This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: tJvSJv5JOM12UH468v0RSmJD+c9IMLM2+2HvjnZLHzo= Subject key identifier: 7B:E5:A1:C3:F8:95:B8:FB:7E:E1:4F:EC:3D:A2:8E:CE:AE:05:D1:C8 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 0140 Signing time: Tue 23 Dec 2025 03:22:12 +0000 Manifest this update: Tue 23 Dec 2025 03:22:12 +0000 Manifest next update: Tue 30 Dec 2025 03:22:12 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: CRfapRSSlZoSeLv4vl1ApGEvrMNfPGFLLnI27Y0djSE=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:22:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Dec 23 03:22:12 2025 GMT Not After : Dec 30 03:22:12 2025 GMT Subject: CN=694a0ae4-5171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:45:6b:ae:a6:d6:f5:13:21:9c:f3:b5:63:dd: 80:17:99:9b:5b:d1:6a:f6:4f:54:bf:a7:7b:2f:30: ac:eb:85:39:b8:0b:e9:02:cb:10:58:f5:fb:c9:30: 80:c9:f2:f2:57:1a:f3:c8:ae:5c:85:da:eb:9d:0a: b2:78:a9:74:f5:d3:b6:79:7d:98:8c:9c:a6:68:f4: 88:60:73:5a:c1:5c:44:8e:af:c2:ad:d5:cb:23:42: b7:89:af:ed:48:2c:84:00:af:10:e8:ea:db:48:7e: f7:95:dc:9d:c5:4f:33:9c:f1:c3:2e:47:50:a5:2b: 47:86:8d:6a:2d:b8:a1:ca:89:e0:ab:0f:db:1c:95: 7c:33:15:fc:0a:23:a9:85:66:f4:fe:44:bc:69:09: 22:e1:c3:a9:42:cf:23:61:fd:65:dc:22:44:5e:45: 90:1c:f2:ba:ea:d7:21:f0:ef:e4:2b:84:9e:79:a2: 53:7b:81:77:57:2c:35:9c:20:e2:65:5c:f4:03:c0: 07:67:98:4e:c6:ce:aa:3d:f7:8c:5d:e6:cd:00:95: 82:4f:64:e2:44:1e:30:38:0e:65:12:cb:3d:3c:5f: 08:29:49:61:49:16:60:7a:fe:f2:c0:6a:77:ed:9b: e6:c6:b9:79:f4:79:29:09:3d:c6:8d:27:e6:76:69: 9f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E5:A1:C3:F8:95:B8:FB:7E:E1:4F:EC:3D:A2:8E:CE:AE:05:D1:C8 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:00:62:62:99:bf:75:bc:62:31:fd:b2:a7:f5:c4:da:68:07: e6:08:b3:4f:74:b8:77:aa:2a:5e:ae:47:9e:79:f0:cb:bf:a4: 34:15:8d:b6:4f:f3:1e:1a:9c:ac:0f:6f:00:ea:27:b7:0f:e0: 5d:62:71:c3:47:ed:c4:39:98:26:33:0e:4a:a3:46:2b:3f:44: 8d:df:02:2a:c8:97:4c:b0:62:d5:59:e9:8c:ae:b5:54:9e:5e: e9:c5:a2:a4:00:08:1a:17:61:83:1c:09:56:72:6f:e6:68:ce: f5:ee:be:60:8d:c5:8e:a8:a7:d1:bd:67:d2:3b:fb:d8:b2:6b: e8:e7:2e:b9:62:a5:d1:13:2a:16:8f:91:c2:7f:66:45:4f:41: 37:e9:8e:3f:50:2d:10:17:4d:f5:ae:e3:02:c6:fb:c0:b2:71: 99:31:a6:24:14:1a:86:03:59:09:e5:32:65:ef:11:81:b7:b2: 61:90:9d:f4:0b:70:66:db:8b:4a:cb:5f:ab:fd:1e:39:21:ec: f1:b5:ae:8b:37:27:0e:a6:56:50:8c:1d:9b:98:29:ad:45:ee: 2f:13:aa:a7:ba:f5:ba:c3:99:61:87:ee:1e:a8:43:a6:83:4b: 15:08:29:39:2b:23:08:bb:d2:29:35:7b:d5:33:75:0b:47:64: 9e:af:2f:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUxMjIzMDMyMjEyWhcNMjUxMjMwMDMyMjEyWjAYMRYwFAYD VQQDDA02OTRhMGFlNC01MTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmkVrrqbW9RMhnPO1Y92AF5mbW9Fq9k9Uv6d7LzCs64U5uAvpAssQWPX7yTCA yfLyVxrzyK5chdrrnQqyeKl09dO2eX2YjJymaPSIYHNawVxEjq/CrdXLI0K3ia/t SCyEAK8Q6OrbSH73ldydxU8znPHDLkdQpStHho1qLbihyongqw/bHJV8MxX8CiOp hWb0/kS8aQki4cOpQs8jYf1l3CJEXkWQHPK66tch8O/kK4SeeaJTe4F3Vyw1nCDi ZVz0A8AHZ5hOxs6qPfeMXebNAJWCT2TiRB4wOA5lEss9PF8IKUlhSRZgev7ywGp3 7Zvmxrl59HkpCT3GjSfmdmmfqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvlocP4 lbj7fuFP7D2ijs6uBdHIMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAAGJimb91vGIx/bKn9cTaaAfmCLNPdLh3qiperkeeefDLv6Q0FY22 T/MeGpysD28A6ie3D+BdYnHDR+3EOZgmMw5Ko0YrP0SN3wIqyJdMsGLVWemMrrVU nl7pxaKkAAgaF2GDHAlWcm/maM717r5gjcWOqKfRvWfSO/vYsmvo5y65YqXREyoW j5HCf2ZFT0E36Y4/UC0QF031ruMCxvvAsnGZMaYkFBqGA1kJ5TJl7xGBt7JhkJ30 C3Bm24tKy1+r/R45Iezxta6LNycOplZQjB2bmCmtRe4vE6qnuvW6w5lhh+4eqEOm g0sVCCk5KyMIu9IpNXvVM3ULR2Sery98 -----END CERTIFICATE-----Generated at Tue Dec 23 18:18:40 2025 by rpki-client