This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft File: rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft (raw, json) Hash identifier: owlQ8FRGP2ag4+ERPN6UXGw7FHsdfc0G64XWlwXn2G4= Subject key identifier: 4F:3C:CD:09:07:CC:99:2E:7E:70:7C:01:1A:95:FB:86:B0:E2:6B:63 Authority key identifier: AC:56:07:0D:BE:5E:E6:DB:BF:67:11:97:38:47:23:31:27:91:7A:2F Certificate issuer: /CN=A918EBC3/serialNumber=AC56070DBE5EE6DBBF6711973847233127917A2F Certificate serial: 08CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft Manifest number: 08C4 Signing time: Thu 18 Dec 2025 19:59:14 +0000 Manifest this update: Thu 18 Dec 2025 19:59:13 +0000 Manifest next update: Thu 25 Dec 2025 19:59:13 +0000 Files and hashes: 1: rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl (hash: e98oI9PqZCVg2tIXAvnX/yMv9E74+P7JQtSE6EHf52s=) 2: 7CDBE740C7FD11EAB795396AC4F9AE02.roa (hash: 9tE+uOVp6Bj6WcCgxk9lYTPX66R81lJEVNKhiaCUTsA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2252 (0x8cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EBC3, serialNumber=AC56070DBE5EE6DBBF6711973847233127917A2F Validity Not Before: Dec 18 19:59:13 2025 GMT Not After : Dec 25 19:59:13 2025 GMT Subject: CN=69445d11-d5ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dc:48:3c:4b:e5:98:8a:64:77:19:3f:e7:c7: bf:3c:f3:4c:79:ec:ea:85:5e:1d:36:25:43:d6:dd: d0:3e:fe:61:5f:16:34:44:41:0a:d2:db:e6:91:0d: cb:c6:7e:1e:ec:36:0b:13:f7:9b:68:5f:ee:3c:2e: 43:ba:95:bc:a8:53:9b:be:3f:75:a4:ab:c7:da:d9: 1f:1b:d3:a1:7a:ae:de:36:37:d1:12:be:6d:9c:58: c4:de:1a:11:cf:e9:a4:b5:bd:1d:e9:e5:4a:a6:31: 1a:1b:b1:d2:fe:46:a3:a1:5e:4a:0c:da:a9:f7:e1: cb:53:f7:04:ab:40:06:8a:96:d3:24:eb:55:b8:6b: 75:1e:cd:48:f5:35:88:16:ac:f7:68:74:37:07:56: ea:e0:87:98:c2:55:8d:b6:e2:5c:1e:88:18:92:bf: 43:23:5b:8a:cc:95:2e:bd:11:c7:74:51:30:62:27: 29:11:99:14:a5:64:e6:95:a9:e7:a1:d0:ab:60:a0: 2a:67:ac:25:d1:b7:7b:11:a4:37:62:e4:b2:73:eb: c7:50:e7:a0:70:cc:a5:74:e7:ca:98:36:8b:66:3f: 5f:6b:80:13:88:7f:b9:ca:ae:7a:28:1c:db:c4:67: 13:75:16:6d:47:21:e9:48:cf:9a:dc:c8:5e:ce:99: b6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:3C:CD:09:07:CC:99:2E:7E:70:7C:01:1A:95:FB:86:B0:E2:6B:63 X509v3 Authority Key Identifier: keyid:AC:56:07:0D:BE:5E:E6:DB:BF:67:11:97:38:47:23:31:27:91:7A:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:53:24:e1:66:9e:e5:16:a4:f9:db:b5:e3:fd:58:f4:76:24: cd:90:3c:92:c5:b8:24:a1:0e:eb:27:95:ad:c8:31:f7:d5:61: 9a:1b:2f:f5:be:4a:19:64:f3:a9:31:8a:7e:0d:4e:e9:86:58: 19:e9:83:24:08:31:38:34:0b:42:86:51:c0:d1:d7:e0:c9:e4: ac:a5:63:2b:5d:bf:19:27:88:96:c6:52:7a:55:c1:f3:ee:9c: 58:57:d6:61:54:e6:0c:83:7e:e1:0d:be:ba:ae:9b:95:94:cc: 43:ed:ac:8e:dc:c2:c8:49:68:3f:35:58:23:ed:4f:c7:77:20: f8:de:c2:f6:74:96:eb:a6:e4:6e:b3:de:74:13:31:f6:3a:fb: 25:9a:c2:8d:04:db:df:5f:ba:3f:2c:a5:d0:6d:97:bc:77:87: 63:c1:45:76:fe:8d:05:59:5f:d4:2c:78:ea:40:94:77:2f:24: 72:56:56:41:d3:ec:9a:7e:93:e5:65:9c:27:a8:23:c6:ef:d4: f0:3f:e5:f7:1a:73:74:27:93:79:7d:91:8a:8a:a0:b4:c8:cc: 49:7d:d3:96:3d:22:2f:3f:7e:d8:1a:73:0c:5b:70:ec:03:c8: 71:3f:78:57:5a:42:ca:7f:2a:a5:dd:bb:cd:f3:f9:d7:cf:bf: 31:a3:cd:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVCQzMxMTAvBgNVBAUTKEFDNTYwNzBEQkU1RUU2REJCRjY3MTE5NzM4NDcyMzMx Mjc5MTdBMkYwHhcNMjUxMjE4MTk1OTEzWhcNMjUxMjI1MTk1OTEzWjAYMRYwFAYD VQQDDA02OTQ0NWQxMS1kNWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtxIPEvlmIpkdxk/58e/PPNMeezqhV4dNiVD1t3QPv5hXxY0REEK0tvmkQ3L xn4e7DYLE/ebaF/uPC5DupW8qFObvj91pKvH2tkfG9Oheq7eNjfREr5tnFjE3hoR z+mktb0d6eVKpjEaG7HS/kajoV5KDNqp9+HLU/cEq0AGipbTJOtVuGt1Hs1I9TWI Fqz3aHQ3B1bq4IeYwlWNtuJcHogYkr9DI1uKzJUuvRHHdFEwYicpEZkUpWTmlann odCrYKAqZ6wl0bd7EaQ3YuSyc+vHUOegcMyldOfKmDaLZj9fa4ATiH+5yq56KBzb xGcTdRZtRyHpSM+a3Mhezpm2JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE88zQkH zJkufnB8ARqV+4aw4mtjMB8GA1UdIwQYMBaAFKxWBw2+Xubbv2cRlzhHIzEnkXov MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUJDMy8wRDQxRkU1Q0M3 RkMxMUVBOTYyQjAwNjlDNEY5QUUwMi9yRllIRGI1ZTV0dV9aeEdYT0Vjak1TZVJl aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWUhEYjVlNXR1X1p4R1hPRWNqTVNlUmVpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUJDMy8wRDQxRkU1Q0M3RkMxMUVBOTYyQjAwNjlDNEY5QUUwMi9yRllIRGI1ZTV0 dV9aeEdYT0Vjak1TZVJlaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDUyThZp7lFqT527Xj/Vj0diTNkDySxbgkoQ7rJ5WtyDH31WGaGy/1 vkoZZPOpMYp+DU7phlgZ6YMkCDE4NAtChlHA0dfgyeSspWMrXb8ZJ4iWxlJ6VcHz 7pxYV9ZhVOYMg37hDb66rpuVlMxD7ayO3MLISWg/NVgj7U/HdyD43sL2dJbrpuRu s950EzH2OvslmsKNBNvfX7o/LKXQbZe8d4djwUV2/o0FWV/ULHjqQJR3LyRyVlZB 0+yafpPlZZwnqCPG79TwP+X3GnN0J5N5fZGKiqC0yMxJfdOWPSIvP37YGnMMW3Ds A8hxP3hXWkLKfyql3bvN8/nXz78xo81Y -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:30 2025 by rpki-client