This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft File: SHy2MxcaDd84rLtq0e2K5pZVhgo.mft (raw, json) Hash identifier: iW9miFUWNC5++yuq2JkaEd+Nq8AGWMb7ImC6j5s+Hjo= Subject key identifier: 5A:90:A8:AF:F4:EC:09:CC:E9:E9:76:F8:D3:83:C8:1F:E7:C8:BD:9D Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft Manifest number: 0203 Signing time: Fri 19 Dec 2025 01:37:45 +0000 Manifest this update: Fri 19 Dec 2025 01:37:45 +0000 Manifest next update: Fri 26 Dec 2025 01:37:45 +0000 Files and hashes: 1: SHy2MxcaDd84rLtq0e2K5pZVhgo.crl (hash: TVwSKO0+7IZqoycXcDYXzcTPWTCuG67jBFK+1NSxOx0=) 2: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (hash: gQgaVP6gsqEmtORlyD8C7NpCpWYfOsLgU2Aae4Tbg5g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E, serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Validity Not Before: Dec 19 01:37:45 2025 GMT Not After : Dec 26 01:37:45 2025 GMT Subject: CN=6944ac69-f7bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b3:c3:94:43:78:c2:94:e7:ef:0b:f5:5f:03: 0d:f6:8d:7e:f9:5b:8a:91:a5:79:2d:41:75:51:9d: e3:d1:a3:de:c2:18:c9:81:5e:14:68:a4:aa:f6:42: 2b:69:1a:ff:63:64:c2:0e:53:ce:3c:b7:f4:92:a9: 67:45:83:32:68:37:d7:a7:69:a6:6f:5a:b7:02:d7: c7:c7:a2:3a:64:6c:91:c0:cc:38:83:c7:f9:fe:12: d9:f6:2d:27:67:0a:16:fb:3e:3e:ba:3d:c7:64:13: 77:b1:5f:4c:e2:71:22:b7:0c:bb:0a:df:8d:49:3b: c6:2b:44:0b:b9:a4:bd:87:3c:bb:c0:c5:cb:af:8a: 4f:05:65:98:91:20:2b:d7:5e:f4:44:a0:7a:a0:97: e1:2c:e1:79:9a:32:aa:6d:77:bb:ae:12:aa:6c:67: 98:3d:4d:68:ff:70:d3:2a:c1:94:4b:e5:4c:ab:5f: 1f:1e:ff:ce:22:23:02:bc:74:1c:2e:0c:ea:4c:b1: d6:36:ef:38:f2:09:fc:18:cd:5c:04:f0:e0:11:4a: 76:c4:4f:cd:aa:58:69:28:88:83:75:8c:0a:80:fc: da:a8:8a:6e:cc:8b:17:21:ba:c0:a9:0a:2a:68:ba: 35:31:f1:c2:2a:fe:92:45:09:20:13:7d:12:79:2c: a4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:90:A8:AF:F4:EC:09:CC:E9:E9:76:F8:D3:83:C8:1F:E7:C8:BD:9D X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:02:90:c0:2b:51:ee:3f:5b:b6:a6:b7:1e:3e:74:bf:d3:29: 77:78:e5:09:0c:d2:f0:14:38:86:3d:79:8a:55:a3:c2:9f:f5: a5:65:2c:16:61:e5:9e:c4:7a:61:b8:f5:dc:d7:d1:e0:05:93: b0:82:ed:1c:1a:e1:97:d9:ac:48:3c:81:20:4a:2c:d2:20:81: 43:93:f9:eb:73:56:84:af:68:10:fc:7f:33:97:fc:32:28:54: cf:0a:93:1d:56:3f:ae:9b:5b:49:6f:43:ec:0b:ba:4e:eb:4d: 81:82:54:28:f7:e1:10:8b:b9:5c:e7:cd:34:23:63:a7:92:3e: d9:7b:02:2e:80:20:cb:b8:cf:9d:19:78:04:df:5b:5d:d7:0d: c1:7f:15:58:f9:bb:dc:09:8a:89:2e:45:1d:c7:6b:76:b8:93: 7d:ad:ca:dd:81:6b:c4:a4:da:46:36:43:9d:b8:03:57:70:51: 3a:ac:9f:a7:5a:27:4d:0d:11:1d:65:a6:2f:bb:cc:40:89:68: 16:87:b6:cf:e5:aa:c2:28:e6:b1:04:73:4e:f4:3a:d6:87:e2: 21:a7:30:0c:1c:58:37:14:21:7f:46:83:5d:04:73:d6:4e:1f: ac:63:3c:73:1f:fc:94:37:8e:51:84:57:d3:b7:06:66:ad:4a: 94:e1:08:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjUxMjE5MDEzNzQ1WhcNMjUxMjI2MDEzNzQ1WjAYMRYwFAYD VQQDDA02OTQ0YWM2OS1mN2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbPDlEN4wpTn7wv1XwMN9o1++VuKkaV5LUF1UZ3j0aPewhjJgV4UaKSq9kIr aRr/Y2TCDlPOPLf0kqlnRYMyaDfXp2mmb1q3AtfHx6I6ZGyRwMw4g8f5/hLZ9i0n ZwoW+z4+uj3HZBN3sV9M4nEitwy7Ct+NSTvGK0QLuaS9hzy7wMXLr4pPBWWYkSAr 1170RKB6oJfhLOF5mjKqbXe7rhKqbGeYPU1o/3DTKsGUS+VMq18fHv/OIiMCvHQc LgzqTLHWNu848gn8GM1cBPDgEUp2xE/NqlhpKIiDdYwKgPzaqIpuzIsXIbrAqQoq aLo1MfHCKv6SRQkgE30SeSykxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqQqK/0 7AnM6el2+NODyB/nyL2dMB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk5RS82QzEzNTQzNEM5RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURk ODRyTHRxMGUySzVwWlZoZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtApDAK1HuP1u2prcePnS/0yl3eOUJDNLwFDiGPXmKVaPCn/WlZSwW YeWexHphuPXc19HgBZOwgu0cGuGX2axIPIEgSizSIIFDk/nrc1aEr2gQ/H8zl/wy KFTPCpMdVj+um1tJb0PsC7pO602BglQo9+EQi7lc5800I2Onkj7ZewIugCDLuM+d GXgE31td1w3BfxVY+bvcCYqJLkUdx2t2uJN9rcrdgWvEpNpGNkOduANXcFE6rJ+n WidNDREdZaYvu8xAiWgWh7bP5arCKOaxBHNO9DrWh+IhpzAMHFg3FCF/RoNdBHPW Th+sYzxzH/yUN45RhFfTtwZmrUqU4QiA -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:00 2025 by rpki-client