This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: 6qEwHgVUGvT9rkhfUg0M+PjRC0NxOd04icuWMG13Z0A= Subject key identifier: C3:48:73:18:2B:D3:70:44:B7:90:E4:EC:A6:7B:27:5C:E0:9B:B4:4E Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: EA Signing time: Fri 05 Dec 2025 03:27:11 +0000 Manifest this update: Fri 05 Dec 2025 03:27:10 +0000 Manifest next update: Fri 12 Dec 2025 03:27:10 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: jrlC0v3k5rxTjEu5l1LnaQzj2lJvz6n/oLCoAJPNxEE=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: 3YeMlkcKDR/G7e8HpdLpzhvB3RsMdGgeM4Qv8rsxSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: Dec 5 03:27:10 2025 GMT Not After : Dec 12 03:27:10 2025 GMT Subject: CN=6932510f-4fe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:bb:49:06:06:42:b0:a7:9a:63:45:fd:33: c5:93:ce:b9:e2:6e:bb:1a:a3:0c:cd:24:b5:84:58: 57:3d:c7:19:f0:79:4f:58:0d:c1:ed:ec:f3:a3:66: 7a:c8:ae:11:01:c2:6b:f5:44:68:2c:5e:ac:bd:a1: 9f:91:24:2b:ac:bc:79:5c:63:72:cb:47:b4:b7:8d: 05:73:a8:34:cf:1b:a9:12:33:99:a7:33:6e:8a:42: 93:2d:0f:c1:c7:ea:08:9c:3f:5a:e6:7a:c2:09:93: 28:5b:e8:f7:25:50:47:65:c6:7c:ae:ab:2c:7f:cb: 56:67:1f:74:2b:4b:2b:c5:d7:4a:2b:a7:64:a8:5c: 58:bd:18:ce:25:ae:9a:6e:c0:45:0c:cc:22:66:e6: fb:17:9a:c8:6a:0c:c0:87:eb:cc:2d:6f:9c:e2:73: ec:9a:71:03:8d:b4:55:71:b4:5c:aa:b7:e9:9f:0f: 9d:41:d1:30:e4:77:d3:a4:53:1f:6f:b9:4a:89:52: 5c:c5:85:90:d4:d8:c9:12:b8:f3:97:ca:45:6d:cb: c3:8a:fa:0b:ae:4f:5a:d9:cf:05:a8:d5:67:3c:1a: 56:4e:91:c9:71:f8:9b:d9:82:fe:e6:c8:e0:92:1f: f7:9a:6a:e5:a4:86:94:2d:89:e2:07:3c:4e:0e:51: f7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:48:73:18:2B:D3:70:44:B7:90:E4:EC:A6:7B:27:5C:E0:9B:B4:4E X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:93:b4:a6:24:00:aa:ed:a7:8d:4e:6e:56:5b:e4:f9:bb:a1: dd:88:84:e9:63:4b:32:0b:0e:ef:60:bf:c8:e1:89:b5:95:9b: 93:ac:76:f1:d8:19:0c:3c:f6:1b:6d:08:bf:1d:17:29:a2:fb: 74:28:86:85:f8:b7:8f:a5:23:00:56:fd:21:66:bb:0d:43:cc: 17:74:97:23:9f:67:5d:b5:72:0d:7a:bc:28:0b:1d:99:83:3a: 9b:07:cf:a0:40:9a:4c:2f:c4:2c:41:ce:5f:01:8b:58:15:a5: c1:a6:d8:3f:e6:94:e5:68:ba:19:ef:09:4a:81:6f:9d:2e:36: 14:1a:99:a8:7e:e3:0c:e8:00:d1:94:d8:c4:70:cb:1f:99:d3: d0:bb:41:49:1b:ca:63:67:59:1b:42:61:dc:61:3f:1c:d3:d8: 5f:b3:0e:2f:a2:f7:14:7e:ca:66:3e:06:32:9e:73:e2:f8:35: be:ed:a8:f6:cd:bd:99:52:fa:ee:31:d0:44:dd:7a:2f:c6:3d: c9:c1:ee:9b:d0:f7:7e:c5:a7:a8:8d:6b:99:a8:82:23:90:5b: 55:ae:6b:2d:11:30:36:1a:14:75:e4:61:7d:e8:32:2d:2c:f3: 71:e1:49:4a:ef:dd:08:0a:a1:b2:23:f7:54:d6:2f:80:f8:ff: e8:b6:8f:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDUzRTdDRTk0MzUzM0Y4RDNDMDU2NDlGMjk0NjgyQTI2 RjgxNEYxNUYwHhcNMjUxMjA1MDMyNzEwWhcNMjUxMjEyMDMyNzEwWjAYMRYwFAYD VQQDEw02OTMyNTEwZi00ZmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbC7SQYGQrCnmmNF/TPFk8654m67GqMMzSS1hFhXPccZ8HlPWA3B7ezzo2Z6 yK4RAcJr9URoLF6svaGfkSQrrLx5XGNyy0e0t40Fc6g0zxupEjOZpzNuikKTLQ/B x+oInD9a5nrCCZMoW+j3JVBHZcZ8rqssf8tWZx90K0srxddKK6dkqFxYvRjOJa6a bsBFDMwiZub7F5rIagzAh+vMLW+c4nPsmnEDjbRVcbRcqrfpnw+dQdEw5HfTpFMf b7lKiVJcxYWQ1NjJErjzl8pFbcvDivoLrk9a2c8FqNVnPBpWTpHJcfib2YL+5sjg kh/3mmrlpIaULYniBzxODlH3aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNIcxgr 03BEt5Dk7KZ7J1zgm7ROMB8GA1UdIwQYMBaAFFPnzpQ1M/jTwFZJ8pRoKib4FPFf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS8wMTlGRjE0RTcw QUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1OUEFWa255bEdncUp2Z1U4 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDM5MS8wMTlGRjE0RTcwQUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1O UEFWa255bEdncUp2Z1U4VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1k7SmJACq7aeNTm5WW+T5u6HdiITpY0syCw7vYL/I4Ym1lZuTrHbx 2BkMPPYbbQi/HRcpovt0KIaF+LePpSMAVv0hZrsNQ8wXdJcjn2ddtXINerwoCx2Z gzqbB8+gQJpML8QsQc5fAYtYFaXBptg/5pTlaLoZ7wlKgW+dLjYUGpmofuMM6ADR lNjEcMsfmdPQu0FJG8pjZ1kbQmHcYT8c09hfsw4vovcUfspmPgYynnPi+DW+7aj2 zb2ZUvruMdBE3Xovxj3Jwe6b0Pd+xaeojWuZqIIjkFtVrmstETA2GhR15GF96DIt LPNx4UlK790ICqGyI/dU1i+A+P/oto/+ -----END CERTIFICATE-----Generated at Sun Dec 7 02:57:25 2025 by rpki-client