This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft File: 5tdlUVTja2lxFXTiB5a2gCxDtxU.mft (raw, json) Hash identifier: enIBUd/T0t9CCN6/WAx4fa42cDsGWZqh1YSBdcVVCeA= Subject key identifier: 18:7F:EE:52:B5:F8:9B:66:5C:B5:C7:DC:05:16:A8:6E:4D:57:70:58 Authority key identifier: E6:D7:65:51:54:E3:6B:69:71:15:74:E2:07:96:B6:80:2C:43:B7:15 Certificate issuer: /CN=A9118EDB/serialNumber=E6D7655154E36B69711574E20796B6802C43B715 Certificate serial: 0548 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft Manifest number: 0542 Signing time: Thu 18 Dec 2025 22:47:57 +0000 Manifest this update: Thu 18 Dec 2025 22:47:56 +0000 Manifest next update: Thu 25 Dec 2025 22:47:56 +0000 Files and hashes: 1: 5tdlUVTja2lxFXTiB5a2gCxDtxU.crl (hash: Ca1Y203+VeZ3jiGBqOJ7kITzaECBZBov3uR9/OsZRh0=) 2: BA4D01561DE011ECB872BC27C4F9AE02.roa (hash: wf1/Eq3D00+NNmg7EFhhzne2/Whu9vsX8s0Y7UfB8bU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.crl rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1352 (0x548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EDB, serialNumber=E6D7655154E36B69711574E20796B6802C43B715 Validity Not Before: Dec 18 22:47:56 2025 GMT Not After : Dec 25 22:47:56 2025 GMT Subject: CN=6944849d-17be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:19:fe:75:bd:73:ac:41:cb:fc:9d:c8:2f:4d: 9f:a3:e0:73:2e:14:38:b8:e3:53:f9:c8:41:27:8e: e3:3e:fd:af:d2:61:f6:7a:cb:65:89:27:37:ea:a8: c9:4c:21:6c:b2:e1:c4:d3:c6:3c:23:5a:2f:c7:c4: 99:b1:ce:56:63:97:20:ab:ba:5f:19:e7:23:5e:e5: 72:7e:6f:21:04:dd:03:e7:56:9b:b6:de:45:5a:54: ca:49:f4:4d:4b:9d:f0:c5:a6:07:cf:f5:a1:ab:23: 47:5b:bd:28:b9:3b:d8:27:d4:1c:9d:a8:47:61:01: 94:5d:00:68:60:3d:c2:f2:31:d3:31:fd:49:9a:a4: 96:47:49:22:7f:a7:d3:a0:30:fc:f3:be:83:74:3d: c9:22:b9:ca:3a:76:28:d4:1f:2e:cc:f4:75:e5:b1: 40:d0:b5:d3:a5:ef:76:f3:48:0b:0d:f5:c5:a9:bc: 3d:b3:f2:61:49:a3:55:46:06:90:f1:04:0e:4c:53: e8:9f:df:0f:a4:29:28:29:6a:05:8a:8f:a6:bd:94: ed:e2:30:8e:7f:b7:e7:1a:02:bd:23:6b:bc:50:82: ab:da:41:91:3c:5e:c6:dd:54:28:d8:73:f7:ef:4a: fb:0b:7e:60:f5:69:ee:35:83:87:0f:38:00:32:ff: 5d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:7F:EE:52:B5:F8:9B:66:5C:B5:C7:DC:05:16:A8:6E:4D:57:70:58 X509v3 Authority Key Identifier: keyid:E6:D7:65:51:54:E3:6B:69:71:15:74:E2:07:96:B6:80:2C:43:B7:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:f4:d7:f7:17:85:dd:5b:2c:cf:43:6b:28:08:86:77:07:da: e1:34:cc:de:55:c0:1a:11:1a:42:07:8a:7c:f7:57:fd:7f:5e: e3:1b:94:b9:0d:b2:0f:e6:6e:a1:09:81:dd:49:0e:f5:cf:76: 36:dc:60:b5:80:30:53:af:d7:56:75:7a:59:07:33:f4:62:f3: 4d:fb:4c:78:2d:f6:35:9f:3a:f1:d0:1c:6b:dc:a0:76:91:4a: 08:d5:a2:fd:a0:ad:01:65:cc:73:91:5f:84:f5:a7:13:54:e1: fe:00:08:a2:97:55:ef:1b:b4:37:e7:b5:3c:3b:94:95:1a:95: d5:19:7b:4e:67:e5:2c:32:b2:e2:ea:18:e3:b8:b8:08:08:8e: ed:a9:38:45:12:4e:80:b3:ed:36:62:22:1c:ea:26:95:1e:a5: 18:87:f5:34:30:08:39:ab:3c:55:8a:04:1e:53:ce:57:d4:96: 0a:dd:28:05:e3:c9:0f:b0:a0:d1:17:d1:b9:b0:9c:a2:d2:15: ca:8d:48:71:61:b2:65:97:66:80:18:bb:3b:5b:f5:7f:05:54: f1:0d:68:74:7a:1a:b3:a3:76:9f:09:23:2b:0f:b6:ea:35:d8: 92:3f:a5:7b:dc:5a:65:30:57:49:d1:73:16:f7:9d:36:97:cf: 22:1f:61:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFREIxMTAvBgNVBAUTKEU2RDc2NTUxNTRFMzZCNjk3MTE1NzRFMjA3OTZCNjgw MkM0M0I3MTUwHhcNMjUxMjE4MjI0NzU2WhcNMjUxMjI1MjI0NzU2WjAYMRYwFAYD VQQDDA02OTQ0ODQ5ZC0xN2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRn+db1zrEHL/J3IL02fo+BzLhQ4uONT+chBJ47jPv2v0mH2estliSc36qjJ TCFssuHE08Y8I1ovx8SZsc5WY5cgq7pfGecjXuVyfm8hBN0D51abtt5FWlTKSfRN S53wxaYHz/WhqyNHW70ouTvYJ9QcnahHYQGUXQBoYD3C8jHTMf1JmqSWR0kif6fT oDD8876DdD3JIrnKOnYo1B8uzPR15bFA0LXTpe9280gLDfXFqbw9s/JhSaNVRgaQ 8QQOTFPon98PpCkoKWoFio+mvZTt4jCOf7fnGgK9I2u8UIKr2kGRPF7G3VQo2HP3 70r7C35g9WnuNYOHDzgAMv9dsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBh/7lK1 +JtmXLXH3AUWqG5NV3BYMB8GA1UdIwQYMBaAFObXZVFU42tpcRV04geWtoAsQ7cV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVEQi8zMDlCRTZCRTFE REQxMUVDODgzQjQ0MjNDNEY5QUUwMi81dGRsVVZUamEybHhGWFRpQjVhMmdDeER0 eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV0ZGxVVlRqYTJseEZYVGlCNWEyZ0N4RHR4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVEQi8zMDlCRTZCRTFEREQxMUVDODgzQjQ0MjNDNEY5QUUwMi81dGRsVVZUamEy bHhGWFRpQjVhMmdDeER0eFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB9Nf3F4XdWyzPQ2soCIZ3B9rhNMzeVcAaERpCB4p891f9f17jG5S5 DbIP5m6hCYHdSQ71z3Y23GC1gDBTr9dWdXpZBzP0YvNN+0x4LfY1nzrx0Bxr3KB2 kUoI1aL9oK0BZcxzkV+E9acTVOH+AAiil1XvG7Q357U8O5SVGpXVGXtOZ+UsMrLi 6hjjuLgICI7tqThFEk6As+02YiIc6iaVHqUYh/U0MAg5qzxVigQeU85X1JYK3SgF 48kPsKDRF9G5sJyi0hXKjUhxYbJll2aAGLs7W/V/BVTxDWh0ehqzo3afCSMrD7bq NdiSP6V73FplMFdJ0XMW9502l88iH2Ff -----END CERTIFICATE-----Generated at Fri Dec 19 08:54:25 2025 by rpki-client