This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft File: at5OHE4cCb8U36pMPWAPQY4X5y4.mft (raw, json) Hash identifier: +3OX9WQ/qwvkEJG3pK15XJbfUNdWGbgv09C3/57XwXo= Subject key identifier: 58:58:42:F3:1C:67:00:E7:EF:8D:64:C0:59:92:A6:91:27:95:00:61 Authority key identifier: 6A:DE:4E:1C:4E:1C:09:BF:14:DF:AA:4C:3D:60:0F:41:8E:17:E7:2E Certificate issuer: /CN=A918429B/serialNumber=6ADE4E1C4E1C09BF14DFAA4C3D600F418E17E72E Certificate serial: 34EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft Manifest number: 34EE Signing time: Mon 22 Dec 2025 14:47:56 +0000 Manifest this update: Mon 22 Dec 2025 14:47:56 +0000 Manifest next update: Mon 29 Dec 2025 14:47:56 +0000 Files and hashes: 1: at5OHE4cCb8U36pMPWAPQY4X5y4.crl (hash: dQYY2iwGj8gH+9Y5eoBI/GuC5H/X7W5ReSA+1hwp7ac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.crl rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13550 (0x34ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918429B, serialNumber=6ADE4E1C4E1C09BF14DFAA4C3D600F418E17E72E Validity Not Before: Dec 22 14:47:56 2025 GMT Not After : Dec 29 14:47:56 2025 GMT Subject: CN=69495a1c-3e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:22:21:83:d9:84:9c:fc:69:ce:3c:a0:53:af: 1b:9e:a9:1d:99:96:66:32:12:22:4a:12:8b:f5:2b: 46:e8:d5:15:bc:84:1b:9a:05:42:6c:5d:83:81:c6: 36:c1:bc:c0:78:7f:2b:52:aa:be:32:22:d0:64:41: 23:7b:54:9b:3d:4f:ba:22:79:3a:07:b7:f7:83:45: f6:ad:1f:49:c4:38:0f:2e:e9:0a:24:48:35:25:b0: ad:0d:91:d7:18:34:42:4b:6d:3e:cd:7a:31:5d:a8: 61:4f:26:8c:cc:98:32:88:33:29:47:ce:e2:27:12: 39:64:7f:a6:86:fc:be:f1:ba:76:84:d8:be:11:ca: a1:0c:76:a1:ce:ae:de:78:7c:5e:17:d5:c5:5d:71: d9:9d:59:6a:c8:26:00:8b:f8:9e:4d:9b:a8:97:ac: 10:24:7e:72:bb:f1:81:97:f0:fd:36:42:06:57:23: 4c:21:12:ba:3d:64:68:b6:51:ab:50:a7:1b:10:d4: ea:ea:e8:e6:1f:5e:f9:a9:86:01:80:14:90:39:71: a7:78:27:68:50:9e:fb:33:40:c7:ab:81:f4:45:b3: 95:2d:af:23:a2:72:a8:f8:50:1c:f0:fa:1b:1f:ac: d1:3f:fe:9f:ad:e8:10:d3:b8:77:9b:10:51:27:95: 16:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:58:42:F3:1C:67:00:E7:EF:8D:64:C0:59:92:A6:91:27:95:00:61 X509v3 Authority Key Identifier: keyid:6A:DE:4E:1C:4E:1C:09:BF:14:DF:AA:4C:3D:60:0F:41:8E:17:E7:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:5c:6a:34:78:4e:d2:68:b8:ff:9d:36:a9:9c:75:1f:fb:dc: 9f:36:07:42:a6:9a:15:50:d8:2b:c8:05:8f:39:4c:90:0e:fe: 24:57:71:a9:ea:10:3c:77:1b:ee:34:26:3a:6a:23:e8:21:08: 5c:e4:1a:98:67:0a:d8:dc:57:9d:d0:61:36:f2:93:98:2f:18: da:40:cb:61:0e:d4:a9:c2:39:64:ff:d5:95:cc:e7:b8:aa:6b: f3:91:4b:f3:41:0f:f0:f7:a0:59:98:02:83:11:7f:d3:e6:d1: 55:2d:6d:d4:38:54:46:dd:71:66:e8:58:b5:ef:1d:ff:f1:25: af:ae:b0:0a:bd:3f:d0:25:14:05:cb:a3:db:a8:2d:3b:53:53: d1:01:1c:ac:51:e8:72:a7:15:51:76:6f:80:a2:ba:c9:6b:d6: 01:a9:8b:36:17:41:dd:7b:85:24:37:1f:d2:70:bb:45:c4:21: da:04:51:7b:8c:2d:96:d6:30:ed:57:9b:1a:25:dc:14:87:e1: a4:16:38:08:76:15:c8:d8:cb:4e:06:af:55:aa:d3:c8:83:b7: 1c:a6:83:e1:44:9c:1f:06:14:f7:3d:2c:8b:df:91:bb:2a:c8: 24:22:65:4c:1e:f5:82:a7:3a:05:c5:13:e8:15:6f:fc:13:88: 45:ca:82:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyOUIxMTAvBgNVBAUTKDZBREU0RTFDNEUxQzA5QkYxNERGQUE0QzNENjAwRjQx OEUxN0U3MkUwHhcNMjUxMjIyMTQ0NzU2WhcNMjUxMjI5MTQ0NzU2WjAYMRYwFAYD VQQDDA02OTQ5NWExYy0zZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyIhg9mEnPxpzjygU68bnqkdmZZmMhIiShKL9StG6NUVvIQbmgVCbF2DgcY2 wbzAeH8rUqq+MiLQZEEje1SbPU+6Ink6B7f3g0X2rR9JxDgPLukKJEg1JbCtDZHX GDRCS20+zXoxXahhTyaMzJgyiDMpR87iJxI5ZH+mhvy+8bp2hNi+EcqhDHahzq7e eHxeF9XFXXHZnVlqyCYAi/ieTZuol6wQJH5yu/GBl/D9NkIGVyNMIRK6PWRotlGr UKcbENTq6ujmH175qYYBgBSQOXGneCdoUJ77M0DHq4H0RbOVLa8jonKo+FAc8Pob H6zRP/6fregQ07h3mxBRJ5UWuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhYQvMc ZwDn741kwFmSppEnlQBhMB8GA1UdIwQYMBaAFGreThxOHAm/FN+qTD1gD0GOF+cu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI5Qi9CNjAwNjNBQzFE OTcxMUUyQkEyRTQ1ODEwOEIwMkNEMi9hdDVPSEU0Y0NiOFUzNnBNUFdBUFFZNFg1 eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F0NU9IRTRjQ2I4VTM2cE1QV0FQUVk0WDV5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI5Qi9CNjAwNjNBQzFEOTcxMUUyQkEyRTQ1ODEwOEIwMkNEMi9hdDVPSEU0Y0Ni OFUzNnBNUFdBUFFZNFg1eTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaXGo0eE7SaLj/nTapnHUf+9yfNgdCppoVUNgryAWPOUyQDv4kV3Gp 6hA8dxvuNCY6aiPoIQhc5BqYZwrY3Fed0GE28pOYLxjaQMthDtSpwjlk/9WVzOe4 qmvzkUvzQQ/w96BZmAKDEX/T5tFVLW3UOFRG3XFm6Fi17x3/8SWvrrAKvT/QJRQF y6PbqC07U1PRARysUehypxVRdm+AorrJa9YBqYs2F0Hde4UkNx/ScLtFxCHaBFF7 jC2W1jDtV5saJdwUh+GkFjgIdhXI2MtOBq9VqtPIg7ccpoPhRJwfBhT3PSyL35G7 KsgkImVMHvWCpzoFxRPoFW/8E4hFyoLg -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:54 2025 by rpki-client