This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft File: tU4IRltUXO7x4uEAl3XZG6QStj0.mft (raw, json) Hash identifier: +8yrSxzMW3vyJkW044TdQCoPJ93Sm3SKo6xFV65sopc= Subject key identifier: BE:E8:BF:35:8C:C1:18:84:29:FE:17:AC:77:C7:B3:8A:CC:8F:68:7C Authority key identifier: B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D Certificate issuer: /CN=A9172B46/serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft Manifest number: 28 Signing time: Tue 23 Dec 2025 06:33:55 +0000 Manifest this update: Tue 23 Dec 2025 06:33:55 +0000 Manifest next update: Tue 30 Dec 2025 06:33:55 +0000 Files and hashes: 1: tU4IRltUXO7x4uEAl3XZG6QStj0.crl (hash: IG75vWt4Ij3SM1IGm6u8y4QLQmtyHGxWHu6ZW9JbbTk=) 2: 5493E832AF1511F09DB9CB78C4F9AE02.roa (hash: TkA4esTL9Exwr+47F2RMHuvhHZl+fNcFsQRPqVn17vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B46, serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D Validity Not Before: Dec 23 06:33:55 2025 GMT Not After : Dec 30 06:33:55 2025 GMT Subject: CN=694a37d3-dc0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:af:3d:01:db:92:36:70:9f:56:5c:3f:00:fc: 4d:71:e3:71:8e:d2:6c:4e:95:d1:cf:e1:d5:28:1c: 3b:53:db:4e:3f:7b:c4:69:f4:a7:ee:59:83:e8:81: 46:e4:5a:ba:76:63:cf:9a:78:b9:85:6c:34:a6:0a: 92:9d:ad:81:2e:f9:3c:7a:49:73:96:34:87:ce:c5: 5d:90:e3:6a:83:4b:01:dc:f6:a2:47:f1:06:32:b2: 09:9a:a4:3e:a6:44:f6:09:9a:3c:56:2e:58:0a:af: 0c:c0:b4:7c:8c:95:42:9b:3f:f3:cc:5e:83:5d:f2: 11:f6:17:ba:0a:c2:f1:5b:c2:36:14:f5:6e:de:96: e7:f4:a9:f0:7c:d9:58:05:3e:44:94:a7:8b:58:eb: ff:51:31:17:f9:9d:17:bd:53:4a:a9:d5:df:11:9b: f9:4c:46:42:43:0c:7d:5c:e5:d7:b8:04:3f:f9:14: 3d:a4:ee:40:f9:35:b7:b4:c9:8c:f8:f3:7f:df:ec: 67:bc:d6:a8:33:92:73:f0:0a:a8:b1:48:f3:f4:58: a2:da:a4:2f:87:93:51:de:ca:12:63:14:78:b7:6a: e8:10:fc:29:75:33:ad:78:3a:b1:7b:84:18:43:31: 49:5d:84:38:31:89:80:64:33:b7:d7:9f:3d:b4:0a: 59:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E8:BF:35:8C:C1:18:84:29:FE:17:AC:77:C7:B3:8A:CC:8F:68:7C X509v3 Authority Key Identifier: keyid:B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:b7:55:96:e8:35:31:24:5e:69:c8:8d:a7:a0:7e:0a:c4:bc: ef:b2:97:1b:ce:c2:4e:3a:75:01:bd:2e:27:f4:71:68:9f:e2: 55:ca:f1:fc:1e:99:44:a4:0f:c4:1d:91:fc:1b:a5:b5:b2:f0: 82:d4:5e:f7:fb:65:20:3a:2c:78:7c:05:60:10:41:3c:a8:72: ec:5f:05:09:b0:d7:33:d9:bf:44:df:db:97:70:a1:79:fb:7e: e3:eb:c1:45:a1:8c:ec:cb:d2:40:ce:b3:2d:91:57:14:2a:08: db:55:ca:10:ac:dc:c5:20:58:f7:47:c8:e6:67:b0:27:53:d1: b7:e5:26:03:84:ce:38:01:28:ff:f2:2c:9f:3f:7c:c5:a1:78: 08:22:aa:29:63:93:bc:77:2f:6e:17:69:eb:58:10:81:30:63: e5:ce:7e:82:fa:c0:d9:25:e7:3a:2e:fb:e8:3e:e6:3b:83:1e: 7c:51:5b:88:0d:b2:4e:c7:36:48:3d:73:ce:2f:4b:7a:bc:5d: 3c:89:d0:a4:05:71:70:e3:0a:7e:3f:05:9e:47:eb:46:a5:a6: d7:77:d0:e4:61:ba:cc:91:4f:84:5c:bb:4f:b6:12:7c:6c:e3: 88:4c:9d:36:08:5b:9e:fe:dc:52:2f:2e:aa:b9:9b:aa:6b:ee: af:bc:2f:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkI0NjExMC8GA1UEBRMoQjU0RTA4NDY1QjU0NUNFRUYxRTJFMTAwOTc3NUQ5MUJB NDEyQjYzRDAeFw0yNTEyMjMwNjMzNTVaFw0yNTEyMzAwNjMzNTVaMBgxFjAUBgNV BAMMDTY5NGEzN2QzLWRjMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHrz0B25I2cJ9WXD8A/E1x43GO0mxOldHP4dUoHDtT204/e8Rp9KfuWYPogUbk Wrp2Y8+aeLmFbDSmCpKdrYEu+Tx6SXOWNIfOxV2Q42qDSwHc9qJH8QYysgmapD6m RPYJmjxWLlgKrwzAtHyMlUKbP/PMXoNd8hH2F7oKwvFbwjYU9W7eluf0qfB82VgF PkSUp4tY6/9RMRf5nRe9U0qp1d8Rm/lMRkJDDH1c5de4BD/5FD2k7kD5Nbe0yYz4 83/f7Ge81qgzknPwCqixSPP0WKLapC+Hk1HeyhJjFHi3augQ/Cl1M614OrF7hBhD MUldhDgxiYBkM7fXnz20Cln/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvui/NYzB GIQp/hesd8ezisyPaHwwHwYDVR0jBBgwFoAUtU4IRltUXO7x4uEAl3XZG6QStj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQjQ2LzA4ODcwMUI4QUJC NDExRjBBQkYyMDk0MEM0RjlBRTAyL3RVNElSbHRVWE83eDR1RUFsM1haRzZRU3Rq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFU0SVJsdFVYTzd4NHVFQWwzWFpHNlFTdGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy QjQ2LzA4ODcwMUI4QUJCNDExRjBBQkYyMDk0MEM0RjlBRTAyL3RVNElSbHRVWE83 eDR1RUFsM1haRzZRU3RqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGe3VZboNTEkXmnIjaegfgrEvO+ylxvOwk46dQG9Lif0cWif4lXK8fwe mUSkD8QdkfwbpbWy8ILUXvf7ZSA6LHh8BWAQQTyocuxfBQmw1zPZv0Tf25dwoXn7 fuPrwUWhjOzL0kDOsy2RVxQqCNtVyhCs3MUgWPdHyOZnsCdT0bflJgOEzjgBKP/y LJ8/fMWheAgiqiljk7x3L24XaetYEIEwY+XOfoL6wNkl5zou++g+5juDHnxRW4gN sk7HNkg9c84vS3q8XTyJ0KQFcXDjCn4/BZ5H60alptd30ORhusyRT4Rcu0+2Enxs 44hMnTYIW57+3FIvLqq5m6pr7q+8LzA= -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:44 2025 by rpki-client