This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft File: h-gMDkYzEKnTA4zgE88YU3SlxyI.mft (raw, json) Hash identifier: EzTEwfArzvwF8ur2+4PFxv/Vbr/gmI4LzVuRUUaeeQE= Subject key identifier: F1:99:2D:68:FD:AB:AE:4E:8D:2D:D3:D2:C8:13:1C:7D:47:F5:1A:48 Authority key identifier: 87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 Certificate issuer: /CN=A918524B/serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Certificate serial: 0644 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft Manifest number: 063A Signing time: Mon 22 Dec 2025 21:55:36 +0000 Manifest this update: Mon 22 Dec 2025 21:55:36 +0000 Manifest next update: Mon 29 Dec 2025 21:55:36 +0000 Files and hashes: 1: h-gMDkYzEKnTA4zgE88YU3SlxyI.crl (hash: W2zPOfNzE+qm6IQLbEqZ7kN0ihoGdmycaZ1Gg/UIW0o=) 2: C850F3BA89A511EEB6692E43C4F9AE02.roa (hash: uJ34QZzPWsLiblBgV7Ywgb0TXxMUSuEWmFUneXtmF9w=) 3: C49CE482BEA411EB85828650C4F9AE02.roa (hash: tWGIt1j5EvwGUw+Sd+nJTxQY0ACb+5Zewj9NqITpqME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:55:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1604 (0x644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918524B, serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Validity Not Before: Dec 22 21:55:36 2025 GMT Not After : Dec 29 21:55:36 2025 GMT Subject: CN=6949be58-70e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bc:31:5e:d8:6c:d3:27:90:aa:a4:8d:16:f7: 41:b6:e4:9d:de:8a:4e:40:f9:fa:56:b4:21:13:aa: 54:91:4f:f0:9a:6a:33:a3:1a:dd:78:9f:97:09:29: 6d:10:56:f2:12:97:89:dd:7a:50:ea:43:4b:06:ce: c7:83:32:9c:87:47:a8:45:97:cf:3f:fe:54:08:78: 71:d3:ec:1a:46:d6:b3:2e:da:ce:43:8b:de:17:77: 44:55:37:32:04:3e:98:16:91:96:76:22:ae:fa:a3: c2:9d:5d:4b:73:39:8d:93:12:eb:8a:e9:63:49:37: 2e:85:96:22:ce:cb:9d:4c:7f:4c:c8:ff:be:e1:eb: 39:6f:ce:1f:bd:8b:d6:78:cd:d9:58:0d:a5:67:c1: ae:45:e0:b2:85:cb:b9:da:d5:77:2d:95:26:ea:ad: e6:6f:f9:9b:3b:15:45:05:4c:e4:52:73:d1:8d:40: 27:ef:e6:69:22:e2:22:e3:26:f6:48:9e:9a:55:e1: 95:5e:07:b2:36:90:53:75:8b:27:13:68:bb:52:65: 48:00:ea:f5:e8:60:32:f3:a9:5c:91:c6:6b:56:88: 73:4a:02:57:ef:e0:37:dc:87:b3:1b:c4:00:a5:4b: 4e:aa:34:ca:27:b1:65:8d:be:bf:4f:02:2d:6d:11: 88:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:99:2D:68:FD:AB:AE:4E:8D:2D:D3:D2:C8:13:1C:7D:47:F5:1A:48 X509v3 Authority Key Identifier: keyid:87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:c3:b0:56:b5:c8:38:26:49:66:a4:dd:9e:2a:92:2f:e5:65: 6a:1f:47:b6:c9:68:86:7d:39:e8:a1:b3:1a:f9:17:b3:34:f6: a2:e1:31:01:13:4d:75:ac:6d:aa:ff:ea:c6:1f:81:09:83:14: 4a:95:77:58:18:6d:f7:a9:cf:85:50:34:e4:f3:6a:92:a2:8f: 59:36:52:93:82:3f:9c:68:21:95:3c:1b:af:92:7e:1d:b0:64: 88:f4:49:28:eb:93:2f:0d:4d:68:56:6b:02:e7:c3:0c:d3:b8: d6:a9:e1:30:3c:7b:81:7a:27:a0:eb:5c:23:cd:c4:2a:2c:95: 71:0e:ac:19:7c:c6:aa:ba:6c:06:dc:98:91:cb:5c:86:2e:54: 1e:91:4b:18:bd:c6:4a:a5:5f:86:38:a0:07:38:72:03:ef:03: ab:4b:28:8b:0f:c9:a9:8d:66:2e:a0:3e:fb:44:d2:a3:2d:f0: db:60:c7:cf:50:84:b3:33:ef:9a:cf:29:8c:10:b4:39:36:0d: c1:1e:26:37:61:2b:e4:80:96:fb:f6:04:58:ec:e7:44:56:7e: f9:57:ce:f9:17:75:da:3f:c2:1b:73:27:a0:bc:4a:e3:80:41: c0:95:24:e7:8a:6a:32:ad:37:bb:dd:b4:59:56:d5:bf:69:db: a5:1e:a5:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUyNEIxMTAvBgNVBAUTKDg3RTgwQzBFNDYzMzEwQTlEMzAzOENFMDEzQ0YxODUz NzRBNUM3MjIwHhcNMjUxMjIyMjE1NTM2WhcNMjUxMjI5MjE1NTM2WjAYMRYwFAYD VQQDDA02OTQ5YmU1OC03MGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLwxXths0yeQqqSNFvdBtuSd3opOQPn6VrQhE6pUkU/wmmozoxrdeJ+XCSlt EFbyEpeJ3XpQ6kNLBs7HgzKch0eoRZfPP/5UCHhx0+waRtazLtrOQ4veF3dEVTcy BD6YFpGWdiKu+qPCnV1LczmNkxLriuljSTcuhZYizsudTH9MyP++4es5b84fvYvW eM3ZWA2lZ8GuReCyhcu52tV3LZUm6q3mb/mbOxVFBUzkUnPRjUAn7+ZpIuIi4yb2 SJ6aVeGVXgeyNpBTdYsnE2i7UmVIAOr16GAy86lckcZrVohzSgJX7+A33IezG8QA pUtOqjTKJ7Fljb6/TwItbRGIkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGZLWj9 q65OjS3T0sgTHH1H9RpIMB8GA1UdIwQYMBaAFIfoDA5GMxCp0wOM4BPPGFN0pcci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTI0Qi85MjQwNkEwNkJF QTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVLblRBNHpnRTg4WVUzU2x4 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gtZ01Ea1l6RUtuVEE0emdFODhZVTNTbHh5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTI0Qi85MjQwNkEwNkJFQTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVL blRBNHpnRTg4WVUzU2x4eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxw7BWtcg4JklmpN2eKpIv5WVqH0e2yWiGfTnoobMa+RezNPai4TEB E011rG2q/+rGH4EJgxRKlXdYGG33qc+FUDTk82qSoo9ZNlKTgj+caCGVPBuvkn4d sGSI9Eko65MvDU1oVmsC58MM07jWqeEwPHuBeieg61wjzcQqLJVxDqwZfMaqumwG 3JiRy1yGLlQekUsYvcZKpV+GOKAHOHID7wOrSyiLD8mpjWYuoD77RNKjLfDbYMfP UISzM++azymMELQ5Ng3BHiY3YSvkgJb79gRY7OdEVn75V875F3XaP8IbcyegvErj gEHAlSTnimoyrTe73bRZVtW/adulHqVH -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:40 2025 by rpki-client