This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft File: U3pyvmM5N4xMTSlwK-12dczMFGo.mft (raw, json) Hash identifier: 0ljFgss3aQ1k3fv/HRfi1UHdpKHD6UVNx0ErtKB4l/I= Subject key identifier: F0:A0:0F:95:09:3B:A7:98:D5:67:AB:79:F9:F0:1C:C4:39:8C:8E:BA Authority key identifier: 53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A Certificate issuer: /CN=A916EB98/serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Certificate serial: 0BE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft Manifest number: 0BDF Signing time: Thu 04 Dec 2025 18:15:56 +0000 Manifest this update: Thu 04 Dec 2025 18:15:55 +0000 Manifest next update: Thu 11 Dec 2025 18:15:55 +0000 Files and hashes: 1: U3pyvmM5N4xMTSlwK-12dczMFGo.crl (hash: m+tBrXuhqk3hGXBxqU163rV1IrnolMZ50ESSxmboqRc=) 2: DD716A222ACC11EAAB36B444C4F9AE02.roa (hash: 9YLAXbZ28k13vNilzcTMcnMd0WVPI4XdwJeol/Aq30I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3046 (0xbe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB98, serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Validity Not Before: Dec 4 18:15:55 2025 GMT Not After : Dec 11 18:15:55 2025 GMT Subject: CN=6931cfdb-e4cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1e:72:c6:79:81:44:4a:f1:de:0f:e0:47:5f: ae:c5:3f:74:12:4a:a8:2e:56:6d:d2:7b:9b:79:e0: 5c:96:b6:a3:0c:be:ab:ad:00:5c:06:84:4f:59:d2: e0:1d:90:3e:9c:e1:8b:a6:86:e2:b3:5c:65:64:b7: 2b:a5:20:21:1b:98:48:af:63:fb:d4:df:71:0e:be: 54:65:62:90:9a:33:25:60:1a:f8:69:b4:63:c5:b9: 9e:43:94:be:85:6b:f1:be:f8:87:b0:3c:77:eb:67: dc:4f:13:1c:9c:94:2b:8e:9b:00:38:41:22:95:6c: 76:16:4c:2d:dd:d0:6c:4a:47:1d:b8:b4:84:f1:8c: 59:db:68:8e:f2:f0:31:30:38:ee:10:a2:3c:35:89: 5f:9e:7e:b6:27:a3:24:19:c6:ba:cb:82:dc:13:c4: 25:4d:aa:20:c3:81:ea:d0:ed:68:f8:90:2f:61:cf: 53:91:dc:9d:e8:80:f3:6f:2f:b9:c1:b9:4f:3b:3c: be:b9:7d:f1:50:fb:64:e8:ee:d0:ce:24:97:fa:b9: 2f:5f:3d:d0:da:a7:29:76:0b:3b:e4:03:cc:61:6e: 09:72:8c:32:b0:0d:6c:47:d7:59:ea:74:a9:52:0a: e1:66:66:c8:51:56:c9:13:41:7c:cd:9c:40:51:ce: b8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:A0:0F:95:09:3B:A7:98:D5:67:AB:79:F9:F0:1C:C4:39:8C:8E:BA X509v3 Authority Key Identifier: keyid:53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:a5:c1:2d:91:13:95:2c:0e:a6:b3:ce:6f:3c:56:5f:a0:7f: 34:ea:b8:b8:e8:2e:68:2b:f9:05:42:69:21:b1:78:66:80:b2: 80:46:1c:1f:0f:ec:db:ce:47:aa:74:ba:e1:b3:9b:5a:95:f4: 17:47:3b:52:88:3b:b5:9d:67:fc:bd:5d:67:da:c8:a9:a4:88: 01:64:bd:31:c2:4f:8a:42:c3:b5:3f:ea:0d:6b:04:23:14:60: b9:b2:01:8a:c9:32:b0:40:26:d8:a7:e9:d6:3f:58:83:1a:8d: 5c:b1:ec:7c:dc:a4:d1:87:c7:bd:e5:bf:ed:52:66:2d:cb:4e: 0c:41:2e:e0:ee:1b:24:12:d7:69:62:a1:7e:65:fb:82:7e:db: a5:87:a3:b8:1f:c0:1a:fb:58:79:31:eb:40:14:b9:08:07:bd: eb:fe:aa:ef:db:e4:78:d7:5a:c2:40:54:a4:8e:fe:72:3f:92: f5:20:3f:21:17:5d:91:43:50:a8:90:5f:99:8a:02:03:c6:c0: 17:e1:e8:85:74:60:e5:d6:30:9d:4f:05:06:46:dc:6d:71:9d: 67:e3:ce:4c:12:15:4c:86:9c:ba:3d:81:d0:a1:7d:42:e5:c3: b4:cd:85:a6:ce:15:6f:bf:78:09:2e:cd:8f:ec:f8:0f:df:a0: 23:84:7e:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTgxMTAvBgNVBAUTKDUzN0E3MkJFNjMzOTM3OEM0QzREMjk3MDJCRUQ3Njc1 Q0NDQzE0NkEwHhcNMjUxMjA0MTgxNTU1WhcNMjUxMjExMTgxNTU1WjAYMRYwFAYD VQQDEw02OTMxY2ZkYi1lNGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsR5yxnmBRErx3g/gR1+uxT90EkqoLlZt0nubeeBclrajDL6rrQBcBoRPWdLg HZA+nOGLpobis1xlZLcrpSAhG5hIr2P71N9xDr5UZWKQmjMlYBr4abRjxbmeQ5S+ hWvxvviHsDx362fcTxMcnJQrjpsAOEEilWx2Fkwt3dBsSkcduLSE8YxZ22iO8vAx MDjuEKI8NYlfnn62J6MkGca6y4LcE8QlTaogw4Hq0O1o+JAvYc9Tkdyd6IDzby+5 wblPOzy+uX3xUPtk6O7QziSX+rkvXz3Q2qcpdgs75APMYW4JcowysA1sR9dZ6nSp UgrhZmbIUVbJE0F8zZxAUc64OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCgD5UJ O6eY1WerefnwHMQ5jI66MB8GA1UdIwQYMBaAFFN6cr5jOTeMTE0pcCvtdnXMzBRq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5OC9CMEZDMzVEQzJB Q0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40eE1UU2x3Sy0xMmRjek1G R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzcHl2bU01TjR4TVRTbHdLLTEyZGN6TUZHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI5OC9CMEZDMzVEQzJBQ0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40 eE1UU2x3Sy0xMmRjek1GR28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7pcEtkROVLA6ms85vPFZfoH806ri46C5oK/kFQmkhsXhmgLKARhwf D+zbzkeqdLrhs5talfQXRztSiDu1nWf8vV1n2sippIgBZL0xwk+KQsO1P+oNawQj FGC5sgGKyTKwQCbYp+nWP1iDGo1csex83KTRh8e95b/tUmYty04MQS7g7hskEtdp YqF+ZfuCftulh6O4H8Aa+1h5MetAFLkIB73r/qrv2+R411rCQFSkjv5yP5L1ID8h F12RQ1CokF+ZigIDxsAX4eiFdGDl1jCdTwUGRtxtcZ1n485MEhVMhpy6PYHQoX1C 5cO0zYWmzhVvv3gJLs2P7PgP36AjhH4j -----END CERTIFICATE-----Generated at Sat Dec 6 17:53:15 2025 by rpki-client