This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft File: MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft (raw, json) Hash identifier: GwcULrYnRxN9a9kauoFtTVjsgLjc+Q7jz3Vnc6sElhE= Subject key identifier: 7C:7E:9D:1D:C2:93:91:CD:6F:24:B6:26:AC:33:97:A3:57:E3:6A:EA Authority key identifier: 32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 Certificate issuer: /CN=A9180127/serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft Manifest number: 01A5 Signing time: Tue 23 Dec 2025 02:18:03 +0000 Manifest this update: Tue 23 Dec 2025 02:18:02 +0000 Manifest next update: Tue 30 Dec 2025 02:18:02 +0000 Files and hashes: 1: MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl (hash: BcLJeqMiOieOQkKcN3icFJHrIEslKxUKMYKEIiwNuoI=) 2: 80A66D902A6411F09ACA5C61C4F9AE02.roa (hash: VkiCTpbHNMdBRPiF1oBiRg7dOTIy/YEbnzSkLjMcvbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180127, serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Validity Not Before: Dec 23 02:18:02 2025 GMT Not After : Dec 30 02:18:02 2025 GMT Subject: CN=6949fbdb-904f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:44:cb:ec:c6:5d:ad:b7:23:fb:a9:bd:cb:24: fa:57:0f:75:de:dc:14:3d:1e:51:33:d2:97:83:bc: 92:0b:78:03:28:6c:bd:49:5f:d1:70:a5:db:3c:07: a1:ec:0d:65:91:61:90:25:32:29:7e:a1:58:80:37: 9e:0f:5f:b6:70:6e:b4:df:98:68:5c:e9:94:97:bf: 75:74:42:20:e6:5b:41:ae:77:3b:f2:3a:b7:55:79: 88:b0:27:60:35:84:13:9a:f0:36:36:e0:eb:e4:07: a7:21:9b:9b:93:98:aa:14:0a:05:bb:f9:1e:56:d6: 9a:92:a1:35:54:8f:25:24:1b:48:5f:b8:43:ef:9c: c3:85:64:36:e2:8a:ac:24:1a:c9:6e:0c:25:75:0d: 5e:87:47:86:f8:2a:98:37:d2:75:97:2e:a8:5e:98: 2f:d7:6e:bc:d2:34:fe:9e:58:78:a1:fd:ba:f4:8f: 21:33:f8:f7:3d:70:d0:e6:12:92:b1:df:73:74:fa: 51:fd:c5:00:55:38:22:e4:6f:c7:c7:80:29:bb:b2: 97:d1:c0:b1:8f:13:4a:6e:36:c4:e2:35:db:fe:dd: 69:e1:12:4a:d9:16:c2:9d:2b:54:a4:a9:ac:b7:49: 00:95:b0:68:dd:e1:15:97:90:8e:1d:9f:20:d5:0b: b8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:7E:9D:1D:C2:93:91:CD:6F:24:B6:26:AC:33:97:A3:57:E3:6A:EA X509v3 Authority Key Identifier: keyid:32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:08:a8:63:0c:47:b8:96:b3:41:5f:11:d5:94:f4:ae:12:71: c1:f2:b6:89:fd:49:b8:c3:59:2a:dd:64:48:50:18:15:57:9f: 91:fa:2b:41:26:2c:dc:a7:9d:2b:ab:1b:ed:c5:4a:3b:c8:ed: 6c:87:ff:94:8b:a1:cb:1f:21:33:0e:d7:7f:5c:dc:5e:6c:a1: 3b:66:de:2d:de:98:82:20:04:ca:e1:7d:82:52:ed:21:a9:73: b3:22:1a:23:7e:e2:92:0f:83:5c:54:8a:bd:47:69:6a:be:57: 51:87:7e:5d:9f:fc:54:f9:af:6b:60:b2:59:27:44:bb:44:ba: 83:43:81:01:56:9b:9a:24:59:11:06:bc:ed:ad:78:fa:76:b3: cb:cc:c6:e4:5b:99:e1:46:b3:24:0f:81:46:60:c2:d5:17:53: 7e:11:bf:25:5e:e1:0c:85:30:4b:ff:c4:98:aa:bd:a6:25:7f: e3:e5:b9:61:02:6f:bb:c7:df:c0:38:38:bd:a0:c4:0c:99:19: 93:4c:35:c9:cd:69:fe:fe:be:89:39:f0:bf:f9:6a:8b:7d:5d: 13:78:52:6a:97:9c:6d:df:ad:d7:9d:61:94:ef:7e:c5:d7:72: ca:4a:27:51:ba:be:a7:f0:54:d1:92:bb:3a:88:3c:d9:80:4a: a1:7b:d5:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxMjcxMTAvBgNVBAUTKDMyMTVDNTUxNkFGQjU0RDhFNjEyRDFFQzNENTE4MkQz MjFFNTMxNzEwHhcNMjUxMjIzMDIxODAyWhcNMjUxMjMwMDIxODAyWjAYMRYwFAYD VQQDDA02OTQ5ZmJkYi05MDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkTL7MZdrbcj+6m9yyT6Vw913twUPR5RM9KXg7ySC3gDKGy9SV/RcKXbPAeh 7A1lkWGQJTIpfqFYgDeeD1+2cG6035hoXOmUl791dEIg5ltBrnc78jq3VXmIsCdg NYQTmvA2NuDr5AenIZubk5iqFAoFu/keVtaakqE1VI8lJBtIX7hD75zDhWQ24oqs JBrJbgwldQ1eh0eG+CqYN9J1ly6oXpgv12680jT+nlh4of269I8hM/j3PXDQ5hKS sd9zdPpR/cUAVTgi5G/Hx4Apu7KX0cCxjxNKbjbE4jXb/t1p4RJK2RbCnStUpKms t0kAlbBo3eEVl5COHZ8g1Qu4bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHx+nR3C k5HNbyS2Jqwzl6NX42rqMB8GA1UdIwQYMBaAFDIVxVFq+1TY5hLR7D1RgtMh5TFx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDEyNy8xNkFGMUQyMDVC N0YxMUVFQkUzMjBFMzVDNEY5QUUwMi9NaFhGVVdyN1ZOam1FdEhzUFZHQzB5SGxN WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oWEZVV3I3Vk5qbUV0SHNQVkdDMHlIbE1YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDEyNy8xNkFGMUQyMDVCN0YxMUVFQkUzMjBFMzVDNEY5QUUwMi9NaFhGVVdyN1ZO am1FdEhzUFZHQzB5SGxNWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeCKhjDEe4lrNBXxHVlPSuEnHB8raJ/Um4w1kq3WRIUBgVV5+R+itB Jizcp50rqxvtxUo7yO1sh/+Ui6HLHyEzDtd/XNxebKE7Zt4t3piCIATK4X2CUu0h qXOzIhojfuKSD4NcVIq9R2lqvldRh35dn/xU+a9rYLJZJ0S7RLqDQ4EBVpuaJFkR BrztrXj6drPLzMbkW5nhRrMkD4FGYMLVF1N+Eb8lXuEMhTBL/8SYqr2mJX/j5blh Am+7x9/AODi9oMQMmRmTTDXJzWn+/r6JOfC/+WqLfV0TeFJql5xt363XnWGU737F 13LKSidRur6n8FTRkrs6iDzZgEqhe9VG -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:50 2025 by rpki-client