This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft File: h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft (raw, json) Hash identifier: 10xLfvGjvFEQNMXxiMAZjexzOHMeXvHjgZnKYp96XTc= Subject key identifier: D2:35:A8:3D:03:6C:76:A0:0E:BD:2B:1D:2C:76:F6:5F:01:47:C3:70 Authority key identifier: 87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B Certificate issuer: /CN=A918A35C/serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Certificate serial: 0C08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft Manifest number: 0C01 Signing time: Mon 22 Dec 2025 18:22:09 +0000 Manifest this update: Mon 22 Dec 2025 18:22:08 +0000 Manifest next update: Mon 29 Dec 2025 18:22:08 +0000 Files and hashes: 1: h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl (hash: GD7B675CkPeOhyVo/7Dv/KtZyBTBGAMN0VR9WXErz8M=) 2: 0D22F748261A11EA83CE8D17C4F9AE02.roa (hash: dTqPYAZ0fYSqCYvtzmzk6vV87y7uZ4+mAQSsb1JNqeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3080 (0xc08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A35C, serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Validity Not Before: Dec 22 18:22:08 2025 GMT Not After : Dec 29 18:22:08 2025 GMT Subject: CN=69498c51-2280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7d:22:6f:45:33:4c:67:66:89:c4:5b:fb:c5: 6f:20:e9:1c:81:ba:0f:19:7b:da:bc:3b:d2:a6:f5: 9f:3a:4a:9c:e8:df:47:d2:b3:56:dd:b7:9b:80:fe: e9:ee:f8:f6:3c:a2:44:76:97:06:bf:f7:f8:9d:ee: 7d:8f:9d:13:0f:6c:00:ac:c5:f6:36:36:48:e9:7e: eb:9c:0a:16:65:98:eb:d8:9e:ae:5d:31:dd:fa:fc: 88:44:ac:4f:cf:ae:d3:cc:c8:22:b8:fd:e6:84:3d: 85:73:6e:d7:04:8d:66:e9:58:56:70:44:e7:77:45: c4:58:73:6d:47:7f:95:7a:68:18:cd:e2:ba:67:5f: ed:c3:c2:4b:b6:3f:04:ac:f4:50:3e:7e:82:fb:96: 55:ae:7f:b2:fd:4c:5f:10:cc:17:1b:be:f6:a0:10: 70:f1:91:da:d4:7a:56:2a:40:5c:d2:c2:7f:8e:1a: 2f:0c:e7:a3:8e:bc:67:be:90:6c:50:3d:d9:ee:53: 6e:67:4c:4e:40:ff:80:85:11:11:e2:60:cf:30:99: c1:d9:fc:c6:7f:0b:9b:b7:83:97:d9:60:39:50:4a: c6:a5:cb:2e:97:b5:c5:64:5a:7a:33:a1:71:f7:2d: de:2e:59:33:ef:5a:b2:5e:52:af:18:f3:5c:a0:df: 93:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:35:A8:3D:03:6C:76:A0:0E:BD:2B:1D:2C:76:F6:5F:01:47:C3:70 X509v3 Authority Key Identifier: keyid:87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:89:ec:9d:e4:08:fa:5e:02:67:d2:89:bc:f9:9b:cf:34:27: a7:c1:72:1c:db:81:b0:25:4d:92:f4:70:ce:4c:39:30:ac:69: 0d:6e:16:df:b9:60:76:c6:88:4b:a4:8a:10:e0:a3:c6:6f:24: cc:2d:27:8e:b9:c6:f1:bd:9e:f7:dc:c9:e4:4e:80:75:43:42: 8b:9d:99:3b:91:e1:13:06:c7:65:27:b3:98:fa:b1:73:ce:da: 07:f9:af:0d:2b:bb:2c:d9:df:ba:d6:92:2e:b0:a4:06:c6:07: f6:0b:90:6d:a6:6a:d4:05:0b:86:69:92:a6:df:b1:79:99:01: 7b:9b:e3:74:38:fe:b7:a5:33:95:ab:c7:6e:64:fe:8c:24:ca: 33:c9:44:68:72:f0:f3:64:38:98:89:40:f9:90:6d:2f:7b:c7: 26:c9:5d:d7:06:f2:51:a1:ac:ea:cd:03:2f:fd:4c:89:a8:34: 5a:df:7d:20:15:3f:b0:9e:a6:8d:c2:5e:87:0b:9c:09:65:c0: 15:86:3d:ab:15:da:be:24:4c:16:36:84:95:08:fc:cd:75:1d: 20:85:3d:ab:f1:55:5b:9a:8c:85:e6:48:40:d4:9d:8e:8f:79: 62:8c:8d:0c:71:e6:fe:fe:61:ba:a5:5c:be:78:3a:c8:f5:5f: bd:a7:7b:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzNUMxMTAvBgNVBAUTKDg3OEI4Njg2OTVGQzQ1QzlDNjNCNkZCQzU0Q0NCMzUw OUM0QjlGNEIwHhcNMjUxMjIyMTgyMjA4WhcNMjUxMjI5MTgyMjA4WjAYMRYwFAYD VQQDDA02OTQ5OGM1MS0yMjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs30ib0UzTGdmicRb+8VvIOkcgboPGXvavDvSpvWfOkqc6N9H0rNW3bebgP7p 7vj2PKJEdpcGv/f4ne59j50TD2wArMX2NjZI6X7rnAoWZZjr2J6uXTHd+vyIRKxP z67TzMgiuP3mhD2Fc27XBI1m6VhWcETnd0XEWHNtR3+VemgYzeK6Z1/tw8JLtj8E rPRQPn6C+5ZVrn+y/UxfEMwXG772oBBw8ZHa1HpWKkBc0sJ/jhovDOejjrxnvpBs UD3Z7lNuZ0xOQP+AhRER4mDPMJnB2fzGfwubt4OX2WA5UErGpcsul7XFZFp6M6Fx 9y3eLlkz71qyXlKvGPNcoN+T8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNI1qD0D bHagDr0rHSx29l8BR8NwMB8GA1UdIwQYMBaAFIeLhoaV/EXJxjtvvFTMs1CcS59L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTM1Qy81MkZDNkI5ODI2 MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJjbkdPMi04Vk15elVKeExu MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g0dUdocFg4UmNuR08yLThWTXl6VUp4TG4wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTM1Qy81MkZDNkI5ODI2MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJj bkdPMi04Vk15elVKeExuMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIieyd5Aj6XgJn0om8+ZvPNCenwXIc24GwJU2S9HDOTDkwrGkNbhbf uWB2xohLpIoQ4KPGbyTMLSeOucbxvZ733MnkToB1Q0KLnZk7keETBsdlJ7OY+rFz ztoH+a8NK7ss2d+61pIusKQGxgf2C5BtpmrUBQuGaZKm37F5mQF7m+N0OP63pTOV q8duZP6MJMozyURocvDzZDiYiUD5kG0ve8cmyV3XBvJRoazqzQMv/UyJqDRa330g FT+wnqaNwl6HC5wJZcAVhj2rFdq+JEwWNoSVCPzNdR0ghT2r8VVbmoyF5khA1J2O j3lijI0Mceb+/mG6pVy+eDrI9V+9p3vP -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:07 2025 by rpki-client