This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: TdLyo/bcjUCMF/mzKPHxvJxGZGoWwu535pWYuS0rWxI= Subject key identifier: 60:85:A7:2D:7C:F3:AE:BA:13:2F:81:A1:3D:5E:4F:C1:0E:84:63:4F Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 013F Signing time: Sun 21 Dec 2025 03:33:46 +0000 Manifest this update: Sun 21 Dec 2025 03:33:45 +0000 Manifest next update: Sun 28 Dec 2025 03:33:45 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: Uq75FORd9TDTaR52L+Eget4onxN+P6Vdl0p+Z4fNMbk=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Dec 21 03:33:45 2025 GMT Not After : Dec 28 03:33:45 2025 GMT Subject: CN=69476a99-5670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0e:81:83:86:fe:8a:90:da:68:6b:f4:2d:a5: 35:80:03:63:54:19:db:85:3b:f6:50:51:f4:fe:42: 85:21:a3:17:95:1e:50:72:e1:62:f5:c8:43:20:aa: b0:8d:e3:d1:31:06:37:9f:95:7a:42:6e:3f:0c:fc: 57:3e:d8:88:36:f2:91:b5:72:d0:fa:89:69:88:9d: 38:6d:b3:b3:7a:70:8e:3d:35:26:88:34:91:c4:ef: 0e:51:e1:b3:ff:39:9a:16:67:82:91:0d:db:1d:5f: 8e:c3:00:ae:c1:8e:a2:c9:c2:3f:c7:e0:a3:ca:6b: 2c:b8:c9:8a:4c:3d:18:fd:ba:ce:a0:dd:e5:94:ac: 07:dd:42:dd:93:9d:80:41:ce:c6:ef:98:c2:f4:a4: 1b:26:b4:b8:b8:83:83:70:aa:72:f6:9c:b3:80:09: 06:c4:ae:ba:10:eb:ff:71:e9:db:66:d9:bd:50:58: 3f:35:cb:96:c8:f9:50:ca:e2:42:3d:50:b7:c1:f7: b2:e6:f7:09:61:8b:44:96:78:8f:82:17:63:8f:98: bb:ef:b4:f7:99:f7:98:b7:4d:ff:80:f8:1e:3a:39: b8:34:f6:79:83:2c:5b:33:77:23:1e:b8:48:c5:83: 4e:69:2c:d2:ec:32:fa:74:75:ef:59:17:56:c2:66: c8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:85:A7:2D:7C:F3:AE:BA:13:2F:81:A1:3D:5E:4F:C1:0E:84:63:4F X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:7f:1e:49:83:7e:29:16:9f:57:ee:63:a7:72:95:64:ad:7d: 97:32:8d:5f:33:4a:2a:a6:d7:95:80:70:6e:ec:7e:78:71:57: 17:a3:69:6d:74:d6:e2:26:21:0c:f9:f1:6a:aa:6e:fe:91:4d: 8a:f1:55:8d:47:6e:72:a9:8b:33:30:77:80:20:3e:f1:44:45: 07:16:29:06:21:89:2c:7e:31:4a:1b:6f:32:16:20:3e:74:8e: 14:3c:f4:2b:54:fb:a4:47:c6:6f:a4:c7:f7:64:e9:d3:48:c9: 62:3b:2c:12:79:17:d2:42:f9:c6:50:16:db:45:8c:c7:47:70: e7:21:83:0a:d2:70:dc:6e:3d:f1:72:91:66:7b:3a:4c:70:ee: ba:6c:ba:3b:cb:c8:ed:eb:ac:a6:90:f4:25:ab:e9:31:c7:9f: 2c:63:73:90:a0:e2:45:78:dc:c1:42:9a:6b:ae:98:2c:49:76: b2:1f:17:34:1d:b8:43:86:5c:82:8f:38:1d:36:22:76:0d:87: 27:f5:fe:47:4b:44:f6:99:2a:14:82:db:3c:56:f9:ad:e8:6c: fa:dc:b9:2c:e9:6c:ca:c2:74:fb:06:6d:69:71:91:f5:4c:73: 37:6a:6b:07:23:f9:52:66:15:a4:d6:a3:99:97:b8:3e:91:a6: 7e:19:50:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUxMjIxMDMzMzQ1WhcNMjUxMjI4MDMzMzQ1WjAYMRYwFAYD VQQDDA02OTQ3NmE5OS01NjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlA6Bg4b+ipDaaGv0LaU1gANjVBnbhTv2UFH0/kKFIaMXlR5QcuFi9chDIKqw jePRMQY3n5V6Qm4/DPxXPtiINvKRtXLQ+olpiJ04bbOzenCOPTUmiDSRxO8OUeGz /zmaFmeCkQ3bHV+OwwCuwY6iycI/x+CjymssuMmKTD0Y/brOoN3llKwH3ULdk52A Qc7G75jC9KQbJrS4uIODcKpy9pyzgAkGxK66EOv/cenbZtm9UFg/NcuWyPlQyuJC PVC3wfey5vcJYYtElniPghdjj5i777T3mfeYt03/gPgeOjm4NPZ5gyxbM3cjHrhI xYNOaSzS7DL6dHXvWRdWwmbICQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCFpy18 8666Ey+BoT1eT8EOhGNPMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATfx5Jg34pFp9X7mOncpVkrX2XMo1fM0oqpteVgHBu7H54cVcXo2lt dNbiJiEM+fFqqm7+kU2K8VWNR25yqYszMHeAID7xREUHFikGIYksfjFKG28yFiA+ dI4UPPQrVPukR8ZvpMf3ZOnTSMliOywSeRfSQvnGUBbbRYzHR3DnIYMK0nDcbj3x cpFmezpMcO66bLo7y8jt66ymkPQlq+kxx58sY3OQoOJFeNzBQpprrpgsSXayHxc0 HbhDhlyCjzgdNiJ2DYcn9f5HS0T2mSoUgts8Vvmt6Gz63Lks6WzKwnT7Bm1pcZH1 THM3amsHI/lSZhWk1qOZl7g+kaZ+GVBn -----END CERTIFICATE-----Generated at Sun Dec 21 15:02:29 2025 by rpki-client