This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.mft File: bh8SQJzzm_kTxDK1h2_6_Z_QYZU.mft (raw, json) Hash identifier: ciZEbDEeYF7cdNPXjsbjun0Qfxq6YbQ8WLSoC9hhiEc= Subject key identifier: 08:CE:B2:F8:96:34:77:02:24:9D:C2:92:D5:73:1A:8B:01:DC:C9:2D Authority key identifier: 6E:1F:12:40:9C:F3:9B:F9:13:C4:32:B5:87:6F:FA:FD:9F:D0:61:95 Certificate issuer: /CN=A919243F/serialNumber=6E1F12409CF39BF913C432B5876FFAFD9FD06195 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.mft Manifest number: 1D Signing time: Tue 23 Dec 2025 06:38:39 +0000 Manifest this update: Tue 23 Dec 2025 06:38:39 +0000 Manifest next update: Tue 30 Dec 2025 06:38:39 +0000 Files and hashes: 1: bh8SQJzzm_kTxDK1h2_6_Z_QYZU.crl (hash: VVzuVOfuA8d7BCiiZ1jY0UtpraoQrtydv3AxHhgXoic=) 2: 384B24AAB65511F0AE39E37FC4F9AE02.roa (hash: IiFDFyUtI+I6691ygwzpABiGbW4Bf29Vv0LhgY1Qc78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.crl rsync://rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919243F, serialNumber=6E1F12409CF39BF913C432B5876FFAFD9FD06195 Validity Not Before: Dec 23 06:38:39 2025 GMT Not After : Dec 30 06:38:39 2025 GMT Subject: CN=694a38ef-0d42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:50:ae:eb:df:35:21:ce:d6:7f:32:ea:9e:08: a6:3c:e6:f8:13:68:fe:21:49:13:7b:f0:d5:5d:84: 57:78:24:00:42:a3:6d:00:34:cd:20:d6:c1:52:b9: de:ba:9a:26:89:74:70:30:0d:62:2e:a5:f4:f9:29: d5:4c:49:b0:2f:0a:8e:20:42:17:e3:ee:d1:66:5d: 7f:62:91:ad:17:9c:22:0f:82:1e:41:51:53:95:e0: c9:07:dd:22:2b:f7:a2:46:cd:79:08:65:2e:42:a9: f6:0b:f4:d7:79:08:2f:cf:83:69:be:c8:46:be:59: d0:85:85:4f:01:da:57:22:69:b3:e0:ae:d3:bd:47: 33:fb:5f:6c:0e:b7:44:4b:81:a9:08:26:7f:57:2e: 09:53:5e:d7:65:e9:6a:b5:44:43:b4:f5:bf:54:da: 40:e5:b5:d2:70:e4:fd:c5:3a:9b:ef:b2:13:50:53: 2d:f7:40:fa:31:f5:3d:27:fa:00:cf:49:1e:05:52: 05:e7:6a:b0:12:82:cf:64:3c:4f:f7:e5:f9:cd:10: 0f:58:a3:7d:61:9a:1f:19:5e:bb:38:f8:5b:06:ea: 31:ec:6f:c8:1b:a5:5a:61:5c:13:d6:66:56:cd:73: 96:e9:f4:42:7e:32:1d:5c:c8:e0:93:8f:d5:a4:5c: d1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CE:B2:F8:96:34:77:02:24:9D:C2:92:D5:73:1A:8B:01:DC:C9:2D X509v3 Authority Key Identifier: keyid:6E:1F:12:40:9C:F3:9B:F9:13:C4:32:B5:87:6F:FA:FD:9F:D0:61:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919243F/E8DCA632B65411F09ECF4B7FC4F9AE02/bh8SQJzzm_kTxDK1h2_6_Z_QYZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:eb:3d:04:3c:aa:64:b8:29:8c:9a:92:fd:13:4a:0e:99:c1: 6a:cc:c6:09:ae:2b:d1:8f:85:f5:2c:e9:f9:c9:95:50:e7:4b: 93:28:f1:e0:22:54:71:8a:e9:3c:33:9f:55:ab:84:dd:c6:a2: a3:54:42:db:84:b5:d6:a5:1a:42:a3:bc:db:b2:9e:2f:10:30: 10:0b:ef:4d:97:e5:38:26:a8:42:3a:67:64:fe:ce:b5:5b:86: 02:98:9b:51:4f:25:8b:f8:3c:06:bf:71:95:db:17:50:dc:85: 0b:23:51:12:66:7a:b9:ef:42:52:35:b4:25:20:c0:1e:e8:bb: 58:2e:96:f0:0b:5b:fb:76:06:30:09:39:e9:b9:cd:f8:3f:63: f4:d6:35:73:d3:1f:7b:17:42:7a:be:99:61:c5:64:06:6b:9c: 97:f6:34:e4:dd:c8:e7:46:a6:be:cb:b6:e2:5c:09:cf:3e:75: 99:10:f6:29:30:1d:7f:eb:1e:bb:49:f5:f1:ec:3f:56:b4:18: 81:41:61:9c:2a:01:cf:e4:b9:fc:c7:b3:40:e5:5f:b8:2b:b0: 20:01:e6:e8:e5:aa:bb:bc:3b:7f:0d:e2:22:da:35:0b:34:64: ad:eb:c5:07:98:37:fd:be:22:8a:ad:e8:b5:af:28:03:10:ea: 64:97:67:48 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MjQzRjExMC8GA1UEBRMoNkUxRjEyNDA5Q0YzOUJGOTEzQzQzMkI1ODc2RkZBRkQ5 RkQwNjE5NTAeFw0yNTEyMjMwNjM4MzlaFw0yNTEyMzAwNjM4MzlaMBgxFjAUBgNV BAMMDTY5NGEzOGVmLTBkNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGUK7r3zUhztZ/MuqeCKY85vgTaP4hSRN78NVdhFd4JABCo20ANM0g1sFSud66 miaJdHAwDWIupfT5KdVMSbAvCo4gQhfj7tFmXX9ika0XnCIPgh5BUVOV4MkH3SIr 96JGzXkIZS5CqfYL9Nd5CC/Pg2m+yEa+WdCFhU8B2lciabPgrtO9RzP7X2wOt0RL gakIJn9XLglTXtdl6Wq1REO09b9U2kDltdJw5P3FOpvvshNQUy33QPox9T0n+gDP SR4FUgXnarASgs9kPE/35fnNEA9Yo31hmh8ZXrs4+FsG6jHsb8gbpVphXBPWZlbN c5bp9EJ+Mh1cyOCTj9WkXNEzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCM6y+JY0 dwIkncKS1XMaiwHcyS0wHwYDVR0jBBgwFoAUbh8SQJzzm/kTxDK1h2/6/Z/QYZUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyNDNGL0U4RENBNjMyQjY1 NDExRjA5RUNGNEI3RkM0RjlBRTAyL2JoOFNRSnp6bV9rVHhESzFoMl82X1pfUVla VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmg4U1FKenptX2tUeERLMWgyXzZfWl9RWVpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky NDNGL0U4RENBNjMyQjY1NDExRjA5RUNGNEI3RkM0RjlBRTAyL2JoOFNRSnp6bV9r VHhESzFoMl82X1pfUVlaVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF/rPQQ8qmS4KYyakv0TSg6ZwWrMxgmuK9GPhfUs6fnJlVDnS5Mo8eAi VHGK6Twzn1WrhN3GoqNUQtuEtdalGkKjvNuyni8QMBAL702X5TgmqEI6Z2T+zrVb hgKYm1FPJYv4PAa/cZXbF1DchQsjURJmernvQlI1tCUgwB7ou1gulvALW/t2BjAJ Oem5zfg/Y/TWNXPTH3sXQnq+mWHFZAZrnJf2NOTdyOdGpr7LtuJcCc8+dZkQ9ikw HX/rHrtJ9fHsP1a0GIFBYZwqAc/kufzHs0DlX7grsCAB5ujlqru8O38N4iLaNQs0 ZK3rxQeYN/2+Ioqt6LWvKAMQ6mSXZ0g= -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:00 2025 by rpki-client