This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft File: UyQGWmE9LRB4F5xiFjcczGp3UHo.mft (raw, json) Hash identifier: n3+5nNiUWvVONRypxxHoWixjcL44qzZmRh8IdQXpPLM= Subject key identifier: 2B:1E:54:32:D0:4B:00:36:9A:ED:19:1E:36:B3:C0:77:16:47:C3:6D Authority key identifier: 53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A Certificate issuer: /CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft Manifest number: 0148 Signing time: Mon 15 Dec 2025 03:41:18 +0000 Manifest this update: Mon 15 Dec 2025 03:41:17 +0000 Manifest next update: Mon 22 Dec 2025 03:41:17 +0000 Files and hashes: 1: UyQGWmE9LRB4F5xiFjcczGp3UHo.crl (hash: 7AAxcHd4N4AH1kGXrhMQ9Qm8hzxUp9zc08RARQ84dwU=) 2: 2805F2D6E5B511EEB34EF35AC4F9AE02.roa (hash: 0mdd1hPCY77vgsAR82vZE3qWvhrgXofs3UYJMwrKnGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158EC4, serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Validity Not Before: Dec 15 03:41:17 2025 GMT Not After : Dec 22 03:41:17 2025 GMT Subject: CN=693f835e-f58f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f0:2e:ae:c2:04:e9:82:f1:94:b4:01:77:52: cb:bf:ef:02:20:5b:e2:93:7f:50:8c:e1:46:80:29: 48:9f:ad:97:6f:43:a0:7f:c3:a3:a0:b9:ee:38:36: e4:65:92:76:e6:6d:bf:9d:62:05:2b:ee:4b:71:e1: 7f:55:fe:5b:1c:5c:f4:29:49:06:29:22:20:06:53: f9:20:8c:da:cd:70:1d:e6:dd:c6:89:61:13:ad:eb: 89:83:1e:a5:7d:11:d6:b6:81:9f:82:37:e2:fe:58: 46:de:dd:95:13:bb:74:65:42:e1:1d:f6:d1:ad:86: 4d:8e:ea:d8:02:74:f1:2c:6a:73:71:6e:cc:09:8d: c4:45:a9:f2:1b:b1:40:55:54:62:ad:4b:ee:44:93: d3:06:11:eb:1d:98:d9:bb:e4:40:27:73:81:6a:43: b1:9b:e6:ec:16:c7:5b:f3:d5:5e:69:7b:1e:36:ef: 1b:71:8f:83:69:ec:d3:d5:31:2c:d5:db:b5:89:cf: a7:ac:1e:b5:0c:3a:df:84:b8:7e:84:8d:de:c0:90: d4:02:69:4c:a1:fb:2b:c3:07:67:09:9d:70:0e:6c: 45:1d:30:69:fa:58:b0:34:f9:94:3d:a7:2a:57:8c: 35:24:d1:b7:df:ed:fc:49:47:5e:39:24:39:e8:9c: 3e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:1E:54:32:D0:4B:00:36:9A:ED:19:1E:36:B3:C0:77:16:47:C3:6D X509v3 Authority Key Identifier: keyid:53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:33:05:c2:40:69:f2:90:99:4e:37:5e:9a:80:c3:ae:91:49: 6b:82:ce:70:d4:62:52:9a:34:9f:3c:90:52:ed:51:f4:3c:fa: b9:93:44:84:57:f6:87:50:bf:2f:86:4a:15:3f:fd:f7:e0:12: c3:c4:19:a1:9a:5c:52:0d:f8:c1:ac:72:15:9f:41:9a:60:aa: 23:08:bc:31:b7:03:9c:5f:12:d0:40:08:c0:b8:f5:23:d9:88: 04:38:bd:04:66:b2:71:0e:b8:18:24:89:8e:83:31:1e:ac:16: ca:33:07:84:08:3c:2a:db:26:3e:97:4a:4d:d1:eb:b6:8a:02: da:4f:62:84:10:ad:24:01:41:0c:87:01:31:56:58:ff:d0:85: 25:33:7e:22:66:3d:fa:64:4f:f4:47:c7:c5:2f:39:9d:b3:54: 14:1f:e0:ba:ee:87:7a:a9:de:02:12:13:c9:19:33:3f:54:29: 1d:61:4f:81:22:09:04:c8:b0:8a:a6:b4:05:c6:83:d0:8d:80: 3a:45:0f:60:fe:20:16:15:4d:5a:98:ec:90:61:fe:b0:a9:42: 64:40:c3:9d:e1:03:50:2c:03:38:13:69:cf:45:0c:60:7e:8c: dc:9c:f3:f6:84:b0:d8:4c:2f:00:40:68:8e:43:97:76:0e:9e: 81:86:43:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFQzQxMTAvBgNVBAUTKDUzMjQwNjVBNjEzRDJEMTA3ODE3OUM2MjE2MzcxQ0ND NkE3NzUwN0EwHhcNMjUxMjE1MDM0MTE3WhcNMjUxMjIyMDM0MTE3WjAYMRYwFAYD VQQDDA02OTNmODM1ZS1mNThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfAursIE6YLxlLQBd1LLv+8CIFvik39QjOFGgClIn62Xb0Ogf8OjoLnuODbk ZZJ25m2/nWIFK+5LceF/Vf5bHFz0KUkGKSIgBlP5IIzazXAd5t3GiWETreuJgx6l fRHWtoGfgjfi/lhG3t2VE7t0ZULhHfbRrYZNjurYAnTxLGpzcW7MCY3ERanyG7FA VVRirUvuRJPTBhHrHZjZu+RAJ3OBakOxm+bsFsdb89VeaXseNu8bcY+DaezT1TEs 1du1ic+nrB61DDrfhLh+hI3ewJDUAmlMofsrwwdnCZ1wDmxFHTBp+liwNPmUPacq V4w1JNG33+38SUdeOSQ56Jw+bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCseVDLQ SwA2mu0ZHjazwHcWR8NtMB8GA1UdIwQYMBaAFFMkBlphPS0QeBecYhY3HMxqd1B6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEVDNC80NTA2NDc5MEU1 QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxSQjRGNXhpRmpjY3pHcDNV SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5UUdXbUU5TFJCNEY1eGlGamNjekdwM1VIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEVDNC80NTA2NDc5MEU1QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxS QjRGNXhpRmpjY3pHcDNVSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6MwXCQGnykJlON16agMOukUlrgs5w1GJSmjSfPJBS7VH0PPq5k0SE V/aHUL8vhkoVP/334BLDxBmhmlxSDfjBrHIVn0GaYKojCLwxtwOcXxLQQAjAuPUj 2YgEOL0EZrJxDrgYJImOgzEerBbKMweECDwq2yY+l0pN0eu2igLaT2KEEK0kAUEM hwExVlj/0IUlM34iZj36ZE/0R8fFLzmds1QUH+C67od6qd4CEhPJGTM/VCkdYU+B IgkEyLCKprQFxoPQjYA6RQ9g/iAWFU1amOyQYf6wqUJkQMOd4QNQLAM4E2nPRQxg fozcnPP2hLDYTC8AQGiOQ5d2Dp6BhkMc -----END CERTIFICATE-----Generated at Tue Dec 16 00:42:19 2025 by rpki-client