This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft File: rU1lO4NcTh3pjsZjdoiamoN2SwI.mft (raw, json) Hash identifier: VUu1na7xPphkvMNzYPovAwTMH9w9rlPc+6z9a0wtpvM= Subject key identifier: AE:18:17:6D:68:F2:E4:C9:EB:37:CC:3A:E8:53:92:8F:82:B9:79:F5 Authority key identifier: AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 Certificate issuer: /CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Certificate serial: 34EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft Manifest number: 34EC Signing time: Wed 24 Dec 2025 14:41:58 +0000 Manifest this update: Wed 24 Dec 2025 14:41:58 +0000 Manifest next update: Wed 31 Dec 2025 14:41:58 +0000 Files and hashes: 1: rU1lO4NcTh3pjsZjdoiamoN2SwI.crl (hash: f9ieALud1ZmQcuvLfhHdaRAn8GqOAsf7VkAo+sowp/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 14:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13548 (0x34ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B669, serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Validity Not Before: Dec 24 14:41:58 2025 GMT Not After : Dec 31 14:41:58 2025 GMT Subject: CN=694bfbb6-a57a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bc:e8:36:b7:54:10:1d:2f:82:1e:a8:a6:1e: 25:24:83:ed:2e:51:e4:8d:99:63:74:f1:00:b4:d9: 1e:4c:60:de:12:e7:2f:c1:ac:98:33:48:3e:0a:6d: 88:00:82:36:40:6f:04:bf:25:0a:54:63:44:86:b8: e3:d4:4b:86:10:b1:77:19:0e:ff:39:1f:ee:d0:69: fc:09:d3:47:2d:7a:1f:18:a6:37:37:d4:59:fd:34: 81:b8:ab:5f:37:28:74:b6:09:bf:e1:71:bc:dd:29: 49:65:62:8d:59:8b:2b:c3:72:d2:89:2b:b1:57:91: 7b:6e:40:5d:43:94:6d:d2:3c:39:60:90:67:10:f6: 56:a3:04:91:f6:a1:26:9f:a0:cd:fd:26:3b:20:65: d0:42:81:6b:ff:64:8d:a7:a8:58:a7:8d:20:0b:b5: dc:0d:7f:8b:25:53:35:91:97:dc:67:87:d4:eb:c8: f9:d0:e9:c3:51:63:dd:2f:18:cc:ec:23:b3:fc:9d: a4:78:d0:a0:8c:23:ef:a0:9d:f5:94:74:88:fe:fb: 88:f1:12:04:35:7a:0f:b1:78:64:a5:22:03:62:7b: c5:d5:32:de:c1:3e:49:c3:b5:88:d6:9e:ae:3d:da: e7:7f:96:ea:4f:75:a0:dc:e3:f6:1f:ed:0a:db:d0: ee:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:18:17:6D:68:F2:E4:C9:EB:37:CC:3A:E8:53:92:8F:82:B9:79:F5 X509v3 Authority Key Identifier: keyid:AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:06:14:eb:b2:03:61:41:0e:e1:64:c0:55:fb:e2:48:60:f2: 62:3f:58:e9:ee:6c:89:fb:fa:5d:5a:79:eb:cc:7f:7b:b8:ac: 6e:1b:f7:c9:e6:ea:b6:56:75:2d:4c:6f:72:c7:bf:23:c4:ac: 13:29:95:85:d9:d8:27:66:b4:6e:4b:21:b3:41:09:2f:ed:f9: 1b:15:54:c1:e9:0f:61:18:39:cb:44:e3:98:7f:fb:99:1a:2f: 53:0c:3f:90:80:1b:d4:15:fe:8c:41:4f:bf:d9:a4:76:88:aa: 7f:f7:7d:8a:11:ce:c7:58:28:df:8c:3a:84:2c:d5:8e:b5:07: 32:c9:b5:29:e9:aa:76:0b:d0:c0:eb:3a:36:84:c1:6f:73:aa: 92:3f:89:ed:c0:e6:a3:92:60:a1:e0:70:e1:f7:fb:a3:66:5b: d3:c3:86:0c:e7:43:7e:1f:43:67:2d:78:1d:d8:a2:56:6f:52: 1a:27:15:cc:46:48:25:a6:01:e0:ff:15:ab:61:21:e9:83:37: 2d:36:54:ad:1c:1c:cf:ca:35:12:0b:f5:b4:ef:4d:08:b8:74: 9e:0a:e2:ca:3b:25:43:2e:93:5b:75:90:8e:d5:1b:ef:3a:86: 9e:29:37:c0:b2:0f:cb:84:e3:75:18:3f:7e:af:ef:a9:83:a7: 71:09:07:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2NjkxMTAvBgNVBAUTKEFENEQ2NTNCODM1QzRFMURFOThFQzY2Mzc2ODg5QTlB ODM3NjRCMDIwHhcNMjUxMjI0MTQ0MTU4WhcNMjUxMjMxMTQ0MTU4WjAYMRYwFAYD VQQDDA02OTRiZmJiNi1hNTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLzoNrdUEB0vgh6oph4lJIPtLlHkjZljdPEAtNkeTGDeEucvwayYM0g+Cm2I AII2QG8EvyUKVGNEhrjj1EuGELF3GQ7/OR/u0Gn8CdNHLXofGKY3N9RZ/TSBuKtf Nyh0tgm/4XG83SlJZWKNWYsrw3LSiSuxV5F7bkBdQ5Rt0jw5YJBnEPZWowSR9qEm n6DN/SY7IGXQQoFr/2SNp6hYp40gC7XcDX+LJVM1kZfcZ4fU68j50OnDUWPdLxjM 7COz/J2keNCgjCPvoJ31lHSI/vuI8RIENXoPsXhkpSIDYnvF1TLewT5Jw7WI1p6u Pdrnf5bqT3Wg3OP2H+0K29Du7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4YF21o 8uTJ6zfMOuhTko+CuXn1MB8GA1UdIwQYMBaAFK1NZTuDXE4d6Y7GY3aImpqDdksC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjY2OS85RDVCRjZGRTFE OTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1RoM3Bqc1pqZG9pYW1vTjJT d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVMWxPNE5jVGgzcGpzWmpkb2lhbW9OMlN3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjY2OS85RDVCRjZGRTFEOTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1Ro M3Bqc1pqZG9pYW1vTjJTd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuBhTrsgNhQQ7hZMBV++JIYPJiP1jp7myJ+/pdWnnrzH97uKxuG/fJ 5uq2VnUtTG9yx78jxKwTKZWF2dgnZrRuSyGzQQkv7fkbFVTB6Q9hGDnLROOYf/uZ Gi9TDD+QgBvUFf6MQU+/2aR2iKp/932KEc7HWCjfjDqELNWOtQcyybUp6ap2C9DA 6zo2hMFvc6qSP4ntwOajkmCh4HDh9/ujZlvTw4YM50N+H0NnLXgd2KJWb1IaJxXM RkglpgHg/xWrYSHpgzctNlStHBzPyjUSC/W0700IuHSeCuLKOyVDLpNbdZCO1Rvv OoaeKTfAsg/LhON1GD9+r++pg6dxCQe3 -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:05 2025 by rpki-client