This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.mft File: aH-6IOL3iRfg-wO5ErjIVjfFNz0.mft (raw, json) Hash identifier: nMAw/d23DhLRzsBMiqXZKViEP1nO/Lh4XArPaOJAKMw= Subject key identifier: AA:F4:6B:4A:3D:D8:49:CC:86:8A:08:A9:53:DF:69:FF:F5:48:7E:E0 Authority key identifier: 68:7F:BA:20:E2:F7:89:17:E0:FB:03:B9:12:B8:C8:56:37:C5:37:3D Certificate issuer: /CN=A913B243/serialNumber=687FBA20E2F78917E0FB03B912B8C85637C5373D Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aH-6IOL3iRfg-wO5ErjIVjfFNz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.mft Manifest number: 18 Signing time: Fri 19 Dec 2025 06:46:26 +0000 Manifest this update: Fri 19 Dec 2025 06:46:26 +0000 Manifest next update: Fri 26 Dec 2025 06:46:26 +0000 Files and hashes: 1: aH-6IOL3iRfg-wO5ErjIVjfFNz0.crl (hash: 0AMGtH0GtT4dqv8+jnCg0ZwxI8N7joOo138lNzvB3gQ=) 2: F800618EBBA511F0B0EA597FC4F9AE02.roa (hash: Yw6c7WUM5QYHlwQT+zvf4O1cT4XiBTAyty4UdU8rvsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.crl rsync://rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aH-6IOL3iRfg-wO5ErjIVjfFNz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B243, serialNumber=687FBA20E2F78917E0FB03B912B8C85637C5373D Validity Not Before: Dec 19 06:46:26 2025 GMT Not After : Dec 26 06:46:26 2025 GMT Subject: CN=6944f4c2-d9da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b1:37:cd:7f:ec:48:36:35:d9:41:91:e1:fe: 2e:2b:77:0e:0d:dc:83:d3:ac:19:f0:8a:98:ad:cf: 14:45:d9:a0:3e:19:13:58:7e:85:52:1c:a4:20:46: 05:9c:44:ef:95:b3:02:0e:88:ad:26:1d:63:bc:6d: f1:63:dc:ef:c6:bc:0a:59:b0:24:04:e6:4f:75:c7: 0f:2f:a3:cc:78:e4:bb:1e:71:eb:8c:d7:dd:9e:95: 6a:2f:10:6d:ae:0b:dc:82:c5:f4:72:37:2f:50:b5: 1a:78:db:3f:d8:82:43:7b:00:c4:d6:57:a4:5f:94: a7:9f:ae:e3:03:43:a0:17:97:e5:33:ea:23:50:fb: b7:c9:d1:24:92:30:5b:89:57:93:50:64:4c:24:db: df:3e:b6:6c:5a:c9:6d:c5:ef:77:45:e7:97:2d:9e: 76:f3:8b:f5:f9:1a:10:e7:e3:7c:d3:e2:91:17:5b: 7d:41:79:03:ad:a6:49:90:60:ae:c8:5f:1c:b7:7f: 7e:34:f8:3f:2b:e4:1e:9f:c8:f1:9b:ed:a2:c2:7a: 79:68:d2:6b:aa:63:72:05:95:5b:7e:4b:ef:fb:6f: eb:42:93:e8:ab:7f:d8:6b:38:ca:a0:7c:0e:ac:c1: fb:c9:b5:75:ba:40:d8:5b:3d:43:e3:64:4b:59:d0: 30:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:F4:6B:4A:3D:D8:49:CC:86:8A:08:A9:53:DF:69:FF:F5:48:7E:E0 X509v3 Authority Key Identifier: keyid:68:7F:BA:20:E2:F7:89:17:E0:FB:03:B9:12:B8:C8:56:37:C5:37:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aH-6IOL3iRfg-wO5ErjIVjfFNz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:79:0c:fb:25:cb:c1:60:f7:fa:26:e2:2a:fc:e5:38:b3:f3: 96:88:5c:5f:d9:5e:86:5c:64:0c:65:3a:9f:11:6f:b3:16:f8: 13:f9:43:ae:1b:73:22:56:f5:f3:87:13:7b:17:a5:54:be:e4: a2:cd:5d:38:bc:13:24:f0:58:b3:af:2e:ba:e3:df:6f:b3:6f: a8:f7:e1:87:ee:a6:10:89:b6:ac:3a:4b:f0:45:8e:3d:2c:40: cf:9a:e4:7d:a2:91:64:ff:b9:9f:62:9b:20:46:c0:f4:7c:71: 23:56:47:43:53:70:85:23:85:55:28:c3:4c:11:cd:7e:00:58: af:0d:eb:17:f3:b4:55:f6:ce:d9:2a:a8:a7:a3:08:27:28:04: 8d:fc:b0:11:f6:4f:89:74:c6:79:6e:56:ac:ae:63:fb:ab:08: e4:bd:a6:01:21:af:67:6e:38:e9:95:52:28:9f:56:6a:bf:ec: c0:1d:30:35:d5:7b:5a:74:15:3f:af:a1:27:5d:db:e9:66:80: e4:75:df:bc:6f:63:a8:39:92:c4:86:ca:ce:c8:dd:61:2b:5a: 80:2a:8d:79:e5:3e:b4:ac:ad:e2:2a:3f:f4:9c:45:39:3e:58: ad:0c:41:79:53:61:71:38:fc:1e:8a:a4:6f:ad:e6:42:09:d6: 05:17:21:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjI0MzExMC8GA1UEBRMoNjg3RkJBMjBFMkY3ODkxN0UwRkIwM0I5MTJCOEM4NTYz N0M1MzczRDAeFw0yNTEyMTkwNjQ2MjZaFw0yNTEyMjYwNjQ2MjZaMBgxFjAUBgNV BAMMDTY5NDRmNGMyLWQ5ZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcsTfNf+xINjXZQZHh/i4rdw4N3IPTrBnwipitzxRF2aA+GRNYfoVSHKQgRgWc RO+VswIOiK0mHWO8bfFj3O/GvApZsCQE5k91xw8vo8x45LseceuM192elWovEG2u C9yCxfRyNy9QtRp42z/YgkN7AMTWV6RflKefruMDQ6AXl+Uz6iNQ+7fJ0SSSMFuJ V5NQZEwk298+tmxayW3F73dF55ctnnbzi/X5GhDn43zT4pEXW31BeQOtpkmQYK7I Xxy3f340+D8r5B6fyPGb7aLCenlo0muqY3IFlVt+S+/7b+tCk+irf9hrOMqgfA6s wfvJtXW6QNhbPUPjZEtZ0DA5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqvRrSj3Y ScyGigipU99p//VIfuAwHwYDVR0jBBgwFoAUaH+6IOL3iRfg+wO5ErjIVjfFNz0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCMjQzL0E5QTc1M0EwQkI5 OTExRjBCNUZCNjk2QUM0RjlBRTAyL2FILTZJT0wzaVJmZy13TzVFcmpJVmpmRk56 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUgtNklPTDNpUmZnLXdPNUVyaklWamZGTnowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC MjQzL0E5QTc1M0EwQkI5OTExRjBCNUZCNjk2QUM0RjlBRTAyL2FILTZJT0wzaVJm Zy13TzVFcmpJVmpmRk56MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC55DPsly8Fg9/om4ir85Tiz85aIXF/ZXoZcZAxlOp8Rb7MW+BP5Q64b cyJW9fOHE3sXpVS+5KLNXTi8EyTwWLOvLrrj32+zb6j34YfuphCJtqw6S/BFjj0s QM+a5H2ikWT/uZ9imyBGwPR8cSNWR0NTcIUjhVUow0wRzX4AWK8N6xfztFX2ztkq qKejCCcoBI38sBH2T4l0xnluVqyuY/urCOS9pgEhr2duOOmVUiifVmq/7MAdMDXV e1p0FT+voSdd2+lmgOR137xvY6g5ksSGys7I3WErWoAqjXnlPrSsreIqP/ScRTk+ WK0MQXlTYXE4/B6KpG+t5kIJ1gUXISU= -----END CERTIFICATE-----Generated at Fri Dec 19 17:42:10 2025 by rpki-client