This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft File: _U2MY5rcFYR8e0kRFZ3nG9gTk64.mft (raw, json) Hash identifier: PkcUIv8GeeIg6Vn+E50BtBx0pRo8b7tcn/CwDPmKunU= Subject key identifier: E6:43:0B:D0:3D:41:C5:25:6B:80:6E:94:EF:D2:AC:EF:71:AB:6A:2F Authority key identifier: FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE Certificate issuer: /CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Certificate serial: 087A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft Manifest number: 0874 Signing time: Mon 22 Dec 2025 19:57:52 +0000 Manifest this update: Mon 22 Dec 2025 19:57:51 +0000 Manifest next update: Mon 29 Dec 2025 19:57:51 +0000 Files and hashes: 1: _U2MY5rcFYR8e0kRFZ3nG9gTk64.crl (hash: BCMIfzrozRS9xNSDNQZBfEst7HnQlX2RSAEqeFSAmHA=) 2: 4149D206DC4711EA80D5D916C4F9AE02.roa (hash: fmTA3xXjU3MtioARHLhk0XmrYZWzaoGTX30tUFAbkPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2170 (0x87a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152462, serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Validity Not Before: Dec 22 19:57:51 2025 GMT Not After : Dec 29 19:57:51 2025 GMT Subject: CN=6949a2c0-0523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d7:e8:05:36:20:48:d0:ad:ad:7d:1e:c5:1c: 81:e4:d6:34:6a:5f:05:6d:60:7e:a0:ac:f0:ff:31: 91:8b:c0:d7:b1:19:be:c3:e7:59:f0:e4:03:ad:10: 8a:bc:50:41:1f:3c:7f:b6:96:73:15:2d:13:99:0b: bb:9b:c4:a4:fc:d6:06:0e:46:90:42:e7:8a:b9:f4: b8:c2:19:52:30:28:cc:81:78:00:d3:fb:52:2d:d7: 8f:5a:73:04:8e:9c:48:f5:3a:67:b3:e8:b5:13:65: 3a:4a:ab:58:e4:2b:ac:7b:cb:73:f9:bc:5a:83:9e: 3c:1b:f5:6f:93:5b:b0:47:0f:c3:d2:4e:ff:b4:93: 12:3a:54:e2:36:1c:7b:0a:3c:b2:06:f8:c1:37:54: 64:2a:dc:d1:e9:7d:3e:ac:1b:24:0e:70:eb:78:41: ee:d6:a2:7d:99:05:ed:06:7f:32:3f:52:f3:a7:1b: 16:34:18:20:4d:3f:65:a2:29:b5:73:65:d5:c2:59: 6a:7a:65:20:0c:38:32:00:db:6b:4b:2c:ad:74:5d: 99:9a:6a:58:4f:a6:35:5b:a0:f0:a0:0f:50:aa:4f: 07:48:83:ff:08:2b:86:29:51:4e:17:23:c7:b2:63: cf:fd:ce:1b:08:eb:6f:d7:ef:94:95:f0:70:3d:f6: 6c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:43:0B:D0:3D:41:C5:25:6B:80:6E:94:EF:D2:AC:EF:71:AB:6A:2F X509v3 Authority Key Identifier: keyid:FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:99:38:cc:62:9c:7e:14:29:b4:1e:61:03:59:0e:ca:65:7d: 7b:41:21:4d:6e:40:cf:17:88:20:1c:0f:c1:45:68:a4:77:0d: 75:14:aa:8d:d2:44:5b:86:92:60:97:f1:4c:55:25:74:c6:5b: 4a:6d:ae:b9:12:5c:9d:fb:aa:d2:ae:a2:be:e5:57:0d:d0:40: cb:db:f8:13:3c:b8:7d:d7:52:08:5e:52:81:22:79:99:ee:a2: 8d:c1:1e:d3:ee:5a:8c:e3:3f:23:e4:8b:90:8d:fa:7f:55:42: 1e:60:75:a9:a7:cd:bc:af:c1:91:d0:32:ad:15:be:31:97:0c: 87:95:e5:0b:6b:82:a3:ac:89:e0:61:22:e6:77:04:5b:d0:37: 7c:8b:20:c9:37:22:63:02:f5:1b:cd:6b:37:ac:9b:fd:a8:ee: 41:2e:8f:f6:e7:0c:b2:61:a4:17:f2:d0:c2:5b:da:e4:a1:14: f6:57:9b:44:1c:3b:d8:4b:29:5a:31:39:40:e7:32:82:ab:70: ee:fa:d3:a4:5b:c1:62:07:43:bc:4e:d8:15:b4:26:7e:34:29: 80:70:ac:9d:3a:2a:9a:86:c6:48:de:fb:fe:12:e9:db:a5:8d: 67:80:8d:cb:90:8d:93:16:3d:dd:06:2c:c0:77:22:7d:b5:c7: f7:6c:d5:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0NjIxMTAvBgNVBAUTKEZENEQ4QzYzOUFEQzE1ODQ3QzdCNDkxMTE1OURFNzFC RDgxMzkzQUUwHhcNMjUxMjIyMTk1NzUxWhcNMjUxMjI5MTk1NzUxWjAYMRYwFAYD VQQDDA02OTQ5YTJjMC0wNTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtfoBTYgSNCtrX0exRyB5NY0al8FbWB+oKzw/zGRi8DXsRm+w+dZ8OQDrRCK vFBBHzx/tpZzFS0TmQu7m8Sk/NYGDkaQQueKufS4whlSMCjMgXgA0/tSLdePWnME jpxI9Tpns+i1E2U6SqtY5Cuse8tz+bxag548G/Vvk1uwRw/D0k7/tJMSOlTiNhx7 CjyyBvjBN1RkKtzR6X0+rBskDnDreEHu1qJ9mQXtBn8yP1LzpxsWNBggTT9loim1 c2XVwllqemUgDDgyANtrSyytdF2ZmmpYT6Y1W6DwoA9Qqk8HSIP/CCuGKVFOFyPH smPP/c4bCOtv1++UlfBwPfZs3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZDC9A9 QcUla4BulO/SrO9xq2ovMB8GA1UdIwQYMBaAFP1NjGOa3BWEfHtJERWd5xvYE5Ou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjQ2Mi8zMkM3NTdFNkRD NDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZUjhlMGtSRlozbkc5Z1Rr NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VMk1ZNXJjRllSOGUwa1JGWjNuRzlnVGs2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjQ2Mi8zMkM3NTdFNkRDNDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZ UjhlMGtSRlozbkc5Z1RrNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjmTjMYpx+FCm0HmEDWQ7KZX17QSFNbkDPF4ggHA/BRWikdw11FKqN 0kRbhpJgl/FMVSV0xltKba65Elyd+6rSrqK+5VcN0EDL2/gTPLh911IIXlKBInmZ 7qKNwR7T7lqM4z8j5IuQjfp/VUIeYHWpp828r8GR0DKtFb4xlwyHleULa4KjrIng YSLmdwRb0Dd8iyDJNyJjAvUbzWs3rJv9qO5BLo/25wyyYaQX8tDCW9rkoRT2V5tE HDvYSylaMTlA5zKCq3Du+tOkW8FiB0O8TtgVtCZ+NCmAcKydOiqahsZI3vv+Eunb pY1ngI3LkI2TFj3dBizAdyJ9tcf3bNXt -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:38 2025 by rpki-client