This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft File: AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft (raw, json) Hash identifier: KusKZrqCT8jZkAN6HlIzV1+t/okl0RaMuC683L+tAec= Subject key identifier: 0C:D7:EF:3D:B3:A6:A8:ED:E0:DE:7E:70:0D:1A:8E:78:7A:DA:2B:81 Authority key identifier: 02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 Certificate issuer: /CN=A919188A/serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft Manifest number: 0219 Signing time: Tue 23 Dec 2025 01:13:15 +0000 Manifest this update: Tue 23 Dec 2025 01:13:15 +0000 Manifest next update: Tue 30 Dec 2025 01:13:15 +0000 Files and hashes: 1: AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl (hash: VWeQJFrkBRnrVhEb3EkSxkYVDW7+Y/Wv9+KWD25kIQM=) 2: 12AE9E92AA9711EDAAEB8345C4F9AE02.roa (hash: k3NlozvnlaqSreMbUh2TfHEQDX5Xr4Ukgk/pUkd38rY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919188A, serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Validity Not Before: Dec 23 01:13:15 2025 GMT Not After : Dec 30 01:13:15 2025 GMT Subject: CN=6949ecab-c9f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:10:8e:0e:d2:0e:57:e5:75:36:14:64:8f:b5: 24:32:b6:05:65:86:b5:05:04:77:6c:47:01:de:05: 94:b4:db:49:0f:70:dd:3e:3b:cf:3f:fb:b5:13:5f: 96:b2:5c:80:9a:34:2f:b7:5c:d4:9c:96:bd:a1:d9: 6a:c6:b5:52:70:28:5e:c6:c3:ba:c3:56:fc:74:85: 5f:d1:a5:a7:f9:6b:b9:f9:fd:c2:81:5c:b8:54:8c: 7e:60:55:ad:db:a3:3e:b4:f7:bd:19:28:db:1f:5b: 0f:95:78:e6:e1:c1:07:d4:64:bc:9d:d2:f0:5c:46: e6:93:dd:5b:b5:53:d9:c6:39:90:88:47:65:56:8e: af:ee:a0:e6:e6:2d:fc:4c:67:4c:ca:99:a6:eb:c6: 32:1a:0a:f0:7c:e7:73:b3:01:b9:9a:c2:dc:dc:fe: 1f:fe:93:b2:36:73:e3:15:76:5f:4e:22:84:cb:cc: 70:38:af:1d:85:99:f7:16:de:51:7d:d0:ce:e7:e2: 74:0c:85:e1:d5:a5:46:68:48:be:de:f6:7d:40:79: 3e:8f:3c:bb:08:d4:27:23:77:51:d2:8b:3e:e5:92: 40:c7:8a:88:fe:ea:3f:f3:30:d5:4b:71:e5:ac:26: 6b:d3:5d:9f:aa:12:0e:1f:42:59:66:a3:a0:70:5b: 21:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D7:EF:3D:B3:A6:A8:ED:E0:DE:7E:70:0D:1A:8E:78:7A:DA:2B:81 X509v3 Authority Key Identifier: keyid:02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:87:08:bb:98:80:89:31:07:f5:93:70:6c:74:b0:bd:95:38: 2e:66:e2:94:f8:3d:fd:e0:d5:21:02:af:4b:43:b5:8e:f0:27: d4:ea:3f:9f:65:ae:54:81:6f:6b:24:e4:30:4e:d6:30:11:01: bc:b7:07:0b:47:64:a6:dd:b2:e8:1e:3e:74:d2:1c:fd:14:a0: 91:2d:79:07:38:f3:27:dc:eb:b1:a2:9d:fb:b4:35:e4:f4:50: 42:94:4f:80:2e:cd:85:0e:5a:8e:8a:70:3b:8e:6e:66:c7:cd: 89:84:a5:dd:6f:5e:ad:9f:ed:24:d5:bb:08:bc:f3:d1:4b:57: 01:2b:50:65:d3:da:b9:b5:57:f1:da:0c:05:4d:57:0d:ea:07: b4:da:11:23:54:ae:66:70:0a:f4:07:e5:4f:20:5e:1a:77:4c: ec:52:7d:d8:00:4e:00:6f:b4:33:69:59:26:6e:bb:53:0b:bf: 52:c6:7c:fa:4e:b7:5e:13:b6:34:98:c9:b3:66:03:06:f2:44: a0:8b:22:b5:ac:63:bc:29:06:15:65:04:b3:aa:aa:f3:ae:5b: 6b:2f:64:66:52:82:4f:f5:c4:d3:58:c4:e6:47:b2:bc:1c:1e: 4a:2d:bf:17:90:50:f6:37:1b:17:3f:b7:f8:59:98:f9:90:d1: d1:b1:65:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4OEExMTAvBgNVBAUTKDAyODExQzMxRDUwQzkxRkZGRDVFREE2OEI5RUY4MUMz RjlFOUZCMTIwHhcNMjUxMjIzMDExMzE1WhcNMjUxMjMwMDExMzE1WjAYMRYwFAYD VQQDDA02OTQ5ZWNhYi1jOWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxCODtIOV+V1NhRkj7UkMrYFZYa1BQR3bEcB3gWUtNtJD3DdPjvPP/u1E1+W slyAmjQvt1zUnJa9odlqxrVScChexsO6w1b8dIVf0aWn+Wu5+f3CgVy4VIx+YFWt 26M+tPe9GSjbH1sPlXjm4cEH1GS8ndLwXEbmk91btVPZxjmQiEdlVo6v7qDm5i38 TGdMypmm68YyGgrwfOdzswG5msLc3P4f/pOyNnPjFXZfTiKEy8xwOK8dhZn3Ft5R fdDO5+J0DIXh1aVGaEi+3vZ9QHk+jzy7CNQnI3dR0os+5ZJAx4qI/uo/8zDVS3Hl rCZr012fqhIOH0JZZqOgcFsh4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzX7z2z pqjt4N5+cA0ajnh62iuBMB8GA1UdIwQYMBaAFAKBHDHVDJH//V7aaLnvgcP56fsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4QS9DOTYzNTdDQUFB OTQxMUVEQjA3NzRGNDVDNEY5QUUwMi9Bb0VjTWRVTWtmXzlYdHBvdWUtQndfbnAt eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FvRWNNZFVNa2ZfOVh0cG91ZS1Cd19ucC14SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4QS9DOTYzNTdDQUFBOTQxMUVEQjA3NzRGNDVDNEY5QUUwMi9Bb0VjTWRVTWtm XzlYdHBvdWUtQndfbnAteEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArhwi7mICJMQf1k3BsdLC9lTguZuKU+D394NUhAq9LQ7WO8CfU6j+f Za5UgW9rJOQwTtYwEQG8twcLR2Sm3bLoHj500hz9FKCRLXkHOPMn3Ouxop37tDXk 9FBClE+ALs2FDlqOinA7jm5mx82JhKXdb16tn+0k1bsIvPPRS1cBK1Bl09q5tVfx 2gwFTVcN6ge02hEjVK5mcAr0B+VPIF4ad0zsUn3YAE4Ab7QzaVkmbrtTC79Sxnz6 TrdeE7Y0mMmzZgMG8kSgiyK1rGO8KQYVZQSzqqrzrltrL2RmUoJP9cTTWMTmR7K8 HB5KLb8XkFD2NxsXP7f4WZj5kNHRsWV1 -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:26 2025 by rpki-client