This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: wQ46zFc4jw1BpRlklp+D3bMigLc/2EZIcxLPsPjreDI= Subject key identifier: 72:D1:90:C1:08:5A:5C:DB:D5:09:81:95:73:5B:F3:A8:17:E5:0F:1D Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 0197 Signing time: Wed 10 Dec 2025 22:02:47 +0000 Manifest this update: Wed 10 Dec 2025 22:02:46 +0000 Manifest next update: Wed 17 Dec 2025 22:02:46 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: p6OPTahfaNgY5ARA3uV35nMHnF+JyO5RaXjASLKrBmk=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: DiLiUTq4svYLUGh7Zlk/IkFGkuorqIquvoUuPTfglVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 22:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Dec 10 22:02:46 2025 GMT Not After : Dec 17 22:02:46 2025 GMT Subject: CN=6939ee06-39e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a4:aa:4b:d8:9b:21:5e:2c:a0:4e:3f:a3:0c: d4:e2:c8:72:b7:a3:7d:99:ad:8b:d5:38:e0:66:0b: da:d4:02:97:a6:2b:3e:4e:23:9b:64:df:8a:71:56: 41:7e:31:db:af:1f:f2:d5:e9:cb:b2:0f:72:8f:58: e4:d3:83:2e:1d:c6:24:d3:e6:25:69:e9:2d:84:bb: ef:e0:6b:00:41:5e:d6:1a:b3:0e:79:fd:ca:d7:79: 85:0e:ac:4c:38:92:71:5d:36:10:da:f3:a9:46:ab: 8e:ab:85:b4:d1:e8:74:4b:26:cd:a5:70:3f:ca:b8: 21:af:66:c2:80:5e:2c:50:c0:92:dc:82:25:42:12: eb:e2:85:ab:d4:ef:fe:61:e4:d6:cf:a8:52:cb:69: 81:67:a9:33:27:73:ba:6d:76:26:a6:d7:e1:a3:59: 1b:de:d7:9f:51:94:8d:5a:a7:35:66:ef:8f:95:3c: a2:60:9f:73:38:d3:63:62:e6:93:24:0f:88:fb:5d: 68:dc:99:a4:4d:85:7a:01:d0:c4:ef:55:59:1c:bc: ac:be:a0:d9:06:bf:d4:40:4c:c8:1d:a2:6d:55:4a: f4:26:f6:9f:c6:f0:d6:23:96:1c:a5:53:73:42:26: 36:5e:ed:58:e8:54:1c:7d:80:4d:1e:93:76:c5:df: 1f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:D1:90:C1:08:5A:5C:DB:D5:09:81:95:73:5B:F3:A8:17:E5:0F:1D X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:b3:a2:46:48:61:c5:c4:23:a4:75:1b:2c:7f:e1:43:8d:43: 00:7d:44:34:ab:bb:23:6d:01:de:ee:2e:f2:0a:53:40:f3:9a: 15:96:7d:a2:8c:a8:a0:55:1b:06:7d:70:88:eb:c8:ff:b3:0b: df:82:53:2c:3b:d0:eb:96:9b:48:81:55:90:36:7c:2f:0a:58: 52:ff:54:18:58:f9:78:cc:63:41:04:fd:ed:d9:bb:e1:04:a4: 3e:3a:c5:73:de:69:95:d6:ee:94:7c:ad:f9:fe:b1:2a:aa:10: 95:0c:d9:5e:99:39:e9:67:4a:81:3e:0d:7c:f2:ec:a0:c9:61: 32:54:f3:4b:e1:eb:e0:00:6f:fe:c5:64:20:f7:bf:5c:df:3b: d1:b5:1d:2c:11:fa:56:89:5e:a3:23:d4:07:54:30:7f:50:9c: 0c:55:04:73:25:f7:08:77:57:1d:f9:e7:5b:ec:99:41:83:5e: 50:d3:31:b1:a6:e9:e2:ac:72:8d:5f:3b:55:39:14:3b:75:52: fc:d6:f8:ce:3b:a2:e5:c5:58:63:8e:b3:dc:bc:10:de:95:27: 66:d3:c7:3c:dd:ed:f4:46:b6:ca:f3:75:79:4a:e4:bf:47:62: 25:d1:3d:b7:ba:9b:6c:89:0a:00:dc:a7:3b:1e:d1:ef:ad:52: 57:81:57:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUxMjEwMjIwMjQ2WhcNMjUxMjE3MjIwMjQ2WjAYMRYwFAYD VQQDEw02OTM5ZWUwNi0zOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6SqS9ibIV4soE4/owzU4shyt6N9ma2L1TjgZgva1AKXpis+TiObZN+KcVZB fjHbrx/y1enLsg9yj1jk04MuHcYk0+YlaekthLvv4GsAQV7WGrMOef3K13mFDqxM OJJxXTYQ2vOpRquOq4W00eh0SybNpXA/yrghr2bCgF4sUMCS3IIlQhLr4oWr1O/+ YeTWz6hSy2mBZ6kzJ3O6bXYmptfho1kb3tefUZSNWqc1Zu+PlTyiYJ9zONNjYuaT JA+I+11o3JmkTYV6AdDE71VZHLysvqDZBr/UQEzIHaJtVUr0JvafxvDWI5YcpVNz QiY2Xu1Y6FQcfYBNHpN2xd8fJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLRkMEI Wlzb1QmBlXNb86gX5Q8dMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXs6JGSGHFxCOkdRssf+FDjUMAfUQ0q7sjbQHe7i7yClNA85oVln2i jKigVRsGfXCI68j/swvfglMsO9DrlptIgVWQNnwvClhS/1QYWPl4zGNBBP3t2bvh BKQ+OsVz3mmV1u6UfK35/rEqqhCVDNlemTnpZ0qBPg188uygyWEyVPNL4evgAG/+ xWQg979c3zvRtR0sEfpWiV6jI9QHVDB/UJwMVQRzJfcId1cd+edb7JlBg15Q0zGx punirHKNXztVORQ7dVL81vjOO6LlxVhjjrPcvBDelSdm08c83e30RrbK83V5SuS/ R2Il0T23uptsiQoA3Kc7HtHvrVJXgVeN -----END CERTIFICATE-----Generated at Thu Dec 11 21:11:51 2025 by rpki-client