This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft File: uHMcMIhjyygE4HbVjowHFZtOXxk.mft (raw, json) Hash identifier: aVS8zmA4Ejp+lCg8dWrMXLML/rztrWDCRw4oK7eMmg8= Subject key identifier: 54:16:23:53:D0:62:1E:95:32:35:AB:91:40:46:45:14:F7:71:B7:75 Authority key identifier: B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 Certificate issuer: /CN=A9164663/serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Certificate serial: 0870 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft Manifest number: 1AED Signing time: Sat 06 Dec 2025 16:37:02 +0000 Manifest this update: Sat 06 Dec 2025 16:37:01 +0000 Manifest next update: Sat 13 Dec 2025 16:37:01 +0000 Files and hashes: 1: uHMcMIhjyygE4HbVjowHFZtOXxk.crl (hash: +4TZddMiVRijfwwAK9bcVulpeQ7qd/79R0xxKx4aX50=) 2: 3D626CDC065111F0BFE43624C4F9AE02.roa (hash: PyysKZ+hZFXrRWA3LPUfHO46XtpZrkwg+n+8mnDBEZE=) 3: 7BB2BC009FFA11ECA13C2839C4F9AE02.roa (hash: K7jgwtFrPBKypxv1Ln8vBllbtClVCUlvOXHISxYGRB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:37:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2160 (0x870) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164663, serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Validity Not Before: Dec 6 16:37:01 2025 GMT Not After : Dec 13 16:37:01 2025 GMT Subject: CN=69345bae-621b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cb:02:b2:ca:80:c7:85:e0:a1:ce:68:fa:75: 9d:35:aa:fd:29:e3:2b:66:18:89:80:41:fc:e9:26: 0b:4a:28:88:4e:d1:95:56:23:57:c6:38:dd:25:11: 35:ed:f5:e1:25:6c:ea:8a:2a:3b:3b:61:ea:5f:7d: 25:c0:d1:9e:7f:e8:96:69:0c:f2:0f:e2:a9:ff:40: 27:9c:75:ed:91:c6:b9:7f:88:b4:25:c3:b0:4d:59: 72:2c:3e:bc:83:eb:40:a1:21:28:5b:12:4b:7f:9a: fc:19:9c:19:f4:02:00:dc:a7:19:ed:7a:62:1b:85: ca:a8:79:cf:73:7c:fc:fe:7d:5e:60:c5:8e:be:af: bc:95:6b:c8:01:c8:c9:3a:9a:71:69:98:d9:37:1d: f0:59:69:42:b8:27:9a:a5:77:03:22:78:dd:fa:b2: 04:71:be:0c:bc:34:c5:73:be:b4:66:ef:52:2b:d3: 85:91:a3:56:ee:ec:52:e1:1c:0a:b9:3c:9f:48:23: ee:01:59:24:62:35:61:a9:bd:b5:28:63:16:da:dd: 53:f9:89:4c:c0:50:0e:b3:5b:09:9e:f9:95:2b:46: 28:9a:18:9c:24:e1:ff:01:3d:c3:6c:b1:3e:05:0f: 82:55:15:17:e0:76:fd:e5:34:fc:24:bd:f1:c4:49: de:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:16:23:53:D0:62:1E:95:32:35:AB:91:40:46:45:14:F7:71:B7:75 X509v3 Authority Key Identifier: keyid:B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c2:96:38:a5:c0:1f:97:d4:a1:aa:94:b1:53:fb:f3:98:e4: 5a:5c:dc:52:7d:11:a7:1d:79:d4:fc:a9:39:cd:8b:69:6f:dc: 12:91:40:6b:12:d3:d4:22:f3:20:77:36:48:9b:c2:42:a1:d4: fd:ec:ad:65:8b:2b:05:c4:19:70:f6:04:7c:48:0b:53:ee:6c: 47:bb:db:24:31:9a:93:62:97:d0:05:60:27:17:60:f1:aa:5a: 53:a1:36:45:c9:4e:75:6d:3e:15:71:70:d7:ec:fd:22:39:47: 45:90:e4:90:e9:21:65:2a:ff:3a:36:7b:47:4d:df:6b:cd:13: 48:1d:76:a0:59:47:ba:f9:44:c4:35:d9:62:d0:fa:49:ef:02: 4b:94:f2:18:af:61:91:7c:d5:66:9b:61:b9:33:16:a7:7b:da: be:8d:38:c8:65:53:10:2c:12:fd:03:0d:9e:24:bc:17:08:a6: 44:b1:c8:4e:fe:92:77:d5:f5:51:98:24:e8:3b:a8:7e:77:9b: 12:71:bd:af:0e:01:e3:5b:49:a0:39:73:a9:d2:28:5d:71:18: 32:d5:9e:78:68:30:ad:c7:b4:92:71:86:e3:c3:9d:84:6a:3a: 89:db:74:b6:48:70:1a:9e:f7:30:e2:7c:6a:67:18:62:ff:fb: aa:4b:9d:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NjMxMTAvBgNVBAUTKEI4NzMxQzMwODg2M0NCMjgwNEUwNzZENThFOEMwNzE1 OUI0RTVGMTkwHhcNMjUxMjA2MTYzNzAxWhcNMjUxMjEzMTYzNzAxWjAYMRYwFAYD VQQDEw02OTM0NWJhZS02MjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0csCssqAx4Xgoc5o+nWdNar9KeMrZhiJgEH86SYLSiiITtGVViNXxjjdJRE1 7fXhJWzqiio7O2HqX30lwNGef+iWaQzyD+Kp/0AnnHXtkca5f4i0JcOwTVlyLD68 g+tAoSEoWxJLf5r8GZwZ9AIA3KcZ7XpiG4XKqHnPc3z8/n1eYMWOvq+8lWvIAcjJ OppxaZjZNx3wWWlCuCeapXcDInjd+rIEcb4MvDTFc760Zu9SK9OFkaNW7uxS4RwK uTyfSCPuAVkkYjVhqb21KGMW2t1T+YlMwFAOs1sJnvmVK0YomhicJOH/AT3DbLE+ BQ+CVRUX4Hb95TT8JL3xxEnenQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQWI1PQ Yh6VMjWrkUBGRRT3cbd1MB8GA1UdIwQYMBaAFLhzHDCIY8soBOB21Y6MBxWbTl8Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY2My8xNEVBQTlGQURB NzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5Z0U0SGJWam93SEZadE9Y eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITWNNSWhqeXlnRTRIYlZqb3dIRlp0T1h4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY2My8xNEVBQTlGQURBNzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5 Z0U0SGJWam93SEZadE9YeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGwpY4pcAfl9ShqpSxU/vzmORaXNxSfRGnHXnU/Kk5zYtpb9wSkUBr EtPUIvMgdzZIm8JCodT97K1liysFxBlw9gR8SAtT7mxHu9skMZqTYpfQBWAnF2Dx qlpToTZFyU51bT4VcXDX7P0iOUdFkOSQ6SFlKv86NntHTd9rzRNIHXagWUe6+UTE Ndli0PpJ7wJLlPIYr2GRfNVmm2G5Mxane9q+jTjIZVMQLBL9Aw2eJLwXCKZEschO /pJ31fVRmCToO6h+d5sScb2vDgHjW0mgOXOp0ihdcRgy1Z54aDCtx7SScYbjw52E ajqJ23S2SHAanvcw4nxqZxhi//uqS51M -----END CERTIFICATE-----Generated at Sun Dec 7 14:02:23 2025 by rpki-client