This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: BysQwmr9aVPEbWL8m7ZPJL0UnXneas6yulyiQ0WMquY= Subject key identifier: 51:A9:7E:63:89:AE:68:30:96:7E:DA:D7:23:27:E9:47:4A:15:D2:CE Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 0199 Signing time: Wed 10 Dec 2025 18:19:09 +0000 Manifest this update: Wed 10 Dec 2025 18:19:08 +0000 Manifest next update: Wed 17 Dec 2025 18:19:08 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: nWLh2UIVN2GM8S64dY7v1+DQjkhaq9Uy0d+vPUezYNc=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 18:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Dec 10 18:19:08 2025 GMT Not After : Dec 17 18:19:08 2025 GMT Subject: CN=6939b99d-bf60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:f5:83:0b:17:5a:0b:59:a7:9a:20:c0:28:22: a0:8d:d7:96:77:f1:fe:9b:68:a8:15:3c:f4:e0:ae: 87:fa:8d:4e:2a:0e:8a:4f:8d:61:0e:71:53:0c:6b: 0b:a5:c3:20:34:a9:9f:fd:99:13:04:25:5c:46:05: 8e:b7:0c:c7:19:5e:18:b8:90:70:55:30:c1:c6:46: a7:94:03:e4:10:ee:f3:f3:dd:cf:e1:71:df:af:2f: 63:40:42:d0:a3:44:5e:ee:de:ee:1f:38:b7:8a:2c: b4:98:9c:43:94:42:3b:45:9c:57:b1:b3:f6:54:c5: 35:df:54:c6:03:89:04:87:0c:3e:43:6d:f5:84:ac: e5:7c:97:dd:7b:d0:13:24:36:ad:6d:77:ad:2e:42: ef:1e:c0:9f:17:d3:f8:ad:56:4e:ea:d5:b2:07:48: 15:a5:ca:83:e4:ef:55:6e:cc:ce:ca:4b:28:b0:52: cb:e4:4b:d3:01:b5:99:58:85:3f:39:ae:c8:78:bd: 78:50:66:4a:39:58:12:4a:04:5c:dd:a2:c6:22:cb: 5c:c4:26:15:f5:09:a8:ff:96:09:82:b8:4b:38:0e: ab:69:d6:00:e7:e1:bb:6d:19:fd:91:6c:2b:03:f1: 88:5f:d9:f6:a0:fc:7c:38:20:b6:a8:02:78:fb:23: e1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A9:7E:63:89:AE:68:30:96:7E:DA:D7:23:27:E9:47:4A:15:D2:CE X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:f0:c7:c0:ee:7c:f4:57:08:92:0b:f8:2c:77:64:3d:d2:fa: 79:ff:f2:b5:a5:b6:93:79:d2:16:17:35:b2:c0:cf:89:28:f4: a2:14:df:23:b5:4b:0f:d8:b5:54:28:16:8d:45:43:c4:1d:ec: ce:ae:d8:ee:00:56:6f:b7:43:ac:ef:b8:68:b6:54:ad:be:8d: b5:c5:b2:97:35:51:6e:73:6d:cd:64:6b:78:f4:f0:f5:c6:03: 4f:31:e9:78:f5:9b:d2:3c:01:ee:78:43:05:bb:75:21:dd:93: 6c:67:ff:21:47:31:4d:85:32:dc:e2:2f:13:a6:53:b2:ee:66: 3e:9d:a1:a5:dc:1d:c0:e1:dc:c1:08:b0:c9:df:0c:28:68:d9: 5e:4c:ed:ac:b2:a0:95:23:e8:17:4e:5d:b4:d5:fb:19:f3:3f: 67:b9:41:3a:47:34:f0:15:95:f4:96:d2:c8:10:c4:29:6d:d9: 8b:8a:fb:34:46:41:cf:a5:85:01:c6:ea:27:2e:9b:18:b0:02: 17:34:e2:18:01:e7:da:54:cf:44:b6:bf:58:58:9b:45:98:75: c0:32:58:10:06:87:13:e6:89:1c:58:d1:aa:90:5e:70:ff:0c: 6c:b3:fb:6b:bc:1d:a0:23:8a:be:d5:57:8d:80:f3:b6:90:f5: ef:0a:46:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUxMjEwMTgxOTA4WhcNMjUxMjE3MTgxOTA4WjAYMRYwFAYD VQQDEw02OTM5Yjk5ZC1iZjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7vWDCxdaC1mnmiDAKCKgjdeWd/H+m2ioFTz04K6H+o1OKg6KT41hDnFTDGsL pcMgNKmf/ZkTBCVcRgWOtwzHGV4YuJBwVTDBxkanlAPkEO7z893P4XHfry9jQELQ o0Re7t7uHzi3iiy0mJxDlEI7RZxXsbP2VMU131TGA4kEhww+Q231hKzlfJfde9AT JDatbXetLkLvHsCfF9P4rVZO6tWyB0gVpcqD5O9VbszOyksosFLL5EvTAbWZWIU/ Oa7IeL14UGZKOVgSSgRc3aLGIstcxCYV9Qmo/5YJgrhLOA6radYA5+G7bRn9kWwr A/GIX9n2oPx8OCC2qAJ4+yPhOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGpfmOJ rmgwln7a1yMn6UdKFdLOMB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy8MfA7nz0VwiSC/gsd2Q90vp5//K1pbaTedIWFzWywM+JKPSiFN8j tUsP2LVUKBaNRUPEHezOrtjuAFZvt0Os77hotlStvo21xbKXNVFuc23NZGt49PD1 xgNPMel49ZvSPAHueEMFu3Uh3ZNsZ/8hRzFNhTLc4i8TplOy7mY+naGl3B3A4dzB CLDJ3wwoaNleTO2ssqCVI+gXTl201fsZ8z9nuUE6RzTwFZX0ltLIEMQpbdmLivs0 RkHPpYUBxuonLpsYsAIXNOIYAefaVM9Etr9YWJtFmHXAMlgQBocT5okcWNGqkF5w /wxss/trvB2gI4q+1VeNgPO2kPXvCkay -----END CERTIFICATE-----Generated at Thu Dec 11 19:03:44 2025 by rpki-client