This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft File: rU1lO4NcTh3pjsZjdoiamoN2SwI.mft (raw, json) Hash identifier: 0vK3sovNLwxDmq4751bJWeNLfIIw6CuFcNGO9KtGAhw= Subject key identifier: 03:2B:B2:8D:7F:10:1C:8C:47:56:E1:0B:F8:7B:09:93:C7:A6:BB:54 Authority key identifier: AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 Certificate issuer: /CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Certificate serial: 34E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft Manifest number: 34E3 Signing time: Sat 06 Dec 2025 14:39:49 +0000 Manifest this update: Sat 06 Dec 2025 14:39:48 +0000 Manifest next update: Sat 13 Dec 2025 14:39:48 +0000 Files and hashes: 1: rU1lO4NcTh3pjsZjdoiamoN2SwI.crl (hash: x0znA9uwigjj+ylDeWGw4mwS4Yh1JvyTCq90DVugk+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13539 (0x34e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B669, serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Validity Not Before: Dec 6 14:39:48 2025 GMT Not After : Dec 13 14:39:48 2025 GMT Subject: CN=69344035-7485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:87:3c:dc:c3:c8:66:78:27:75:16:ec:a4:86: 07:fb:f1:0f:86:f1:26:4f:a8:9e:8b:49:49:91:a2: 40:ce:d8:ec:da:88:7e:82:5d:28:f5:a9:d5:fc:a7: 5e:83:80:f6:8f:4c:70:10:de:f5:9d:86:21:ff:c6: fc:29:17:d3:76:cf:ad:cd:e8:09:3c:24:1d:15:f6: 57:d2:04:a7:08:97:5f:97:8b:2c:4f:00:89:25:28: 81:40:b9:70:7e:a6:18:55:f5:8b:c1:bd:ff:ce:e5: ce:2d:7f:40:74:aa:23:08:03:c7:50:f5:36:d3:18: 65:c0:f6:77:c1:e9:1e:dd:25:dd:b0:f4:99:cd:81: cd:25:fb:36:e5:97:50:2c:94:02:e6:f3:47:52:00: b2:9b:2c:2f:23:67:f5:66:69:33:9a:80:2e:0a:53: dd:6f:dd:30:fb:95:0d:83:e9:36:39:7c:09:17:b8: 98:7c:25:93:20:0b:fd:71:b2:62:98:04:6e:8b:90: 2c:5b:b5:b8:df:85:35:1a:0f:34:cb:83:92:63:d0: f1:c3:de:66:42:c1:e6:8f:cc:85:8b:70:ec:66:74: be:23:ab:97:4c:a0:d4:a6:71:c8:e4:80:2a:11:5d: 33:3a:7e:66:06:57:e9:85:75:6a:cc:bb:70:43:11: 77:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2B:B2:8D:7F:10:1C:8C:47:56:E1:0B:F8:7B:09:93:C7:A6:BB:54 X509v3 Authority Key Identifier: keyid:AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:6a:08:4e:6e:fe:81:f8:21:f9:3d:5b:e6:e0:5d:c9:bc:8f: 12:34:12:25:1c:bb:c5:bb:d1:98:16:f4:5b:57:1f:5a:bb:4c: 25:be:88:27:74:16:50:f1:db:f4:fe:b7:ce:dc:bf:59:bb:08: fc:15:16:a2:6b:ff:64:28:ea:d2:eb:6f:09:51:dc:52:e5:59: e3:fd:07:da:87:c8:ec:df:37:2a:0e:b0:3b:89:8a:cc:e5:b1: e4:87:0e:0b:af:13:07:e4:d8:4f:9d:67:28:d5:75:67:c5:64: 48:e8:ec:96:a2:c3:44:99:61:91:18:82:ae:ff:d3:f0:33:a6: 06:49:8d:cb:dc:e2:92:f7:d5:7a:57:2d:c9:72:37:f1:da:5f: 70:6d:ae:93:93:ec:0e:cf:1d:97:52:3a:04:bb:5a:df:3b:92: eb:bb:b5:72:aa:56:f5:56:0a:7f:60:41:3c:bd:36:e0:42:f2: 5a:a5:ee:6c:bd:76:35:80:60:d0:3f:2b:f0:a4:d0:41:5e:d0: 70:8a:d5:e7:e5:1f:6a:9b:e6:6f:3d:8f:e8:0a:58:8f:42:43: e3:1c:1b:ce:b6:16:c0:a7:b4:94:db:f6:76:9f:76:cb:04:16: 47:72:6c:d8:e3:11:60:ae:58:97:4d:8f:b4:20:d3:f6:7c:18: 9f:88:4f:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2NjkxMTAvBgNVBAUTKEFENEQ2NTNCODM1QzRFMURFOThFQzY2Mzc2ODg5QTlB ODM3NjRCMDIwHhcNMjUxMjA2MTQzOTQ4WhcNMjUxMjEzMTQzOTQ4WjAYMRYwFAYD VQQDEw02OTM0NDAzNS03NDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAooc83MPIZngndRbspIYH+/EPhvEmT6iei0lJkaJAztjs2oh+gl0o9anV/Kde g4D2j0xwEN71nYYh/8b8KRfTds+tzegJPCQdFfZX0gSnCJdfl4ssTwCJJSiBQLlw fqYYVfWLwb3/zuXOLX9AdKojCAPHUPU20xhlwPZ3weke3SXdsPSZzYHNJfs25ZdQ LJQC5vNHUgCymywvI2f1ZmkzmoAuClPdb90w+5UNg+k2OXwJF7iYfCWTIAv9cbJi mARui5AsW7W434U1Gg80y4OSY9Dxw95mQsHmj8yFi3DsZnS+I6uXTKDUpnHI5IAq EV0zOn5mBlfphXVqzLtwQxF35QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMrso1/ EByMR1bhC/h7CZPHprtUMB8GA1UdIwQYMBaAFK1NZTuDXE4d6Y7GY3aImpqDdksC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjY2OS85RDVCRjZGRTFE OTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1RoM3Bqc1pqZG9pYW1vTjJT d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVMWxPNE5jVGgzcGpzWmpkb2lhbW9OMlN3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjY2OS85RDVCRjZGRTFEOTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1Ro M3Bqc1pqZG9pYW1vTjJTd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkaghObv6B+CH5PVvm4F3JvI8SNBIlHLvFu9GYFvRbVx9au0wlvogn dBZQ8dv0/rfO3L9Zuwj8FRaia/9kKOrS628JUdxS5Vnj/Qfah8js3zcqDrA7iYrM 5bHkhw4LrxMH5NhPnWco1XVnxWRI6OyWosNEmWGRGIKu/9PwM6YGSY3L3OKS99V6 Vy3Jcjfx2l9wba6Tk+wOzx2XUjoEu1rfO5Lru7Vyqlb1Vgp/YEE8vTbgQvJape5s vXY1gGDQPyvwpNBBXtBwitXn5R9qm+ZvPY/oCliPQkPjHBvOthbAp7SU2/Z2n3bL BBZHcmzY4xFgrliXTY+0INP2fBifiE98 -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:40 2025 by rpki-client