This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft File: SoXPE4hy0-RPkNe28wKPC1BnNMw.mft (raw, json) Hash identifier: DO3TplB97g2+yrv5KfbcBPZU7y0lpEqRRS0tgzBbEr0= Subject key identifier: F8:41:8D:57:B3:FC:CA:FA:26:F7:7B:19:2C:99:8F:24:04:10:55:46 Authority key identifier: 4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC Certificate issuer: /CN=A914D0AF/serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Certificate serial: 044E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft Manifest number: 04B2 Signing time: Tue 30 Dec 2025 23:26:19 +0000 Manifest this update: Tue 30 Dec 2025 23:26:19 +0000 Manifest next update: Tue 06 Jan 2026 23:26:19 +0000 Files and hashes: 1: SoXPE4hy0-RPkNe28wKPC1BnNMw.crl (hash: QyB2Hi3gf0RR9JNCEAZwOXhoDfz92jOmn8DzB7DirWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 23:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1102 (0x44e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0AF, serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Validity Not Before: Dec 30 23:26:19 2025 GMT Not After : Jan 6 23:26:19 2026 GMT Subject: CN=69545f9b-2a06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7c:f5:f3:39:33:84:6d:f8:b5:61:2c:99:86: 0c:fb:b7:94:93:4e:12:78:39:39:75:95:dd:d0:ef: d6:9c:b3:b1:87:1a:39:65:2e:b6:d4:61:21:2e:04: 80:5e:b6:d9:fe:d2:d6:7f:97:8f:b5:82:f3:0f:d0: 7f:53:39:c2:b6:42:14:65:93:61:0c:48:4f:06:10: 45:fb:9f:74:55:31:f4:37:59:3e:5f:c4:5a:05:c0: 6b:98:00:db:e4:82:69:96:33:a2:4a:42:4a:ad:40: 1e:2c:8e:22:5b:78:9e:a2:24:39:2b:be:5e:2c:d7: ef:98:a1:44:25:fc:a1:bd:14:b7:f0:44:c7:ed:b8: 26:0b:a3:7e:5d:ed:53:2b:3e:14:d4:11:c2:77:e4: 2a:c2:c4:da:d9:87:f5:e8:28:c3:e2:69:e3:f4:cd: e8:ae:59:12:9b:cc:e3:3b:38:3e:cd:94:bf:60:1b: 14:a3:6c:04:07:fa:6f:b3:1b:b9:54:cf:4c:7d:b0: 75:06:55:be:79:8f:98:16:3c:0b:3e:d5:cb:95:88: 06:89:67:84:4f:88:58:36:3a:bb:fc:19:2f:65:64: ce:d2:c6:33:79:e6:53:22:c2:b5:3f:3b:d2:4f:42: 06:1d:1e:e7:5b:3d:f3:6c:c4:84:d0:97:e7:e2:de: 77:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:41:8D:57:B3:FC:CA:FA:26:F7:7B:19:2C:99:8F:24:04:10:55:46 X509v3 Authority Key Identifier: keyid:4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:31:3e:7d:ca:f2:06:2b:97:38:2a:7b:b7:09:30:bc:f6:2b: f9:a4:a6:a3:26:ba:49:31:ad:4f:4b:92:90:12:fb:ad:98:c3: b1:09:bc:78:e6:52:36:04:ef:7d:aa:87:8c:b0:02:47:45:f7: 5c:58:cb:85:98:49:a2:ee:71:af:ba:f6:77:51:d3:be:3b:37: f5:57:0f:c4:7d:c0:c1:b0:73:d7:d0:2b:42:f3:02:6e:dd:b9: 2a:87:61:f9:cf:47:14:c6:a9:10:9f:8d:10:68:12:d7:6d:15: ad:78:79:3f:3a:39:12:4f:a2:97:a4:9e:36:4e:65:d9:44:59: 2f:76:6e:5c:af:0a:12:53:01:70:0c:e1:3c:1b:73:31:94:00: a4:75:2e:11:68:b5:42:7e:d2:2b:84:b6:eb:b3:75:26:43:16: c0:41:bb:df:51:0b:4e:f8:a1:2f:7f:85:d6:86:81:70:05:d5: 5b:92:61:b1:10:f9:9e:cf:71:d0:8e:59:7e:1b:9d:9f:fa:a6: f6:df:07:7d:61:bb:0f:07:73:5c:dc:c1:16:2c:3a:b6:92:1c: 4a:a9:35:88:cd:ec:f0:e4:49:62:d2:86:03:b0:f6:ba:43:99: 10:e6:52:0d:e4:50:6a:31:47:87:61:cc:4b:03:eb:8a:1b:9e: 4f:d5:57:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwQUYxMTAvBgNVBAUTKDRBODVDRjEzODg3MkQzRTQ0RjkwRDdCNkYzMDI4RjBC NTA2NzM0Q0MwHhcNMjUxMjMwMjMyNjE5WhcNMjYwMTA2MjMyNjE5WjAYMRYwFAYD VQQDDA02OTU0NWY5Yi0yYTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXz18zkzhG34tWEsmYYM+7eUk04SeDk5dZXd0O/WnLOxhxo5ZS621GEhLgSA XrbZ/tLWf5ePtYLzD9B/UznCtkIUZZNhDEhPBhBF+590VTH0N1k+X8RaBcBrmADb 5IJpljOiSkJKrUAeLI4iW3ieoiQ5K75eLNfvmKFEJfyhvRS38ETH7bgmC6N+Xe1T Kz4U1BHCd+QqwsTa2Yf16CjD4mnj9M3orlkSm8zjOzg+zZS/YBsUo2wEB/pvsxu5 VM9MfbB1BlW+eY+YFjwLPtXLlYgGiWeET4hYNjq7/BkvZWTO0sYzeeZTIsK1PzvS T0IGHR7nWz3zbMSE0Jfn4t532wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhBjVez /Mr6Jvd7GSyZjyQEEFVGMB8GA1UdIwQYMBaAFEqFzxOIctPkT5DXtvMCjwtQZzTM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBBRi8xRTMzOUIzNjg4 REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAtUlBrTmUyOHdLUEMxQm5O TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvWFBFNGh5MC1SUGtOZTI4d0tQQzFCbk5Ndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBBRi8xRTMzOUIzNjg4REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAt UlBrTmUyOHdLUEMxQm5OTXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOMT59yvIGK5c4Knu3CTC89iv5pKajJrpJMa1PS5KQEvutmMOxCbx4 5lI2BO99qoeMsAJHRfdcWMuFmEmi7nGvuvZ3UdO+Ozf1Vw/EfcDBsHPX0CtC8wJu 3bkqh2H5z0cUxqkQn40QaBLXbRWteHk/OjkST6KXpJ42TmXZRFkvdm5crwoSUwFw DOE8G3MxlACkdS4RaLVCftIrhLbrs3UmQxbAQbvfUQtO+KEvf4XWhoFwBdVbkmGx EPmez3HQjll+G52f+qb23wd9YbsPB3Nc3MEWLDq2khxKqTWIzezw5Eli0oYDsPa6 Q5kQ5lIN5FBqMUeHYcxLA+uKG55P1VcR -----END CERTIFICATE-----Generated at Wed Dec 31 02:25:33 2025 by rpki-client