This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft File: wvKOnRiEOcT-afY6TKptpCSWKR0.mft (raw, json) Hash identifier: 75DZJddeoV1eNDDu0g5s4Hex/TzgWgkfgSq5Dyd4UxU= Subject key identifier: C2:8F:3F:E1:9B:73:DF:48:F8:73:08:FD:2F:BD:37:07:68:01:2B:AE Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 05ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft Manifest number: 05AF Signing time: Thu 18 Dec 2025 22:41:23 +0000 Manifest this update: Thu 18 Dec 2025 22:41:23 +0000 Manifest next update: Thu 25 Dec 2025 22:41:23 +0000 Files and hashes: 1: wvKOnRiEOcT-afY6TKptpCSWKR0.crl (hash: J03vgCKfunjCcXHbfQHXWsO81+t2VJCERzrPLz7OAhc=) 2: 0E33CCCADB0911F0A26F2FDC81D3641D.roa (hash: rPe4vhXZonbANC80nWrcqICh0JnSf/sZ+SChznXkca8=) 3: 131FA4B092AD11F0AF4F4C85C4F9AE02.roa (hash: 2I5Ge7KBh0e5lEpfrh8ZbOfF9fHkRChHLpkEq2RW7oE=) 4: 35A768B8563B11EC94608B5BC4F9AE02.roa (hash: P6wLHpQqCHGL554TbsS5XznXqZdAAm0+usW172StxkE=) 5: 85B13C3299CE11F087D1450FC4F9AE02.roa (hash: WGM85d42jF0RvgbFfnNoubVrh59/d23ICHptXHKbWpI=) 6: C08B939607D911EDA41A0B25C4F9AE02.roa (hash: bKJMqVVKRvZ4SvMBFN3lmqToCrhVtOKwpkwkSKOCPAY=) 7: 2379396E35DA11F08BAAE414C4F9AE02.roa (hash: Jx8gJbXn9OtsYSW59bLdCCTB+IjRw64vOzcz4bDoiq4=) 8: BFFF6C4A07D911EDA41A0B25C4F9AE02.roa (hash: GP/xk9klfhzGUqC9zVSgLsFcoj/SNA7QNKZizL06GJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:41:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1517 (0x5ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Dec 18 22:41:23 2025 GMT Not After : Dec 25 22:41:23 2025 GMT Subject: CN=69448313-8c51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d1:ca:68:8c:42:2c:33:12:17:7f:df:f9:4a: e0:4a:35:ab:f0:57:21:3c:db:05:21:28:49:8e:a1: 78:3e:bf:a0:d4:48:fe:a6:90:20:8b:09:d7:75:42: ec:fd:be:f9:d9:12:9a:fd:ec:4a:b5:82:df:4e:bf: b8:99:ef:44:e4:70:e9:b7:c7:c5:cc:58:f7:9a:f8: 9f:0d:36:61:ec:61:c4:0c:8d:58:29:09:13:db:b0: ba:71:f9:4a:5a:5c:4d:ee:75:3a:99:f0:97:22:e8: 4d:b0:52:04:31:9a:85:1f:a5:31:83:1d:ca:e9:e4: 9f:40:e1:96:46:78:71:68:74:a7:ac:98:26:19:4d: a0:9b:a4:1b:27:ba:fc:62:51:e2:e8:90:66:c8:c3: 64:c7:c8:d6:26:8a:28:0f:04:86:c8:88:f5:f7:49: a3:53:a7:bc:61:08:75:aa:90:58:47:9e:35:7d:f4: 7c:cd:26:81:16:8e:87:a4:1d:3e:f1:f3:91:95:ef: 8b:1f:6f:ad:92:70:b3:5c:e2:04:17:fe:0d:88:37: 0f:45:a0:f1:3a:01:76:90:95:f9:bb:1d:40:5c:2c: f7:19:6b:e9:3f:6c:ef:9a:49:a4:dd:31:7e:d1:97: b0:a8:d8:bb:36:3c:b5:03:51:6d:b8:c0:60:7d:62: 1e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8F:3F:E1:9B:73:DF:48:F8:73:08:FD:2F:BD:37:07:68:01:2B:AE X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:47:9e:29:e4:74:cb:9c:4d:49:b7:88:44:ad:39:68:f7:fa: 9a:ae:76:3d:c8:45:4b:81:4d:6f:d4:0b:6f:6d:d1:aa:e0:1b: 5a:aa:22:04:f0:2c:50:36:be:cc:99:0a:6d:1e:63:41:1e:db: 07:3c:8e:2c:ce:b2:db:db:66:37:1a:2f:96:a8:d2:c4:43:f8: 29:7d:5d:a5:d6:48:bd:e4:25:77:7d:49:25:ea:4a:ee:d1:5e: 08:3d:d5:bb:1a:20:8f:bf:18:41:6b:17:a7:28:17:37:b2:96: d0:81:42:94:ab:16:2f:b5:76:94:e3:fe:26:84:14:d3:4d:e1: 40:b7:72:70:f2:e6:2a:0c:2e:42:14:93:17:65:55:e0:75:74: f4:17:a8:03:45:d2:e7:29:d0:48:17:81:06:de:12:6e:d5:45: ab:49:ad:7b:1a:ff:57:06:3c:9b:7e:b4:dc:7b:9f:49:30:41: b4:c1:57:28:ec:90:79:86:4c:8b:6e:a1:13:4b:8e:dd:6e:6f: 0a:f0:98:0c:e9:64:10:73:34:5c:38:8f:f9:6a:50:81:4b:0d: 90:73:7d:f5:d1:a8:fc:17:83:b6:52:30:02:6b:e3:88:01:2c: ce:19:71:9c:77:67:65:2f:2b:37:e6:c3:88:de:01:fa:aa:ea: e8:07:9e:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUxMjE4MjI0MTIzWhcNMjUxMjI1MjI0MTIzWjAYMRYwFAYD VQQDDA02OTQ0ODMxMy04YzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNHKaIxCLDMSF3/f+UrgSjWr8FchPNsFIShJjqF4Pr+g1Ej+ppAgiwnXdULs /b752RKa/exKtYLfTr+4me9E5HDpt8fFzFj3mvifDTZh7GHEDI1YKQkT27C6cflK WlxN7nU6mfCXIuhNsFIEMZqFH6Uxgx3K6eSfQOGWRnhxaHSnrJgmGU2gm6QbJ7r8 YlHi6JBmyMNkx8jWJoooDwSGyIj190mjU6e8YQh1qpBYR541ffR8zSaBFo6HpB0+ 8fORle+LH2+tknCzXOIEF/4NiDcPRaDxOgF2kJX5ux1AXCz3GWvpP2zvmkmk3TF+ 0ZewqNi7Njy1A1FtuMBgfWIeRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKPP+Gb c99I+HMI/S+9NwdoASuuMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUQyNS82N0YyQjBEODBCRDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9j VC1hZlk2VEtwdHBDU1dLUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyR54p5HTLnE1Jt4hErTlo9/qarnY9yEVLgU1v1AtvbdGq4BtaqiIE 8CxQNr7MmQptHmNBHtsHPI4szrLb22Y3Gi+WqNLEQ/gpfV2l1ki95CV3fUkl6kru 0V4IPdW7GiCPvxhBaxenKBc3spbQgUKUqxYvtXaU4/4mhBTTTeFAt3Jw8uYqDC5C FJMXZVXgdXT0F6gDRdLnKdBIF4EG3hJu1UWrSa17Gv9XBjybfrTce59JMEG0wVco 7JB5hkyLbqETS47dbm8K8JgM6WQQczRcOI/5alCBSw2Qc3310aj8F4O2UjACa+OI ASzOGXGcd2dlLys35sOI3gH6quroB54T -----END CERTIFICATE-----Generated at Sat Dec 20 13:16:26 2025 by rpki-client