:a9:aa:f4:4a: 39:a6:e9:42:0c:d3:70:96:16:42:1d:5a:f8:6b:b9:1a:75:97: 06:ad:c5:0c:42:5f:78:fe:ad:5e:dd:76:29:1f:4d:8c:cb:db: 24:fe:6e:c4:75:a5:96:dc:75:7b:68:78:ff:31:15:41:09:f2: b8:4d:a1:f0:96:df:2e:d9:17:1b:62:bf:04:21:b0:4f:e3:e8: d4:3d:81:81:4f:08:bf:64:bf:ca:c8:08:94:4d:ed:57:fd:f7: 34:4b:1a:c4:72:a6:c6:c3:7a:b5:27:ad:c5:f0:25:ca:80:bf: dc:5e:c3:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MzcxMTAvBgNVBAUTKDUzNjhCOEM4RDY5NjNFQUQ4Mzk5MDVBNDg2RjUzQzQ0 QjA0MUE1RUYwHhcNMjUxMjA2MjIyNTMzWhcNMjUxMjEzMjIyNTMzWjAYMRYwFAYD VQQDEw02OTM0YWQ1ZC04YWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHfMbihnX54O4Mv7q/S7qA8yRCR1AnhH5OWGh+XeON3ti+sLfWO+aUb4TbCz ytl2URMofNx03q2EYXN4wLqOrkPbUiQzvoW0BqdR/2rlImK6oc1UR/yT7RRZZgZS oKGfUqk04odIfOjduKRABSA2SUPjPmzrqZjPYV9kAzCgx9kD1laORAQmh4EMo2+S G01DElEnZErmFxzlEF98S0+DAsLUOSAf57dBnIXK+ynjRwU/B0kXMZPVhu8cI1Zo kFY16kybIfPV36kL/GR3tXZsiXB5bcNfzX1vMfAr8V0XgIYZo9wpFz3bnit+p0td zikkD9YIC4rcY7ZsNwcNbnLU4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDV/aXwx m99xCmv4PFZ7NxrXyJIUMB8GA1UdIwQYMBaAFFNouMjWlj6tg5kFpIb1PESwQaXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgzNy9FM0Y4N0NCMjM2 RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1BxMkRtUVdraHZVOFJMQkJw ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UyaTR5TmFXUHEyRG1RV2todlU4UkxCQnBlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDgzNy9FM0Y4N0NCMjM2RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1Bx MkRtUVdraHZVOFJMQkJwZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSa+EgMvRg32pnvfroFPZYSsrH6WdTuurRspM1F1RyixjBBW0Qp+am CLUSJMfSRZvBn+D70Cf0BfLR/PAZkY/Hvh7M+zFBjz+ir9hqEQYZEdMKHUpH4zTv zPl1wLESDbAzWRsClH1q0G9eK1McqVrHFrBapSKJ9mOf8M+ZcEerHahQ0Bzh0V6D ZUOaCamq9Eo5pulCDNNwlhZCHVr4a7kadZcGrcUMQl94/q1e3XYpH02My9sk/m7E daWW3HV7aHj/MRVBCfK4TaHwlt8u2RcbYr8EIbBP4+jUPYGBTwi/ZL/KyAiUTe1X /fc0SxrEcqbGw3q1J63F8CXKgL/cXsOi -----END CERTIFICATE-----Generated at Sun Dec 7 01:51:00 2025 by rpki-client