This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: q5PigOyjlNt7p46Av/WpYJNmp7zvldPPqc1dkDf+f+w= Subject key identifier: 2B:79:59:B3:E9:4A:F6:79:ED:9F:D9:E3:77:64:28:36:ED:7E:41:8B Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0CD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0CC9 Signing time: Thu 18 Dec 2025 17:59:23 +0000 Manifest this update: Thu 18 Dec 2025 17:59:23 +0000 Manifest next update: Thu 25 Dec 2025 17:59:23 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: 1O7haixSghTsDp/3TKj/hDt9I4BqIKKPyjBBC0RCQIk=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3284 (0xcd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE, serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: Dec 18 17:59:23 2025 GMT Not After : Dec 25 17:59:23 2025 GMT Subject: CN=694440fb-a9dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b9:e9:80:d3:c9:01:24:b4:a5:23:15:df:70: 0a:fa:11:21:f2:86:af:0a:59:fd:18:c9:8b:29:95: 1e:00:5f:f4:e7:56:1b:89:8f:da:d6:93:90:5a:51: f5:8c:1c:a3:ac:e5:1e:98:59:91:04:f7:28:42:e0: cb:89:c8:35:33:71:39:98:7b:67:ac:8f:bd:ee:ae: c0:17:88:96:0c:9d:33:75:66:01:f0:d1:bc:bd:cb: 22:fb:8d:9e:6a:dc:3e:7f:9d:2f:6f:da:e9:fa:d2: 6c:da:ed:53:10:ea:46:33:5f:11:f9:0e:32:53:ee: f1:0b:c0:94:d0:7f:1b:c1:c2:01:19:9c:9f:3f:67: a9:33:9f:3a:e2:0e:21:a2:fa:54:55:ed:07:aa:34: 69:81:49:33:39:1a:e5:77:d2:35:d2:2f:38:57:fa: dc:ac:5b:ab:57:6f:f9:20:48:f5:44:14:e9:26:7f: 62:2b:19:aa:25:fd:d9:c7:1c:bb:1b:aa:c1:46:ee: 28:1d:64:bb:3b:fa:9a:e4:b6:e8:05:18:70:96:d0: b2:42:e8:73:3b:fe:01:86:4c:ab:74:ce:c1:c1:94: da:24:a9:4a:d3:9e:30:fa:c3:90:12:70:40:44:cf: a3:3e:25:59:b2:3c:ae:02:bf:95:4b:4a:f3:e7:a1: ba:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:79:59:B3:E9:4A:F6:79:ED:9F:D9:E3:77:64:28:36:ED:7E:41:8B X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:4e:1d:69:d1:cf:8e:7f:fd:9d:32:7e:f1:4a:99:46:28:1f: 9c:cf:1c:30:5a:e2:a6:8f:f8:d2:6a:6e:c2:b4:7c:87:28:f8: 6a:38:32:cc:48:bb:7e:bc:a5:23:e8:a0:92:da:66:60:f8:36: e4:6b:10:dc:46:50:62:f1:a2:31:07:55:60:de:db:f9:e6:36: 7f:99:59:ea:fb:e9:e1:82:80:77:5b:f4:d3:84:3e:10:5f:31: be:0f:15:a4:46:24:39:9a:a6:4f:82:80:19:f5:fe:43:0a:b1: bd:47:96:9b:ea:9c:ec:43:d7:9b:20:ff:0a:3a:7f:72:e7:6f: a1:fd:17:21:fd:b1:96:0e:6c:68:2c:b7:eb:5b:e0:3b:43:9d: e6:44:9d:11:c4:41:6b:d5:69:06:6b:a6:ec:dc:f4:29:53:c9: 56:e4:6e:ab:62:e0:a7:c5:79:b7:5c:6e:35:44:f3:49:94:d3: a1:fe:7b:58:38:50:1a:6c:dd:d4:51:5e:64:6f:11:cb:7b:27: 4a:2b:9d:ff:9c:69:e0:96:13:7e:c4:a1:50:be:83:e8:01:fb: 26:6b:c3:2e:74:5f:8d:12:3c:20:31:49:e8:76:70:ba:5e:8f: 1f:47:10:a6:8d:f8:67:13:85:61:83:63:d8:67:f8:cc:1e:e4: 7a:ff:ca:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjUxMjE4MTc1OTIzWhcNMjUxMjI1MTc1OTIzWjAYMRYwFAYD VQQDDA02OTQ0NDBmYi1hOWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLnpgNPJASS0pSMV33AK+hEh8oavCln9GMmLKZUeAF/051YbiY/a1pOQWlH1 jByjrOUemFmRBPcoQuDLicg1M3E5mHtnrI+97q7AF4iWDJ0zdWYB8NG8vcsi+42e atw+f50vb9rp+tJs2u1TEOpGM18R+Q4yU+7xC8CU0H8bwcIBGZyfP2epM5864g4h ovpUVe0HqjRpgUkzORrld9I10i84V/rcrFurV2/5IEj1RBTpJn9iKxmqJf3Zxxy7 G6rBRu4oHWS7O/qa5LboBRhwltCyQuhzO/4BhkyrdM7BwZTaJKlK054w+sOQEnBA RM+jPiVZsjyuAr+VS0rz56G60QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCt5WbPp SvZ57Z/Z43dkKDbtfkGLMB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOTh1p0c+Of/2dMn7xSplGKB+czxwwWuKmj/jSam7CtHyHKPhqODLM SLt+vKUj6KCS2mZg+DbkaxDcRlBi8aIxB1Vg3tv55jZ/mVnq++nhgoB3W/TThD4Q XzG+DxWkRiQ5mqZPgoAZ9f5DCrG9R5ab6pzsQ9ebIP8KOn9y52+h/Rch/bGWDmxo LLfrW+A7Q53mRJ0RxEFr1WkGa6bs3PQpU8lW5G6rYuCnxXm3XG41RPNJlNOh/ntY OFAabN3UUV5kbxHLeydKK53/nGnglhN+xKFQvoPoAfsma8MudF+NEjwgMUnodnC6 Xo8fRxCmjfhnE4Vhg2PYZ/jMHuR6/8p9 -----END CERTIFICATE-----Generated at Fri Dec 19 23:59:11 2025 by rpki-client