This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft File: U3pyvmM5N4xMTSlwK-12dczMFGo.mft (raw, json) Hash identifier: NvY5aRpIXVO+gLQNhj3BKpkrD7GAv+J6xRMSrmp68eY= Subject key identifier: 4A:99:2E:59:AF:B7:66:1F:14:BD:09:5E:D5:0C:52:50:14:4F:36:D0 Authority key identifier: 53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A Certificate issuer: /CN=A916EB98/serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Certificate serial: 0BEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft Manifest number: 0BE8 Signing time: Mon 22 Dec 2025 18:24:10 +0000 Manifest this update: Mon 22 Dec 2025 18:24:10 +0000 Manifest next update: Mon 29 Dec 2025 18:24:10 +0000 Files and hashes: 1: U3pyvmM5N4xMTSlwK-12dczMFGo.crl (hash: xgCcRWU3utJO045duVbeDoZKAmWHb7dQjp55Paj/do0=) 2: DD716A222ACC11EAAB36B444C4F9AE02.roa (hash: 9YLAXbZ28k13vNilzcTMcnMd0WVPI4XdwJeol/Aq30I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3055 (0xbef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB98, serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Validity Not Before: Dec 22 18:24:10 2025 GMT Not After : Dec 29 18:24:10 2025 GMT Subject: CN=69498cca-0b45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4e:28:25:49:c2:91:84:7e:f6:13:00:88:18: 88:c3:5b:56:81:34:d4:d4:8a:ff:b0:84:31:f7:84: 3a:8e:8f:a4:66:d8:3b:ab:65:be:86:db:c6:75:5e: 3d:43:02:14:4b:02:c8:19:cc:2c:91:3e:48:cb:81: 67:11:e9:46:04:14:02:25:2d:15:a1:66:d7:0b:e7: de:b9:b9:85:e0:81:28:d6:b4:00:0d:8d:74:a8:ec: 09:b4:99:25:09:25:68:68:31:a7:71:87:1a:f2:eb: 5b:6c:10:b5:6c:54:82:b7:a8:ab:38:f4:82:e6:4f: f8:7e:93:49:9f:0c:37:40:71:37:c7:d9:3b:96:a8: fd:d7:29:21:bf:50:2d:f2:9f:c6:aa:c7:b5:e7:bf: af:be:29:aa:a9:0c:95:0d:cc:02:9f:a0:c7:e9:d9: ae:93:57:57:ee:3c:9b:9e:af:a8:da:eb:47:d2:59: a7:07:7f:5e:b5:24:e2:6c:f5:12:50:53:4f:67:97: 7b:44:7f:97:db:2e:a7:6f:fe:fa:f8:d7:7e:48:90: 9a:76:15:d7:8f:a1:c8:25:8f:7d:73:7d:41:06:00: 6f:2f:b8:22:1e:cc:6a:70:70:b1:7c:4c:9d:12:2a: eb:44:50:ff:1c:54:dd:3c:90:dc:82:92:b2:9e:20: b6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:99:2E:59:AF:B7:66:1F:14:BD:09:5E:D5:0C:52:50:14:4F:36:D0 X509v3 Authority Key Identifier: keyid:53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:73:e4:3c:27:9f:d5:d5:ff:7f:30:11:19:3c:0f:24:fc:81: cc:e6:c8:4e:15:e5:ce:79:fb:ba:ea:f2:08:5e:78:88:9f:ce: 83:bf:06:b6:69:3c:e7:84:18:2b:49:e6:99:00:29:8f:eb:76: d7:88:fa:40:31:a8:6c:aa:f1:a9:73:bb:2d:57:75:ba:d5:33: 0c:71:f6:4a:f5:c7:2e:e4:f3:b5:65:f6:a3:66:17:b9:20:5a: 4e:88:2e:2e:b2:e6:64:6d:f0:a9:7c:26:74:76:0b:7a:e5:56: a3:04:f6:77:03:e3:4b:dc:9d:2b:b9:4d:01:8b:9b:5e:8a:81: cf:f3:1c:d9:8e:2b:a7:ff:52:ab:61:12:1c:c0:e8:e0:32:3d: 18:15:20:ed:56:7e:f7:5c:97:76:c5:a5:27:76:1a:76:50:cf: 68:d8:5f:de:5f:b5:bb:71:75:ca:b6:35:06:79:c8:64:7b:8c: f0:dc:96:bb:82:7c:35:3c:1a:ae:85:ea:2d:7d:03:09:9c:c6: 51:87:de:51:fa:41:bd:2b:a1:7d:9c:cb:32:98:d9:61:44:8d: 98:3f:9a:84:4e:64:0b:91:cf:4d:1f:6b:34:6c:fe:26:dc:3e: a8:fd:4a:51:d9:ba:bd:e9:a8:da:31:91:eb:32:af:1c:f8:ee: 72:e6:b5:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTgxMTAvBgNVBAUTKDUzN0E3MkJFNjMzOTM3OEM0QzREMjk3MDJCRUQ3Njc1 Q0NDQzE0NkEwHhcNMjUxMjIyMTgyNDEwWhcNMjUxMjI5MTgyNDEwWjAYMRYwFAYD VQQDDA02OTQ5OGNjYS0wYjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0E4oJUnCkYR+9hMAiBiIw1tWgTTU1Ir/sIQx94Q6jo+kZtg7q2W+htvGdV49 QwIUSwLIGcwskT5Iy4FnEelGBBQCJS0VoWbXC+feubmF4IEo1rQADY10qOwJtJkl CSVoaDGncYca8utbbBC1bFSCt6irOPSC5k/4fpNJnww3QHE3x9k7lqj91ykhv1At 8p/Gqse157+vvimqqQyVDcwCn6DH6dmuk1dX7jybnq+o2utH0lmnB39etSTibPUS UFNPZ5d7RH+X2y6nb/76+Nd+SJCadhXXj6HIJY99c31BBgBvL7giHsxqcHCxfEyd EirrRFD/HFTdPJDcgpKyniC2XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqZLlmv t2YfFL0JXtUMUlAUTzbQMB8GA1UdIwQYMBaAFFN6cr5jOTeMTE0pcCvtdnXMzBRq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5OC9CMEZDMzVEQzJB Q0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40eE1UU2x3Sy0xMmRjek1G R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzcHl2bU01TjR4TVRTbHdLLTEyZGN6TUZHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI5OC9CMEZDMzVEQzJBQ0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40 eE1UU2x3Sy0xMmRjek1GR28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAc+Q8J5/V1f9/MBEZPA8k/IHM5shOFeXOefu66vIIXniIn86Dvwa2 aTznhBgrSeaZACmP63bXiPpAMahsqvGpc7stV3W61TMMcfZK9ccu5PO1ZfajZhe5 IFpOiC4usuZkbfCpfCZ0dgt65VajBPZ3A+NL3J0ruU0Bi5teioHP8xzZjiun/1Kr YRIcwOjgMj0YFSDtVn73XJd2xaUndhp2UM9o2F/eX7W7cXXKtjUGechke4zw3Ja7 gnw1PBquheotfQMJnMZRh95R+kG9K6F9nMsymNlhRI2YP5qETmQLkc9NH2s0bP4m 3D6o/UpR2bq96ajaMZHrMq8c+O5y5rXG -----END CERTIFICATE-----Generated at Wed Dec 24 17:41:39 2025 by rpki-client