This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: 3RzrO9yYy+nDW5LOzKH1LElIbdiPQZYyVhu68klap84= Subject key identifier: AC:08:CE:0C:C3:01:A8:C4:FF:D9:19:48:3B:49:2E:A1:98:05:94:F0 Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 06A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 069C Signing time: Sat 06 Dec 2025 21:17:14 +0000 Manifest this update: Sat 06 Dec 2025 21:17:13 +0000 Manifest next update: Sat 13 Dec 2025 21:17:13 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: /x/ckkHubkLtVMkZjpFcJbR82nShMYoJQrQ0xu5JLlE=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: jZlWStDyUEA5NOntBzhPKNNSuOk9+V2s5MhuAGQtCUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1697 (0x6a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: Dec 6 21:17:13 2025 GMT Not After : Dec 13 21:17:13 2025 GMT Subject: CN=69349d5a-fca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:de:8b:23:c6:c9:df:86:01:64:13:e2:6d:09: 6a:eb:e4:6b:fc:9e:40:83:f2:79:43:04:af:d0:71: 28:ab:83:fb:2d:be:ec:74:44:b6:2a:ac:66:70:25: 70:19:df:71:d8:6b:7c:e1:26:c9:fc:01:d5:80:2d: b4:2e:ad:eb:20:54:57:14:e3:a7:3a:d8:74:b1:6d: 84:61:29:04:02:7c:78:b1:c2:de:b9:92:15:23:82: b3:dc:27:09:27:da:f9:76:0e:7f:4d:1c:40:a3:f1: 87:2c:5a:67:e8:69:86:ab:19:5d:78:83:ba:66:27: fa:52:0d:85:1e:cd:6f:aa:16:16:dc:bf:ef:cd:16: 32:b1:e7:f6:94:79:db:94:f3:f3:d4:c1:93:c4:03: 0d:84:0b:06:88:19:c7:12:ae:80:ea:56:c7:90:26: 15:a3:a0:b4:5b:e2:d2:a2:09:6d:ff:bc:da:ad:d9: 68:84:92:63:e6:35:60:38:33:52:1a:3f:ef:37:c3: 7e:3c:f5:03:22:29:d4:d2:2d:87:28:bf:c0:ee:08: 92:28:68:08:28:5f:33:2a:ee:59:c4:bc:e8:d1:49: c2:0b:0b:bc:fa:2f:91:2a:ae:d4:c1:c3:0e:ad:b0: f9:6a:70:eb:3d:c6:85:ec:61:14:ab:ac:cb:66:8d: 0b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:08:CE:0C:C3:01:A8:C4:FF:D9:19:48:3B:49:2E:A1:98:05:94:F0 X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ec:ce:84:62:f2:20:9d:5a:8c:c6:ab:b1:0f:8a:60:2c:29: 12:f4:d7:85:1b:b1:36:88:16:76:ca:81:23:a3:1c:14:ee:5d: 9d:06:04:4e:ed:80:d6:cb:3c:4b:cb:e3:20:fa:8a:93:59:47: 2e:72:73:8b:64:a1:b6:af:68:74:fc:a3:71:0a:20:4c:be:83: d7:eb:13:bb:ed:9e:18:21:e1:2f:94:2d:a0:56:33:74:44:84: 04:90:f0:0b:79:c5:10:87:9b:b3:61:57:0d:6b:20:e0:56:c0: 5f:3c:c0:31:50:80:2e:08:9d:af:20:ef:4d:b9:b5:43:65:2b: 64:a5:5d:3d:73:cc:3b:4a:3e:b7:0f:53:81:f7:2d:35:ff:6a: 4b:5b:17:0d:a4:05:6b:c7:a0:b7:8e:84:bb:40:8b:ee:12:c8: 22:e9:ea:dd:c4:02:f0:da:9f:93:31:05:0e:b7:da:bb:63:a8: e3:16:03:c8:32:f4:c0:c6:b5:d0:c4:21:95:87:20:a6:e4:4b: 79:27:74:f1:12:48:69:00:3a:04:83:c8:70:08:30:b6:26:5d: 97:43:27:30:73:f3:70:98:be:ae:5c:15:d3:e1:a1:a3:fc:d6: de:3e:31:ae:1b:27:a1:b8:50:30:3e:b5:f0:91:08:3e:ec:b1: 67:ba:c6:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjUxMjA2MjExNzEzWhcNMjUxMjEzMjExNzEzWjAYMRYwFAYD VQQDEw02OTM0OWQ1YS1mY2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd6LI8bJ34YBZBPibQlq6+Rr/J5Ag/J5QwSv0HEoq4P7Lb7sdES2KqxmcCVw Gd9x2Gt84SbJ/AHVgC20Lq3rIFRXFOOnOth0sW2EYSkEAnx4scLeuZIVI4Kz3CcJ J9r5dg5/TRxAo/GHLFpn6GmGqxldeIO6Zif6Ug2FHs1vqhYW3L/vzRYysef2lHnb lPPz1MGTxAMNhAsGiBnHEq6A6lbHkCYVo6C0W+LSoglt/7zardlohJJj5jVgODNS Gj/vN8N+PPUDIinU0i2HKL/A7giSKGgIKF8zKu5ZxLzo0UnCCwu8+i+RKq7UwcMO rbD5anDrPcaF7GEUq6zLZo0LkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwIzgzD AajE/9kZSDtJLqGYBZTwMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe7M6EYvIgnVqMxquxD4pgLCkS9NeFG7E2iBZ2yoEjoxwU7l2dBgRO 7YDWyzxLy+Mg+oqTWUcucnOLZKG2r2h0/KNxCiBMvoPX6xO77Z4YIeEvlC2gVjN0 RIQEkPALecUQh5uzYVcNayDgVsBfPMAxUIAuCJ2vIO9NubVDZStkpV09c8w7Sj63 D1OB9y01/2pLWxcNpAVrx6C3joS7QIvuEsgi6erdxALw2p+TMQUOt9q7Y6jjFgPI MvTAxrXQxCGVhyCm5Et5J3TxEkhpADoEg8hwCDC2Jl2XQycwc/NwmL6uXBXT4aGj /NbePjGuGyehuFAwPrXwkQg+7LFnusY1 -----END CERTIFICATE-----Generated at Mon Dec 8 06:11:52 2025 by rpki-client