This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: NJ1rwZ6R8zDeUSTl/LxHdNufXMkajsNkVKu8VXqNNyw= Subject key identifier: B9:43:27:1D:BF:F1:73:79:F7:E7:B3:C4:18:F7:57:19:16:F7:79:37 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: 0169 Signing time: Fri 19 Dec 2025 03:11:22 +0000 Manifest this update: Fri 19 Dec 2025 03:11:22 +0000 Manifest next update: Fri 26 Dec 2025 03:11:22 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: BJGxkyI5qtbVS88Ax/IkyM7v5YBKm1bfuJXtrBTf+Fg=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: BVkUXHmaunafReC96ZYpGOgVThUwi3Y9iPZ+tZjaqqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070, serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: Dec 19 03:11:22 2025 GMT Not After : Dec 26 03:11:22 2025 GMT Subject: CN=6944c25a-f8a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0b:f0:eb:e7:22:22:79:37:6b:9a:1a:1a:51: fb:5c:0b:eb:17:96:96:0f:fb:a2:3a:b7:07:85:7d: a8:7f:c7:fe:9f:f6:ad:99:91:9e:d8:a9:50:2c:8f: c8:43:42:14:46:5c:84:17:7a:f2:5b:54:93:f2:bd: c2:50:f9:89:2b:88:d0:84:85:e1:eb:5e:17:5d:0c: 62:e4:d6:2a:32:d2:2e:70:11:2d:59:66:6f:eb:ec: 38:fb:6f:d9:24:d4:b3:ce:2b:78:62:c1:42:eb:2a: 6f:b9:fb:d9:12:53:45:43:ba:47:e1:fe:6f:a8:2c: 93:23:1f:9c:28:b6:55:cc:0d:b4:95:53:16:d5:95: 48:97:21:71:38:80:70:45:33:45:35:fb:73:fd:ff: cf:f9:d4:2c:8d:99:f3:42:19:ac:cc:fb:bb:90:2d: 9e:b7:06:ed:4e:8d:8b:c8:4a:b0:e5:2d:18:2b:d7: ca:8e:3e:af:cc:d8:58:87:d6:22:e3:74:eb:49:24: af:bf:1b:0a:3b:72:63:cf:44:70:e7:e0:09:1c:d4: e3:f7:3e:16:c4:68:cd:c5:be:47:78:50:f1:86:81: c1:4b:11:7e:54:cf:ac:89:c4:e3:de:db:7a:00:de: 25:f7:78:19:ca:e3:b6:57:56:01:5b:72:36:60:af: 54:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:43:27:1D:BF:F1:73:79:F7:E7:B3:C4:18:F7:57:19:16:F7:79:37 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:29:e7:5a:10:39:6c:b1:f1:7c:55:0c:1b:13:e8:71:6c:ab: eb:e2:43:8d:82:13:40:6a:31:f4:d5:7c:65:34:26:e9:9d:fa: 38:b1:c3:45:64:c3:bf:00:02:54:26:ce:0f:63:9b:77:e8:7b: 5b:49:12:a6:b3:34:a3:80:9b:7d:33:c7:92:d3:d5:91:24:f3: 73:b1:cf:1d:99:9a:9a:3f:44:9f:ee:b5:53:f4:24:2f:a7:fd: 05:8c:ac:7f:4d:a9:84:a9:53:dc:c1:4b:1d:59:db:13:40:26: 4e:f0:14:58:fb:d4:eb:8a:f2:67:52:8c:62:52:1c:81:d8:4f: 9e:5c:f1:66:f0:94:a6:da:e6:23:c4:88:64:0a:ca:1a:05:dd: d4:7f:66:76:9c:c2:61:75:54:4b:47:b9:1b:65:35:3e:83:6f: da:6f:eb:6b:e0:51:df:75:8b:e5:cd:96:8e:fc:ec:74:fa:e2: 62:02:c1:39:d8:6d:74:2c:fe:27:07:9e:5a:20:a1:3b:d7:d9: 18:08:45:03:ec:86:db:a0:be:16:ce:b6:5b:87:97:14:57:2f: bc:c6:7a:5e:04:0c:18:52:cd:91:1b:b2:ce:be:57:12:b2:ad: 3f:cf:14:df:4e:b2:12:4d:11:48:91:f6:51:9c:74:7e:51:d2: d1:86:1a:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjUxMjE5MDMxMTIyWhcNMjUxMjI2MDMxMTIyWjAYMRYwFAYD VQQDDA02OTQ0YzI1YS1mOGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgvw6+ciInk3a5oaGlH7XAvrF5aWD/uiOrcHhX2of8f+n/atmZGe2KlQLI/I Q0IURlyEF3ryW1ST8r3CUPmJK4jQhIXh614XXQxi5NYqMtIucBEtWWZv6+w4+2/Z JNSzzit4YsFC6ypvufvZElNFQ7pH4f5vqCyTIx+cKLZVzA20lVMW1ZVIlyFxOIBw RTNFNftz/f/P+dQsjZnzQhmszPu7kC2etwbtTo2LyEqw5S0YK9fKjj6vzNhYh9Yi 43TrSSSvvxsKO3Jjz0Rw5+AJHNTj9z4WxGjNxb5HeFDxhoHBSxF+VM+sicTj3tt6 AN4l93gZyuO2V1YBW3I2YK9USQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlDJx2/ 8XN59+ezxBj3VxkW93k3MB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnKedaEDlssfF8VQwbE+hxbKvr4kONghNAajH01XxlNCbpnfo4scNF ZMO/AAJUJs4PY5t36HtbSRKmszSjgJt9M8eS09WRJPNzsc8dmZqaP0Sf7rVT9CQv p/0FjKx/TamEqVPcwUsdWdsTQCZO8BRY+9TrivJnUoxiUhyB2E+eXPFm8JSm2uYj xIhkCsoaBd3Uf2Z2nMJhdVRLR7kbZTU+g2/ab+tr4FHfdYvlzZaO/Ox0+uJiAsE5 2G10LP4nB55aIKE719kYCEUD7IbboL4WzrZbh5cUVy+8xnpeBAwYUs2RG7LOvlcS sq0/zxTfTrISTRFIkfZRnHR+UdLRhhpN -----END CERTIFICATE-----Generated at Sat Dec 20 02:05:59 2025 by rpki-client