This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: u4/uhcwBmbN3kjVCCkwnJ81T79WJPHZCCj8xxxwLakM= Subject key identifier: 2E:0E:42:2F:84:5B:56:E7:15:3B:70:CF:D5:77:7C:C3:53:DA:B6:05 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 0136 Signing time: Wed 03 Dec 2025 02:55:52 +0000 Manifest this update: Wed 03 Dec 2025 02:55:51 +0000 Manifest next update: Wed 10 Dec 2025 02:55:51 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: O6fq/OWYEGSxUntkRtC9D5ik3pdtCez3cObhybxG4tA=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 02:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Dec 3 02:55:51 2025 GMT Not After : Dec 10 02:55:51 2025 GMT Subject: CN=692fa6b8-6750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:10:f6:25:2a:64:5a:d2:d1:38:2b:22:a4:2d: a8:58:2f:b8:ce:35:31:fc:ef:5c:39:37:78:6e:1a: 5f:ab:64:85:5a:a3:de:09:49:0c:56:6b:27:05:d5: 32:a5:58:d8:6d:2c:c4:e9:d8:60:71:96:d2:49:7b: c9:8e:76:29:9f:b2:d2:d3:aa:1f:47:37:e0:b7:4a: fc:62:70:ce:16:31:75:b1:48:ca:fe:07:11:31:f5: fd:c0:19:f2:db:5e:88:ca:20:82:44:e4:3b:fa:6d: 40:de:e9:4d:8a:3b:49:6a:3c:e6:4f:a4:f6:74:18: 31:5b:5c:1e:71:d9:3a:48:ad:74:cd:03:21:98:88: 7c:1b:d2:47:57:f7:a8:a0:30:1d:3c:44:42:81:8e: 62:c7:af:e1:fe:8b:5e:69:68:dc:0a:eb:f0:8c:a9: 35:db:28:b8:68:2b:a4:6a:7d:28:41:77:b9:33:97: b9:27:b8:e9:e2:c2:09:2d:43:7d:c1:19:f6:89:e2: 80:7c:3a:1b:a5:51:4e:5e:32:7a:cb:97:89:e0:36: 6c:43:e1:f0:c4:61:95:1f:86:20:a6:99:22:27:2d: bd:bf:38:7c:32:26:27:88:d8:8a:b4:d3:e7:35:29: 39:af:e0:1b:46:c6:9a:cc:49:3c:e1:89:c7:7d:64: 51:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:0E:42:2F:84:5B:56:E7:15:3B:70:CF:D5:77:7C:C3:53:DA:B6:05 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:c1:fc:37:32:2f:ab:8e:58:f7:11:63:89:ef:b7:d0:ba:19: a6:b3:cd:94:b2:88:ef:a5:df:96:a1:c7:ee:e8:e0:90:66:2a: e0:2b:44:7a:8c:e2:11:9f:1b:97:b8:06:38:b6:91:8b:97:82: 29:99:5b:08:3b:db:48:7c:65:90:9b:1e:de:dd:d3:94:e4:0c: 87:73:12:0c:05:38:74:df:68:47:17:c7:74:43:f2:24:49:2d: c8:02:0b:18:27:81:e4:e9:07:c2:1d:22:55:7a:0a:11:57:72: 94:cb:5a:8d:03:81:24:f4:e5:6a:f4:89:2f:e6:58:10:44:f2: 81:ac:ac:42:38:0e:12:23:40:5f:83:55:79:47:0e:6d:ed:ed: 56:3b:8c:82:c4:5c:d0:02:f0:33:41:65:2f:22:8c:ea:47:5d: 93:1f:c0:93:3f:ec:5c:00:bd:7a:ae:98:b8:b5:b3:7a:46:f3: d7:93:15:e0:04:d9:a0:07:56:b9:89:b1:ef:09:1d:07:c9:af: 11:c1:8c:a4:75:6e:d7:97:0d:d1:a4:ba:be:97:56:5f:3c:55: f5:f4:e9:f3:9d:34:c5:3c:3f:59:64:4c:da:05:f3:56:c3:11: 20:b5:d8:31:94:f1:97:95:2a:04:a6:77:68:93:2e:06:9b:45: 6b:24:8e:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUxMjAzMDI1NTUxWhcNMjUxMjEwMDI1NTUxWjAYMRYwFAYD VQQDEw02OTJmYTZiOC02NzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBD2JSpkWtLROCsipC2oWC+4zjUx/O9cOTd4bhpfq2SFWqPeCUkMVmsnBdUy pVjYbSzE6dhgcZbSSXvJjnYpn7LS06ofRzfgt0r8YnDOFjF1sUjK/gcRMfX9wBny 216IyiCCROQ7+m1A3ulNijtJajzmT6T2dBgxW1wecdk6SK10zQMhmIh8G9JHV/eo oDAdPERCgY5ix6/h/oteaWjcCuvwjKk12yi4aCukan0oQXe5M5e5J7jp4sIJLUN9 wRn2ieKAfDobpVFOXjJ6y5eJ4DZsQ+HwxGGVH4YgppkiJy29vzh8MiYniNiKtNPn NSk5r+AbRsaazEk84YnHfWRRQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4OQi+E W1bnFTtwz9V3fMNT2rYFMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGwfw3Mi+rjlj3EWOJ77fQuhmms82Usojvpd+Wocfu6OCQZirgK0R6 jOIRnxuXuAY4tpGLl4IpmVsIO9tIfGWQmx7e3dOU5AyHcxIMBTh032hHF8d0Q/Ik SS3IAgsYJ4Hk6QfCHSJVegoRV3KUy1qNA4Ek9OVq9Ikv5lgQRPKBrKxCOA4SI0Bf g1V5Rw5t7e1WO4yCxFzQAvAzQWUvIozqR12TH8CTP+xcAL16rpi4tbN6RvPXkxXg BNmgB1a5ibHvCR0Hya8RwYykdW7Xlw3RpLq+l1ZfPFX19OnznTTFPD9ZZEzaBfNW wxEgtdgxlPGXlSoEpndoky4Gm0VrJI6n -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:22 2025 by rpki-client