This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: G+ByiVvYzvY7l7cOh/YtXPpFLCM1/9zFKCqFRTm1kLs= Subject key identifier: 39:53:22:85:C0:FA:8F:1C:1B:18:25:2E:E8:7F:B7:C8:0A:F8:E3:AF Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 1372 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 1361 Signing time: Thu 18 Dec 2025 16:52:03 +0000 Manifest this update: Thu 18 Dec 2025 16:52:02 +0000 Manifest next update: Thu 25 Dec 2025 16:52:02 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: zNp5JakF0hdAMqQ0gGr8teKzqYkU0rOFu5SWTzKd9Ac=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: 2Gji4G+Q8to0sVMvyUq5wjYv71c4JLksDjj2P3IW/B4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:52:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4978 (0x1372) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Dec 18 16:52:02 2025 GMT Not After : Dec 25 16:52:02 2025 GMT Subject: CN=69443133-6e49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:9d:ad:bd:51:2b:dc:cf:70:12:02:f8:31:04: 29:f0:af:77:d5:ca:ad:80:2f:e2:02:90:b0:e5:48: 32:fe:99:9f:76:b5:fb:80:a3:7d:bd:a8:50:a2:82: 13:9d:16:a4:d9:c9:8e:1f:ef:7a:b9:89:b4:cb:c2: 6f:11:ee:48:98:7b:d0:2d:61:70:2b:30:a2:22:4f: 51:bd:d6:a5:f6:61:d3:34:69:e4:ea:a7:2c:54:a6: 60:69:36:d7:48:e7:06:4d:b7:75:5f:63:f7:e9:b8: 66:fd:13:28:d0:41:31:28:9e:8b:7e:fc:69:35:dc: e4:1c:d4:6e:b5:7e:18:1c:15:66:21:7c:c7:e5:90: a3:7e:9f:3b:b9:10:f0:bd:f5:28:ac:b1:08:6f:5b: 45:53:3c:4d:15:55:4e:13:c7:aa:c0:4d:5c:fb:7c: 3f:a0:43:ed:b9:9f:da:43:bc:6f:c4:5a:fd:b0:84: 0b:f0:3d:f3:6f:8e:fe:b6:3a:b3:a8:ba:30:2f:f5: ab:6b:a7:0a:1c:62:49:13:89:9b:15:b9:b9:2d:94: 0b:27:fd:e4:c3:61:a0:aa:12:5f:cf:45:29:cf:7f: a6:2d:53:46:7c:b4:ae:37:2c:b6:84:9a:02:19:64: ce:65:63:48:45:e3:a4:ce:4d:6a:04:1f:c8:f7:00: 54:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:53:22:85:C0:FA:8F:1C:1B:18:25:2E:E8:7F:B7:C8:0A:F8:E3:AF X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:9a:5c:cb:b8:ad:91:e8:e7:7b:fd:54:28:9c:71:9c:7a:7d: df:61:8e:7c:26:30:ea:d8:ef:70:f7:e0:e3:93:14:a1:0b:06: 53:da:2c:41:a8:77:45:1a:0b:16:14:c3:f0:af:b7:7d:15:97: 73:76:32:01:e0:b8:6c:74:aa:6a:5b:17:e1:21:ae:8d:1c:d5: 70:0c:11:d0:ac:ff:01:29:9f:f0:1e:ab:a7:bb:90:c4:f3:5d: 36:5f:0e:41:c5:85:42:71:11:fc:ec:fd:02:e9:58:6f:9c:80: 67:5d:71:19:81:d5:f4:d7:26:a8:33:8c:2e:57:be:11:80:7d: 98:94:2b:eb:1f:f0:a0:ad:71:c8:3b:ae:6e:c2:65:30:28:27: 57:18:0c:ef:c2:8e:0a:ae:64:ee:1c:ab:51:f4:f9:16:7e:01: 12:34:d2:c6:29:17:e6:4a:2e:38:b5:dc:4a:9e:54:70:49:48: 5d:80:1b:8c:9f:c9:57:95:26:2a:6b:76:18:c8:44:f4:b6:25: f7:f3:34:32:b0:8b:25:8e:f5:52:0d:ab:55:8c:f6:d1:00:da: 66:f4:90:46:05:8e:b4:be:5f:61:43:a9:f6:76:e5:b2:32:ca: e3:67:76:3d:3a:d1:34:da:2f:24:08:cc:1e:f4:60:cb:9b:93: 0b:15:88:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUxMjE4MTY1MjAyWhcNMjUxMjI1MTY1MjAyWjAYMRYwFAYD VQQDDA02OTQ0MzEzMy02ZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlZ2tvVEr3M9wEgL4MQQp8K931cqtgC/iApCw5Ugy/pmfdrX7gKN9vahQooIT nRak2cmOH+96uYm0y8JvEe5ImHvQLWFwKzCiIk9Rvdal9mHTNGnk6qcsVKZgaTbX SOcGTbd1X2P36bhm/RMo0EExKJ6LfvxpNdzkHNRutX4YHBVmIXzH5ZCjfp87uRDw vfUorLEIb1tFUzxNFVVOE8eqwE1c+3w/oEPtuZ/aQ7xvxFr9sIQL8D3zb47+tjqz qLowL/Wra6cKHGJJE4mbFbm5LZQLJ/3kw2GgqhJfz0Upz3+mLVNGfLSuNyy2hJoC GWTOZWNIReOkzk1qBB/I9wBUIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlTIoXA +o8cGxglLuh/t8gK+OOvMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlmlzLuK2R6Od7/VQonHGcen3fYY58JjDq2O9w9+DjkxShCwZT2ixB qHdFGgsWFMPwr7d9FZdzdjIB4LhsdKpqWxfhIa6NHNVwDBHQrP8BKZ/wHqunu5DE 8102Xw5BxYVCcRH87P0C6VhvnIBnXXEZgdX01yaoM4wuV74RgH2YlCvrH/CgrXHI O65uwmUwKCdXGAzvwo4KrmTuHKtR9PkWfgESNNLGKRfmSi44tdxKnlRwSUhdgBuM n8lXlSYqa3YYyET0tiX38zQysIsljvVSDatVjPbRANpm9JBGBY60vl9hQ6n2duWy MsrjZ3Y9OtE02i8kCMwe9GDLm5MLFYjZ -----END CERTIFICATE-----Generated at Fri Dec 19 18:49:59 2025 by rpki-client