This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: 1vXyyRGirxqjvpo6JNw9uLe6j+JhhsPkxCaIkQwsIhA= Subject key identifier: E9:40:90:6E:25:E4:0A:E5:8D:09:42:5F:D9:08:D7:8A:65:BD:A1:8C Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0C29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0C22 Signing time: Wed 24 Dec 2025 18:22:01 +0000 Manifest this update: Wed 24 Dec 2025 18:22:00 +0000 Manifest next update: Wed 31 Dec 2025 18:22:00 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: xFB+IhUC0mg0dicCcfPXXrLdnNRItNuVvBppGt1zgdE=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: GOn5I83uJZSyXlxS2nqYANbi3ziYR8hFxpWIpKnwdbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3113 (0xc29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Dec 24 18:22:00 2025 GMT Not After : Dec 31 18:22:00 2025 GMT Subject: CN=694c2f49-1a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e9:d4:b8:ef:33:ce:50:13:e9:74:98:5b:fc: c2:da:e8:b1:26:34:68:5c:67:5f:5d:bf:07:93:50: 58:7e:dd:97:2f:a6:7c:03:8f:1b:f9:9d:0f:d8:0a: b9:0d:9f:6c:eb:52:30:68:b4:81:9a:a2:c9:93:a3: 15:dd:79:35:cf:b2:2b:26:ea:5b:8a:67:6d:65:12: 17:5a:36:61:7e:d0:ee:88:5d:e5:48:29:7d:b3:c0: 5a:04:23:f5:a3:1b:01:ac:ad:27:19:3b:7e:43:a9: 09:89:27:97:d3:75:f7:6a:37:80:92:19:66:8f:73: 49:49:be:34:d6:02:04:10:46:75:6a:e0:44:a6:42: da:96:dd:32:f8:b9:c5:62:bf:16:33:d3:91:ed:1e: 98:ce:9f:7c:bc:a1:94:91:bd:46:fd:c3:80:b8:3d: a6:1a:77:fc:a0:2c:82:79:b3:4a:d2:ce:f1:db:6f: 18:30:52:11:90:d6:3d:5e:72:a1:45:76:a9:02:81: f7:e7:99:d8:cc:6f:50:d2:21:09:20:4a:e9:53:5d: f5:ef:4b:67:de:99:75:1f:ec:c0:7f:5c:ab:71:01: a8:80:8e:db:37:11:70:86:f3:70:48:73:8a:a4:43: 8a:af:b6:e9:a4:a0:e1:86:cb:d6:16:21:b7:16:e3: 36:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:40:90:6E:25:E4:0A:E5:8D:09:42:5F:D9:08:D7:8A:65:BD:A1:8C X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:83:97:29:5c:08:a9:ae:d9:ba:e1:03:d8:2a:16:80:f8:74: ea:4f:9c:f1:7e:17:65:ea:77:6f:e1:f0:82:d7:44:58:17:6a: 15:9f:c7:45:9b:31:a4:af:1d:9e:fd:ad:bd:f1:53:8f:65:e4: 80:45:a1:9a:9c:9b:7b:d2:c0:66:e1:ae:a3:92:1f:04:47:06: 0f:62:93:b3:12:44:6e:23:4b:c0:2f:f1:5b:7b:15:70:7c:d2: 53:b7:41:3f:1a:05:8d:05:bd:37:10:bb:8d:5a:47:6b:65:55: af:fa:cf:12:c5:de:e1:46:1c:c5:86:1f:28:c8:e3:15:90:a3: 56:17:6e:f5:3e:50:99:97:b3:98:ff:1d:cf:3b:29:b9:67:52: ce:3e:11:f3:86:71:27:59:9d:d4:2b:29:8d:32:6d:a4:77:c7: 9a:ed:89:9d:99:5e:0b:99:e0:24:5c:d2:9f:39:ec:89:a3:d2: 8b:e2:13:5b:8d:fe:9b:bc:18:7c:1e:2f:bb:07:bf:fb:08:11: 61:2b:c9:42:2f:97:6b:1e:f9:9d:8a:f5:bd:83:f4:11:f5:b0: 13:77:35:5e:c7:b4:e9:91:b7:49:43:97:42:d6:9f:4d:8b:a8: 41:2b:e7:90:b8:a5:e3:ec:de:a6:eb:d7:c6:bf:5a:b4:03:e7: 5d:6a:b0:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjUxMjI0MTgyMjAwWhcNMjUxMjMxMTgyMjAwWjAYMRYwFAYD VQQDDA02OTRjMmY0OS0xYTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+nUuO8zzlAT6XSYW/zC2uixJjRoXGdfXb8Hk1BYft2XL6Z8A48b+Z0P2Aq5 DZ9s61IwaLSBmqLJk6MV3Xk1z7IrJupbimdtZRIXWjZhftDuiF3lSCl9s8BaBCP1 oxsBrK0nGTt+Q6kJiSeX03X3ajeAkhlmj3NJSb401gIEEEZ1auBEpkLalt0y+LnF Yr8WM9OR7R6Yzp98vKGUkb1G/cOAuD2mGnf8oCyCebNK0s7x228YMFIRkNY9XnKh RXapAoH355nYzG9Q0iEJIErpU13170tn3pl1H+zAf1yrcQGogI7bNxFwhvNwSHOK pEOKr7bppKDhhsvWFiG3FuM22QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlAkG4l 5ArljQlCX9kI14plvaGMMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYg5cpXAiprtm64QPYKhaA+HTqT5zxfhdl6ndv4fCC10RYF2oVn8dF mzGkrx2e/a298VOPZeSARaGanJt70sBm4a6jkh8ERwYPYpOzEkRuI0vAL/FbexVw fNJTt0E/GgWNBb03ELuNWkdrZVWv+s8Sxd7hRhzFhh8oyOMVkKNWF271PlCZl7OY /x3POym5Z1LOPhHzhnEnWZ3UKymNMm2kd8ea7YmdmV4LmeAkXNKfOeyJo9KL4hNb jf6bvBh8Hi+7B7/7CBFhK8lCL5drHvmdivW9g/QR9bATdzVex7TpkbdJQ5dC1p9N i6hBK+eQuKXj7N6m69fGv1q0A+ddarCa -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:12 2025 by rpki-client