This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: 6OUqumxYbXqiBotAm86mSwIIH0EvOcE2O0EwtmQs/Ps= Subject key identifier: 64:77:62:EF:34:8C:C9:19:90:D4:67:42:B1:79:AB:B8:71:4C:29:79 Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0CA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0C95 Signing time: Sat 20 Dec 2025 18:03:35 +0000 Manifest this update: Sat 20 Dec 2025 18:03:34 +0000 Manifest next update: Sat 27 Dec 2025 18:03:34 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: C3ZFMNbZRmcJgLVajM1ezXgZD/AZtZVHV1G4KD5luu4=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: bP4mtdPcC9gJRT9cgoHrxBppsqMyFJRwGR6OCAipZzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3233 (0xca1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB, serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: Dec 20 18:03:34 2025 GMT Not After : Dec 27 18:03:34 2025 GMT Subject: CN=6946e4f6-dd59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e1:96:d2:87:f7:75:23:f7:b5:66:37:d1:aa: ba:d1:22:fd:62:32:a8:56:59:f8:6f:96:9e:ac:5c: 2f:e5:4b:8d:42:c8:de:82:30:67:f3:66:e4:3c:7d: 46:e6:cb:e2:54:83:94:4f:f1:3a:8d:d5:ef:fb:9b: a5:74:25:d3:7d:1f:23:78:1b:63:ca:9f:ef:59:6c: 53:04:4a:98:46:8a:c8:ba:b6:9a:c9:f0:a7:39:a4: 7f:9e:fc:7b:8e:a0:d6:0f:c2:d6:8d:14:0f:5d:27: 8e:f2:c5:04:78:d8:5d:33:d9:78:cf:71:7d:fe:e9: 78:15:44:b7:da:37:99:2c:b4:5a:37:9f:0b:f2:cf: bf:36:61:97:36:83:24:23:d3:76:aa:f8:68:0d:ae: 13:9b:11:0d:66:96:9c:fd:79:20:c5:ab:60:6c:47: 8d:89:23:6c:bc:f5:5b:fe:42:eb:fb:67:2e:72:52: 5e:ca:fb:fe:c6:e8:8d:e1:47:a1:11:98:74:a0:0b: d2:79:65:f3:66:38:11:73:3e:80:4f:ca:08:60:f1: 1d:9a:d9:37:49:65:9b:86:a9:94:0e:d1:03:4c:85: e1:02:39:a1:eb:cd:35:b0:ea:98:2f:96:41:ad:57: 97:77:62:c7:fd:0d:97:c5:40:51:45:76:2c:01:72: ee:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:77:62:EF:34:8C:C9:19:90:D4:67:42:B1:79:AB:B8:71:4C:29:79 X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:e4:f4:09:35:e0:13:f6:be:f3:50:4b:ea:68:d5:02:e3:db: 21:c0:b8:62:41:1c:a6:0c:d8:62:e4:ad:7d:08:d4:c7:9d:d2: 51:f7:de:5d:5a:06:81:b8:7a:10:1a:e2:aa:e8:46:a9:eb:c3: b6:ce:ef:19:bc:73:9e:cb:54:ef:70:50:49:2c:67:55:d8:47: 54:97:73:0d:a9:15:f3:a4:63:25:98:d1:96:fe:ef:bf:8f:27: 2d:de:b4:d3:51:73:97:a2:d1:9a:3d:84:5c:c1:e6:6b:4e:07: 8c:2c:d3:52:11:88:8f:51:be:cc:fd:87:ca:27:74:13:89:70: 66:a1:61:a9:1b:88:94:10:08:67:67:83:c9:88:69:7d:d1:37: 9c:c0:e5:c4:4f:59:a0:95:ca:e0:4e:c9:80:5f:36:16:52:a0: dc:28:3f:28:80:48:ba:b4:a1:55:ab:50:32:e5:16:d2:f2:82: e6:4a:97:13:76:5f:d0:7c:85:74:91:ba:6a:05:87:0c:dc:b2: 4d:33:cd:16:a2:d9:cd:05:b8:47:3e:e5:dc:da:f5:be:95:fd: 23:ab:c9:e2:4e:ac:e1:c0:49:3d:09:13:20:15:8e:76:1d:6d: 0b:eb:45:46:f1:cf:70:ec:2e:2e:e0:a7:04:2e:15:29:4f:88: e8:5e:02:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjUxMjIwMTgwMzM0WhcNMjUxMjI3MTgwMzM0WjAYMRYwFAYD VQQDDA02OTQ2ZTRmNi1kZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOGW0of3dSP3tWY30aq60SL9YjKoVln4b5aerFwv5UuNQsjegjBn82bkPH1G 5sviVIOUT/E6jdXv+5uldCXTfR8jeBtjyp/vWWxTBEqYRorIuraayfCnOaR/nvx7 jqDWD8LWjRQPXSeO8sUEeNhdM9l4z3F9/ul4FUS32jeZLLRaN58L8s+/NmGXNoMk I9N2qvhoDa4TmxENZpac/XkgxatgbEeNiSNsvPVb/kLr+2cuclJeyvv+xuiN4Ueh EZh0oAvSeWXzZjgRcz6AT8oIYPEdmtk3SWWbhqmUDtEDTIXhAjmh6801sOqYL5ZB rVeXd2LH/Q2XxUBRRXYsAXLumQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGR3Yu80 jMkZkNRnQrF5q7hxTCl5MB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT5PQJNeAT9r7zUEvqaNUC49shwLhiQRymDNhi5K19CNTHndJR995d WgaBuHoQGuKq6Eap68O2zu8ZvHOey1TvcFBJLGdV2EdUl3MNqRXzpGMlmNGW/u+/ jyct3rTTUXOXotGaPYRcweZrTgeMLNNSEYiPUb7M/YfKJ3QTiXBmoWGpG4iUEAhn Z4PJiGl90TecwOXET1mglcrgTsmAXzYWUqDcKD8ogEi6tKFVq1Ay5RbS8oLmSpcT dl/QfIV0kbpqBYcM3LJNM80WotnNBbhHPuXc2vW+lf0jq8niTqzhwEk9CRMgFY52 HW0L60VG8c9w7C4u4KcELhUpT4joXgJs -----END CERTIFICATE-----Generated at Mon Dec 22 04:01:45 2025 by rpki-client