This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft File: rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft (raw, json) Hash identifier: 8TDo99y1tz9r4wrz01poIF69OvAtJnIUW6L8JR71QgY= Subject key identifier: 4B:C3:92:0E:D5:36:40:03:6E:67:C7:9A:26:B6:A6:73:A6:04:1A:4B Authority key identifier: AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 Certificate issuer: /CN=A917138D/serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Certificate serial: 0858 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft Manifest number: 0846 Signing time: Tue 30 Dec 2025 20:12:05 +0000 Manifest this update: Tue 30 Dec 2025 20:12:04 +0000 Manifest next update: Tue 06 Jan 2026 20:12:04 +0000 Files and hashes: 1: rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl (hash: JBtTP0QrV+hp9p+/DNRZqXT0FVtvCB+QVWO0W2vOfHI=) 2: 7D0F62FAF3EF11EA82F3C251C4F9AE02.roa (hash: mDiyXguFaGa3vR8D07iQ+K1O3uq6pL2JeIG9VyLGezQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 20:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2136 (0x858) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917138D, serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Validity Not Before: Dec 30 20:12:04 2025 GMT Not After : Jan 6 20:12:04 2026 GMT Subject: CN=69543214-93f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:21:b5:3e:a5:33:78:3e:80:de:a6:68:5f:bc: c2:9d:ea:00:b2:c8:0f:15:31:96:81:3b:94:8a:43: 84:fb:70:c1:6e:ae:46:e0:4e:dc:88:eb:b9:b9:11: d4:fd:15:e5:44:89:b0:2d:fb:4d:eb:af:2a:92:43: 0d:d2:01:92:67:57:91:d3:29:de:2b:8f:85:7d:7e: b4:d0:87:d3:99:fd:49:c4:76:6a:cc:bb:2d:10:5d: 6f:53:3c:92:2c:78:ee:00:c8:91:99:da:a0:f6:14: cb:41:55:79:8d:95:f8:24:51:53:b5:27:ec:b4:4c: 9a:bb:e0:54:d2:e4:bd:3b:3a:59:0f:87:b2:e3:fd: a0:b0:8c:2d:9e:a1:d7:31:75:27:07:18:ba:d9:a9: 7a:f5:df:1e:d6:8c:dd:14:24:6f:a9:89:20:07:6b: f4:2b:0e:85:20:43:60:1f:6c:a2:50:ab:04:93:04: 33:4a:b6:6c:19:78:43:19:e6:4c:91:2a:07:6b:55: 62:df:ca:8b:28:29:32:5c:0c:f4:68:41:7f:22:e1: 59:a0:37:99:73:ac:c2:aa:f4:15:3a:98:d7:ad:d5: 46:01:1d:3c:a2:ca:bc:6f:d6:1b:d3:7e:38:fa:b5: db:d0:db:df:07:48:75:be:8c:39:c3:30:b6:37:eb: 90:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:C3:92:0E:D5:36:40:03:6E:67:C7:9A:26:B6:A6:73:A6:04:1A:4B X509v3 Authority Key Identifier: keyid:AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:30:a0:31:0b:59:fc:57:14:04:97:d8:4d:6b:9d:86:3e:0d: 48:14:ab:8f:12:88:58:62:77:b8:b2:ab:5a:d4:9b:93:71:3f: f4:40:fb:e1:94:79:0e:98:19:01:66:e4:d2:ac:bb:de:fd:6e: 98:b8:68:e4:7c:ec:2b:f0:bc:5a:1d:9c:99:bd:24:0b:d2:fe: 83:79:a6:48:aa:60:63:ad:93:93:ac:22:35:a3:2e:ec:fa:91: 97:40:47:16:01:b3:f2:1f:07:a3:56:09:99:bd:0f:d2:21:a5: 75:09:7f:76:a2:60:b4:df:45:40:12:a8:a4:27:75:bb:eb:67: d7:c2:57:b8:55:6c:b6:c7:16:82:15:f8:ec:0e:88:86:aa:25: c3:4a:72:79:3a:03:43:ec:5d:1d:87:25:0c:9f:95:c1:ec:65: 09:70:89:a5:95:f1:a9:74:e5:fc:63:45:bd:c0:7c:ef:b9:d5: ad:8b:86:30:db:bf:7e:3d:2a:f5:32:2c:ff:67:95:e7:37:b3: 30:5d:d2:f1:cc:47:20:0e:d9:e9:e6:bb:f3:c3:6b:1f:55:84: d9:56:2a:ee:a3:a9:e1:77:23:02:2a:43:b7:44:99:ce:c2:b5: ef:42:fe:d2:06:2d:17:41:b0:05:b6:97:df:f5:e0:96:11:fb: 55:8a:1b:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEzOEQxMTAvBgNVBAUTKEFFMEYwRTlFRDRBNjcwNkU5MkUxMEI3ODlCQUMyQzYy NUE1NjUxNTYwHhcNMjUxMjMwMjAxMjA0WhcNMjYwMTA2MjAxMjA0WjAYMRYwFAYD VQQDDA02OTU0MzIxNC05M2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiG1PqUzeD6A3qZoX7zCneoAssgPFTGWgTuUikOE+3DBbq5G4E7ciOu5uRHU /RXlRImwLftN668qkkMN0gGSZ1eR0yneK4+FfX600IfTmf1JxHZqzLstEF1vUzyS LHjuAMiRmdqg9hTLQVV5jZX4JFFTtSfstEyau+BU0uS9OzpZD4ey4/2gsIwtnqHX MXUnBxi62al69d8e1ozdFCRvqYkgB2v0Kw6FIENgH2yiUKsEkwQzSrZsGXhDGeZM kSoHa1Vi38qLKCkyXAz0aEF/IuFZoDeZc6zCqvQVOpjXrdVGAR08osq8b9Yb0344 +rXb0NvfB0h1vow5wzC2N+uQ8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvDkg7V NkADbmfHmia2pnOmBBpLMB8GA1UdIwQYMBaAFK4PDp7UpnBukuELeJusLGJaVlFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTM4RC80RjZFOTMxOEYz RUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNHNlM0UXQ0bTZ3c1lscFdV VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JnOE9udFNtY0c2UzRRdDRtNndzWWxwV1VWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTM4RC80RjZFOTMxOEYzRUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNH NlM0UXQ0bTZ3c1lscFdVVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeMKAxC1n8VxQEl9hNa52GPg1IFKuPEohYYne4sqta1JuTcT/0QPvh lHkOmBkBZuTSrLve/W6YuGjkfOwr8LxaHZyZvSQL0v6DeaZIqmBjrZOTrCI1oy7s +pGXQEcWAbPyHwejVgmZvQ/SIaV1CX92omC030VAEqikJ3W762fXwle4VWy2xxaC FfjsDoiGqiXDSnJ5OgND7F0dhyUMn5XB7GUJcImllfGpdOX8Y0W9wHzvudWti4Yw 279+PSr1Miz/Z5XnN7MwXdLxzEcgDtnp5rvzw2sfVYTZViruo6nhdyMCKkO3RJnO wrXvQv7SBi0XQbAFtpff9eCWEftVihsI -----END CERTIFICATE-----Generated at Wed Dec 31 00:09:57 2025 by rpki-client