This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft File: UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft (raw, json) Hash identifier: hMboGOEKzJ4nkTjYVjPSvrIirIb7azi+KA+pHGVTNPk= Subject key identifier: 54:F7:5B:0B:A2:A4:8C:2B:C9:CF:82:B3:1D:BD:90:DF:5F:13:54:63 Authority key identifier: 50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 Certificate issuer: /CN=A9157031/serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Certificate serial: 044B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft Manifest number: 0446 Signing time: Thu 04 Dec 2025 22:43:26 +0000 Manifest this update: Thu 04 Dec 2025 22:43:25 +0000 Manifest next update: Thu 11 Dec 2025 22:43:25 +0000 Files and hashes: 1: UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl (hash: R205R12pwB0Onm1IS7KLKHrB8qa33tZj963FCxQaiEQ=) 2: 32D8FF34C99E11ED98E9BE5BC4F9AE02.roa (hash: 75eZM/Pn5fV11WrvJUnUrFhvKQhEtrEs1POmskjBp6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:43:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157031, serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Validity Not Before: Dec 4 22:43:25 2025 GMT Not After : Dec 11 22:43:25 2025 GMT Subject: CN=69320e8e-e731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:61:a6:13:68:b2:a1:8a:0e:04:fe:1a:97:0e: d9:86:de:78:d1:c6:8b:46:03:78:c3:22:26:5d:20: 6b:1b:a8:5d:2f:83:6f:b8:6d:2b:4e:b8:31:d9:82: f5:0e:6f:e6:32:16:68:c0:da:7d:bd:16:9e:c8:fc: 77:62:e2:ab:70:5d:e5:e8:4e:91:c0:7c:ff:61:7e: 2d:06:e6:9a:c3:7b:dc:be:ed:66:fd:ab:7d:db:e9: d7:c3:0a:6a:b0:9a:8c:d9:2c:e9:c8:05:5a:c1:a8: 37:ad:63:bc:ab:be:06:fa:d9:eb:b0:c0:5e:be:bf: 0c:49:a1:03:9a:99:92:68:4d:75:f7:f2:d2:7d:b1: a8:42:0c:d7:f9:31:9e:dc:a9:fb:e3:4d:10:5c:11: 83:14:e3:12:58:e6:a3:70:a7:c1:7c:e3:34:b9:46: 21:eb:38:da:f4:08:ea:4e:f7:55:a7:20:69:6a:5c: 58:40:21:7e:a0:9f:bf:0e:16:53:a9:fe:65:e3:63: 8a:5b:04:11:18:87:46:df:e5:15:60:68:dc:e5:ec: b0:35:3c:f8:3b:29:fb:98:c5:17:8b:d8:fc:3f:c0: db:b7:7a:e2:3f:79:99:07:4c:e3:1f:ad:d2:bf:2e: e2:9b:89:4c:4c:76:0a:4b:82:6f:46:20:78:a0:cf: ce:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F7:5B:0B:A2:A4:8C:2B:C9:CF:82:B3:1D:BD:90:DF:5F:13:54:63 X509v3 Authority Key Identifier: keyid:50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:fa:45:9b:6a:10:c8:be:19:9e:ae:5e:f8:cd:64:b1:88:af: 98:9e:48:de:77:be:82:79:da:c2:7c:74:35:ed:b6:10:b9:52: 74:2c:d3:a5:74:5c:34:73:d8:09:2a:fc:1e:81:11:1a:49:69: 84:ce:29:bf:ff:da:dd:63:e1:f9:cf:02:ca:7a:ff:6d:a1:4c: eb:b7:93:ce:95:4e:8b:bd:bb:04:3c:ef:82:b8:22:3c:5f:dd: c1:8e:ec:a7:b9:81:c8:d0:14:cc:9c:6c:b5:fb:42:38:98:94: a5:77:bb:d9:94:1d:3a:d0:85:d2:fa:59:cd:ce:cd:a5:43:6a: 4a:77:8e:20:bf:bc:b2:2d:8f:9b:49:f8:6a:e5:21:80:29:37: 50:b6:a6:c9:b0:99:b2:24:71:a1:0a:4b:95:38:08:d4:04:c0: 7a:b7:7d:80:3a:35:0f:f3:dd:cf:b2:98:d9:e6:2e:b1:d7:2d: d3:dc:ef:19:b5:53:1f:65:4b:91:90:b5:81:ff:92:e3:88:23: 24:a9:a2:cb:58:12:c7:44:48:d3:68:50:03:94:04:9e:21:49: 67:62:99:77:49:cb:d7:89:e7:ce:a2:78:a0:3b:13:c8:d6:96: e5:6a:bd:2e:dd:75:03:3e:c0:e3:b1:0b:ad:30:b9:80:70:15: f1:73:36:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwMzExMTAvBgNVBAUTKDUwRTUwRURBRjY0QTJDMjVCNzMxMjM5NjczRDkwNzBG NjE4MzAyNzkwHhcNMjUxMjA0MjI0MzI1WhcNMjUxMjExMjI0MzI1WjAYMRYwFAYD VQQDEw02OTMyMGU4ZS1lNzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+WGmE2iyoYoOBP4alw7Zht540caLRgN4wyImXSBrG6hdL4NvuG0rTrgx2YL1 Dm/mMhZowNp9vRaeyPx3YuKrcF3l6E6RwHz/YX4tBuaaw3vcvu1m/at92+nXwwpq sJqM2SzpyAVawag3rWO8q74G+tnrsMBevr8MSaEDmpmSaE119/LSfbGoQgzX+TGe 3Kn7400QXBGDFOMSWOajcKfBfOM0uUYh6zja9AjqTvdVpyBpalxYQCF+oJ+/DhZT qf5l42OKWwQRGIdG3+UVYGjc5eywNTz4Oyn7mMUXi9j8P8Dbt3riP3mZB0zjH63S vy7im4lMTHYKS4JvRiB4oM/OSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFT3Wwui pIwryc+Csx29kN9fE1RjMB8GA1UdIwQYMBaAFFDlDtr2SiwltzEjlnPZBw9hgwJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzAzMS83QTAwNEY3ODdF QzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xDVzNNU09XYzlrSEQyR0RB bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VPVU8ydlpLTENXM01TT1djOWtIRDJHREFuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzAzMS83QTAwNEY3ODdFQzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xD VzNNU09XYzlrSEQyR0RBbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8+kWbahDIvhmerl74zWSxiK+Ynkjed76CedrCfHQ17bYQuVJ0LNOl dFw0c9gJKvwegREaSWmEzim//9rdY+H5zwLKev9toUzrt5POlU6LvbsEPO+CuCI8 X93BjuynuYHI0BTMnGy1+0I4mJSld7vZlB060IXS+lnNzs2lQ2pKd44gv7yyLY+b Sfhq5SGAKTdQtqbJsJmyJHGhCkuVOAjUBMB6t32AOjUP893PspjZ5i6x1y3T3O8Z tVMfZUuRkLWB/5LjiCMkqaLLWBLHREjTaFADlASeIUlnYpl3ScvXiefOonigOxPI 1pblar0u3XUDPsDjsQutMLmAcBXxczaE -----END CERTIFICATE-----Generated at Sat Dec 6 21:55:26 2025 by rpki-client