This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: wcvwD1Lhuk+vo5kvL0C8w+8HoxNgdH9adkPHrb7okVo= Subject key identifier: C9:81:59:D5:8C:EC:87:A8:64:35:4B:F8:9E:6A:19:8A:2B:9D:86:C2 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 1104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 10E9 Signing time: Thu 18 Dec 2025 17:07:41 +0000 Manifest this update: Thu 18 Dec 2025 17:07:41 +0000 Manifest next update: Thu 25 Dec 2025 17:07:41 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: B42rhkH9hpeL+LHgndZjuV4o2GCI0F4ZS8nZjhZ0368=) 2: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) 3: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) 4: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4356 (0x1104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Dec 18 17:07:41 2025 GMT Not After : Dec 25 17:07:41 2025 GMT Subject: CN=694434dd-de74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:49:fb:f8:5e:e3:25:b3:91:07:8c:c0:96:7e: f9:c7:51:d0:88:19:bb:d1:1a:c6:f9:f8:8d:5e:6a: d2:ee:21:71:0b:c4:c4:60:87:37:de:50:b0:be:8c: 08:7e:a4:54:8f:0a:1b:9a:70:22:8f:63:f4:e4:53: c0:5b:47:af:f9:0b:1a:2e:b5:1a:5a:48:56:f7:7a: 44:b2:fd:7a:55:44:81:3a:e1:31:25:7f:32:d5:c9: 83:b2:65:fa:0c:0e:e3:1d:99:7a:93:11:20:34:23: 88:e2:38:ae:27:77:a2:92:01:19:d5:ec:88:f1:5a: 39:a7:c1:4f:fd:65:a7:25:34:95:b3:e6:4a:bb:d5: ea:be:5c:22:52:a1:65:f4:24:6d:8e:47:49:1c:0e: b4:69:ed:50:12:30:4e:bc:10:01:14:56:34:81:29: b9:a4:26:f7:b9:20:89:66:82:a8:dc:4f:20:e4:4c: 46:17:03:67:aa:37:cd:57:73:63:8f:5a:fa:d8:7a: 22:fb:ba:57:b1:10:4b:8b:ae:aa:b7:6e:cf:e8:50: 2b:4e:4a:eb:11:f2:80:03:aa:36:75:40:8d:fd:55: a5:78:94:20:b0:58:cf:1a:40:18:02:d5:24:a1:b3: 56:21:ef:38:da:91:6f:a1:c3:61:b5:2d:7e:2b:98: 6e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:81:59:D5:8C:EC:87:A8:64:35:4B:F8:9E:6A:19:8A:2B:9D:86:C2 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ee:5b:de:b1:da:d4:ed:0f:26:1a:90:ac:02:9f:77:91:f4: d7:95:5c:7d:fc:31:62:fa:87:39:9a:89:23:4d:6d:fe:86:f0: 5b:9d:fc:3e:bb:42:a4:aa:56:d1:d1:d9:8e:a9:74:86:3f:a7: 56:af:a1:4f:9d:6b:27:3d:3a:ba:ae:96:87:d4:b4:84:1e:3b: 77:32:da:d8:c0:3b:77:8e:04:fb:4f:c0:60:6b:9d:45:a8:7a: 18:3f:25:50:f1:73:30:44:ce:11:39:21:dc:26:e9:31:74:0e: 1f:ad:17:3c:68:29:c1:fd:e6:be:bb:c2:f5:04:87:a5:4e:52: 55:bb:c6:2b:b6:aa:2f:98:a4:72:f4:c2:79:d7:52:a0:a1:29: 2a:4e:18:77:c6:2a:17:9a:0b:20:3d:2a:25:11:ff:71:0f:9b: e4:fd:b1:9e:4a:c0:e2:36:3c:cc:6a:fc:0d:3f:31:43:41:c1: 5c:59:26:c2:6f:dd:ed:62:1a:9b:fd:c6:d8:57:d9:d2:a0:19: d5:57:b3:e7:86:54:70:6e:93:4c:51:13:6e:64:3c:ff:0e:04: 18:3e:97:ea:f5:b7:46:f8:03:cf:9c:3c:15:4a:92:b8:fd:37: a3:46:d5:d0:92:aa:23:f3:62:8f:68:41:0e:a2:25:7a:69:63: 67:3a:cc:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjUxMjE4MTcwNzQxWhcNMjUxMjI1MTcwNzQxWjAYMRYwFAYD VQQDDA02OTQ0MzRkZC1kZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUn7+F7jJbORB4zAln75x1HQiBm70RrG+fiNXmrS7iFxC8TEYIc33lCwvowI fqRUjwobmnAij2P05FPAW0ev+QsaLrUaWkhW93pEsv16VUSBOuExJX8y1cmDsmX6 DA7jHZl6kxEgNCOI4jiuJ3eikgEZ1eyI8Vo5p8FP/WWnJTSVs+ZKu9XqvlwiUqFl 9CRtjkdJHA60ae1QEjBOvBABFFY0gSm5pCb3uSCJZoKo3E8g5ExGFwNnqjfNV3Nj j1r62Hoi+7pXsRBLi66qt27P6FArTkrrEfKAA6o2dUCN/VWleJQgsFjPGkAYAtUk obNWIe842pFvocNhtS1+K5huHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmBWdWM 7IeoZDVL+J5qGYornYbCMB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg7lvesdrU7Q8mGpCsAp93kfTXlVx9/DFi+oc5mokjTW3+hvBbnfw+ u0KkqlbR0dmOqXSGP6dWr6FPnWsnPTq6rpaH1LSEHjt3MtrYwDt3jgT7T8Bga51F qHoYPyVQ8XMwRM4ROSHcJukxdA4frRc8aCnB/ea+u8L1BIelTlJVu8YrtqovmKRy 9MJ511KgoSkqThh3xioXmgsgPSolEf9xD5vk/bGeSsDiNjzMavwNPzFDQcFcWSbC b93tYhqb/cbYV9nSoBnVV7PnhlRwbpNMURNuZDz/DgQYPpfq9bdG+APPnDwVSpK4 /TejRtXQkqoj82KPaEEOoiV6aWNnOsws -----END CERTIFICATE-----Generated at Fri Dec 19 23:58:03 2025 by rpki-client