This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: +s05V/tDj54e7g2y5As3T34xRr030TsFtm/nepMbbmo= Subject key identifier: DF:06:BF:9C:B2:9E:F1:51:AE:4D:F2:E9:65:66:C7:07:E4:12:C9:0A Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 06A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 069F Signing time: Sat 20 Dec 2025 21:41:51 +0000 Manifest this update: Sat 20 Dec 2025 21:41:50 +0000 Manifest next update: Sat 27 Dec 2025 21:41:50 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: EV9dosFDviAZxh9CNbakvudxywzmvCXtHMBRkuVNTfY=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: hzbXrtnctw9RaO4u4LO+M5su44TkMPAo6wV59Ue+QJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED, serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: Dec 20 21:41:50 2025 GMT Not After : Dec 27 21:41:50 2025 GMT Subject: CN=6947181f-e5c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:32:0a:dd:8b:2d:6e:dd:08:b4:be:89:43:91: 07:5d:29:35:56:b2:53:8a:8b:13:14:1a:df:81:88: 58:8a:d6:57:53:c7:1f:d3:30:2e:0c:05:c3:6b:34: 4f:46:13:49:70:f0:cc:4c:6a:3f:ee:ce:33:a2:79: 98:f3:a1:49:a3:3b:ca:8e:5e:f4:a0:e8:64:d2:e5: d1:1a:9e:6f:0d:67:ad:ea:9b:ad:3a:1d:92:9c:a9: 5e:fd:6c:d3:0e:32:72:49:b9:cc:64:61:3b:9b:98: 82:65:cd:8c:9c:35:20:4c:66:f5:e7:3a:05:49:26: 92:06:f3:eb:e4:e6:f4:8c:b5:7f:29:5d:59:77:1e: 27:eb:e3:49:cb:44:50:ab:44:5f:e0:6f:ff:62:20: 65:d7:06:55:02:09:b7:83:fe:f6:38:33:71:b1:53: 0a:a3:35:ae:4a:4c:41:5f:e6:13:34:2a:b1:67:ed: ba:24:d0:7b:aa:f1:c2:fc:b7:d6:fe:e9:33:8e:4b: 96:f2:9f:1a:38:ab:64:94:ec:83:92:6f:ee:62:1b: 7e:76:39:f1:e2:95:6e:00:48:a8:30:39:0c:02:eb: 46:ad:98:56:19:6b:87:b1:5c:71:cb:b4:f2:af:8e: 4e:5c:a7:79:80:0b:29:f3:bb:52:84:46:b2:a0:0e: e4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:06:BF:9C:B2:9E:F1:51:AE:4D:F2:E9:65:66:C7:07:E4:12:C9:0A X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:d3:d6:9b:97:79:21:93:08:6d:00:ce:60:82:5a:18:fb:2e: 79:d7:eb:ff:b0:bc:73:0a:04:bf:95:ef:dd:b2:b7:05:b4:b5: a0:47:b0:01:3a:02:3c:5f:74:5e:7b:0f:2d:49:b9:80:a3:be: f0:3b:f5:f8:cc:cc:a5:bd:23:31:4a:ef:11:c3:98:e5:ce:47: 83:59:9d:3e:09:22:4d:fd:ed:2b:d7:c4:8e:3a:dc:8d:85:b3: a5:cc:4d:36:84:49:7c:9c:42:9f:c5:62:34:9a:a5:9d:38:ba: 5e:18:bb:86:50:dc:74:ae:e4:4d:65:f1:d8:a1:5f:cf:6f:eb: 7a:73:29:65:fb:3d:90:b4:e0:5c:55:09:9f:0a:32:67:c3:de: ee:a1:a0:37:d8:3c:6f:e3:7c:17:bf:ac:48:d1:97:57:5b:2d: 0e:19:d3:78:c4:4f:cb:6c:bd:2e:21:ab:06:c9:11:6d:e1:c1: 5a:26:f5:48:65:e7:38:bf:ad:74:5b:db:b9:fc:04:40:aa:0a: de:78:4e:a9:02:49:7d:40:c2:a9:13:1c:72:24:b9:71:e3:ae: f9:d2:3c:95:ee:0a:27:11:9f:7f:72:21:b5:bc:31:9f:5e:f4: dd:d3:8d:35:cf:4f:bf:7d:d5:78:0b:9d:87:44:a4:64:e7:06: 6f:2d:da:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjUxMjIwMjE0MTUwWhcNMjUxMjI3MjE0MTUwWjAYMRYwFAYD VQQDDA02OTQ3MTgxZi1lNWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjDIK3Ystbt0ItL6JQ5EHXSk1VrJTiosTFBrfgYhYitZXU8cf0zAuDAXDazRP RhNJcPDMTGo/7s4zonmY86FJozvKjl70oOhk0uXRGp5vDWet6putOh2SnKle/WzT DjJySbnMZGE7m5iCZc2MnDUgTGb15zoFSSaSBvPr5Ob0jLV/KV1Zdx4n6+NJy0RQ q0Rf4G//YiBl1wZVAgm3g/72ODNxsVMKozWuSkxBX+YTNCqxZ+26JNB7qvHC/LfW /ukzjkuW8p8aOKtklOyDkm/uYht+djnx4pVuAEioMDkMAutGrZhWGWuHsVxxy7Ty r45OXKd5gAsp87tShEayoA7kWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8Gv5yy nvFRrk3y6WVmxwfkEskKMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR09abl3khkwhtAM5ggloY+y551+v/sLxzCgS/le/dsrcFtLWgR7AB OgI8X3Reew8tSbmAo77wO/X4zMylvSMxSu8Rw5jlzkeDWZ0+CSJN/e0r18SOOtyN hbOlzE02hEl8nEKfxWI0mqWdOLpeGLuGUNx0ruRNZfHYoV/Pb+t6cyll+z2QtOBc VQmfCjJnw97uoaA32Dxv43wXv6xI0ZdXWy0OGdN4xE/LbL0uIasGyRFt4cFaJvVI Zec4v610W9u5/ARAqgreeE6pAkl9QMKpExxyJLlx46750jyV7gonEZ9/ciG1vDGf XvTd0401z0+/fdV4C52HRKRk5wZvLdrV -----END CERTIFICATE-----Generated at Mon Dec 22 10:55:06 2025 by rpki-client