This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft File: u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft (raw, json) Hash identifier: 1wdd0ZR5Dw86UpIIfcks2fXpAiHoGWKglOJeDVKvdNc= Subject key identifier: B9:4F:A6:72:DC:FA:94:A7:74:42:9C:F6:44:58:24:F2:D1:C9:F2:1E Authority key identifier: BB:4F:AE:85:54:0A:5A:D9:F9:3C:B4:82:C4:5C:95:76:F5:2A:3B:F4 Certificate issuer: /CN=A9189122/serialNumber=BB4FAE85540A5AD9F93CB482C45C9576F52A3BF4 Certificate serial: 021B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft Manifest number: 0216 Signing time: Tue 23 Dec 2025 01:15:14 +0000 Manifest this update: Tue 23 Dec 2025 01:15:14 +0000 Manifest next update: Tue 30 Dec 2025 01:15:14 +0000 Files and hashes: 1: u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl (hash: DqSGuTJYDIrj2JMl+zMBDSp9gj3FJjsYMg4r/rKXqMM=) 2: 9E8DB380B2C611EDBC366A1DC4F9AE02.roa (hash: ztxAi6NVLvlOVRaY5LiA8lZVY+4GBUWq8sHQO2NcSn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189122, serialNumber=BB4FAE85540A5AD9F93CB482C45C9576F52A3BF4 Validity Not Before: Dec 23 01:15:14 2025 GMT Not After : Dec 30 01:15:14 2025 GMT Subject: CN=6949ed22-0712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b0:c2:d4:24:73:51:94:56:cc:2a:47:73:a0: 3a:c9:63:38:ce:11:c2:7f:d5:89:63:96:b8:d3:fe: 26:b8:e9:ed:b4:63:4b:a7:5d:58:f4:92:68:7a:16: 1f:fc:b4:e1:55:57:89:41:49:31:49:d3:04:5d:59: 4e:79:39:f8:14:a3:25:09:78:3c:90:b6:cd:7a:ec: 9b:0d:16:d4:f5:13:fa:16:db:3e:b0:02:b2:ae:55: 92:67:32:2a:e5:07:41:02:84:05:55:ed:d1:a7:01: a6:7e:3f:cd:b6:3d:c9:fb:f5:00:eb:6f:42:6c:00: 3d:70:92:3e:16:4a:84:d3:76:e4:8b:0b:e1:66:c3: 6f:a8:8b:9c:ad:b7:82:88:a5:1f:f0:c8:16:a9:7e: 07:89:19:99:ae:de:54:a5:ca:91:59:b6:e5:16:48: 16:e3:d5:7d:61:07:46:ed:0e:e7:7b:2f:c1:c5:8e: 63:f2:c6:34:e4:4e:a1:52:05:40:c4:60:c9:57:10: 19:e2:8d:c8:79:a1:f0:22:43:b9:ff:74:24:29:26: 17:f8:80:91:35:25:bc:5b:0d:12:33:b0:57:07:40: 8d:e8:45:98:d0:ef:b6:5c:a4:f9:64:19:ed:d8:75: 71:cf:84:45:f6:71:11:57:7b:ec:a5:66:7b:1e:85: 98:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:4F:A6:72:DC:FA:94:A7:74:42:9C:F6:44:58:24:F2:D1:C9:F2:1E X509v3 Authority Key Identifier: keyid:BB:4F:AE:85:54:0A:5A:D9:F9:3C:B4:82:C4:5C:95:76:F5:2A:3B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:52:44:76:6b:d7:00:09:9b:cf:f1:e5:ed:2b:10:1d:de:57: ac:f4:43:97:15:16:78:e0:97:ec:1f:c5:b4:c8:fd:99:80:70: 75:14:e9:01:d6:ed:e9:21:ab:66:e7:f0:10:dc:46:cb:2f:f9: ba:b0:7f:03:9d:d4:03:ea:43:8e:8f:eb:98:af:57:af:59:60: af:e7:76:6c:9d:fa:da:8b:04:52:ee:4f:18:0d:f1:86:5c:f9: 23:6e:10:58:7c:a0:cd:3b:1d:03:40:0a:9e:d8:84:af:d3:19: df:48:44:fb:31:8d:f3:36:77:8a:f0:8f:41:43:7c:f5:91:b9: 8c:dc:80:bd:bd:2e:80:8c:dd:42:8d:fb:46:25:b5:d4:91:2d: 37:a4:15:54:04:0e:98:e8:a1:75:47:3d:2d:7f:f3:74:90:01: a9:54:1d:dd:43:7e:b7:de:66:9f:48:3f:d2:6d:67:e2:7a:3e: f7:3e:03:68:9c:78:ae:5a:0c:42:33:bb:4b:cc:c0:45:bd:cc: 2a:e5:e9:76:a7:ed:28:57:ac:30:83:c8:e6:8d:5a:60:fb:f8: a9:e3:15:65:78:d4:80:fa:71:a3:30:1d:31:dc:34:9d:e6:bd: c2:23:35:c0:5e:88:b8:54:6d:05:af:35:43:0a:95:00:c6:ef: c4:f3:4b:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMjIxMTAvBgNVBAUTKEJCNEZBRTg1NTQwQTVBRDlGOTNDQjQ4MkM0NUM5NTc2 RjUyQTNCRjQwHhcNMjUxMjIzMDExNTE0WhcNMjUxMjMwMDExNTE0WjAYMRYwFAYD VQQDDA02OTQ5ZWQyMi0wNzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLDC1CRzUZRWzCpHc6A6yWM4zhHCf9WJY5a40/4muOnttGNLp11Y9JJoehYf /LThVVeJQUkxSdMEXVlOeTn4FKMlCXg8kLbNeuybDRbU9RP6Fts+sAKyrlWSZzIq 5QdBAoQFVe3RpwGmfj/Ntj3J+/UA629CbAA9cJI+FkqE03bkiwvhZsNvqIucrbeC iKUf8MgWqX4HiRmZrt5UpcqRWbblFkgW49V9YQdG7Q7ney/BxY5j8sY05E6hUgVA xGDJVxAZ4o3IeaHwIkO5/3QkKSYX+ICRNSW8Ww0SM7BXB0CN6EWY0O+2XKT5ZBnt 2HVxz4RF9nERV3vspWZ7HoWYNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlPpnLc +pSndEKc9kRYJPLRyfIeMB8GA1UdIwQYMBaAFLtProVUClrZ+Ty0gsRclXb1Kjv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEyMi8wRkQ0RUY0RUFF RUYxMUVEQTJFOUJDNjhDNEY5QUUwMi91MC11aFZRS1d0bjVQTFNDeEZ5VmR2VXFP X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UwLXVoVlFLV3RuNVBMU0N4RnlWZHZVcU9fUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEyMi8wRkQ0RUY0RUFFRUYxMUVEQTJFOUJDNjhDNEY5QUUwMi91MC11aFZRS1d0 bjVQTFNDeEZ5VmR2VXFPX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiUkR2a9cACZvP8eXtKxAd3les9EOXFRZ44JfsH8W0yP2ZgHB1FOkB 1u3pIatm5/AQ3EbLL/m6sH8DndQD6kOOj+uYr1evWWCv53ZsnfraiwRS7k8YDfGG XPkjbhBYfKDNOx0DQAqe2ISv0xnfSET7MY3zNneK8I9BQ3z1kbmM3IC9vS6AjN1C jftGJbXUkS03pBVUBA6Y6KF1Rz0tf/N0kAGpVB3dQ3633mafSD/SbWfiej73PgNo nHiuWgxCM7tLzMBFvcwq5el2p+0oV6wwg8jmjVpg+/ip4xVleNSA+nGjMB0x3DSd 5r3CIzXAXoi4VG0FrzVDCpUAxu/E80vu -----END CERTIFICATE-----Generated at Tue Dec 23 03:31:57 2025 by rpki-client