This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft File: fHxDqtDIa183jl18MzKgXeRhJ1A.mft (raw, json) Hash identifier: /efU71RSL0ik8+jOjZ8XzDkoMNGU40lz93hbL4s7Zz0= Subject key identifier: A2:91:57:49:3D:A0:E9:69:2E:CC:52:A1:26:41:18:3E:81:6F:90:7B Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 0851 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft Manifest number: 0830 Signing time: Thu 18 Dec 2025 20:22:58 +0000 Manifest this update: Thu 18 Dec 2025 20:22:58 +0000 Manifest next update: Thu 25 Dec 2025 20:22:58 +0000 Files and hashes: 1: fHxDqtDIa183jl18MzKgXeRhJ1A.crl (hash: uhCFiMI4XLdN8lEAbV81w5POxeHHh7Ce4ws/dIRAPk8=) 2: E897EA5A3EE411ED905A3415C4F9AE02.roa (hash: TWoh7LVQqQmuW9GpZzIh16PRVa2OB94FLWBuSV7i0+8=) 3: E7EBC9003EE411ED905A3415C4F9AE02.roa (hash: BwA8MEhqgGbAzSbHdeQ+BFQnrqqSo7A794PhNnAq0qA=) 4: 5035F194413211EDAAFCC96EC4F9AE02.roa (hash: F8etYfliydabteMfbSSAIkH2xX9USHfIQD7d5Y84ryM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50, serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Validity Not Before: Dec 18 20:22:58 2025 GMT Not After : Dec 25 20:22:58 2025 GMT Subject: CN=694462a2-215b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0d:0d:0e:d8:b9:62:a9:13:1d:ce:e0:bb:71: ef:3a:8a:de:78:91:67:d1:f9:f3:9e:81:3c:37:6f: 66:82:0a:9b:16:2a:5f:09:78:69:8f:12:35:ad:ef: 4b:98:4f:d5:64:cc:09:d9:ed:90:80:8f:f4:ad:b4: 19:9d:27:6f:f2:ca:ac:f0:49:51:55:a4:e0:46:8d: 23:82:66:cd:a3:3c:5b:62:b1:da:93:c2:66:d0:28: f0:b2:53:ae:cf:2e:c7:9e:d4:13:4f:26:a5:3c:74: f0:6c:8c:6f:96:0c:89:ed:42:27:4f:6e:58:5f:d3: 23:b0:30:65:a3:0d:a9:60:60:2b:6f:22:00:0b:99: ac:ec:29:16:7c:99:17:a9:bd:b2:95:57:e7:ab:5c: e4:fc:99:96:bf:d2:f4:d2:25:90:a5:f6:9f:b6:b8: a1:47:97:ec:94:d7:c0:86:af:2f:eb:3d:97:86:df: 97:e3:5d:ef:23:cc:a0:61:f3:2a:b1:fb:71:21:fc: ba:90:2e:31:e7:4c:5e:6c:c2:27:bf:6a:fc:32:b9: 1d:76:6f:6b:26:95:91:7a:2c:b8:41:d3:c8:12:82: 5c:0d:c4:9a:33:1c:1a:63:2c:e8:72:39:01:14:20: a8:c8:74:36:26:9f:f2:9f:8f:31:b0:c5:56:21:17: 8a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:91:57:49:3D:A0:E9:69:2E:CC:52:A1:26:41:18:3E:81:6F:90:7B X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:6d:94:ea:d3:d6:1d:1d:03:0c:1e:27:55:95:92:aa:bf:8f: 77:ae:71:70:a3:72:e6:12:c3:58:76:58:11:ff:b4:b9:2e:83: 16:42:29:50:10:86:6a:68:44:40:27:00:72:b9:0a:de:15:15: 1c:45:fa:b2:9b:e0:5b:7a:2b:cf:6f:76:bb:61:c4:f6:a6:a5: 3f:ea:27:29:c2:63:14:46:29:42:5d:95:16:1c:86:7c:dc:06: 30:07:e2:ed:77:62:22:c1:5d:3d:bc:c3:a9:39:4a:6d:bb:0a: a5:3d:12:6e:73:57:65:df:61:78:6d:c2:b8:43:26:db:66:f0: 83:75:97:d8:f4:af:49:2d:0e:04:9c:32:fb:67:b8:0f:2c:86: 7c:33:98:b4:7c:0d:55:7c:d7:ab:5e:7a:3e:f6:ee:82:cd:3f: 11:e1:fb:77:a4:f0:54:68:9d:4f:1a:a6:e1:ef:48:a5:c3:da: ad:88:4c:aa:ff:31:23:60:72:a3:f8:f9:f9:02:f4:27:fb:66: 99:0c:68:5e:10:20:0d:ac:e0:fe:2e:78:b2:4e:bb:47:4c:8f: a1:c5:64:ff:5e:19:6b:e5:b7:95:87:8e:d9:da:e7:21:0c:e4: aa:ea:32:da:ee:4f:f3:a1:30:77:2c:da:37:49:68:07:ec:0d: d3:9a:25:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjUxMjE4MjAyMjU4WhcNMjUxMjI1MjAyMjU4WjAYMRYwFAYD VQQDDA02OTQ0NjJhMi0yMTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnw0NDti5YqkTHc7gu3HvOoreeJFn0fnznoE8N29mggqbFipfCXhpjxI1re9L mE/VZMwJ2e2QgI/0rbQZnSdv8sqs8ElRVaTgRo0jgmbNozxbYrHak8Jm0CjwslOu zy7HntQTTyalPHTwbIxvlgyJ7UInT25YX9MjsDBlow2pYGArbyIAC5ms7CkWfJkX qb2ylVfnq1zk/JmWv9L00iWQpfaftrihR5fslNfAhq8v6z2Xht+X413vI8ygYfMq sftxIfy6kC4x50xebMInv2r8Mrkddm9rJpWReiy4QdPIEoJcDcSaMxwaYyzocjkB FCCoyHQ2Jp/yn48xsMVWIReKRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKRV0k9 oOlpLsxSoSZBGD6Bb5B7MB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0E1MC8zODFDMTcxNkZCQTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWEx ODNqbDE4TXpLZ1hlUmhKMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0bZTq09YdHQMMHidVlZKqv493rnFwo3LmEsNYdlgR/7S5LoMWQilQ EIZqaERAJwByuQreFRUcRfqym+BbeivPb3a7YcT2pqU/6icpwmMURilCXZUWHIZ8 3AYwB+Ltd2IiwV09vMOpOUptuwqlPRJuc1dl32F4bcK4QybbZvCDdZfY9K9JLQ4E nDL7Z7gPLIZ8M5i0fA1VfNerXno+9u6CzT8R4ft3pPBUaJ1PGqbh70ilw9qtiEyq /zEjYHKj+Pn5AvQn+2aZDGheECANrOD+LniyTrtHTI+hxWT/Xhlr5beVh47Z2uch DOSq6jLa7k/zoTB3LNo3SWgH7A3TmiU1 -----END CERTIFICATE-----Generated at Sat Dec 20 08:23:35 2025 by rpki-client