This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: lN8MLuWWVEs7QO9GjKguimjT3Od5X4GuizFMZfRsHqE= Subject key identifier: 2C:06:00:D1:04:4B:BF:44:9C:90:12:57:E4:AB:98:A5:FC:29:3C:DA Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: CE Signing time: Thu 18 Dec 2025 19:02:36 +0000 Manifest this update: Thu 18 Dec 2025 19:02:35 +0000 Manifest next update: Thu 25 Dec 2025 19:02:35 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: cQ6EfjBgHfFEBImmwE1OlRxFTCEU0xe23WEIDFkh7R0=) 2: 245F176CA81311F0A8A82B85C4F9AE02.roa (hash: ebzMyTtJaZgd5qEdDD8H3gUyuweRz4YwhdGqKlk2YpI=) 3: 7B73A414A81311F0A69E5E49C4F9AE02.roa (hash: vf/Qz1zNWab4GZKpZSQw8SUPGRrLV9FUb2vcsaGOSLY=) 4: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: 0lZOVOfd15vpeG++w5mAWXS/YLQjKe0BETzMm0Ic6h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Dec 18 19:02:35 2025 GMT Not After : Dec 25 19:02:35 2025 GMT Subject: CN=69444fcc-9be6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0f:82:4a:01:ef:6f:76:f8:d9:21:4a:7f:b0: ba:6e:c8:ef:94:f0:e5:5f:ff:99:a9:ad:aa:fc:f6: e2:17:37:f3:bc:10:80:bc:bb:9d:06:c7:7b:96:56: 0b:ed:ab:87:66:45:0f:db:ae:4f:76:91:e9:36:b8: 0f:6f:9f:72:18:d9:8f:31:ef:38:54:22:2a:0d:dd: 4d:4c:80:6c:c0:b5:66:44:21:a2:20:84:4e:1b:70: 23:e2:c3:fd:ef:6c:f1:e8:c5:68:e3:fe:3e:f3:12: 9b:22:6a:2b:8e:55:81:cf:83:18:5e:23:2e:df:0f: 91:ca:e4:ee:dd:83:f8:3b:07:24:a0:8b:e4:03:b0: d6:3b:6a:70:b4:7d:e3:0e:af:1c:38:5f:7d:87:08: e9:c0:eb:be:38:d8:ae:e7:d7:b8:83:1b:0b:fc:62: d2:82:a0:2e:b8:98:9f:f7:32:35:48:86:f0:4f:5b: 85:91:c7:2d:13:82:df:a9:f5:56:45:23:58:20:20: 56:5a:14:6e:9d:57:aa:94:d7:8d:46:04:9d:9c:2f: 34:53:99:f0:03:f8:30:32:5d:c5:82:7a:e0:4d:43: 62:3f:cf:32:dc:24:a7:e4:cc:f4:14:8e:7b:28:8d: c2:a7:a4:b5:ce:00:ad:b5:0f:31:fa:37:53:0a:47: dd:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:06:00:D1:04:4B:BF:44:9C:90:12:57:E4:AB:98:A5:FC:29:3C:DA X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:83:92:4d:00:f9:e7:a6:1d:b6:4b:cf:d9:58:48:32:cf:9f: 63:af:7d:96:03:83:6d:ca:00:26:6c:8a:34:e6:54:57:7a:ce: c9:a2:2c:20:78:d8:77:bb:b6:3e:d6:73:2d:58:3d:4a:27:ec: d6:2c:24:57:44:38:d2:ff:66:40:9c:5b:fc:1f:c8:da:f4:ec: 44:54:36:0d:2a:2f:56:b6:8b:b8:42:1d:97:3b:c4:43:d4:4c: a0:16:b0:28:5e:8e:d7:65:b6:c9:bc:da:01:7f:9b:f4:bf:22: 4e:d5:db:7d:e1:e5:08:23:12:7d:63:d7:ba:ef:8a:30:57:77: 60:12:1c:c3:8c:63:d9:fd:41:c4:c2:dc:7d:f9:c0:62:57:4e: 02:21:05:bf:d1:11:d2:c0:40:cb:6f:11:2f:4d:5d:c4:40:6f: a2:c5:34:67:0d:9a:d6:17:5b:b1:e1:3d:1b:00:ea:a0:8f:92: 3e:71:44:06:e8:36:a7:88:6e:bf:18:95:9e:f7:89:0b:1d:20: 53:2c:6b:5a:f7:90:45:16:e4:33:85:53:35:b5:ee:98:84:73: 5e:f9:bb:f0:39:eb:ca:27:e3:e1:7e:fa:f5:cd:4c:d1:ed:6e: f9:d3:91:bc:05:66:a0:92:0c:dd:8e:53:fc:86:d3:8d:7e:c1: 97:fd:64:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjUxMjE4MTkwMjM1WhcNMjUxMjI1MTkwMjM1WjAYMRYwFAYD VQQDDA02OTQ0NGZjYy05YmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArg+CSgHvb3b42SFKf7C6bsjvlPDlX/+Zqa2q/PbiFzfzvBCAvLudBsd7llYL 7auHZkUP265PdpHpNrgPb59yGNmPMe84VCIqDd1NTIBswLVmRCGiIIROG3Aj4sP9 72zx6MVo4/4+8xKbImorjlWBz4MYXiMu3w+RyuTu3YP4OwckoIvkA7DWO2pwtH3j Dq8cOF99hwjpwOu+ONiu59e4gxsL/GLSgqAuuJif9zI1SIbwT1uFkcctE4LfqfVW RSNYICBWWhRunVeqlNeNRgSdnC80U5nwA/gwMl3FgnrgTUNiP88y3CSn5Mz0FI57 KI3Cp6S1zgCttQ8x+jdTCkfdOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwGANEE S79EnJASV+SrmKX8KTzaMB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcg5JNAPnnph22S8/ZWEgyz59jr32WA4NtygAmbIo05lRXes7Joiwg eNh3u7Y+1nMtWD1KJ+zWLCRXRDjS/2ZAnFv8H8ja9OxEVDYNKi9Wtou4Qh2XO8RD 1EygFrAoXo7XZbbJvNoBf5v0vyJO1dt94eUIIxJ9Y9e674owV3dgEhzDjGPZ/UHE wtx9+cBiV04CIQW/0RHSwEDLbxEvTV3EQG+ixTRnDZrWF1ux4T0bAOqgj5I+cUQG 6DaniG6/GJWe94kLHSBTLGta95BFFuQzhVM1te6YhHNe+bvwOevKJ+Phfvr1zUzR 7W7505G8BWagkgzdjlP8htONfsGX/WTs -----END CERTIFICATE-----Generated at Sat Dec 20 03:26:56 2025 by rpki-client