This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft File: thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft (raw, json) Hash identifier: DIzUijyx3Qi91AfydBk9VmlR0W7qRVXAtTyba9CZ5Ak= Subject key identifier: 8B:85:A8:F6:EB:FA:96:E8:CA:3A:F6:55:88:E5:8E:FB:47:BF:CA:E0 Authority key identifier: B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 Certificate issuer: /CN=A9118B32/serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Certificate serial: 0407 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft Manifest number: 0402 Signing time: Mon 22 Dec 2025 23:30:02 +0000 Manifest this update: Mon 22 Dec 2025 23:30:02 +0000 Manifest next update: Mon 29 Dec 2025 23:30:02 +0000 Files and hashes: 1: thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl (hash: QCnDmeVhVhFqjXwlLDUUT2B5QKkP14lTUKCDVCqIxcE=) 2: 0F291AFE9D2811EC83448E6FC4F9AE02.roa (hash: p2rd5X9PRaHj3dg5SJAK0M8GBgiGK7ul3HPfe5PMkz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1031 (0x407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118B32, serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Validity Not Before: Dec 22 23:30:02 2025 GMT Not After : Dec 29 23:30:02 2025 GMT Subject: CN=6949d47a-6836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d5:c5:68:fe:04:ff:cb:46:ce:67:40:b8:9c: 64:75:04:4b:17:b5:f7:2c:01:d0:81:7a:c8:0f:2d: 8a:6b:d8:10:48:17:62:b1:5b:55:e7:b8:68:05:a2: c6:de:e3:3a:9b:e0:a7:cb:8c:f2:0a:62:93:d7:5e: 11:14:9b:91:6b:67:68:25:07:85:bb:20:8b:f3:19: f7:ef:9e:75:a7:b5:c4:09:86:f3:ac:58:d5:15:ee: 03:b6:7a:5c:e0:ed:42:1b:e9:b7:90:38:79:4d:91: c3:7c:c2:95:03:bb:eb:50:0c:d7:97:fa:db:77:0b: 43:5f:1f:2b:ec:94:f9:e0:48:1d:26:01:a2:c9:99: b4:34:cc:03:94:44:bd:b1:76:3f:87:8b:e9:1d:9f: 64:4b:cc:3e:1e:24:09:0a:f6:04:f2:cb:9e:f5:ad: 65:f3:71:66:5b:47:50:12:0a:71:f5:fc:b6:13:33: 9c:c2:07:99:3a:58:46:18:52:61:af:77:75:9e:07: 3e:74:3e:c4:36:a8:7b:2e:6e:57:d4:d6:07:4d:52: ff:79:9f:7c:cc:ca:62:ed:d2:94:e8:22:89:2c:59: 2b:e2:db:12:ee:cd:f8:9b:bd:b7:12:c4:f8:24:b2: 1f:5f:32:8c:20:4f:6d:48:b1:d0:97:24:03:36:64: 91:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:85:A8:F6:EB:FA:96:E8:CA:3A:F6:55:88:E5:8E:FB:47:BF:CA:E0 X509v3 Authority Key Identifier: keyid:B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:20:4b:18:4c:05:00:69:e1:37:e8:a4:02:4f:65:18:a5:a6: 50:fa:44:71:ee:eb:5d:c2:13:a0:42:89:44:f7:2f:6c:ca:a6: c8:69:8f:29:2f:7e:71:0e:28:d1:0d:8c:a1:e5:93:ab:d9:db: 25:ae:eb:b9:53:47:c1:aa:c5:02:2d:49:cb:de:81:36:42:17: 5f:b4:11:f7:58:2e:cf:39:61:7b:5c:28:eb:3a:ce:61:79:b9: 0c:fe:5c:bb:e4:62:ef:4a:25:5b:87:74:5c:0f:42:06:64:ac: 7c:c9:6a:8f:86:28:ee:6e:ef:56:14:81:8f:dc:dc:0c:f3:74: 36:26:57:81:fc:f6:f7:9f:ef:61:a0:b9:8d:c6:de:9f:0a:f9: 5c:21:d0:af:a2:6c:c4:9a:bb:65:32:7a:3b:d8:40:3e:ce:91: cc:42:19:e5:b4:8c:46:5c:16:b3:58:42:89:48:1d:5c:19:0c: e9:17:28:3a:c9:25:1c:d3:22:00:36:63:c9:40:a3:7f:ae:77: 91:4b:bd:22:0e:84:83:d6:3b:e1:a5:82:5c:d9:f7:25:4f:7a: 6f:ce:be:1e:c8:1b:92:e8:c7:86:f7:b6:81:1e:d9:4e:d4:1d: 7a:df:35:f6:6d:74:57:b5:e0:90:bf:e0:92:9a:76:d0:a9:41: e4:24:03:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThCMzIxMTAvBgNVBAUTKEI2MTEwM0E1QzlDQzYwRUFEMTg4QTJGOUZEMTFFNjNE NTIzM0Q5OTUwHhcNMjUxMjIyMjMzMDAyWhcNMjUxMjI5MjMzMDAyWjAYMRYwFAYD VQQDDA02OTQ5ZDQ3YS02ODM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttXFaP4E/8tGzmdAuJxkdQRLF7X3LAHQgXrIDy2Ka9gQSBdisVtV57hoBaLG 3uM6m+Cny4zyCmKT114RFJuRa2doJQeFuyCL8xn37551p7XECYbzrFjVFe4Dtnpc 4O1CG+m3kDh5TZHDfMKVA7vrUAzXl/rbdwtDXx8r7JT54EgdJgGiyZm0NMwDlES9 sXY/h4vpHZ9kS8w+HiQJCvYE8sue9a1l83FmW0dQEgpx9fy2EzOcwgeZOlhGGFJh r3d1ngc+dD7ENqh7Lm5X1NYHTVL/eZ98zMpi7dKU6CKJLFkr4tsS7s34m723EsT4 JLIfXzKMIE9tSLHQlyQDNmSRKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuFqPbr +pboyjr2VYjljvtHv8rgMB8GA1UdIwQYMBaAFLYRA6XJzGDq0Yii+f0R5j1SM9mV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEIzMi9GRjc3MUJCQzlE MjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlPclJpS0w1X1JIbVBWSXoy WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RoRURwY25NWU9yUmlLTDVfUkhtUFZJejJaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEIzMi9GRjc3MUJCQzlEMjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlP clJpS0w1X1JIbVBWSXoyWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOIEsYTAUAaeE36KQCT2UYpaZQ+kRx7utdwhOgQolE9y9syqbIaY8p L35xDijRDYyh5ZOr2dslruu5U0fBqsUCLUnL3oE2QhdftBH3WC7POWF7XCjrOs5h ebkM/ly75GLvSiVbh3RcD0IGZKx8yWqPhijubu9WFIGP3NwM83Q2JleB/Pb3n+9h oLmNxt6fCvlcIdCvomzEmrtlMno72EA+zpHMQhnltIxGXBazWEKJSB1cGQzpFyg6 ySUc0yIANmPJQKN/rneRS70iDoSD1jvhpYJc2fclT3pvzr4eyBuS6MeG97aBHtlO 1B163zX2bXRXteCQv+CSmnbQqUHkJAOZ -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:14 2025 by rpki-client