This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: uMLPc8kgdtJ84QNF8UJIrLJ1DjfBa3a7WUwpcSuY65s= Subject key identifier: 82:6D:1B:AC:67:60:C4:E7:4F:22:22:EC:48:7E:25:6F:AF:B5:9D:8C Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 0501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 04F2 Signing time: Sat 20 Dec 2025 22:59:58 +0000 Manifest this update: Sat 20 Dec 2025 22:59:58 +0000 Manifest next update: Sat 27 Dec 2025 22:59:58 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: kk/ZCz6v5BlVX5epJJJlibdmTlzXMj6lnDlG6pQ1U5I=) 2: 5C2186C444B011F0B9799F48C4F9AE02.roa (hash: JJ/1SR0EZ5l7PECR67PAK+euRry+RLFa/pJug2YY29I=) 3: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: uugn7/J2yz2AlJqn3GxqBNZUwmGZ4weF3jg7XtTcTNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Dec 20 22:59:58 2025 GMT Not After : Dec 27 22:59:58 2025 GMT Subject: CN=69472a6e-22d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:6f:13:ec:36:c6:d6:46:4f:34:c5:0f:06:29: 14:09:88:af:9a:65:0d:2c:c1:6f:41:3f:7b:9c:e3: 43:aa:70:6b:e5:da:be:37:e1:43:2d:c2:4f:15:e8: bf:42:5d:7c:07:d6:a6:4d:f2:17:b6:26:63:f9:9c: 5e:bf:24:c2:54:75:5c:d5:71:7d:59:f7:95:65:5f: b6:3d:f8:f0:79:65:3a:66:a4:23:07:72:fd:9d:f5: e4:b4:1b:e8:b0:1d:ee:2e:5e:9c:d0:7a:28:36:ae: 7a:d3:77:86:7e:0a:57:b4:e4:9a:37:b1:e2:f7:1e: 7f:10:f7:10:e7:f8:6c:af:16:2c:97:cc:4f:9d:b5: e5:1f:bc:06:68:70:6f:28:be:60:3c:e4:3d:25:f9: e7:6c:7a:0c:d4:fe:3f:49:c4:21:b3:f7:03:58:96: e1:f9:9c:b6:dc:bc:2f:ac:3a:94:cd:3a:08:8c:b6: e7:e2:ff:64:f0:34:e0:a1:e0:cf:1a:47:43:92:a1: c9:55:ed:d8:c5:a4:1c:b0:34:4b:c8:12:ec:9d:f7: df:1b:1b:96:2e:57:1b:39:ac:b1:d1:54:83:44:c6: 34:f1:cd:05:94:a5:48:74:a7:3a:58:b9:ac:16:e9: 11:0e:be:f3:4f:27:8a:09:ed:56:30:9a:52:dc:a4: fe:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:6D:1B:AC:67:60:C4:E7:4F:22:22:EC:48:7E:25:6F:AF:B5:9D:8C X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:f3:13:66:e5:5e:8f:d2:d2:d5:bd:0b:d7:4c:6f:6b:4c:66: 0d:00:75:f8:97:cc:aa:0b:a9:ab:82:b4:04:cb:bd:59:77:d0: 72:15:44:bd:84:b1:6b:54:30:37:e5:42:64:bf:09:00:cc:19: b9:d4:b8:23:83:8a:d6:6e:1d:f2:00:fe:36:35:06:e9:1c:45: 21:de:2c:68:da:c8:d8:af:b6:0c:30:72:9c:bb:6a:7f:d1:55: 93:5f:18:99:09:fc:3e:2c:cf:62:59:a6:73:e3:42:c3:af:9c: 56:f9:57:df:76:88:a7:45:af:7d:e0:94:2e:dd:21:29:72:8f: 7e:87:08:64:7a:98:b1:40:5e:f8:34:88:09:4c:80:b7:e0:7e: a0:4f:82:c4:18:e4:0f:85:01:98:b7:44:86:28:a4:8d:f2:7d: 95:c1:30:68:22:ac:ea:e3:c6:9a:e5:f1:fa:b3:bd:93:df:17: 88:7f:07:a6:77:49:92:4e:a6:79:2d:4c:c5:8f:4e:63:88:47: 78:74:a6:50:2c:db:b6:f8:37:73:55:c1:2e:aa:e9:df:9b:47: 3e:ff:c3:83:50:a4:a4:ea:aa:ce:40:79:f8:e9:c5:9d:be:64: c2:79:f1:ea:ba:1e:35:44:cd:85:6d:fa:7b:b8:c7:a7:82:06: 2d:8d:c1:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjUxMjIwMjI1OTU4WhcNMjUxMjI3MjI1OTU4WjAYMRYwFAYD VQQDDA02OTQ3MmE2ZS0yMmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjG8T7DbG1kZPNMUPBikUCYivmmUNLMFvQT97nONDqnBr5dq+N+FDLcJPFei/ Ql18B9amTfIXtiZj+ZxevyTCVHVc1XF9WfeVZV+2PfjweWU6ZqQjB3L9nfXktBvo sB3uLl6c0HooNq5603eGfgpXtOSaN7Hi9x5/EPcQ5/hsrxYsl8xPnbXlH7wGaHBv KL5gPOQ9JfnnbHoM1P4/ScQhs/cDWJbh+Zy23LwvrDqUzToIjLbn4v9k8DTgoeDP GkdDkqHJVe3YxaQcsDRLyBLsnfffGxuWLlcbOayx0VSDRMY08c0FlKVIdKc6WLms FukRDr7zTyeKCe1WMJpS3KT+TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJtG6xn YMTnTyIi7Eh+JW+vtZ2MMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA28xNm5V6P0tLVvQvXTG9rTGYNAHX4l8yqC6mrgrQEy71Zd9ByFUS9 hLFrVDA35UJkvwkAzBm51Lgjg4rWbh3yAP42NQbpHEUh3ixo2sjYr7YMMHKcu2p/ 0VWTXxiZCfw+LM9iWaZz40LDr5xW+VffdoinRa994JQu3SEpco9+hwhkepixQF74 NIgJTIC34H6gT4LEGOQPhQGYt0SGKKSN8n2VwTBoIqzq48aa5fH6s72T3xeIfwem d0mSTqZ5LUzFj05jiEd4dKZQLNu2+DdzVcEuqunfm0c+/8ODUKSk6qrOQHn46cWd vmTCefHquh41RM2Fbfp7uMenggYtjcHm -----END CERTIFICATE-----Generated at Sun Dec 21 01:35:06 2025 by rpki-client