This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft File: h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft (raw, json) Hash identifier: IH5ei4enaaRFGJhjx8CA/8j7Ml/8nOjFbyy5TnhSyNU= Subject key identifier: 2F:37:15:B9:46:2F:8A:0D:01:F2:45:C6:47:7F:9B:AE:BB:C2:94:D0 Authority key identifier: 87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B Certificate issuer: /CN=A918A35C/serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Certificate serial: 0C06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft Manifest number: 0BFF Signing time: Thu 18 Dec 2025 18:31:38 +0000 Manifest this update: Thu 18 Dec 2025 18:31:38 +0000 Manifest next update: Thu 25 Dec 2025 18:31:38 +0000 Files and hashes: 1: h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl (hash: jvH84HYTQzBw3LorquipB/eWSV2vHPWZbFVFYQprL/E=) 2: 0D22F748261A11EA83CE8D17C4F9AE02.roa (hash: dTqPYAZ0fYSqCYvtzmzk6vV87y7uZ4+mAQSsb1JNqeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3078 (0xc06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A35C, serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Validity Not Before: Dec 18 18:31:38 2025 GMT Not After : Dec 25 18:31:38 2025 GMT Subject: CN=6944488a-349b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b7:67:2c:41:1c:31:a6:e1:46:61:29:ee:d6: 2f:a5:15:e1:21:58:bd:b3:ac:82:9b:d4:0b:46:fc: 3c:b0:f7:6e:a3:28:26:1e:d9:a3:16:aa:a8:05:07: 42:c5:98:4f:a4:8d:14:14:50:32:16:e2:16:6d:b2: 89:29:5e:39:00:2f:d5:d2:32:89:24:4d:87:1e:a8: ff:7f:db:99:f7:ab:ba:d5:b8:ab:9a:bb:30:7c:9e: a2:d7:9b:35:d5:62:4e:18:a0:ae:39:70:27:7b:51: 5d:0a:6e:97:f0:26:07:2d:a4:ee:57:0b:e8:ce:e7: d9:d6:32:5f:97:e7:d5:25:07:44:41:0e:41:0b:c3: b2:30:f3:69:4d:a4:47:7a:ad:a5:92:43:59:90:99: 7b:ea:4e:a4:19:0e:03:29:5e:da:35:80:f7:f3:f7: 35:dc:ab:68:cd:71:8e:6a:e0:77:07:e2:9e:46:58: 4d:59:9a:bd:18:67:33:e0:12:ff:ae:44:a1:f5:85: 72:33:e8:bf:4f:04:ca:b1:ff:27:eb:ad:76:f4:94: ac:50:d9:ba:23:08:8a:37:e8:29:44:88:d5:ea:7c: 87:9e:97:db:77:8d:0c:3b:3f:d3:5a:2e:71:46:f0: 29:5f:60:07:e9:3e:39:20:1c:89:59:7f:47:bd:f5: 1f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:37:15:B9:46:2F:8A:0D:01:F2:45:C6:47:7F:9B:AE:BB:C2:94:D0 X509v3 Authority Key Identifier: keyid:87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:f4:1b:fc:45:2c:c4:7a:27:d4:42:42:9f:f2:65:e1:4b:58: 1e:35:47:b5:16:90:28:2a:3d:d3:62:fd:36:5d:78:7b:39:6b: aa:18:4a:e7:1e:8e:d6:ad:07:71:35:1e:d5:dd:a2:5c:8e:7d: ec:41:d6:7e:c6:86:e2:9d:ce:c6:a7:18:28:68:31:b4:6c:54: 5b:8d:66:13:27:9d:02:07:6c:5f:a8:31:eb:dd:a4:78:d1:97: 49:fa:45:fc:6a:30:3d:bc:14:b7:b4:6f:94:a6:34:bf:e0:de: bb:18:9a:66:0c:86:e8:6b:9c:7e:74:58:eb:92:a2:69:4a:15: 4c:97:a8:0f:1b:7c:27:bb:89:fa:be:7b:b4:1e:57:6f:00:74: 39:40:1d:0d:55:84:c2:08:ec:86:5f:81:f8:1b:60:55:09:9e: e7:1c:00:4b:28:11:82:5c:9e:d6:fd:37:58:d0:40:5d:50:a8: b6:4b:39:aa:6f:df:11:ba:9d:21:7b:87:54:6b:51:4d:dd:76: 59:a2:dc:30:b2:a0:5b:dd:3e:91:20:07:1a:2d:71:50:72:8d: a0:46:a3:b9:8e:3a:4f:ed:4e:b3:9c:a9:94:89:9c:b3:7c:5c: a3:35:3a:c4:15:87:79:b1:94:64:ca:d9:dd:21:3b:8c:35:6e: 3d:ae:37:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzNUMxMTAvBgNVBAUTKDg3OEI4Njg2OTVGQzQ1QzlDNjNCNkZCQzU0Q0NCMzUw OUM0QjlGNEIwHhcNMjUxMjE4MTgzMTM4WhcNMjUxMjI1MTgzMTM4WjAYMRYwFAYD VQQDDA02OTQ0NDg4YS0zNDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbdnLEEcMabhRmEp7tYvpRXhIVi9s6yCm9QLRvw8sPduoygmHtmjFqqoBQdC xZhPpI0UFFAyFuIWbbKJKV45AC/V0jKJJE2HHqj/f9uZ96u61birmrswfJ6i15s1 1WJOGKCuOXAne1FdCm6X8CYHLaTuVwvozufZ1jJfl+fVJQdEQQ5BC8OyMPNpTaRH eq2lkkNZkJl76k6kGQ4DKV7aNYD38/c13KtozXGOauB3B+KeRlhNWZq9GGcz4BL/ rkSh9YVyM+i/TwTKsf8n66129JSsUNm6IwiKN+gpRIjV6nyHnpfbd40MOz/TWi5x RvApX2AH6T45IByJWX9HvfUf9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC83FblG L4oNAfJFxkd/m667wpTQMB8GA1UdIwQYMBaAFIeLhoaV/EXJxjtvvFTMs1CcS59L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTM1Qy81MkZDNkI5ODI2 MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJjbkdPMi04Vk15elVKeExu MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g0dUdocFg4UmNuR08yLThWTXl6VUp4TG4wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTM1Qy81MkZDNkI5ODI2MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJj bkdPMi04Vk15elVKeExuMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA49Bv8RSzEeifUQkKf8mXhS1geNUe1FpAoKj3TYv02XXh7OWuqGErn Ho7WrQdxNR7V3aJcjn3sQdZ+xobinc7GpxgoaDG0bFRbjWYTJ50CB2xfqDHr3aR4 0ZdJ+kX8ajA9vBS3tG+UpjS/4N67GJpmDIboa5x+dFjrkqJpShVMl6gPG3wnu4n6 vnu0HldvAHQ5QB0NVYTCCOyGX4H4G2BVCZ7nHABLKBGCXJ7W/TdY0EBdUKi2Szmq b98Rup0he4dUa1FN3XZZotwwsqBb3T6RIAcaLXFQco2gRqO5jjpP7U6znKmUiZyz fFyjNTrEFYd5sZRkytndITuMNW49rjeU -----END CERTIFICATE-----Generated at Fri Dec 19 20:17:23 2025 by rpki-client