This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: b/bPQ/zDad4EphoK/Tj4PXUdrRY19PIl+LIJPqIpIvE= Subject key identifier: 3B:3C:10:B3:CB:36:3C:62:BF:95:01:E8:D5:F2:10:0D:41:21:A3:FE Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 0954 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 0945 Signing time: Mon 22 Dec 2025 19:35:17 +0000 Manifest this update: Mon 22 Dec 2025 19:35:16 +0000 Manifest next update: Mon 29 Dec 2025 19:35:16 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: e/cAe9k1Zn7RDBgfSy7unYFmvYq0mgE0wtSRAcpiSBA=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: hGeojJHl+slEu//W2T6Ztco0llWjDMzL1tIeaK2rSYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2388 (0x954) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Dec 22 19:35:16 2025 GMT Not After : Dec 29 19:35:16 2025 GMT Subject: CN=69499d74-fd5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e9:d7:f1:02:f6:ba:3e:9e:50:93:56:e2:06: 43:58:91:78:3d:ef:74:3f:0f:55:c5:2c:22:fc:01: 60:4f:c0:f3:f6:2b:72:dd:e8:21:81:f7:8d:49:35: c5:a9:17:95:01:4a:ce:15:27:24:92:84:8f:92:75: fc:a2:69:70:cc:1e:c9:91:63:29:f4:f2:ee:88:1b: 43:77:5c:a2:f8:28:19:3f:be:7b:4f:cd:22:00:c4: 75:d5:4c:1d:59:f4:45:e2:18:01:24:0f:5a:bf:99: 7a:59:83:c0:79:a0:84:26:b5:9a:0e:6b:18:5e:36: 43:a6:ff:6e:fd:f7:bf:42:fd:85:5d:0f:d0:43:64: 4c:52:05:1f:3f:6a:2c:10:59:16:81:b9:f0:ad:42: e5:de:40:ea:9b:8f:84:9f:c7:20:11:d8:b5:88:dc: 4d:94:d9:74:5e:5e:42:b0:5a:c8:88:d6:43:ac:b7: 92:5d:f3:37:76:e4:a2:c4:3d:63:61:e2:77:1c:8e: ac:34:4b:0a:a4:99:34:af:fd:52:6d:4f:32:30:7d: 81:1b:b8:57:be:a9:c0:bf:f6:a9:df:ec:59:19:f0: 5b:12:c6:5b:e7:6c:4b:e4:67:ae:58:2e:d0:ca:42: 0e:28:62:cb:65:32:9d:71:85:ca:f2:d1:e1:19:ad: d2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3C:10:B3:CB:36:3C:62:BF:95:01:E8:D5:F2:10:0D:41:21:A3:FE X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:92:39:c4:80:43:04:2c:dd:fd:6a:83:02:13:85:65:97:05: 60:71:0a:db:82:32:f9:61:8e:e5:3b:f7:7f:0e:bc:06:25:d4: 28:4e:1e:22:23:79:ae:c7:d9:f5:ef:e2:67:40:02:19:2f:31: 7b:9f:15:b8:b6:4e:71:90:e6:84:e3:42:28:0e:a7:eb:03:17: be:3b:47:60:2b:b8:ee:ad:2f:b5:53:83:97:60:f8:79:af:4e: 2c:f9:ab:79:c4:2f:2a:3f:2b:f2:c7:3e:24:95:b0:d7:88:1d: ec:2e:40:7b:09:77:72:3e:02:6e:18:53:86:57:d3:70:d9:27: 61:71:25:34:a9:34:fc:ce:e8:f8:8b:15:c1:09:36:11:da:64: f8:81:15:db:5c:ac:b0:ce:55:0c:43:42:09:6c:c5:e3:a6:e0: 22:a2:b0:a9:fe:60:2e:7e:d3:52:ee:b9:82:73:06:bd:4b:08: 27:6c:fa:95:f1:27:5e:d6:56:26:62:e8:1c:75:54:43:e3:e2: d9:7f:6c:07:9b:cd:c9:53:10:2a:95:bd:91:f0:f6:88:9b:cf: 04:0a:00:e5:25:0a:55:1d:d4:b8:35:1d:e1:85:9c:e3:e3:24: 44:6a:d9:ce:4b:ac:3d:da:c4:3f:72:91:31:fe:86:94:6d:ea: 0e:96:ff:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjUxMjIyMTkzNTE2WhcNMjUxMjI5MTkzNTE2WjAYMRYwFAYD VQQDDA02OTQ5OWQ3NC1mZDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtunX8QL2uj6eUJNW4gZDWJF4Pe90Pw9VxSwi/AFgT8Dz9ity3eghgfeNSTXF qReVAUrOFSckkoSPknX8omlwzB7JkWMp9PLuiBtDd1yi+CgZP757T80iAMR11Uwd WfRF4hgBJA9av5l6WYPAeaCEJrWaDmsYXjZDpv9u/fe/Qv2FXQ/QQ2RMUgUfP2os EFkWgbnwrULl3kDqm4+En8cgEdi1iNxNlNl0Xl5CsFrIiNZDrLeSXfM3duSixD1j YeJ3HI6sNEsKpJk0r/1SbU8yMH2BG7hXvqnAv/ap3+xZGfBbEsZb52xL5GeuWC7Q ykIOKGLLZTKdcYXK8tHhGa3SDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDs8ELPL Njxiv5UB6NXyEA1BIaP+MB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbkjnEgEMELN39aoMCE4VllwVgcQrbgjL5YY7lO/d/DrwGJdQoTh4i I3mux9n17+JnQAIZLzF7nxW4tk5xkOaE40IoDqfrAxe+O0dgK7jurS+1U4OXYPh5 r04s+at5xC8qPyvyxz4klbDXiB3sLkB7CXdyPgJuGFOGV9Nw2SdhcSU0qTT8zuj4 ixXBCTYR2mT4gRXbXKywzlUMQ0IJbMXjpuAiorCp/mAuftNS7rmCcwa9SwgnbPqV 8Sde1lYmYugcdVRD4+LZf2wHm83JUxAqlb2R8PaIm88ECgDlJQpVHdS4NR3hhZzj 4yREatnOS6w92sQ/cpEx/oaUbeoOlv9a -----END CERTIFICATE-----Generated at Wed Dec 24 19:30:36 2025 by rpki-client