This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: nSjyVKkUBpPiuas4tqAzn25DqboPVo4GOfQjz/6U8t4= Subject key identifier: A7:90:12:23:A0:61:66:3D:E7:33:29:B7:DA:F0:88:5D:61:51:D5:3C Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1C48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1C3A Signing time: Wed 24 Dec 2025 16:01:23 +0000 Manifest this update: Wed 24 Dec 2025 16:01:23 +0000 Manifest next update: Wed 31 Dec 2025 16:01:23 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: 1GuSS+fflQOQhNuAoe/2WniaTR+TPlMtqfRVptMDWtw=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: iw8R7e0/cuiLe2UpbocEUV4DYRPW2H32JZcJjyrYF2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 16:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7240 (0x1c48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Dec 24 16:01:23 2025 GMT Not After : Dec 31 16:01:23 2025 GMT Subject: CN=694c0e53-9f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:84:27:19:7c:ac:0e:36:7b:1f:c8:30:ba:a6: 2e:dc:56:bb:46:f4:05:cb:cd:93:db:b2:ae:62:37: 32:24:6a:32:6c:4c:2b:06:3a:73:ba:fb:8a:a0:d1: a4:56:7d:0e:c3:7e:c9:45:83:ea:56:19:13:a3:d7: 85:a6:0a:89:0b:d4:61:8c:5f:6e:cd:08:55:6d:37: 69:5c:7f:6d:4f:bd:b6:59:c4:4f:96:da:2d:aa:37: 8a:8b:ca:f8:c9:6a:1f:fb:a7:e5:62:84:23:6d:f4: 40:35:a7:91:2c:bf:b6:a4:d7:21:91:18:a3:4b:07: d8:ef:78:83:67:49:f9:d6:4a:42:76:bf:eb:20:23: 0d:e9:68:e1:b1:c6:d5:10:59:91:22:1f:ed:24:c8: 80:32:45:a2:55:0a:b3:d8:4f:31:75:30:ce:aa:14: a8:d9:12:9f:6b:bc:92:35:07:8e:83:df:75:ed:2c: 32:aa:16:8d:f7:fe:20:d7:3a:ff:e2:f4:e6:89:96: 31:5b:bf:f1:2b:48:56:01:4c:21:68:ab:36:6d:0f: e2:06:20:b5:c6:95:75:08:e6:03:b3:7d:ee:47:7c: 25:85:ee:7d:43:9d:8a:2c:8a:da:b6:d1:ae:a8:85: a4:2e:92:4c:49:5c:51:c5:5d:e9:8c:5e:4f:57:6f: 3f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:90:12:23:A0:61:66:3D:E7:33:29:B7:DA:F0:88:5D:61:51:D5:3C X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:6c:3f:3d:e7:53:ff:1a:9e:b3:4a:26:33:7d:c2:41:b6:0f: 7d:35:c5:a5:4e:8a:b0:95:85:15:af:2b:b7:35:a0:78:a0:6a: 50:91:a3:6e:77:3f:bc:6e:b7:1a:e0:16:9e:70:ef:fb:c8:ae: b8:02:16:6f:19:bc:04:ad:84:8f:bc:fd:fd:dd:cd:d5:7b:0c: 0c:63:a2:a7:dd:b5:b8:f4:c2:36:7a:c4:c1:f3:4b:e0:39:1a: 91:0d:9d:61:9a:f1:d4:25:34:92:66:7c:a3:c7:8a:cb:ec:15: 66:ef:23:1a:7a:42:52:11:f2:64:87:8c:3e:90:c0:36:70:e5: e9:00:fe:bf:8f:f1:c1:40:30:b7:a2:b2:9d:ea:29:b5:de:b9: fa:03:a5:4f:9b:80:01:c4:8c:5b:fd:a7:e2:46:74:22:af:4f: b5:0a:53:b0:c6:b9:4f:d5:42:e4:f1:00:2f:bb:0d:2b:e8:94: 07:6e:13:5b:60:1e:dc:a9:2a:21:64:81:a9:f5:e5:c8:b1:ba: 0c:a3:a1:31:58:94:dc:0e:d1:38:3e:24:e2:a5:b7:7a:85:3e: e4:3b:f0:36:d7:d8:7b:a9:03:ae:23:78:b6:7d:05:a6:73:61: 82:be:23:f7:09:d3:6d:2a:b0:a5:22:a6:26:85:5a:41:a6:ef: 50:e7:d7:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUxMjI0MTYwMTIzWhcNMjUxMjMxMTYwMTIzWjAYMRYwFAYD VQQDDA02OTRjMGU1My05ZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIQnGXysDjZ7H8gwuqYu3Fa7RvQFy82T27KuYjcyJGoybEwrBjpzuvuKoNGk Vn0Ow37JRYPqVhkTo9eFpgqJC9RhjF9uzQhVbTdpXH9tT722WcRPltotqjeKi8r4 yWof+6flYoQjbfRANaeRLL+2pNchkRijSwfY73iDZ0n51kpCdr/rICMN6WjhscbV EFmRIh/tJMiAMkWiVQqz2E8xdTDOqhSo2RKfa7ySNQeOg9917SwyqhaN9/4g1zr/ 4vTmiZYxW7/xK0hWAUwhaKs2bQ/iBiC1xpV1COYDs33uR3wlhe59Q52KLIrattGu qIWkLpJMSVxRxV3pjF5PV28/gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeQEiOg YWY95zMpt9rwiF1hUdU8MB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqbD8951P/Gp6zSiYzfcJBtg99NcWlToqwlYUVryu3NaB4oGpQkaNu dz+8brca4BaecO/7yK64AhZvGbwErYSPvP393c3VewwMY6Kn3bW49MI2esTB80vg ORqRDZ1hmvHUJTSSZnyjx4rL7BVm7yMaekJSEfJkh4w+kMA2cOXpAP6/j/HBQDC3 orKd6im13rn6A6VPm4ABxIxb/afiRnQir0+1ClOwxrlP1ULk8QAvuw0r6JQHbhNb YB7cqSohZIGp9eXIsboMo6ExWJTcDtE4PiTipbd6hT7kO/A219h7qQOuI3i2fQWm c2GCviP3CdNtKrClIqYmhVpBpu9Q59ei -----END CERTIFICATE-----Generated at Wed Dec 24 21:23:58 2025 by rpki-client