This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: OPL6lh3p5O92ecGjqmc7plPJxkTQic3BMNqYoVHucp8= Subject key identifier: D8:B1:22:F3:A1:80:ED:3C:72:95:BE:90:62:D7:90:16:3D:72:2A:B2 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0386 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 037F Signing time: Mon 22 Dec 2025 23:52:39 +0000 Manifest this update: Mon 22 Dec 2025 23:52:39 +0000 Manifest next update: Mon 29 Dec 2025 23:52:39 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: r4+KJhQpmAuwerirkQ32yIUK2AUBN0hmFCF7j5nHQ6M=) 2: 4BBDE05299B011F0B174EC14C4F9AE02.roa (hash: 1EYGqr5gDaw2Win7ebKI+MEi4liXZPWIq3RFA0qRbSg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 902 (0x386) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Dec 22 23:52:39 2025 GMT Not After : Dec 29 23:52:39 2025 GMT Subject: CN=6949d9c7-0c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ba:0d:0e:33:06:37:ac:62:d5:c1:cc:14:b6: 1b:ad:e5:ec:da:fb:df:8c:97:07:bc:65:f2:2c:0f: 63:f4:61:23:1c:33:4c:24:a2:4b:60:5e:10:ab:ff: 0d:b5:6c:a8:ae:fd:76:46:b9:4c:83:4d:e9:63:8d: 45:de:2d:67:11:4c:a3:3b:cb:3e:01:5e:1f:41:e4: f8:01:fb:42:b8:55:45:00:54:8c:48:05:6f:b4:2f: 5b:fc:1d:dc:de:86:e3:ed:e3:28:55:95:97:a1:ca: 35:36:11:c9:31:7b:2b:e7:0d:90:8e:61:09:64:cd: 6c:da:6d:60:5d:13:a8:32:82:91:64:bf:60:3c:2f: e1:24:ef:5d:98:52:6c:85:00:49:ce:05:08:a6:42: 75:1a:73:09:87:4f:8f:4c:84:8b:31:b6:f8:3e:32: 69:8a:fc:6b:ff:77:c9:24:51:47:c9:ab:85:fa:54: 1c:5b:e6:0a:4d:6d:5d:af:56:22:71:84:95:0e:4f: 61:8d:c9:11:0d:20:90:36:8a:f2:3c:3e:6a:97:bf: ae:54:bd:9f:f4:ba:ce:ff:57:21:65:88:f8:6c:46: 4f:ed:96:ea:2b:91:52:8a:0c:f1:26:de:14:65:39: 5b:27:5b:17:39:a3:fc:31:f5:b6:7c:3f:ac:95:46: fd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B1:22:F3:A1:80:ED:3C:72:95:BE:90:62:D7:90:16:3D:72:2A:B2 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:5a:4f:2a:f7:74:18:2d:fb:21:4b:7b:0e:88:94:bc:ab:09: ec:23:80:d9:5a:65:6a:60:a5:99:b5:fc:43:a2:ce:70:4e:f2: 99:d4:d2:63:d9:84:45:20:25:8a:77:9c:53:73:59:bc:ff:99: b6:e0:78:22:00:8b:0b:f8:d8:81:03:13:84:6e:da:35:95:d0: 29:fe:5b:ff:cc:70:b9:bd:74:77:ac:7b:21:cb:b0:99:ba:89: 17:0e:9b:b6:02:67:77:a8:ef:f2:37:38:7a:e7:26:6f:3a:c1: f1:31:5a:ad:fa:44:89:cb:26:8f:69:f5:bf:9d:ca:48:fa:d5: c1:30:1a:f4:60:57:2c:fc:48:53:0f:44:34:46:54:0b:16:4a: 25:0e:c0:0e:5d:bb:e5:ae:e3:ec:10:92:de:d1:04:87:04:4d: f6:da:ab:be:94:b2:63:a0:dc:3d:4d:fb:2c:03:47:71:99:74: 7e:c2:7d:be:1c:4e:71:61:4e:3b:cf:6f:78:68:56:7a:3f:e9: bd:c8:f1:43:4c:a9:28:9c:18:6f:e8:87:bd:bd:7f:54:25:b1: 7d:89:bc:5f:d3:ab:c4:03:06:d4:7f:c4:2e:66:4b:d7:6f:93: 24:b2:19:e8:a2:4d:90:34:f1:f2:43:fb:99:c1:28:8b:d0:7a: ba:3a:6d:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUxMjIyMjM1MjM5WhcNMjUxMjI5MjM1MjM5WjAYMRYwFAYD VQQDDA02OTQ5ZDljNy0wYzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxroNDjMGN6xi1cHMFLYbreXs2vvfjJcHvGXyLA9j9GEjHDNMJKJLYF4Qq/8N tWyorv12RrlMg03pY41F3i1nEUyjO8s+AV4fQeT4AftCuFVFAFSMSAVvtC9b/B3c 3obj7eMoVZWXoco1NhHJMXsr5w2QjmEJZM1s2m1gXROoMoKRZL9gPC/hJO9dmFJs hQBJzgUIpkJ1GnMJh0+PTISLMbb4PjJpivxr/3fJJFFHyauF+lQcW+YKTW1dr1Yi cYSVDk9hjckRDSCQNoryPD5ql7+uVL2f9LrO/1chZYj4bEZP7ZbqK5FSigzxJt4U ZTlbJ1sXOaP8MfW2fD+slUb9xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNixIvOh gO08cpW+kGLXkBY9ciqyMB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOWk8q93QYLfshS3sOiJS8qwnsI4DZWmVqYKWZtfxDos5wTvKZ1NJj 2YRFICWKd5xTc1m8/5m24HgiAIsL+NiBAxOEbto1ldAp/lv/zHC5vXR3rHshy7CZ uokXDpu2Amd3qO/yNzh65yZvOsHxMVqt+kSJyyaPafW/ncpI+tXBMBr0YFcs/EhT D0Q0RlQLFkolDsAOXbvlruPsEJLe0QSHBE322qu+lLJjoNw9TfssA0dxmXR+wn2+ HE5xYU47z294aFZ6P+m9yPFDTKkonBhv6Ie9vX9UJbF9ibxf06vEAwbUf8QuZkvX b5Mkshnook2QNPHyQ/uZwSiL0Hq6Om08 -----END CERTIFICATE-----Generated at Tue Dec 23 07:20:48 2025 by rpki-client