This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: OUZXYmYFPa60DKoI213BVDgnmuUgteRDsXKBrERi/6c= Subject key identifier: E8:57:12:28:A5:E2:47:4C:3D:BD:0A:DE:8C:86:79:63:C7:A3:04:8B Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 3519 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 3505 Signing time: Mon 22 Dec 2025 14:43:03 +0000 Manifest this update: Mon 22 Dec 2025 14:43:02 +0000 Manifest next update: Mon 29 Dec 2025 14:43:02 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: kabcbAaqAgeUCTd2sVQ+/BUjMFj/1wSM81cUsOthq/Q=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: 87V6SXUvvAIKhZA2XnoavxG9s7I/eBbv0ebUc09ej5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:43:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13593 (0x3519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Dec 22 14:43:02 2025 GMT Not After : Dec 29 14:43:02 2025 GMT Subject: CN=694958f6-1c78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:62:45:75:fa:c4:19:9e:33:ab:49:03:58:3c: 16:36:93:7b:c5:72:70:71:23:84:fc:c6:7d:89:85: 0b:83:0c:b9:d1:30:fe:42:a1:31:66:36:22:36:7d: 93:26:6d:a3:c1:52:fd:fb:69:57:82:ae:f6:ef:0d: d4:7b:a2:1a:48:60:7a:6b:8e:87:48:1a:7b:70:2c: ca:62:6b:2e:39:9c:66:7f:c6:ca:5e:5f:08:b1:82: 82:52:ea:ff:9f:10:3f:28:0d:f9:a4:9a:28:6e:9a: 13:2a:a8:2f:9d:76:79:87:cc:88:c3:20:0d:53:11: 2a:67:c9:4f:46:b6:00:f2:08:f6:90:c7:53:f5:1d: 92:37:d3:c7:93:86:9f:2c:08:21:2c:14:f3:00:46: 0e:1c:5c:9d:41:39:f4:af:5c:56:16:56:86:a2:f0: 5a:49:50:7a:7a:cf:19:c7:02:30:40:69:60:34:19: 7c:f1:b9:d5:ae:cd:5d:0d:52:9f:d4:12:dd:ca:9b: 00:17:8d:ec:f2:fc:2a:06:e9:cf:1c:4d:b6:91:fd: 70:c7:11:c7:17:b7:f1:a0:7a:ac:d4:fb:68:14:74: cd:c6:e0:47:f2:2b:b4:f6:4c:59:e6:9f:75:b9:b0: 58:3c:b7:16:14:17:6f:6c:5a:b7:b7:e3:9b:51:73: 0e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:57:12:28:A5:E2:47:4C:3D:BD:0A:DE:8C:86:79:63:C7:A3:04:8B X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:dc:3c:8f:0b:33:b9:59:f4:ab:32:a9:bf:45:20:05:4a:61: 62:8d:cb:ea:39:22:ab:8f:a4:54:13:53:8a:bb:ce:26:22:17: c7:03:a6:aa:44:67:8c:36:15:0f:2d:da:80:58:98:5e:e2:5d: da:46:1c:64:79:46:88:90:07:83:72:ad:11:5b:76:84:53:f3: 97:c0:65:b5:cd:9c:7f:9a:e0:dc:19:82:9f:af:c9:8e:d7:15: cd:87:84:81:42:48:cd:3a:15:0c:fe:3d:6d:21:1b:10:3b:b1: 96:fa:dd:0b:16:ab:5c:17:23:17:ea:a3:30:26:ef:e4:ec:2d: 85:c0:c5:ac:3d:e2:da:7d:98:19:24:b4:57:25:9b:f9:66:63: b2:1c:8c:b5:0e:68:3c:0f:81:50:a1:2f:6c:72:c9:92:41:fc: 34:3e:7c:4b:cb:f2:fc:c4:75:54:bc:bd:43:9d:0c:ab:d0:ff: 47:3b:f9:c0:eb:ff:61:66:d5:30:a0:74:07:37:b1:d7:20:bf: 5b:ab:5b:b9:f1:35:ae:b5:e6:54:f0:a3:95:2f:10:fb:71:04: cb:16:7c:83:c0:2c:71:26:18:13:70:48:45:5b:ff:e3:a6:e3: c1:7b:b8:13:ec:e9:a4:89:23:80:4c:ef:28:b5:09:5e:de:c3: 9e:67:32:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjUxMjIyMTQ0MzAyWhcNMjUxMjI5MTQ0MzAyWjAYMRYwFAYD VQQDDA02OTQ5NThmNi0xYzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWJFdfrEGZ4zq0kDWDwWNpN7xXJwcSOE/MZ9iYULgwy50TD+QqExZjYiNn2T Jm2jwVL9+2lXgq727w3Ue6IaSGB6a46HSBp7cCzKYmsuOZxmf8bKXl8IsYKCUur/ nxA/KA35pJoobpoTKqgvnXZ5h8yIwyANUxEqZ8lPRrYA8gj2kMdT9R2SN9PHk4af LAghLBTzAEYOHFydQTn0r1xWFlaGovBaSVB6es8ZxwIwQGlgNBl88bnVrs1dDVKf 1BLdypsAF43s8vwqBunPHE22kf1wxxHHF7fxoHqs1PtoFHTNxuBH8iu09kxZ5p91 ubBYPLcWFBdvbFq3t+ObUXMOoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhXEiil 4kdMPb0K3oyGeWPHowSLMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA13DyPCzO5WfSrMqm/RSAFSmFijcvqOSKrj6RUE1OKu84mIhfHA6aq RGeMNhUPLdqAWJhe4l3aRhxkeUaIkAeDcq0RW3aEU/OXwGW1zZx/muDcGYKfr8mO 1xXNh4SBQkjNOhUM/j1tIRsQO7GW+t0LFqtcFyMX6qMwJu/k7C2FwMWsPeLafZgZ JLRXJZv5ZmOyHIy1Dmg8D4FQoS9scsmSQfw0PnxLy/L8xHVUvL1DnQyr0P9HO/nA 6/9hZtUwoHQHN7HXIL9bq1u58TWuteZU8KOVLxD7cQTLFnyDwCxxJhgTcEhFW//j puPBe7gT7OmkiSOATO8otQle3sOeZzJX -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:20 2025 by rpki-client