This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft File: x2h2G8gatP5_1EAVSCYcuocge-o.mft (raw, json) Hash identifier: 1ZzDUNiarp4UAZoVhYlEAug/WcJGIjETEooG7CZ+V/8= Subject key identifier: CB:13:4C:FA:20:15:8A:BB:9D:CC:D1:45:B6:F8:45:A5:FB:70:E5:D0 Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0E91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft Manifest number: 0E69 Signing time: Wed 10 Dec 2025 17:07:59 +0000 Manifest this update: Wed 10 Dec 2025 17:07:59 +0000 Manifest next update: Wed 17 Dec 2025 17:07:59 +0000 Files and hashes: 1: x2h2G8gatP5_1EAVSCYcuocge-o.crl (hash: XM2D1x5URJcKXQwsYzJJ0IBnPmK+5YezOu8JaSL5O6E=) 2: 127D33EC027011EB98FEC44BC4F9AE02.roa (hash: qtVktuatmgxYDOUKpmx9+4mvFE8ErGGHadU2rZXHHOI=) 3: 1C99C7E021D911EB85DAFE71C4F9AE02.roa (hash: 6vTa2jFZRIl18mXvmJhTh/HGMJaVZWt9h8uikA4SPmc=) 4: 670DF186232111EB9896B783C4F9AE02.roa (hash: QRv08V7HqtcB3bHnZdM9X+W4jlFsB6z2SpL2l3Cbxgo=) 5: 1609CE067A4A11EB99C11F5FC4F9AE02.roa (hash: rV1Z8AbpTv1d+o44R7LlYsk8JevP6flWo0s81DQ5Rok=) 6: 1D93B82C21D911EB85DAFE71C4F9AE02.roa (hash: lbAPfcc0myVwdYbEISgNYKY5g+qS8g/HzTgMPDxOCGE=) 7: 1BBE249C21D911EB85DAFE71C4F9AE02.roa (hash: 1hlPRZQBD73jEyWKbHC8ZRWrArjylE9If913X/Jb57A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 17:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3729 (0xe91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Dec 10 17:07:59 2025 GMT Not After : Dec 17 17:07:59 2025 GMT Subject: CN=6939a8ef-fe50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ee:8d:9e:aa:59:6f:c4:6e:1a:f5:1b:b9:9f: 4e:fa:f0:08:63:5b:40:bb:cc:31:7c:2f:27:f1:13: 1a:a0:10:eb:22:a9:08:39:1c:75:9d:4f:25:99:15: 05:31:d8:f5:5c:0f:c2:2d:9e:54:c3:30:fb:50:c0: 39:3d:dc:5b:de:bb:34:c6:d9:6b:af:c1:a9:bb:30: 2a:95:96:e4:c2:26:bb:8f:ef:f3:1c:a6:5c:8a:fc: 3b:c1:5a:d3:73:21:24:d6:57:59:6d:2a:1e:57:d6: 1f:b3:ba:39:b5:4c:76:82:34:0f:ab:6c:4e:9d:d6: b8:62:a1:06:b8:58:a3:da:a9:72:02:30:d3:2a:4c: 73:a4:69:56:dd:d9:e8:ec:4a:70:d2:11:4b:27:01: f9:67:2f:82:9e:ea:60:af:bc:c5:7e:be:04:14:39: 64:48:ae:e3:8b:b0:d4:bf:9d:dd:00:4c:39:fd:7b: 98:a7:3a:3e:2f:65:be:f9:04:01:d2:79:f5:05:15: 5c:e3:1f:c6:d6:a6:97:05:28:d9:24:5f:64:f1:35: d5:37:7b:1e:60:da:34:db:b3:7f:41:52:b9:81:24: 23:25:fd:c0:02:b9:92:77:4a:b8:3f:ae:5d:bd:3d: c0:83:f2:2a:04:12:f1:0b:36:47:cc:dc:3a:1e:83: 93:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:13:4C:FA:20:15:8A:BB:9D:CC:D1:45:B6:F8:45:A5:FB:70:E5:D0 X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:e7:df:8d:cb:e6:17:fa:7a:3d:e9:6b:e6:b5:71:bd:cf:0b: af:98:6e:c2:21:bf:53:47:82:9b:be:32:9c:ba:29:e4:14:29: 81:3d:51:d5:f0:f9:2e:24:ec:e6:47:7c:ba:27:36:d3:fb:f2: 30:a2:9e:cd:11:a8:a1:c7:8e:07:df:20:46:b9:d9:eb:10:28: c2:0a:e3:10:a2:d1:cd:11:63:f3:5e:61:41:8f:13:f3:6d:a9: be:e6:50:97:b5:12:0d:c2:5f:c0:f9:76:0a:0f:66:c5:a8:bb: 9a:b3:a6:63:1d:17:10:74:ed:6d:2f:a2:2d:89:6f:e1:01:ac: 2e:ce:dc:c1:02:71:1e:2a:62:de:ed:39:63:ac:fd:a5:4c:a4: 66:c7:a2:f0:10:c2:cb:b4:37:4e:7d:1b:5d:2e:05:3b:32:fd: 75:7e:78:1d:27:e6:50:50:93:2b:27:bf:ae:99:a0:36:c9:c6: 18:05:b6:44:07:3c:65:4d:86:1b:56:f2:b8:c5:b0:e4:b2:07: 21:09:12:b5:7a:ff:5e:91:da:b5:72:09:65:13:7e:16:15:09: 33:64:f3:1b:90:37:dd:97:e4:03:26:d2:04:80:53:d6:a3:63: df:99:dd:de:f7:c9:c8:00:b4:de:22:98:26:de:b2:b7:50:69: a8:d4:37:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjUxMjEwMTcwNzU5WhcNMjUxMjE3MTcwNzU5WjAYMRYwFAYD VQQDEw02OTM5YThlZi1mZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+6NnqpZb8RuGvUbuZ9O+vAIY1tAu8wxfC8n8RMaoBDrIqkIORx1nU8lmRUF Mdj1XA/CLZ5UwzD7UMA5Pdxb3rs0xtlrr8GpuzAqlZbkwia7j+/zHKZcivw7wVrT cyEk1ldZbSoeV9Yfs7o5tUx2gjQPq2xOnda4YqEGuFij2qlyAjDTKkxzpGlW3dno 7Epw0hFLJwH5Zy+Cnupgr7zFfr4EFDlkSK7ji7DUv53dAEw5/XuYpzo+L2W++QQB 0nn1BRVc4x/G1qaXBSjZJF9k8TXVN3seYNo027N/QVK5gSQjJf3AArmSd0q4P65d vT3Ag/IqBBLxCzZHzNw6HoOTAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsTTPog FYq7nczRRbb4RaX7cOXQMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAyMi9DNjFDMjU2QUFEQ0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQ NV8xRUFWU0NZY3VvY2dlLW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC59+Ny+YX+no96WvmtXG9zwuvmG7CIb9TR4KbvjKcuinkFCmBPVHV 8PkuJOzmR3y6JzbT+/Iwop7NEaihx44H3yBGudnrECjCCuMQotHNEWPzXmFBjxPz bam+5lCXtRINwl/A+XYKD2bFqLuas6ZjHRcQdO1tL6ItiW/hAawuztzBAnEeKmLe 7TljrP2lTKRmx6LwEMLLtDdOfRtdLgU7Mv11fngdJ+ZQUJMrJ7+umaA2ycYYBbZE BzxlTYYbVvK4xbDksgchCRK1ev9ekdq1cgllE34WFQkzZPMbkDfdl+QDJtIEgFPW o2Pfmd3e98nIALTeIpgm3rK3UGmo1DfM -----END CERTIFICATE-----Generated at Thu Dec 11 23:54:39 2025 by rpki-client