This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: Ra0XnJJCn07vxwanu68CVnIWWDywcuKc1px6Jqy4PHg= Subject key identifier: 7B:BA:36:AE:09:76:C8:E2:1F:41:F7:0C:C6:2E:C7:3B:C5:43:AE:D4 Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: BF Signing time: Fri 05 Dec 2025 03:54:13 +0000 Manifest this update: Fri 05 Dec 2025 03:54:13 +0000 Manifest next update: Fri 12 Dec 2025 03:54:13 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: n4JPKyrWbqS3SHjQueR+O1ullFObmpGKf8bts/VN/cE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Dec 5 03:54:13 2025 GMT Not After : Dec 12 03:54:13 2025 GMT Subject: CN=69325765-0e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8f:0b:82:be:4a:18:19:99:fc:8e:0e:fb:f7: f4:6b:27:62:fd:68:68:f2:35:d3:86:b4:37:64:00: 15:22:b7:ab:f0:bb:03:23:1d:be:7c:26:0b:a4:89: 59:69:f7:3c:13:02:29:14:0f:c3:f2:7e:31:55:42: a9:ef:d6:ff:f9:0d:2d:ab:53:0d:0d:de:ff:46:eb: 81:9e:43:9d:c4:68:e0:34:30:fb:32:d8:63:04:40: 11:44:14:70:ea:ed:36:9f:32:fb:b5:4a:df:dc:71: 9d:b7:7b:93:8e:9e:38:b9:b8:c8:0d:03:52:cb:9a: ae:b4:21:28:67:9f:de:7b:18:58:db:79:86:db:e2: 37:75:03:f7:16:85:a0:84:68:bf:82:04:5b:21:fd: e1:4c:3a:cb:1e:1b:1c:40:77:2e:46:e4:9b:80:6b: 9b:2a:23:bb:5b:b4:6c:a5:0d:71:ce:11:58:80:d7: cb:6b:ce:85:77:67:96:93:72:94:4d:a0:4c:d2:07: a1:21:5f:2e:da:e8:eb:6b:ff:25:39:87:79:91:03: 78:7b:26:7f:57:ed:9f:75:db:7c:aa:eb:b8:d1:c1: 39:84:67:e5:7c:9b:62:a9:9d:49:99:39:f0:f0:09: 30:b1:9c:45:e4:73:7b:38:3e:f2:01:fe:7a:00:50: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BA:36:AE:09:76:C8:E2:1F:41:F7:0C:C6:2E:C7:3B:C5:43:AE:D4 X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:30:a3:07:78:8b:f4:8b:6d:07:50:d5:84:bc:14:6c:c6:0c: 30:aa:42:c7:71:77:da:b3:92:c4:7f:c0:12:93:1e:9f:ef:df: b5:62:64:81:84:ba:9c:40:c8:c5:fd:5a:c2:6e:71:15:60:94: 31:ac:e8:46:81:82:cc:86:07:bc:b8:4f:06:f5:85:6c:01:e6: 27:08:16:6e:43:68:16:68:36:ae:8f:09:73:b2:6d:97:d3:2a: 26:7c:69:44:0d:8e:58:17:b9:ed:80:2c:5a:b2:ae:a4:cd:6a: d7:03:1e:d2:7a:fa:d2:3f:50:fd:72:0a:74:73:da:85:a2:21: 4e:03:c2:64:27:91:bb:a1:47:b9:5b:7e:d9:4b:05:5c:f5:68: 1f:97:03:9c:a9:27:fe:9c:23:f6:6e:e8:a8:b5:c6:3e:1e:f9: 76:1f:2b:e2:bb:0b:63:5c:0a:5b:ac:ef:69:23:89:54:ff:f8: 73:b4:0f:ab:c8:2d:c8:ca:ae:54:b0:a1:f7:56:0e:df:0d:5e: 67:ec:ba:62:b7:00:07:36:b4:60:74:7e:91:7d:08:ca:c5:b2: 4a:8e:9d:78:46:95:66:71:1d:c2:9d:89:01:2e:ca:5a:5b:c8: ba:53:16:90:4b:b6:3a:38:6c:e2:b7:29:ea:6b:4b:86:89:b4: 97:4b:5a:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKDUzQzA4QkRBMDRCQzA1MzIyMUVCMjczQUEyMTVDQ0Q5 NUMwMEMzOTIwHhcNMjUxMjA1MDM1NDEzWhcNMjUxMjEyMDM1NDEzWjAYMRYwFAYD VQQDEw02OTMyNTc2NS0wZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz48Lgr5KGBmZ/I4O+/f0aydi/Who8jXThrQ3ZAAVIrer8LsDIx2+fCYLpIlZ afc8EwIpFA/D8n4xVUKp79b/+Q0tq1MNDd7/RuuBnkOdxGjgNDD7MthjBEARRBRw 6u02nzL7tUrf3HGdt3uTjp44ubjIDQNSy5qutCEoZ5/eexhY23mG2+I3dQP3FoWg hGi/ggRbIf3hTDrLHhscQHcuRuSbgGubKiO7W7RspQ1xzhFYgNfLa86Fd2eWk3KU TaBM0gehIV8u2ujra/8lOYd5kQN4eyZ/V+2fddt8quu40cE5hGflfJtiqZ1JmTnw 8AkwsZxF5HN7OD7yAf56AFBqEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHu6Nq4J dsjiH0H3DMYuxzvFQ67UMB8GA1UdIwQYMBaAFFPAi9oEvAUyIesnOqIVzNlcAMOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS84MzM4QzRENkFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJUSWg2eWM2b2hYTTJWd0F3 NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS84MzM4QzRENkFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJU SWg2eWM2b2hYTTJWd0F3NUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnMKMHeIv0i20HUNWEvBRsxgwwqkLHcXfas5LEf8ASkx6f79+1YmSB hLqcQMjF/VrCbnEVYJQxrOhGgYLMhge8uE8G9YVsAeYnCBZuQ2gWaDaujwlzsm2X 0yomfGlEDY5YF7ntgCxasq6kzWrXAx7SevrSP1D9cgp0c9qFoiFOA8JkJ5G7oUe5 W37ZSwVc9WgflwOcqSf+nCP2buiotcY+Hvl2HyviuwtjXApbrO9pI4lU//hztA+r yC3Iyq5UsKH3Vg7fDV5n7LpitwAHNrRgdH6RfQjKxbJKjp14RpVmcR3CnYkBLspa W8i6UxaQS7Y6OGzitynqa0uGibSXS1p7 -----END CERTIFICATE-----Generated at Sat Dec 6 11:21:57 2025 by rpki-client